$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/357/RlRL4KZJS1S-LvgS5fqfgwnlzBM.roa File: RlRL4KZJS1S-LvgS5fqfgwnlzBM.roa (raw, json) Hash identifier: UrlXEeAgie4ovsfXf8HEj900Xbst7Ejer/YtzxZsYB4= Subject key identifier: 46:54:4B:E0:A6:49:4B:54:BE:2E:F8:12:E5:FA:9F:83:09:E5:CC:13 Certificate issuer: /CN=CE0A9CB02937B57DCE66A17FB84216D7ABE76434 Certificate serial: 1953 Authority key identifier: CE:0A:9C:B0:29:37:B5:7D:CE:66:A1:7F:B8:42:16:D7:AB:E7:64:34 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/zgqcsCk3tX3OZqF_uEIW16vnZDQ.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/357/RlRL4KZJS1S-LvgS5fqfgwnlzBM.roa Signing time: Sat 13 Sep 2025 03:10:19 +0000 ROA not before: Sat 13 Sep 2025 03:10:19 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 37963 IP address blocks: 47.112.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/357/zgqcsCk3tX3OZqF_uEIW16vnZDQ.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/357/zgqcsCk3tX3OZqF_uEIW16vnZDQ.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/zgqcsCk3tX3OZqF_uEIW16vnZDQ.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 18:09:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6483 (0x1953) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CE0A9CB02937B57DCE66A17FB84216D7ABE76434 Validity Not Before: Sep 13 03:10:19 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=46544BE0A6494B54BE2EF812E5FA9F8309E5CC13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:e3:6a:9d:a1:b6:be:e9:18:56:85:65:e9:aa: 83:13:e6:d6:2e:af:54:b0:63:9a:cc:13:dc:94:af: d3:07:db:04:63:64:fd:4e:35:a2:7e:e7:8d:98:83: 33:a1:2d:cf:1f:9d:25:e9:5e:b9:10:38:8a:0c:82: f6:f1:b7:8f:63:22:07:0f:90:f5:13:cf:aa:9f:10: 8a:51:d9:a5:77:96:0f:52:58:d8:00:87:40:6a:72: 9f:bb:7e:9c:dc:e3:d6:05:7e:52:99:11:47:d0:dd: 04:50:8e:44:9f:62:10:4c:04:f1:1d:57:68:4e:34: 07:7c:8e:e5:89:59:cf:51:d7:e2:2b:a8:7d:6f:7a: 44:34:d2:05:12:49:b6:ff:f8:41:ee:03:b0:88:77: a4:00:a9:fd:6c:84:bc:68:d5:5d:a2:07:4a:cd:89: f9:4c:d1:d5:a4:dc:99:e2:4a:af:91:11:a0:24:e9: ec:39:60:f2:7f:fe:01:b4:40:30:20:8c:4a:59:dc: 37:8f:4a:e4:c1:e5:74:56:37:5f:16:70:b4:09:fe: a5:25:40:46:e0:9d:85:82:46:3f:86:f8:6c:77:94: 9c:c7:92:57:f8:1a:19:b1:aa:27:a4:6a:21:7d:08: 9d:57:e4:9a:d3:e0:0b:27:19:ef:9f:c2:08:e7:be: 0e:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:54:4B:E0:A6:49:4B:54:BE:2E:F8:12:E5:FA:9F:83:09:E5:CC:13 X509v3 Authority Key Identifier: keyid:CE:0A:9C:B0:29:37:B5:7D:CE:66:A1:7F:B8:42:16:D7:AB:E7:64:34 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/357/zgqcsCk3tX3OZqF_uEIW16vnZDQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/zgqcsCk3tX3OZqF_uEIW16vnZDQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/357/RlRL4KZJS1S-LvgS5fqfgwnlzBM.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 47.112.0.0/16 Signature Algorithm: sha256WithRSAEncryption 20:e9:0b:48:82:64:65:4d:fc:bf:03:4f:b9:96:49:79:4e:16: 03:fa:d9:a3:a7:27:4e:f7:cb:bf:26:e0:a9:ed:48:e5:b7:7b: 3c:31:6e:ba:4a:fd:88:77:a6:ef:e2:17:85:f5:b2:e3:ee:ad: ad:a3:71:ed:c3:21:63:5b:42:01:f4:96:e8:7b:de:97:e3:da: bb:36:8a:a7:8c:75:cb:42:18:95:1f:3d:74:84:90:9f:f9:f8: 21:9d:8f:69:c4:62:ea:ed:8a:c5:14:d8:09:e9:ea:be:05:ee: b8:6e:17:22:2a:f8:1d:30:f8:bf:ef:08:81:36:e5:fb:91:81: 6e:1b:55:7c:61:e7:4b:7b:1e:b7:26:75:03:b5:8f:54:9c:ad: 34:79:80:39:5b:b9:4d:91:3a:4d:d1:56:5e:2d:06:f1:ae:6f: 4b:8b:59:a6:3d:46:29:55:87:c1:3a:4b:7b:67:d3:56:37:77: a9:d8:8c:42:b1:20:b1:98:d4:fb:a1:04:e8:e8:28:26:c4:21: 1c:e7:1e:05:73:3b:c9:e6:4d:c1:6d:5b:2c:c4:41:dc:6f:16: 39:4c:ea:61:7a:05:2e:c9:af:e6:1a:3b:d0:05:62:eb:fc:b2: b3:60:25:5e:46:6f:aa:e9:cd:c4:19:f9:0f:b2:92:4b:8e:76: 9a:72:a0:e3 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICGVMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0Uw QTlDQjAyOTM3QjU3RENFNjZBMTdGQjg0MjE2RDdBQkU3NjQzNDAeFw0yNTA5MTMw MzEwMTlaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDQ2NTQ0QkUwQTY0OTRC NTRCRTJFRjgxMkU1RkE5RjgzMDlFNUNDMTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC942qdoba+6RhWhWXpqoMT5tYur1SwY5rME9yUr9MH2wRjZP1O NaJ+542YgzOhLc8fnSXpXrkQOIoMgvbxt49jIgcPkPUTz6qfEIpR2aV3lg9SWNgA h0Bqcp+7fpzc49YFflKZEUfQ3QRQjkSfYhBMBPEdV2hONAd8juWJWc9R1+IrqH1v ekQ00gUSSbb/+EHuA7CId6QAqf1shLxo1V2iB0rNiflM0dWk3JniSq+REaAk6ew5 YPJ//gG0QDAgjEpZ3DePSuTB5XRWN18WcLQJ/qUlQEbgnYWCRj+G+Gx3lJzHklf4 GhmxqiekaiF9CJ1X5JrT4AsnGe+fwgjnvg7LAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQURlRL4KZJS1S+LvgS5fqfgwnlzBMwHwYDVR0jBBgwFoAUzgqcsCk3tX3OZqF/ uEIW16vnZDQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzU3 L3pncWNzQ2szdFgzT1pxRl91RUlXMTZ2blpEUS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvemdxY3NDazN0WDNPWnFGX3VFSVcxNnZuWkRRLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzU3L1JsUkw0S1pKUzFTLUx2 Z1M1ZnFmZ3dubHpCTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD AwAvcDANBgkqhkiG9w0BAQsFAAOCAQEAIOkLSIJkZU38vwNPuZZJeU4WA/rZo6cn TvfLvybgqe1I5bd7PDFuukr9iHem7+IXhfWy4+6traNx7cMhY1tCAfSW6Hvel+Pa uzaKp4x1y0IYlR89dISQn/n4IZ2PacRi6u2KxRTYCenqvgXuuG4XIir4HTD4v+8I gTbl+5GBbhtVfGHnS3setyZ1A7WPVJytNHmAOVu5TZE6TdFWXi0G8a5vS4tZpj1G KVWHwTpLe2fTVjd3qdiMQrEgsZjU+6EE6OgoJsQhHOceBXM7yeZNwW1bLMRB3G8W OUzqYXoFLsmv5ho70AVi6/yys2AlXkZvqunNxBn5D7KSS452mnKg4w== -----END CERTIFICATE-----Generated at Mon Oct 20 15:26:57 2025 by rpki-client