$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2741/Pie-aA_SMXi1KlttjIhePqYurTU.roa File: Pie-aA_SMXi1KlttjIhePqYurTU.roa (raw, json) Hash identifier: 4oxtWmiOezYONOy5kp6vAgerw2OZ94LDmtSh2UUa1A4= Subject key identifier: 3E:27:BE:68:0F:D2:31:78:B5:2A:5B:6D:8C:88:5E:3E:A6:2E:AD:35 Certificate issuer: /CN=FAD6B43C09D0490A0DF7F891DF9F63B520CF210F Certificate serial: 1124 Authority key identifier: FA:D6:B4:3C:09:D0:49:0A:0D:F7:F8:91:DF:9F:63:B5:20:CF:21:0F Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/-ta0PAnQSQoN9_iR359jtSDPIQ8.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2741/Pie-aA_SMXi1KlttjIhePqYurTU.roa Signing time: Fri 12 Sep 2025 04:45:26 +0000 ROA not before: Fri 12 Sep 2025 04:45:26 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 18186 IP address blocks: 103.116.151.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2741/-ta0PAnQSQoN9_iR359jtSDPIQ8.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2741/-ta0PAnQSQoN9_iR359jtSDPIQ8.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/-ta0PAnQSQoN9_iR359jtSDPIQ8.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Oct 2025 18:36:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4388 (0x1124) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FAD6B43C09D0490A0DF7F891DF9F63B520CF210F Validity Not Before: Sep 12 04:45:26 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=3E27BE680FD23178B52A5B6D8C885E3EA62EAD35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:a7:f4:49:02:49:1f:6f:fe:ba:fd:18:05:11: 1a:85:9a:0c:9a:13:55:3e:db:8b:be:11:32:e9:92: 69:b7:57:95:18:d1:81:ac:74:bb:c2:db:4b:14:11: da:b0:01:28:ac:0f:03:88:46:80:56:39:c5:61:0a: 3c:59:e5:8a:2d:a7:a0:a2:e0:09:18:e1:d3:f6:f9: 97:ff:40:0a:61:5d:60:45:e0:b4:4d:65:be:e8:08: 74:8a:e5:0f:be:ae:11:27:d8:24:cd:3c:8e:26:a1: a5:02:22:45:ca:0f:f2:5e:82:7c:bb:1a:85:74:a2: a1:38:f3:0d:c5:d9:34:57:b8:2f:b0:ef:8f:86:af: ff:ab:92:dd:58:89:a5:38:aa:17:6c:29:ca:e2:0a: c8:60:80:4b:91:e5:a5:89:83:9b:7e:6d:f6:e1:c1: ef:ed:94:04:0d:47:f5:1a:d0:b6:7c:f7:76:22:f5: 72:fb:37:f2:1c:c8:34:dd:48:2a:7b:05:2f:b9:66: 1c:32:55:0a:b1:81:e7:6e:76:b0:56:7a:a7:09:45: 88:ae:f6:ca:db:53:d4:e9:a7:56:1d:f8:93:ea:34: 06:a5:79:88:e1:12:9c:7c:fd:56:b8:19:0e:3a:22: 3f:7d:67:ce:15:69:d3:47:74:1d:e5:de:29:ca:73: d5:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:27:BE:68:0F:D2:31:78:B5:2A:5B:6D:8C:88:5E:3E:A6:2E:AD:35 X509v3 Authority Key Identifier: keyid:FA:D6:B4:3C:09:D0:49:0A:0D:F7:F8:91:DF:9F:63:B5:20:CF:21:0F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2741/-ta0PAnQSQoN9_iR359jtSDPIQ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/-ta0PAnQSQoN9_iR359jtSDPIQ8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2741/Pie-aA_SMXi1KlttjIhePqYurTU.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.116.151.0/24 Signature Algorithm: sha256WithRSAEncryption 13:92:23:6b:60:bc:f3:10:f6:38:bd:de:f6:56:4a:f3:94:cf: d4:05:3a:3a:90:75:13:e7:5d:db:9a:49:00:3c:50:25:79:20: 81:c8:45:a3:cc:ac:2d:32:24:2a:c7:50:0f:c8:00:b3:63:8f: e8:6d:a3:b1:22:07:f2:07:55:53:9d:30:10:10:03:c1:e0:fe: 46:fd:62:e2:01:ff:2a:99:bf:df:3b:30:bd:44:78:99:f6:c6: dd:d0:28:3e:3b:6e:82:e3:0d:94:c9:c3:b6:e8:77:74:e7:ab: 18:6c:b7:d5:65:db:ba:fe:2d:8e:bc:b4:3e:94:8a:e6:15:98: 9a:f4:82:5c:db:b2:b4:03:31:90:25:24:b6:fc:f7:62:2a:47: c5:f4:ad:76:e7:6d:03:37:02:13:3d:92:76:01:42:18:6b:9c: 3b:b5:f3:23:9c:c0:97:89:52:37:bf:37:1d:36:9d:e1:98:66: 07:63:2e:89:44:5c:31:5b:71:1f:fa:cd:14:1c:2e:61:8b:b8: 6a:2f:f5:95:ce:94:f8:5e:d2:b1:ac:0d:e7:eb:48:1b:72:e9: 39:bd:e6:4e:16:7d:87:31:0a:bb:f5:d2:99:d6:24:02:a6:37: 88:92:88:6c:f5:fe:24:16:62:1d:32:15:35:8a:0d:94:e4:97: 93:37:55:a8 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICESQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkFE NkI0M0MwOUQwNDkwQTBERjdGODkxREY5RjYzQjUyMENGMjEwRjAeFw0yNTA5MTIw NDQ1MjZaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDNFMjdCRTY4MEZEMjMx NzhCNTJBNUI2RDhDODg1RTNFQTYyRUFEMzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDyp/RJAkkfb/66/RgFERqFmgyaE1U+24u+ETLpkmm3V5UY0YGs dLvC20sUEdqwASisDwOIRoBWOcVhCjxZ5Yotp6Ci4AkY4dP2+Zf/QAphXWBF4LRN Zb7oCHSK5Q++rhEn2CTNPI4moaUCIkXKD/Jegny7GoV0oqE48w3F2TRXuC+w74+G r/+rkt1YiaU4qhdsKcriCshggEuR5aWJg5t+bfbhwe/tlAQNR/Ua0LZ893Yi9XL7 N/IcyDTdSCp7BS+5ZhwyVQqxgedudrBWeqcJRYiu9srbU9Tpp1Yd+JPqNAaleYjh Epx8/Va4GQ46Ij99Z84VadNHdB3l3inKc9V3AgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUPie+aA/SMXi1KlttjIhePqYurTUwHwYDVR0jBBgwFoAU+ta0PAnQSQoN9/iR 359jtSDPIQ8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjc0 MS8tdGEwUEFuUVNRb045X2lSMzU5anRTRFBJUTguY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLy10YTBQQW5RU1FvTjlfaVIzNTlqdFNEUElROC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI3NDEvUGllLWFBX1NNWGkx S2x0dGpJaGVQcVl1clRVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAGd0lzANBgkqhkiG9w0BAQsFAAOCAQEAE5Ija2C88xD2OL3e9lZK85TP1AU6 OpB1E+dd25pJADxQJXkggchFo8ysLTIkKsdQD8gAs2OP6G2jsSIH8gdVU50wEBAD weD+Rv1i4gH/Kpm/3zswvUR4mfbG3dAoPjtuguMNlMnDtuh3dOerGGy31WXbuv4t jry0PpSK5hWYmvSCXNuytAMxkCUktvz3YipHxfStdudtAzcCEz2SdgFCGGucO7Xz I5zAl4lSN783HTad4ZhmB2MuiURcMVtxH/rNFBwuYYu4ai/1lc6U+F7SsawN5+tI G3LpOb3mThZ9hzEKu/XSmdYkAqY3iJKIbPX+JBZiHTIVNYoNlOSXkzdVqA== -----END CERTIFICATE-----Generated at Sun Oct 19 16:11:43 2025 by rpki-client