$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/UCE_K_yjT6D3CqRdPSQV_ZJSl0U.roa File: UCE_K_yjT6D3CqRdPSQV_ZJSl0U.roa (raw, json) Hash identifier: j/yvk9Lvrc1XgPO+C7M9IvLMREsFKFzJxuTgb1p3bhQ= Subject key identifier: 50:21:3F:2B:FC:A3:4F:A0:F7:0A:A4:5D:3D:24:15:FD:92:52:97:45 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1E50 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/UCE_K_yjT6D3CqRdPSQV_ZJSl0U.roa Signing time: Sat 13 Sep 2025 03:05:02 +0000 ROA not before: Sat 13 Sep 2025 03:05:02 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 138527 IP address blocks: 45.252.16.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7760 (0x1e50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:05:02 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=50213F2BFCA34FA0F70AA45D3D2415FD92529745 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:e7:64:14:04:9f:80:d8:e1:e0:e9:86:58:92: 31:8b:a1:34:63:6c:62:be:f9:13:3a:14:09:ab:6f: f3:e0:45:1e:66:7c:69:44:a8:65:45:78:82:e1:a2: 8c:a3:f2:4a:20:51:b8:1f:24:06:1a:39:98:44:e3: a2:3a:89:b4:72:ea:ff:0e:a2:81:05:1f:e5:da:07: 62:84:41:ed:85:36:dc:f8:02:98:94:30:66:6c:72: b3:f7:6d:70:e0:47:46:5c:dd:b6:a9:7c:4c:8f:6e: 54:45:ac:dd:da:3e:84:1d:d2:33:aa:34:1f:86:97: 90:99:36:2a:1e:ce:75:bd:43:36:19:0b:b1:0f:fe: 02:0c:52:a7:ea:9e:d1:fd:5c:c2:a8:e4:39:c6:69: 17:47:cc:35:3f:1e:fe:82:8d:8f:9a:92:b7:2c:77: c0:ad:b0:5a:03:37:f6:90:c1:98:69:21:ac:68:d3: 0d:10:0b:6a:8d:d8:92:32:91:a7:94:c4:81:1b:0c: d4:55:e2:3a:ab:11:60:1a:a7:bd:1b:b9:a0:17:a4: 40:1e:61:5f:a1:fd:6e:de:dc:df:48:c2:d7:c4:84: 8c:d6:78:e1:0b:ab:ad:7a:82:3b:20:97:6e:e7:37: a6:a4:0f:12:69:41:1e:2c:4b:37:52:f6:af:4c:bc: 95:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:21:3F:2B:FC:A3:4F:A0:F7:0A:A4:5D:3D:24:15:FD:92:52:97:45 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/UCE_K_yjT6D3CqRdPSQV_ZJSl0U.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 45.252.16.0/22 Signature Algorithm: sha256WithRSAEncryption 5d:d7:8c:1f:ed:0c:3e:d4:f4:1b:dc:50:1b:f2:98:a6:29:cc: ab:c8:de:b3:34:ec:9b:3e:10:ce:e7:45:2a:43:05:90:80:b7: eb:b6:37:bd:7e:ce:9c:a5:01:12:b0:4d:d4:9a:1a:f5:d4:b2: 6b:1a:8b:fd:08:1e:7d:4a:6e:98:27:99:2f:c3:8d:90:b7:7a: 75:9c:fe:b5:be:ec:82:8e:1f:93:de:11:4f:c9:0e:65:46:ba: 57:76:53:5a:94:ee:ca:21:5e:97:27:14:b4:f7:0a:4c:cc:d3: fa:63:e9:8f:d4:11:43:1f:17:6f:9f:41:53:c0:09:12:fc:97: 2b:e0:c4:a9:7b:f1:eb:c3:03:3f:88:27:77:2d:bb:8d:a2:40: aa:c1:e7:c5:a6:4c:10:97:35:d5:c8:8d:8b:64:30:4b:19:bb: 1b:9b:fb:43:6e:bc:41:ab:72:3a:24:c0:37:88:9f:8c:76:be: ba:64:58:9b:87:ba:ed:67:78:05:32:fa:6e:dc:b1:ca:f9:95: 31:5d:46:b9:db:b5:2e:d9:97:e9:7b:3b:bc:06:b8:5c:50:c4: b4:11:17:40:95:ad:11:5d:77:25:a9:ae:8e:73:aa:2d:1a:d5: d7:ba:45:0e:3a:05:eb:07:77:da:fa:ca:7c:74:06:ad:5a:ee: 89:38:72:e1 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHlAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA1MDJaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDUwMjEzRjJCRkNBMzRG QTBGNzBBQTQ1RDNEMjQxNUZEOTI1Mjk3NDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDB52QUBJ+A2OHg6YZYkjGLoTRjbGK++RM6FAmrb/PgRR5mfGlE qGVFeILhooyj8kogUbgfJAYaOZhE46I6ibRy6v8OooEFH+XaB2KEQe2FNtz4ApiU MGZscrP3bXDgR0Zc3bapfEyPblRFrN3aPoQd0jOqNB+Gl5CZNioeznW9QzYZC7EP /gIMUqfqntH9XMKo5DnGaRdHzDU/Hv6CjY+akrcsd8CtsFoDN/aQwZhpIaxo0w0Q C2qN2JIykaeUxIEbDNRV4jqrEWAap70buaAXpEAeYV+h/W7e3N9IwtfEhIzWeOEL q616gjsgl27nN6akDxJpQR4sSzdS9q9MvJWjAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUUCE/K/yjT6D3CqRdPSQV/ZJSl0UwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L1VDRV9LX3lqVDZEM0Nx UmRQU1FWX1pKU2wwVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAIt/BAwDQYJKoZIhvcNAQELBQADggEBAF3XjB/tDD7U9BvcUBvymKYpzKvI3rM0 7Js+EM7nRSpDBZCAt+u2N71+zpylARKwTdSaGvXUsmsai/0IHn1KbpgnmS/DjZC3 enWc/rW+7IKOH5PeEU/JDmVGuld2U1qU7sohXpcnFLT3CkzM0/pj6Y/UEUMfF2+f QVPACRL8lyvgxKl78evDAz+IJ3ctu42iQKrB58WmTBCXNdXIjYtkMEsZuxub+0Nu vEGrcjokwDeIn4x2vrpkWJuHuu1neAUy+m7cscr5lTFdRrnbtS7Zl+l7O7wGuFxQ xLQRF0CVrRFddyWpro5zqi0a1de6RQ46BesHd9r6ynx0Bq1a7ok4cuE= -----END CERTIFICATE-----Generated at Mon Oct 20 13:13:51 2025 by rpki-client