$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/357/N0ykxOYRwjcbjGA-CRafyOh6b58.roa File: N0ykxOYRwjcbjGA-CRafyOh6b58.roa (raw, json) Hash identifier: 5XKU2EuhR7yCyj5g6B5Az+R37tn+S+RHA0GT9i3eSVQ= Subject key identifier: 37:4C:A4:C4:E6:11:C2:37:1B:8C:60:3E:09:16:9F:C8:E8:7A:6F:9F Certificate issuer: /CN=B3BA6AEF3B8FA2E5D9B5E43438E0020D426A1ECA Certificate serial: 195B Authority key identifier: B3:BA:6A:EF:3B:8F:A2:E5:D9:B5:E4:34:38:E0:02:0D:42:6A:1E:CA Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/s7pq7zuPouXZteQ0OOACDUJqHso.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/357/N0ykxOYRwjcbjGA-CRafyOh6b58.roa Signing time: Sat 13 Sep 2025 03:10:19 +0000 ROA not before: Sat 13 Sep 2025 03:10:19 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 37963 IP address blocks: 112.126.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/357/s7pq7zuPouXZteQ0OOACDUJqHso.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/357/s7pq7zuPouXZteQ0OOACDUJqHso.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/s7pq7zuPouXZteQ0OOACDUJqHso.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 18:07:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6491 (0x195b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B3BA6AEF3B8FA2E5D9B5E43438E0020D426A1ECA Validity Not Before: Sep 13 03:10:19 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=374CA4C4E611C2371B8C603E09169FC8E87A6F9F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:74:8a:5f:2a:7d:c1:51:59:49:a9:e5:19:a8: 76:ec:ea:67:f3:6a:9e:e0:33:2d:fa:2e:f3:1a:ef: b2:f3:24:8e:d6:8b:ac:56:58:61:7e:fb:be:df:cd: 33:d7:91:2e:a2:25:be:ac:17:33:b4:c3:95:9e:cd: 5b:60:14:1a:bf:02:57:a7:77:d8:0d:84:1f:76:c0: 2a:48:04:4a:ef:a9:e9:42:7b:d6:d1:0b:38:d4:0d: 45:f4:d5:09:80:db:3e:ac:dc:97:52:4f:f7:26:73: 3a:af:75:3c:75:85:5c:16:ef:29:7b:e3:5b:e6:cc: 6c:56:f4:b4:e8:5b:89:2b:f4:30:a0:52:e6:87:05: d8:65:36:b2:f4:1e:a4:ce:ee:16:dc:a1:02:68:d0: 9a:63:8e:93:8b:7e:40:e5:9b:5b:6d:19:36:93:c4: d8:6b:3f:fd:14:e8:dd:9e:80:19:02:d3:95:db:f2: 80:eb:27:db:e2:0e:37:ff:8b:b2:d0:9a:3b:d1:4f: 03:69:e4:43:9d:65:b5:e7:fc:2f:af:65:36:24:40: f1:4d:71:f8:f2:5c:ff:2b:2d:db:13:2c:34:46:b5: b1:5b:d6:06:61:3e:7a:2c:f2:a9:6e:06:04:2d:64: 8a:47:73:aa:16:ae:ad:c2:5b:3f:15:9c:ec:aa:a4: 98:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:4C:A4:C4:E6:11:C2:37:1B:8C:60:3E:09:16:9F:C8:E8:7A:6F:9F X509v3 Authority Key Identifier: keyid:B3:BA:6A:EF:3B:8F:A2:E5:D9:B5:E4:34:38:E0:02:0D:42:6A:1E:CA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/357/s7pq7zuPouXZteQ0OOACDUJqHso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/s7pq7zuPouXZteQ0OOACDUJqHso.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/357/N0ykxOYRwjcbjGA-CRafyOh6b58.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 112.126.0.0/16 Signature Algorithm: sha256WithRSAEncryption 73:5c:56:39:b1:0c:46:25:0d:f7:19:e2:32:8f:c1:08:0d:88: a1:55:cc:83:71:73:da:d9:22:29:4a:c7:b5:b3:32:cf:5b:96: 53:de:93:e8:a1:7d:0b:d3:07:45:73:0b:0a:41:36:c1:af:e9: 86:83:f8:a4:b6:21:f7:bc:15:12:f0:e9:bc:ee:01:13:fe:16: 07:f8:d9:8c:01:18:72:ca:68:db:2b:f1:31:0a:14:42:6a:47: 54:20:ca:df:e7:44:9e:ca:32:66:0f:0f:ba:c3:35:4a:fc:ce: cc:92:4d:a7:6e:7c:57:6c:d2:48:55:7a:09:e7:9a:da:44:cf: b6:07:e0:62:39:6e:9b:66:64:95:c0:d7:aa:64:d8:ab:8f:42: a2:9d:c4:6a:67:74:04:c3:55:25:f7:7a:c5:4e:51:91:86:bc: 85:18:81:2a:fc:90:e1:75:9f:3a:77:23:02:52:44:7e:29:1f: f1:2a:e7:36:26:a2:9c:96:43:f1:c4:b3:e1:c5:93:4e:62:a8: c4:22:57:2c:df:82:9b:d3:52:3a:c5:df:f1:e7:8f:02:a7:00: b1:99:49:01:e5:42:31:e4:1f:47:90:a4:de:ed:e3:0f:1f:a0: ca:94:46:4b:d3:6a:40:c2:13:43:2f:69:17:cd:6e:4c:a2:08: 0b:fd:fb:ed -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICGVswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjNC QTZBRUYzQjhGQTJFNUQ5QjVFNDM0MzhFMDAyMEQ0MjZBMUVDQTAeFw0yNTA5MTMw MzEwMTlaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDM3NENBNEM0RTYxMUMy MzcxQjhDNjAzRTA5MTY5RkM4RTg3QTZGOUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCldIpfKn3BUVlJqeUZqHbs6mfzap7gMy36LvMa77LzJI7Wi6xW WGF++77fzTPXkS6iJb6sFzO0w5WezVtgFBq/Alend9gNhB92wCpIBErvqelCe9bR CzjUDUX01QmA2z6s3JdST/cmczqvdTx1hVwW7yl741vmzGxW9LToW4kr9DCgUuaH BdhlNrL0HqTO7hbcoQJo0JpjjpOLfkDlm1ttGTaTxNhrP/0U6N2egBkC05Xb8oDr J9viDjf/i7LQmjvRTwNp5EOdZbXn/C+vZTYkQPFNcfjyXP8rLdsTLDRGtbFb1gZh Pnos8qluBgQtZIpHc6oWrq3CWz8VnOyqpJinAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUN0ykxOYRwjcbjGA+CRafyOh6b58wHwYDVR0jBBgwFoAUs7pq7zuPouXZteQ0 OOACDUJqHsowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzU3 L3M3cHE3enVQb3VYWnRlUTBPT0FDRFVKcUhzby5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvczdwcTd6dVBvdVhadGVRME9PQUNEVUpxSHNvLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzU3L04weWt4T1lSd2pjYmpH QS1DUmFmeU9oNmI1OC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD AwBwfjANBgkqhkiG9w0BAQsFAAOCAQEAc1xWObEMRiUN9xniMo/BCA2IoVXMg3Fz 2tkiKUrHtbMyz1uWU96T6KF9C9MHRXMLCkE2wa/phoP4pLYh97wVEvDpvO4BE/4W B/jZjAEYcspo2yvxMQoUQmpHVCDK3+dEnsoyZg8PusM1SvzOzJJNp258V2zSSFV6 Ceea2kTPtgfgYjlum2ZklcDXqmTYq49Cop3Eamd0BMNVJfd6xU5RkYa8hRiBKvyQ 4XWfOncjAlJEfikf8SrnNiainJZD8cSz4cWTTmKoxCJXLN+Cm9NSOsXf8eePAqcA sZlJAeVCMeQfR5Ck3u3jDx+gypRGS9NqQMITQy9pF81uTKIIC/377Q== -----END CERTIFICATE-----Generated at Mon Oct 20 15:26:57 2025 by rpki-client