$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/3VT9VZDdvjJAOPGbIJbGbSLhklU.roa File: 3VT9VZDdvjJAOPGbIJbGbSLhklU.roa (raw, json) Hash identifier: AeHvkh+bCAJ2OOIWOBiaPF5f+YjGMsbcKZvISXTl4ls= Subject key identifier: DD:54:FD:55:90:DD:BE:32:40:38:F1:9B:20:96:C6:6D:22:E1:92:55 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1E8C Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/3VT9VZDdvjJAOPGbIJbGbSLhklU.roa Signing time: Sat 13 Sep 2025 03:05:14 +0000 ROA not before: Sat 13 Sep 2025 03:05:14 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 59803 IP address blocks: 2403:1b80::/48 maxlen: 64 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7820 (0x1e8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:05:14 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=DD54FD5590DDBE324038F19B2096C66D22E19255 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:13:ba:63:aa:f5:14:c4:20:3f:a6:cc:13:97: c3:60:68:47:59:a2:9f:82:e2:ee:e7:f6:26:17:bf: b4:f6:ca:06:c0:12:df:ff:db:9b:ff:fc:ad:43:f6: c5:8b:ec:13:73:b5:34:12:79:56:e7:f1:e3:5e:d7: 01:40:43:33:cf:ba:c3:e1:3b:94:86:59:41:58:6b: ca:47:7e:2a:8b:c0:af:0b:69:df:6f:f9:40:e9:fe: 81:f4:34:3c:f4:a6:0d:c3:ea:64:76:a7:1e:c1:bf: fb:74:bc:62:ea:12:d2:62:0a:8b:84:a3:3e:7e:82: 51:2d:a4:63:62:81:f3:bc:04:8c:90:9c:3c:4a:6e: 50:95:77:0b:49:df:91:ff:d3:62:20:77:5e:c6:bd: 38:1f:35:82:58:5f:5f:d7:7c:a4:94:59:8d:0a:da: 71:1d:de:8f:1f:5c:bc:e7:fa:65:98:ab:ba:59:f5: b3:f3:0c:15:8c:94:aa:b0:4a:1a:04:eb:11:e9:a8: bb:e7:f2:7c:b1:2e:4f:5d:09:77:13:9c:9a:d3:a6: 9d:81:ec:41:73:06:84:6f:36:3b:0b:aa:09:93:d3: 9c:64:cf:93:a9:1e:eb:4e:eb:72:3a:7a:51:c8:d5: 12:9e:b2:84:3e:4f:d8:89:bf:a6:65:a6:5b:6f:fa: d1:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:54:FD:55:90:DD:BE:32:40:38:F1:9B:20:96:C6:6D:22:E1:92:55 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/3VT9VZDdvjJAOPGbIJbGbSLhklU.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2403:1b80::/48 Signature Algorithm: sha256WithRSAEncryption 4f:0f:b7:70:08:c3:1b:4c:dc:12:43:51:cc:f4:20:cd:63:95: c1:62:7e:e6:6b:2f:bf:df:7e:21:e5:bd:63:9a:31:b9:d2:a2: 4c:6c:3e:c6:8d:f5:9e:d1:76:05:76:58:ed:c6:21:ef:ea:26: 9a:41:14:5a:12:71:94:ff:99:bb:5f:06:04:9b:c7:67:9d:05: 1c:86:49:a6:64:72:32:4a:c0:71:41:fe:55:3c:11:6c:bb:93: 20:87:a1:77:c4:50:3d:43:f6:07:bd:30:95:59:d6:45:40:dd: b4:b2:d1:fa:56:ca:68:22:7a:49:13:65:63:4b:f8:12:05:31: ff:cd:99:7f:f8:e4:7f:87:2f:1d:68:16:b0:3f:a0:38:19:45: 50:37:35:ad:5e:50:7e:1e:c3:dd:ee:7e:ba:87:0b:de:f7:ee: 76:f7:7c:99:66:17:69:93:2a:17:d2:ab:a9:9e:3d:15:03:67: da:94:09:57:50:75:50:32:5f:06:88:1c:3f:44:e1:d5:63:c9: 3d:20:70:e5:92:9b:64:2b:64:0c:5c:0d:89:ba:2f:8f:c3:63: ab:49:a8:e3:b7:0f:d5:95:98:9b:86:f2:42:fb:b3:00:1f:ff: e1:e3:8e:6a:b3:cb:ac:88:dc:cc:8b:84:11:7c:13:b0:ec:e0: 34:84:b2:1b -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICHowwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA1MTRaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKERENTRGRDU1OTBEREJF MzI0MDM4RjE5QjIwOTZDNjZEMjJFMTkyNTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCeE7pjqvUUxCA/pswTl8NgaEdZop+C4u7n9iYXv7T2ygbAEt// 25v//K1D9sWL7BNztTQSeVbn8eNe1wFAQzPPusPhO5SGWUFYa8pHfiqLwK8Lad9v +UDp/oH0NDz0pg3D6mR2px7Bv/t0vGLqEtJiCouEoz5+glEtpGNigfO8BIyQnDxK blCVdwtJ35H/02Igd17GvTgfNYJYX1/XfKSUWY0K2nEd3o8fXLzn+mWYq7pZ9bPz DBWMlKqwShoE6xHpqLvn8nyxLk9dCXcTnJrTpp2B7EFzBoRvNjsLqgmT05xkz5Op HutO63I6elHI1RKesoQ+T9iJv6Zlpltv+tHPAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQU3VT9VZDdvjJAOPGbIJbGbSLhklUwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3LzNWVDlWWkRkdmpKQU9Q R2JJSmJHYlNMaGtsVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkD BwAkAxuAAAAwDQYJKoZIhvcNAQELBQADggEBAE8Pt3AIwxtM3BJDUcz0IM1jlcFi fuZrL7/ffiHlvWOaMbnSokxsPsaN9Z7RdgV2WO3GIe/qJppBFFoScZT/mbtfBgSb x2edBRyGSaZkcjJKwHFB/lU8EWy7kyCHoXfEUD1D9ge9MJVZ1kVA3bSy0fpWymgi ekkTZWNL+BIFMf/NmX/45H+HLx1oFrA/oDgZRVA3Na1eUH4ew93ufrqHC9737nb3 fJlmF2mTKhfSq6mePRUDZ9qUCVdQdVAyXwaIHD9E4dVjyT0gcOWSm2QrZAxcDYm6 L4/DY6tJqOO3D9WVmJuG8kL7swAf/+Hjjmqzy6yI3MyLhBF8E7Ds4DSEshs= -----END CERTIFICATE-----Generated at Mon Oct 20 13:13:39 2025 by rpki-client