$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3014/KPJrzIELrp-oQSTWYOYoemwSNOM.roa File: KPJrzIELrp-oQSTWYOYoemwSNOM.roa (raw, json) Hash identifier: zBKnMWxgp8BMayneTSMvjtX+gzWSZeIpjHEnO3CQCA8= Subject key identifier: 28:F2:6B:CC:81:0B:AE:9F:A8:41:24:D6:60:E6:28:7A:6C:12:34:E3 Certificate issuer: /CN=3ACE10C838292C6FC706585B444EBAEDCA2A11B9 Certificate serial: 15CF Authority key identifier: 3A:CE:10:C8:38:29:2C:6F:C7:06:58:5B:44:4E:BA:ED:CA:2A:11:B9 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Os4QyDgpLG_HBlhbRE667coqEbk.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/KPJrzIELrp-oQSTWYOYoemwSNOM.roa Signing time: Sat 13 Sep 2025 03:06:49 +0000 ROA not before: Sat 13 Sep 2025 03:06:49 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 136907 IP address blocks: 110.41.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/Os4QyDgpLG_HBlhbRE667coqEbk.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/Os4QyDgpLG_HBlhbRE667coqEbk.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Os4QyDgpLG_HBlhbRE667coqEbk.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Sep 2025 03:04:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5583 (0x15cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ACE10C838292C6FC706585B444EBAEDCA2A11B9 Validity Not Before: Sep 13 03:06:49 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=28F26BCC810BAE9FA84124D660E6287A6C1234E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:99:28:2c:33:41:ec:86:5f:84:c5:e6:61:5c: 7a:9f:92:e2:80:ac:b7:71:cc:59:95:88:69:24:2a: 7e:d9:29:c0:40:c3:8c:dc:e5:f3:c3:01:b3:60:16: d8:e8:3b:6a:2f:78:38:cb:5b:c4:88:f4:10:25:28: ec:8e:37:1f:e5:00:44:ef:81:08:c7:65:de:f8:3e: dd:18:e1:e9:0e:cd:69:4b:42:55:5e:d8:92:81:d2: 61:84:d7:b9:60:4c:04:63:b6:3f:67:ea:6b:64:7c: 24:72:77:5c:0d:a7:e6:77:39:37:02:11:a2:c6:83: 30:bf:3d:98:4d:84:fe:1b:78:1f:6c:87:07:68:22: 2e:a9:a3:31:c8:c4:89:9f:63:7c:25:cd:3c:f6:05: b7:39:99:02:99:01:ca:b3:b9:f1:b6:33:cc:f8:60: 59:b5:96:fb:92:73:4c:48:b1:2d:22:1a:a3:9c:c4: 7e:fd:40:17:f9:11:e5:88:25:7f:af:e1:0f:f4:28: 82:ad:70:b9:49:44:01:c9:f2:78:b2:22:d8:5e:7e: 3f:9b:3a:1f:50:9e:c9:8a:a4:3b:17:93:91:f7:e3: 9e:d9:5e:8a:35:47:27:45:b7:a0:5c:8f:d0:cb:94: 99:a9:c0:a8:3b:de:4d:4d:0e:66:78:17:d7:5c:c6: be:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:F2:6B:CC:81:0B:AE:9F:A8:41:24:D6:60:E6:28:7A:6C:12:34:E3 X509v3 Authority Key Identifier: keyid:3A:CE:10:C8:38:29:2C:6F:C7:06:58:5B:44:4E:BA:ED:CA:2A:11:B9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/Os4QyDgpLG_HBlhbRE667coqEbk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Os4QyDgpLG_HBlhbRE667coqEbk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/KPJrzIELrp-oQSTWYOYoemwSNOM.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 110.41.210.0/24 Signature Algorithm: sha256WithRSAEncryption 03:f1:8d:4c:09:ba:bd:03:f9:08:4f:1f:17:4f:c4:bf:25:54: 17:85:a5:48:0d:6f:d6:39:0c:1f:a7:6b:55:53:bb:59:4f:eb: 43:d2:2c:9b:04:b3:a7:8f:f4:c6:95:ad:7d:62:75:5f:d8:53: 2e:fa:d0:bc:4a:9a:37:e8:f6:ed:f0:e5:22:2e:f2:07:42:55: f7:cb:b3:f5:44:09:fc:7e:61:4f:04:d2:27:1d:8a:d5:d0:d7: 2a:bd:48:ad:1b:d9:26:bd:94:30:ba:5c:16:2e:6d:a6:d0:a2: 5c:87:62:d3:81:0e:3d:1e:ee:44:bb:06:30:6e:95:41:b7:a5: 20:81:24:c5:6c:5f:56:0e:76:23:f5:4d:57:86:96:a5:6d:55: b7:9a:19:04:0d:cb:72:bb:b7:8d:e8:ce:3a:76:b7:1e:dd:8a: 37:0b:b8:79:ce:e6:8c:3e:47:c1:78:8e:39:dc:48:fc:2e:49: 46:ea:0c:bf:06:63:cc:61:86:88:68:d0:58:2a:87:89:f3:90: b9:14:32:70:a9:6f:ea:67:46:a5:fc:d0:0e:db:15:81:78:b0: 27:a2:b7:22:25:74:5a:97:b8:0d:97:2b:70:ec:66:64:29:00: 0b:5f:00:b0:e6:64:81:a1:e3:1e:22:1c:27:8e:3b:dd:9c:84: 30:a3:ac:1d -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICFc8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0FD RTEwQzgzODI5MkM2RkM3MDY1ODVCNDQ0RUJBRURDQTJBMTFCOTAeFw0yNTA5MTMw MzA2NDlaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDI4RjI2QkNDODEwQkFF OUZBODQxMjRENjYwRTYyODdBNkMxMjM0RTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCmSgsM0Hshl+ExeZhXHqfkuKArLdxzFmViGkkKn7ZKcBAw4zc 5fPDAbNgFtjoO2oveDjLW8SI9BAlKOyONx/lAETvgQjHZd74Pt0Y4ekOzWlLQlVe 2JKB0mGE17lgTARjtj9n6mtkfCRyd1wNp+Z3OTcCEaLGgzC/PZhNhP4beB9shwdo Ii6pozHIxImfY3wlzTz2Bbc5mQKZAcqzufG2M8z4YFm1lvuSc0xIsS0iGqOcxH79 QBf5EeWIJX+v4Q/0KIKtcLlJRAHJ8niyIthefj+bOh9QnsmKpDsXk5H3457ZXoo1 RydFt6Bcj9DLlJmpwKg73k1NDmZ4F9dcxr6PAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUKPJrzIELrp+oQSTWYOYoemwSNOMwHwYDVR0jBBgwFoAUOs4QyDgpLG/HBlhb RE667coqEbkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzAx NC9PczRReURncExHX0hCbGhiUkU2Njdjb3FFYmsuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL09zNFF5RGdwTEdfSEJsaGJSRTY2N2NvcUViay5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMwMTQvS1BKcnpJRUxycC1v UVNUV1lPWW9lbXdTTk9NLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAG4p0jANBgkqhkiG9w0BAQsFAAOCAQEAA/GNTAm6vQP5CE8fF0/EvyVUF4Wl SA1v1jkMH6drVVO7WU/rQ9IsmwSzp4/0xpWtfWJ1X9hTLvrQvEqaN+j27fDlIi7y B0JV98uz9UQJ/H5hTwTSJx2K1dDXKr1IrRvZJr2UMLpcFi5tptCiXIdi04EOPR7u RLsGMG6VQbelIIEkxWxfVg52I/VNV4aWpW1Vt5oZBA3Lcru3jejOOna3Ht2KNwu4 ec7mjD5HwXiOOdxI/C5JRuoMvwZjzGGGiGjQWCqHifOQuRQycKlv6mdGpfzQDtsV gXiwJ6K3IiV0Wpe4DZcrcOxmZCkAC18AsOZkgaHjHiIcJ4473ZyEMKOsHQ== -----END CERTIFICATE-----Generated at Thu Sep 18 01:49:07 2025 by rpki-client