$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3014/jfZ575IxXPD0rbN0j-9W8_cFmxY.roa File: jfZ575IxXPD0rbN0j-9W8_cFmxY.roa (raw, json) Hash identifier: hch8ORoGCrrRLByhpKsQvjUE14uHhAEY7hAwpp1Lk6M= Subject key identifier: 8D:F6:79:EF:92:31:5C:F0:F4:AD:B3:74:8F:EF:56:F3:F7:05:9B:16 Certificate issuer: /CN=3ACE10C838292C6FC706585B444EBAEDCA2A11B9 Certificate serial: 15B7 Authority key identifier: 3A:CE:10:C8:38:29:2C:6F:C7:06:58:5B:44:4E:BA:ED:CA:2A:11:B9 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Os4QyDgpLG_HBlhbRE667coqEbk.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/jfZ575IxXPD0rbN0j-9W8_cFmxY.roa Signing time: Sat 13 Sep 2025 03:06:43 +0000 ROA not before: Sat 13 Sep 2025 03:06:43 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 136907 IP address blocks: 110.41.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/Os4QyDgpLG_HBlhbRE667coqEbk.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/Os4QyDgpLG_HBlhbRE667coqEbk.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Os4QyDgpLG_HBlhbRE667coqEbk.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Sep 2025 03:04:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5559 (0x15b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ACE10C838292C6FC706585B444EBAEDCA2A11B9 Validity Not Before: Sep 13 03:06:43 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=8DF679EF92315CF0F4ADB3748FEF56F3F7059B16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:b6:f4:71:77:9b:0a:19:fd:11:02:3b:33:7c: 51:a0:1c:df:25:bc:e5:c0:68:20:a2:1f:68:ae:1b: 43:7f:85:7b:eb:8e:a3:78:73:93:7e:e9:c8:ed:54: dd:70:33:a1:dd:e0:93:04:ca:52:33:da:57:f3:8d: f8:2e:2a:2d:bd:08:5e:25:d8:c9:a7:fd:c9:a3:31: bb:a5:cb:21:f7:69:4c:6f:f6:fb:ce:88:fe:20:83: b5:6a:a7:62:ce:58:a5:72:1c:75:6e:2d:0f:00:c9: a0:ed:87:90:28:95:8c:b8:43:4e:82:e9:30:64:9d: 32:d6:58:15:e1:ad:4c:6b:f4:c4:ca:19:d6:80:2f: b6:8c:9b:ee:5e:25:76:a0:e1:5f:48:0c:19:26:65: 4f:2e:1c:98:8d:a4:21:5c:9c:e1:00:16:2d:4b:97: 57:5a:cb:49:1a:6c:cb:62:a4:3f:34:3d:c9:3c:b0: 68:30:62:ad:a3:a7:14:e9:f4:64:43:15:b3:4b:9a: d8:20:7d:54:64:ff:dc:47:d5:bd:57:f0:2c:25:0e: ff:f5:0a:79:7e:e4:21:d9:25:11:be:96:7b:8c:fa: c8:ef:97:e3:09:70:11:4f:10:2b:86:f4:45:3e:81: 4b:8a:76:58:1d:4a:46:1e:75:a9:b8:c0:9a:d7:c9: 60:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:F6:79:EF:92:31:5C:F0:F4:AD:B3:74:8F:EF:56:F3:F7:05:9B:16 X509v3 Authority Key Identifier: keyid:3A:CE:10:C8:38:29:2C:6F:C7:06:58:5B:44:4E:BA:ED:CA:2A:11:B9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/Os4QyDgpLG_HBlhbRE667coqEbk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Os4QyDgpLG_HBlhbRE667coqEbk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/jfZ575IxXPD0rbN0j-9W8_cFmxY.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 110.41.209.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:2b:57:e1:e6:f6:48:02:bd:cc:1e:c0:86:a4:dc:47:d0:33: 59:b5:1e:8c:93:cf:14:9c:93:58:e2:df:9e:3e:23:ce:1d:34: e0:31:c9:e2:c4:bc:35:3a:66:4d:5c:e1:0e:40:40:54:1e:7a: 44:46:b6:ef:77:16:3c:f2:02:14:4a:cf:5a:7b:ed:70:2f:52: c3:8f:4d:55:c3:30:0f:08:0f:88:fb:35:dc:93:f4:80:88:ca: 26:8b:fe:29:a1:78:13:b4:d8:d9:72:89:00:25:98:2d:87:59: bb:5f:10:b8:a7:4d:ad:6f:ba:54:18:81:24:93:f7:f3:8f:3e: 7b:72:b0:5e:85:3b:55:9b:d3:3f:54:3f:55:b4:1c:0b:2c:41: d1:21:10:db:06:cd:29:5c:4f:92:4f:d4:8e:68:db:2b:34:92: 50:59:a2:1f:82:e9:86:69:f3:50:dc:3c:04:4d:5a:e7:ae:0a: c9:ee:3c:02:21:93:89:74:6b:bc:cb:d9:f6:46:28:2b:3f:1e: f5:59:cb:9f:8c:b0:87:17:8a:b9:d3:5f:02:59:7f:c4:c5:55: b7:b9:9c:33:c4:b7:4e:9c:10:a9:26:1b:99:71:75:46:e4:c3: f8:2c:9d:88:01:65:ed:19:3b:23:0e:98:b8:a9:9e:b5:57:dc: 94:ed:c5:94 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICFbcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0FD RTEwQzgzODI5MkM2RkM3MDY1ODVCNDQ0RUJBRURDQTJBMTFCOTAeFw0yNTA5MTMw MzA2NDNaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDhERjY3OUVGOTIzMTVD RjBGNEFEQjM3NDhGRUY1NkYzRjcwNTlCMTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5tvRxd5sKGf0RAjszfFGgHN8lvOXAaCCiH2iuG0N/hXvrjqN4 c5N+6cjtVN1wM6Hd4JMEylIz2lfzjfguKi29CF4l2Mmn/cmjMbulyyH3aUxv9vvO iP4gg7Vqp2LOWKVyHHVuLQ8AyaDth5AolYy4Q06C6TBknTLWWBXhrUxr9MTKGdaA L7aMm+5eJXag4V9IDBkmZU8uHJiNpCFcnOEAFi1Ll1day0kabMtipD80Pck8sGgw Yq2jpxTp9GRDFbNLmtggfVRk/9xH1b1X8CwlDv/1Cnl+5CHZJRG+lnuM+sjvl+MJ cBFPECuG9EU+gUuKdlgdSkYedam4wJrXyWDZAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUjfZ575IxXPD0rbN0j+9W8/cFmxYwHwYDVR0jBBgwFoAUOs4QyDgpLG/HBlhb RE667coqEbkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzAx NC9PczRReURncExHX0hCbGhiUkU2Njdjb3FFYmsuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL09zNFF5RGdwTEdfSEJsaGJSRTY2N2NvcUViay5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMwMTQvamZaNTc1SXhYUEQw cmJOMGotOVc4X2NGbXhZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAG4p0TANBgkqhkiG9w0BAQsFAAOCAQEAbCtX4eb2SAK9zB7AhqTcR9AzWbUe jJPPFJyTWOLfnj4jzh004DHJ4sS8NTpmTVzhDkBAVB56REa273cWPPICFErPWnvt cC9Sw49NVcMwDwgPiPs13JP0gIjKJov+KaF4E7TY2XKJACWYLYdZu18QuKdNrW+6 VBiBJJP3848+e3KwXoU7VZvTP1Q/VbQcCyxB0SEQ2wbNKVxPkk/UjmjbKzSSUFmi H4LphmnzUNw8BE1a564Kye48AiGTiXRrvMvZ9kYoKz8e9VnLn4ywhxeKudNfAll/ xMVVt7mcM8S3TpwQqSYbmXF1RuTD+CydiAFl7Rk7Iw6YuKmetVfclO3FlA== -----END CERTIFICATE-----Generated at Thu Sep 18 01:52:41 2025 by rpki-client