$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/357/LiAQvuPyRcNAWaIePmmOLQCJB9M.roa File: LiAQvuPyRcNAWaIePmmOLQCJB9M.roa (raw, json) Hash identifier: D9nMEz0k907otUZV2bbM4LEH3tQm/EJJFBh3krolfHM= Subject key identifier: 2E:20:10:BE:E3:F2:45:C3:40:59:A2:1E:3E:69:8E:2D:00:89:07:D3 Certificate issuer: /CN=B3BA6AEF3B8FA2E5D9B5E43438E0020D426A1ECA Certificate serial: 1958 Authority key identifier: B3:BA:6A:EF:3B:8F:A2:E5:D9:B5:E4:34:38:E0:02:0D:42:6A:1E:CA Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/s7pq7zuPouXZteQ0OOACDUJqHso.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/357/LiAQvuPyRcNAWaIePmmOLQCJB9M.roa Signing time: Sat 13 Sep 2025 03:10:18 +0000 ROA not before: Sat 13 Sep 2025 03:10:18 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 37963 IP address blocks: 112.124.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/357/s7pq7zuPouXZteQ0OOACDUJqHso.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/357/s7pq7zuPouXZteQ0OOACDUJqHso.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/s7pq7zuPouXZteQ0OOACDUJqHso.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 18:07:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6488 (0x1958) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B3BA6AEF3B8FA2E5D9B5E43438E0020D426A1ECA Validity Not Before: Sep 13 03:10:18 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=2E2010BEE3F245C34059A21E3E698E2D008907D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:4c:91:15:71:27:e1:a9:3d:43:59:95:0c:49: 18:6c:8a:21:52:52:37:b4:16:5e:a7:c5:a8:c1:1a: c3:69:f8:fe:09:44:11:b7:57:46:2e:f0:ad:d8:50: d9:65:c0:84:7e:8c:56:a7:ab:be:c2:5e:13:2e:c4: d0:d0:8f:06:39:38:65:03:5d:f4:10:8e:6d:f4:d9: 29:89:4a:c5:3e:f8:a7:ec:9a:43:fb:e1:18:bd:89: 48:c7:c5:a0:1e:3b:43:09:87:36:b9:e0:c2:3a:88: 7a:cb:76:4c:56:06:6b:be:a2:42:5e:4a:a9:ab:72: 3a:2e:e3:7d:be:3f:e8:c7:a5:15:74:04:41:25:92: 04:3e:70:9e:74:32:f5:b2:73:7d:6a:b3:76:cd:88: eb:b3:ab:da:16:b2:08:50:5b:d2:62:ac:22:1a:6b: de:04:4c:23:47:5e:39:6e:d7:cf:45:37:a4:4e:f8: f6:38:81:2a:5c:82:ef:fa:83:76:4c:72:db:15:c8: dc:22:e4:0a:33:47:25:b2:a2:d3:ab:20:4a:d4:3e: 3c:a1:2b:a4:60:56:09:51:da:2d:be:2a:98:ff:f6: b1:6c:d4:cd:d5:1e:fd:39:bf:99:36:f6:03:7c:fe: af:39:2f:b5:02:35:9a:5b:44:79:13:47:4a:94:38: ca:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:20:10:BE:E3:F2:45:C3:40:59:A2:1E:3E:69:8E:2D:00:89:07:D3 X509v3 Authority Key Identifier: keyid:B3:BA:6A:EF:3B:8F:A2:E5:D9:B5:E4:34:38:E0:02:0D:42:6A:1E:CA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/357/s7pq7zuPouXZteQ0OOACDUJqHso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/s7pq7zuPouXZteQ0OOACDUJqHso.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/357/LiAQvuPyRcNAWaIePmmOLQCJB9M.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 112.124.0.0/15 Signature Algorithm: sha256WithRSAEncryption 2f:21:84:97:df:39:9f:64:ce:4a:5b:71:59:73:98:82:55:f7: 93:e1:62:44:8f:6b:85:99:79:6e:fe:38:8f:b3:a2:14:27:3f: a1:f2:d4:61:b0:b5:dd:38:b4:36:98:62:3f:24:0e:76:45:d6: fe:1b:b3:c3:7f:8d:f5:20:ae:41:37:d6:42:1c:90:64:25:58: 04:fc:a0:e7:af:f4:ee:c3:78:78:a8:85:9d:a4:69:9b:6a:02: ca:50:a7:89:d5:6d:15:1d:80:00:a1:ef:83:ee:2e:11:2b:6b: 6f:61:e7:27:89:e5:0f:4f:8f:73:7b:dc:ae:66:0b:12:7a:01: de:a6:f2:a0:a5:90:d7:28:6e:81:5d:0d:00:76:59:97:0c:b5: 68:44:11:82:34:85:28:fd:3f:20:65:8c:a6:7f:45:7c:9c:f4: 67:3e:a3:80:b9:43:6c:95:0d:25:0b:40:25:09:64:f2:df:b6: c6:07:0d:d9:a8:ac:dd:99:7a:23:74:8f:46:76:cc:7b:e1:45: cd:a9:4a:ad:35:b5:e0:f9:7f:af:a5:e9:46:cb:aa:9d:7b:61: ac:0f:b6:04:90:0a:06:d7:82:7d:d6:2c:b4:9b:b1:c1:8e:73: 16:89:3d:f7:55:cb:21:a2:aa:a1:c2:c9:11:d5:b2:b2:4b:a0: 2a:19:87:03 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICGVgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjNC QTZBRUYzQjhGQTJFNUQ5QjVFNDM0MzhFMDAyMEQ0MjZBMUVDQTAeFw0yNTA5MTMw MzEwMThaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDJFMjAxMEJFRTNGMjQ1 QzM0MDU5QTIxRTNFNjk4RTJEMDA4OTA3RDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDiTJEVcSfhqT1DWZUMSRhsiiFSUje0Fl6nxajBGsNp+P4JRBG3 V0Yu8K3YUNllwIR+jFanq77CXhMuxNDQjwY5OGUDXfQQjm302SmJSsU++KfsmkP7 4Ri9iUjHxaAeO0MJhza54MI6iHrLdkxWBmu+okJeSqmrcjou432+P+jHpRV0BEEl kgQ+cJ50MvWyc31qs3bNiOuzq9oWsghQW9JirCIaa94ETCNHXjlu189FN6RO+PY4 gSpcgu/6g3ZMctsVyNwi5AozRyWyotOrIErUPjyhK6RgVglR2i2+Kpj/9rFs1M3V Hv05v5k29gN8/q85L7UCNZpbRHkTR0qUOMrjAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQULiAQvuPyRcNAWaIePmmOLQCJB9MwHwYDVR0jBBgwFoAUs7pq7zuPouXZteQ0 OOACDUJqHsowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzU3 L3M3cHE3enVQb3VYWnRlUTBPT0FDRFVKcUhzby5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvczdwcTd6dVBvdVhadGVRME9PQUNEVUpxSHNvLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzU3L0xpQVF2dVB5UmNOQVdh SWVQbW1PTFFDSkI5TS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD AwFwfDANBgkqhkiG9w0BAQsFAAOCAQEALyGEl985n2TOSltxWXOYglX3k+FiRI9r hZl5bv44j7OiFCc/ofLUYbC13Ti0NphiPyQOdkXW/huzw3+N9SCuQTfWQhyQZCVY BPyg56/07sN4eKiFnaRpm2oCylCnidVtFR2AAKHvg+4uEStrb2HnJ4nlD0+Pc3vc rmYLEnoB3qbyoKWQ1yhugV0NAHZZlwy1aEQRgjSFKP0/IGWMpn9FfJz0Zz6jgLlD bJUNJQtAJQlk8t+2xgcN2ais3Zl6I3SPRnbMe+FFzalKrTW14Pl/r6XpRsuqnXth rA+2BJAKBteCfdYstJuxwY5zFok991XLIaKqocLJEdWyskugKhmHAw== -----END CERTIFICATE-----Generated at Mon Oct 20 15:27:00 2025 by rpki-client