$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/479/4Wx_svRAw5H2T8nYrdffgPTi7-U.roa File: 4Wx_svRAw5H2T8nYrdffgPTi7-U.roa (raw, json) Hash identifier: UIMu2LEYkC7Rk/oSXerGy8RKnqRM1o29210BnaEM4sg= Subject key identifier: E1:6C:7F:B2:F4:40:C3:91:F6:4F:C9:D8:AD:D7:DF:80:F4:E2:EF:E5 Certificate issuer: /CN=025E2D794E6FFAE295BACE491100E3D18B9C7141 Certificate serial: 1F09 Authority key identifier: 02:5E:2D:79:4E:6F:FA:E2:95:BA:CE:49:11:00:E3:D1:8B:9C:71:41 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Al4teU5v-uKVus5JEQDj0YuccUE.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/479/4Wx_svRAw5H2T8nYrdffgPTi7-U.roa Signing time: Sat 13 Sep 2025 03:10:27 +0000 ROA not before: Sat 13 Sep 2025 03:10:27 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 38283 IP address blocks: 60.247.128.0/17 maxlen: 24 211.149.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/479/Al4teU5v-uKVus5JEQDj0YuccUE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/479/Al4teU5v-uKVus5JEQDj0YuccUE.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Al4teU5v-uKVus5JEQDj0YuccUE.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 04:08:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7945 (0x1f09) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=025E2D794E6FFAE295BACE491100E3D18B9C7141 Validity Not Before: Sep 13 03:10:27 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=E16C7FB2F440C391F64FC9D8ADD7DF80F4E2EFE5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f4:04:dd:20:f9:b0:41:06:07:f8:94:d7:c5: f3:30:4f:a8:08:39:d2:e6:61:41:d7:96:8a:ca:46: a1:8c:dc:46:90:a4:89:50:a5:11:11:8b:61:4a:38: 6e:2d:7b:50:5a:b0:11:03:28:2b:a0:6c:e4:85:da: 88:28:9e:8a:9d:df:7f:ab:ce:08:e7:f6:97:41:f5: 6d:2f:3a:1f:f9:7d:24:12:96:56:97:84:e0:d3:26: 20:62:b5:16:2d:18:51:85:9a:bf:c2:40:21:30:8d: 7a:1a:12:4c:df:68:dd:f8:1c:21:70:3b:74:6f:f5: 62:13:1c:9f:d9:a8:3e:c2:34:fa:f0:95:e5:c3:a7: 6b:45:81:84:1d:5d:8e:34:e8:81:5b:46:23:43:35: 09:5e:40:0b:7a:a7:3c:64:c1:0b:be:d5:68:62:80: f1:03:8b:17:e9:7e:0e:e8:d0:73:b4:32:74:7c:9b: 64:05:8b:e9:5c:8e:28:8e:9d:22:8f:4d:f8:f3:63: a2:ea:9c:47:0c:89:9f:03:29:9c:21:cc:ec:d1:e1: ee:bd:ab:d6:22:d3:08:29:21:34:bc:29:c5:39:92: 07:00:79:d0:2f:2d:7b:a8:97:44:33:e4:e1:5e:e9: 1b:a8:5f:27:98:ed:03:f2:2c:ae:b1:47:b6:0d:50: 07:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:6C:7F:B2:F4:40:C3:91:F6:4F:C9:D8:AD:D7:DF:80:F4:E2:EF:E5 X509v3 Authority Key Identifier: keyid:02:5E:2D:79:4E:6F:FA:E2:95:BA:CE:49:11:00:E3:D1:8B:9C:71:41 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/479/Al4teU5v-uKVus5JEQDj0YuccUE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Al4teU5v-uKVus5JEQDj0YuccUE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/479/4Wx_svRAw5H2T8nYrdffgPTi7-U.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.247.128.0/17 211.149.128.0/17 Signature Algorithm: sha256WithRSAEncryption 5d:a8:43:18:5a:94:fc:9e:35:b7:6f:15:f9:ef:06:3f:5c:28: 48:17:de:3f:ae:6b:15:fa:74:41:c7:bf:8e:e1:71:7e:6a:a2: 63:f5:3f:37:c6:03:23:ae:d8:9b:f0:d9:6b:e1:97:35:58:7c: da:6a:63:e2:ea:ee:5e:87:86:42:db:a9:0a:b8:bc:ce:0e:3e: af:71:64:49:ad:e0:0c:9a:42:33:b1:4b:97:76:ea:fa:0a:8a: 6d:9f:1f:48:10:6a:9e:76:86:6e:f5:a2:5f:91:32:c8:c7:a6: da:ae:02:4a:35:82:c7:5c:c5:de:3b:bd:70:6c:3c:25:6d:c8: 40:b9:ae:c5:07:73:ed:38:b4:8b:9c:6b:4e:c1:37:59:86:b4: 2b:38:24:41:31:b8:75:e5:58:4e:43:e7:55:53:c1:7f:f0:35: 8b:2a:a7:55:97:7c:34:7c:8e:dc:1e:00:2a:d7:68:25:c3:ef: 63:14:db:90:48:2d:b9:1f:09:db:b6:c1:a4:6f:16:5e:0c:36: 7c:97:8a:6c:b9:f3:a3:42:9c:dd:5e:cc:a5:84:c8:52:c8:4b: 71:c8:12:05:be:0e:75:df:31:8f:77:1e:90:7e:63:6d:c7:0d: 27:58:a2:0b:a6:6c:56:7d:5a:8c:f2:6c:a0:ee:45:c1:bd:f2: 85:a0:ce:47 -----BEGIN CERTIFICATE----- MIIE2zCCA8OgAwIBAgICHwkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDI1 RTJENzk0RTZGRkFFMjk1QkFDRTQ5MTEwMEUzRDE4QjlDNzE0MTAeFw0yNTA5MTMw MzEwMjdaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEUxNkM3RkIyRjQ0MEMz OTFGNjRGQzlEOEFERDdERjgwRjRFMkVGRTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+9ATdIPmwQQYH+JTXxfMwT6gIOdLmYUHXlorKRqGM3EaQpIlQ pRERi2FKOG4te1BasBEDKCugbOSF2ogonoqd33+rzgjn9pdB9W0vOh/5fSQSllaX hODTJiBitRYtGFGFmr/CQCEwjXoaEkzfaN34HCFwO3Rv9WITHJ/ZqD7CNPrwleXD p2tFgYQdXY406IFbRiNDNQleQAt6pzxkwQu+1WhigPEDixfpfg7o0HO0MnR8m2QF i+lcjiiOnSKPTfjzY6LqnEcMiZ8DKZwhzOzR4e69q9Yi0wgpITS8KcU5kgcAedAv LXuol0Qz5OFe6RuoXyeY7QPyLK6xR7YNUAchAgMBAAGjggH3MIIB8zAdBgNVHQ4E FgQU4Wx/svRAw5H2T8nYrdffgPTi7+UwHwYDVR0jBBgwFoAUAl4teU5v+uKVus5J EQDj0YuccUEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDc5 L0FsNHRlVTV2LXVLVnVzNUpFUURqMFl1Y2NVRS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvQWw0dGVVNXYtdUtWdXM1SkVRRGowWXVjY1VFLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDc5LzRXeF9zdlJBdzVIMlQ4 bllyZGZmZ1BUaTctVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwJQYIKwYBBQUHAQcBAf8EFjAUMBIEAgABMAwD BAc894ADBAfTlYAwDQYJKoZIhvcNAQELBQADggEBAF2oQxhalPyeNbdvFfnvBj9c KEgX3j+uaxX6dEHHv47hcX5qomP1PzfGAyOu2Jvw2WvhlzVYfNpqY+Lq7l6HhkLb qQq4vM4OPq9xZEmt4AyaQjOxS5d26voKim2fH0gQap52hm71ol+RMsjHptquAko1 gsdcxd47vXBsPCVtyEC5rsUHc+04tIuca07BN1mGtCs4JEExuHXlWE5D51VTwX/w NYsqp1WXfDR8jtweACrXaCXD72MU25BILbkfCdu2waRvFl4MNnyXimy586NCnN1e zKWEyFLIS3HIEgW+DnXfMY93HpB+Y23HDSdYogumbFZ9WozybKDuRcG98oWgzkc= -----END CERTIFICATE-----Generated at Tue Oct 21 02:14:15 2025 by rpki-client