$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/709/KTepAzZWdUebrEm_rhVA4g3HJ1o.roa File: KTepAzZWdUebrEm_rhVA4g3HJ1o.roa (raw, json) Hash identifier: +d/Ee/Je7JgCG3rEnJO49Lnf8W/8QSIMlfKpPFFwIj4= Subject key identifier: 29:37:A9:03:36:56:75:47:9B:AC:49:BF:AE:15:40:E2:0D:C7:27:5A Certificate issuer: /CN=E6982953DF0777AEDB88EE3FF20A152640571785 Certificate serial: 208F Authority key identifier: E6:98:29:53:DF:07:77:AE:DB:88:EE:3F:F2:0A:15:26:40:57:17:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5pgpU98Hd67biO4_8goVJkBXF4U.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/709/KTepAzZWdUebrEm_rhVA4g3HJ1o.roa Signing time: Sat 13 Sep 2025 03:04:25 +0000 ROA not before: Sat 13 Sep 2025 03:04:25 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 45079 IP address blocks: 101.52.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/709/5pgpU98Hd67biO4_8goVJkBXF4U.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/709/5pgpU98Hd67biO4_8goVJkBXF4U.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5pgpU98Hd67biO4_8goVJkBXF4U.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 18:05:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8335 (0x208f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E6982953DF0777AEDB88EE3FF20A152640571785 Validity Not Before: Sep 13 03:04:25 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=2937A903365675479BAC49BFAE1540E20DC7275A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:e8:99:f8:62:7d:6c:42:c0:c6:79:54:33:ad: a9:df:0d:1b:4c:55:07:f5:62:60:3e:b5:0a:2a:7a: 2f:b9:1c:a7:d2:4c:45:dc:42:db:08:09:ac:11:51: 7f:db:4e:cc:1a:9d:95:10:83:e7:a1:c9:58:ba:69: 2a:d4:a5:f4:eb:c8:2e:c9:51:5d:b2:86:b4:a1:53: 63:63:5a:f9:28:b5:fb:e6:e2:3a:95:c6:88:f2:9c: 73:8c:67:ef:ba:76:2f:12:78:81:0b:bb:b7:6a:10: 71:ef:07:11:8f:d2:e8:c8:8f:16:fc:99:2e:dc:a3: 51:7c:c7:6e:14:52:e4:c0:0e:8a:20:86:49:94:c9: 2b:81:8f:ae:91:27:e6:ba:4c:82:ed:02:27:e0:3a: 60:a2:3f:1f:77:54:3d:1e:e5:4f:2e:b9:d4:c2:ee: 70:81:d0:ca:9e:82:97:84:d0:48:8b:20:eb:89:fd: 61:c5:3e:29:34:d3:32:ea:13:23:d6:88:77:ef:09: df:e2:e0:70:fa:57:04:a2:0f:b1:0b:77:a5:d9:9d: 4b:36:9a:9e:5c:79:78:aa:48:85:63:0e:8f:d7:5b: 85:16:42:33:a7:7e:4e:5d:25:a6:50:45:dc:c3:ca: 02:29:7a:96:4f:f9:da:e1:ec:6a:15:c8:f2:16:10: e7:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:37:A9:03:36:56:75:47:9B:AC:49:BF:AE:15:40:E2:0D:C7:27:5A X509v3 Authority Key Identifier: keyid:E6:98:29:53:DF:07:77:AE:DB:88:EE:3F:F2:0A:15:26:40:57:17:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/709/5pgpU98Hd67biO4_8goVJkBXF4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5pgpU98Hd67biO4_8goVJkBXF4U.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/709/KTepAzZWdUebrEm_rhVA4g3HJ1o.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 101.52.52.0/24 Signature Algorithm: sha256WithRSAEncryption a8:04:00:7f:da:ca:0a:fe:22:40:39:d2:06:55:ea:dc:dc:03: 47:13:10:68:1d:7e:cd:c9:c2:dd:8a:80:1a:ef:3a:33:72:50: 29:fb:6a:07:eb:66:55:9b:00:d1:f6:bd:ad:27:9c:ab:69:02: bb:5f:6b:29:8e:83:cf:57:68:0a:11:5d:b4:f2:d0:2d:12:34: fa:27:f5:4f:4a:d8:59:9a:dd:43:50:dc:8a:fc:52:81:ca:67: 55:41:2d:b3:99:7c:62:af:6b:a5:9a:30:8b:49:af:3c:f1:23: 56:a3:c7:c9:63:e4:40:c4:36:4e:ec:0f:cb:8e:e1:ee:ef:75: 43:70:0e:73:d3:ab:f9:e2:23:43:9a:fa:54:b3:c8:eb:96:6b: 61:9f:b9:db:86:5d:cd:23:71:0a:76:0b:71:d5:c7:a9:1e:44: 15:fb:af:a5:81:13:7a:4b:34:f8:97:0e:e9:7f:a1:c6:57:bd: fb:84:97:f0:85:e9:30:58:8f:35:97:5f:ca:77:2a:ef:36:f0: 35:1b:e9:45:f1:8a:a2:5f:25:35:60:9d:1b:20:4c:79:b3:f9: 65:7b:f6:b4:4d:99:0f:64:ff:27:c1:f8:68:67:c9:cd:43:66: af:e0:a3:bb:38:01:1a:05:26:05:75:f7:0f:aa:b1:2d:0f:36: 72:43:ad:53 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICII8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTY5 ODI5NTNERjA3NzdBRURCODhFRTNGRjIwQTE1MjY0MDU3MTc4NTAeFw0yNTA5MTMw MzA0MjVaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDI5MzdBOTAzMzY1Njc1 NDc5QkFDNDlCRkFFMTU0MEUyMERDNzI3NUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCf6Jn4Yn1sQsDGeVQzranfDRtMVQf1YmA+tQoqei+5HKfSTEXc QtsICawRUX/bTswanZUQg+ehyVi6aSrUpfTryC7JUV2yhrShU2NjWvkotfvm4jqV xojynHOMZ++6di8SeIELu7dqEHHvBxGP0ujIjxb8mS7co1F8x24UUuTADooghkmU ySuBj66RJ+a6TILtAifgOmCiPx93VD0e5U8uudTC7nCB0MqegpeE0EiLIOuJ/WHF Pik00zLqEyPWiHfvCd/i4HD6VwSiD7ELd6XZnUs2mp5ceXiqSIVjDo/XW4UWQjOn fk5dJaZQRdzDygIpepZP+drh7GoVyPIWEOfjAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUKTepAzZWdUebrEm/rhVA4g3HJ1owHwYDVR0jBBgwFoAU5pgpU98Hd67biO4/ 8goVJkBXF4UwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNzA5 LzVwZ3BVOThIZDY3YmlPNF84Z29WSmtCWEY0VS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvNXBncFU5OEhkNjdiaU80Xzhnb1ZKa0JYRjRVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNzA5L0tUZXBBelpXZFVlYnJF bV9yaFZBNGczSEoxby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABlNDQwDQYJKoZIhvcNAQELBQADggEBAKgEAH/aygr+IkA50gZV6tzcA0cTEGgd fs3Jwt2KgBrvOjNyUCn7agfrZlWbANH2va0nnKtpArtfaymOg89XaAoRXbTy0C0S NPon9U9K2Fma3UNQ3Ir8UoHKZ1VBLbOZfGKva6WaMItJrzzxI1ajx8lj5EDENk7s D8uO4e7vdUNwDnPTq/niI0Oa+lSzyOuWa2GfuduGXc0jcQp2C3HVx6keRBX7r6WB E3pLNPiXDul/ocZXvfuEl/CF6TBYjzWXX8p3Ku828DUb6UXxiqJfJTVgnRsgTHmz +WV79rRNmQ9k/yfB+Ghnyc1DZq/go7s4ARoFJgV19w+qsS0PNnJDrVM= -----END CERTIFICATE-----Generated at Mon Oct 20 17:20:27 2025 by rpki-client