$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3014/T_hhUTSz3uMfo-EoFoNEhIXsSGg.roa File: T_hhUTSz3uMfo-EoFoNEhIXsSGg.roa (raw, json) Hash identifier: seFj799GIKLKBKzCwoJBhhhFdJ4HbI3HmeAIYYsuV8s= Subject key identifier: 4F:F8:61:51:34:B3:DE:E3:1F:A3:E1:28:16:83:44:84:85:EC:48:68 Certificate issuer: /CN=3ACE10C838292C6FC706585B444EBAEDCA2A11B9 Certificate serial: 1596 Authority key identifier: 3A:CE:10:C8:38:29:2C:6F:C7:06:58:5B:44:4E:BA:ED:CA:2A:11:B9 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Os4QyDgpLG_HBlhbRE667coqEbk.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/T_hhUTSz3uMfo-EoFoNEhIXsSGg.roa Signing time: Sat 13 Sep 2025 03:06:37 +0000 ROA not before: Sat 13 Sep 2025 03:06:37 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 136907 IP address blocks: 124.71.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/Os4QyDgpLG_HBlhbRE667coqEbk.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/Os4QyDgpLG_HBlhbRE667coqEbk.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Os4QyDgpLG_HBlhbRE667coqEbk.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Sep 2025 03:04:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5526 (0x1596) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ACE10C838292C6FC706585B444EBAEDCA2A11B9 Validity Not Before: Sep 13 03:06:37 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=4FF8615134B3DEE31FA3E1281683448485EC4868 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:de:97:cb:f2:03:60:a0:ae:f1:bc:10:01:84: 87:73:d8:cd:1a:0b:40:44:c1:90:32:49:ea:1f:bb: cb:ab:0e:4e:cc:f0:c5:32:2a:dc:18:a3:25:41:45: b6:02:4b:38:4f:ea:19:b6:d0:01:ae:98:0a:3c:0b: 1d:ac:87:ec:db:c2:94:9a:49:b7:48:6f:6f:a8:20: 24:98:bf:fd:dc:49:f0:e3:0e:45:48:74:ad:0c:0d: 76:7e:d6:05:e0:f6:12:f1:2b:22:8e:89:c3:69:80: a2:a3:9b:52:a8:e2:9c:f6:8c:19:98:e2:96:02:3f: c5:fa:c5:c9:b5:90:3c:2a:1c:2a:3c:22:1a:46:55: 42:a4:94:ff:e4:15:a5:81:05:7f:40:b4:90:cf:0b: ad:04:8a:cb:e5:d6:93:5e:71:87:ad:e4:c3:55:d4: 17:54:5e:b9:b0:f6:8c:b5:45:40:e9:01:7d:3e:5a: 64:32:a9:79:70:a9:6f:e3:a8:92:5b:8b:e6:c7:d8: 65:fb:42:72:43:e6:67:d1:a6:ae:ca:02:80:ed:fd: bd:6d:74:17:55:8c:31:2c:66:43:cf:a9:38:c0:6c: 0c:ee:f8:f2:82:45:2d:5d:23:0c:6d:83:7b:46:95: 0b:77:b2:9b:d3:0a:38:72:62:ca:fc:18:64:ac:3e: 10:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:F8:61:51:34:B3:DE:E3:1F:A3:E1:28:16:83:44:84:85:EC:48:68 X509v3 Authority Key Identifier: keyid:3A:CE:10:C8:38:29:2C:6F:C7:06:58:5B:44:4E:BA:ED:CA:2A:11:B9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/Os4QyDgpLG_HBlhbRE667coqEbk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Os4QyDgpLG_HBlhbRE667coqEbk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/T_hhUTSz3uMfo-EoFoNEhIXsSGg.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.71.251.0/24 Signature Algorithm: sha256WithRSAEncryption 51:b1:6c:31:c6:a2:0a:99:80:32:af:45:ee:4f:b2:b8:69:ab: 21:49:ca:2b:9f:9b:b3:49:32:18:2a:7c:67:84:e7:7b:55:27: 38:07:1d:9e:73:f8:bd:10:d2:20:71:dd:e8:19:9b:32:eb:bb: 8c:5b:51:92:f9:a5:05:fc:98:73:7e:ac:03:e1:bc:8f:be:7c: 97:5a:d5:85:40:33:f7:84:11:c5:0d:cc:eb:2c:31:3a:dd:bf: 99:20:37:5a:6d:8f:d0:cc:b1:bc:62:0b:0f:fe:7b:fc:ed:3d: 62:02:e2:81:07:3a:58:42:24:15:e0:60:dd:77:51:ed:19:07: 48:d4:19:e9:da:6b:28:fa:d0:b2:e0:71:c0:2f:83:57:f8:40: a3:11:05:28:7a:71:96:28:ee:9f:63:7d:6a:ca:dd:65:c7:6c: 60:e8:30:fd:c1:f6:36:cd:e5:a0:e7:5f:f2:04:d7:5a:43:8c: 43:e7:1e:4c:c9:6e:3b:e3:b1:c4:a9:b5:c7:4d:b2:97:0a:ce: 52:66:bf:14:e5:8f:48:3f:3c:d5:c1:c8:06:b3:8b:04:0a:6a: 30:c3:04:a2:32:af:d2:b0:0c:a4:26:2c:7a:11:a9:71:a3:53: 67:e5:92:b9:b9:98:e1:d3:b5:e9:a9:f8:b4:54:23:b8:8b:76: cb:7a:20:10 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICFZYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0FD RTEwQzgzODI5MkM2RkM3MDY1ODVCNDQ0RUJBRURDQTJBMTFCOTAeFw0yNTA5MTMw MzA2MzdaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDRGRjg2MTUxMzRCM0RF RTMxRkEzRTEyODE2ODM0NDg0ODVFQzQ4NjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCu3pfL8gNgoK7xvBABhIdz2M0aC0BEwZAySeofu8urDk7M8MUy KtwYoyVBRbYCSzhP6hm20AGumAo8Cx2sh+zbwpSaSbdIb2+oICSYv/3cSfDjDkVI dK0MDXZ+1gXg9hLxKyKOicNpgKKjm1Ko4pz2jBmY4pYCP8X6xcm1kDwqHCo8IhpG VUKklP/kFaWBBX9AtJDPC60Eisvl1pNecYet5MNV1BdUXrmw9oy1RUDpAX0+WmQy qXlwqW/jqJJbi+bH2GX7QnJD5mfRpq7KAoDt/b1tdBdVjDEsZkPPqTjAbAzu+PKC RS1dIwxtg3tGlQt3spvTCjhyYsr8GGSsPhCRAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUT/hhUTSz3uMfo+EoFoNEhIXsSGgwHwYDVR0jBBgwFoAUOs4QyDgpLG/HBlhb RE667coqEbkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzAx NC9PczRReURncExHX0hCbGhiUkU2Njdjb3FFYmsuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL09zNFF5RGdwTEdfSEJsaGJSRTY2N2NvcUViay5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMwMTQvVF9oaFVUU3ozdU1m by1Fb0ZvTkVoSVhzU0dnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAHxH+zANBgkqhkiG9w0BAQsFAAOCAQEAUbFsMcaiCpmAMq9F7k+yuGmrIUnK K5+bs0kyGCp8Z4Tne1UnOAcdnnP4vRDSIHHd6BmbMuu7jFtRkvmlBfyYc36sA+G8 j758l1rVhUAz94QRxQ3M6ywxOt2/mSA3Wm2P0MyxvGILD/57/O09YgLigQc6WEIk FeBg3XdR7RkHSNQZ6dprKPrQsuBxwC+DV/hAoxEFKHpxlijun2N9asrdZcdsYOgw /cH2Ns3loOdf8gTXWkOMQ+ceTMluO+OxxKm1x02ylwrOUma/FOWPSD881cHIBrOL BApqMMMEojKv0rAMpCYsehGpcaNTZ+WSubmY4dO16an4tFQjuIt2y3ogEA== -----END CERTIFICATE-----Generated at Thu Sep 18 01:49:08 2025 by rpki-client