$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3194/5LOLlAIfQshnZv-A-yit2bYPTFo.roa File: 5LOLlAIfQshnZv-A-yit2bYPTFo.roa (raw, json) Hash identifier: hxfdu9xHt7cnTvpqU3L+8tXpGulefAZyhVcuuyqv+JE= Subject key identifier: E4:B3:8B:94:02:1F:42:C8:67:66:FF:80:FB:28:AD:D9:B6:0F:4C:5A Certificate issuer: /CN=01BE335E6A4EFB954DBA7893846929A3A5F6867A Certificate serial: 11 Authority key identifier: 01:BE:33:5E:6A:4E:FB:95:4D:BA:78:93:84:69:29:A3:A5:F6:86:7A Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Ab4zXmpO-5VNuniThGkpo6X2hno.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3194/5LOLlAIfQshnZv-A-yit2bYPTFo.roa Signing time: Wed 22 Oct 2025 02:13:23 +0000 ROA not before: Wed 22 Oct 2025 02:13:23 +0000 ROA not after: Wed 21 Oct 2026 08:58:05 +0000 asID: 151261 IP address blocks: 103.45.144.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3194/Ab4zXmpO-5VNuniThGkpo6X2hno.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3194/Ab4zXmpO-5VNuniThGkpo6X2hno.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Ab4zXmpO-5VNuniThGkpo6X2hno.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:06:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17 (0x11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01BE335E6A4EFB954DBA7893846929A3A5F6867A Validity Not Before: Oct 22 02:13:23 2025 GMT Not After : Oct 21 08:58:05 2026 GMT Subject: CN=E4B38B94021F42C86766FF80FB28ADD9B60F4C5A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:4b:cb:82:af:10:7b:8e:7a:72:32:76:21:63: 5b:32:ea:29:ab:63:13:1a:65:63:9b:0f:f7:bb:e0: 24:8a:c1:97:3e:5e:5c:6d:54:8b:70:3f:6f:b0:11: ed:f4:b4:a2:62:da:eb:5e:e7:fb:f8:66:81:c4:36: cf:5e:ac:f9:dc:ff:bb:b5:1f:d4:64:79:17:65:e3: dc:6d:2b:32:29:d8:f5:d2:e0:24:01:d2:f3:a1:52: 2f:58:0f:c0:54:6e:9e:0c:31:b2:3f:bf:30:85:16: 99:52:b9:72:68:e1:b9:5b:a8:88:43:3e:cf:bd:10: e2:8d:27:af:0e:e9:a7:41:3a:83:dd:ac:75:5d:8d: f7:80:f9:ec:2b:28:6b:a3:45:92:21:ed:f7:13:3a: bc:22:af:f1:aa:15:4d:be:7d:c5:cb:45:73:c5:99: 7b:12:dc:cb:23:7d:fa:c1:db:9d:d1:50:5b:fb:1f: d7:cc:a1:13:e0:90:0b:b8:da:43:aa:56:4d:57:08: 63:1f:93:ad:e1:77:da:b5:15:24:dd:d6:07:5c:03: 09:1c:18:9b:60:48:28:5d:68:3e:97:9b:18:e6:4a: 77:9a:b6:87:94:b9:c1:61:25:65:85:e0:0d:2e:90: 12:60:9e:1b:a5:6c:8d:66:08:25:ab:cc:40:cc:f8: 69:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:B3:8B:94:02:1F:42:C8:67:66:FF:80:FB:28:AD:D9:B6:0F:4C:5A X509v3 Authority Key Identifier: keyid:01:BE:33:5E:6A:4E:FB:95:4D:BA:78:93:84:69:29:A3:A5:F6:86:7A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3194/Ab4zXmpO-5VNuniThGkpo6X2hno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Ab4zXmpO-5VNuniThGkpo6X2hno.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3194/5LOLlAIfQshnZv-A-yit2bYPTFo.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.45.144.0/24 Signature Algorithm: sha256WithRSAEncryption 15:57:ea:3f:80:1f:f0:be:03:78:57:8f:3f:ef:84:5b:12:98: 9d:07:95:43:d2:56:b0:8d:9e:ef:1f:54:0c:e0:b3:5d:8e:10: e9:cb:ce:29:0f:55:e3:9c:a7:4a:f9:40:f4:ed:e3:60:46:d6: bb:ff:78:13:50:56:e7:65:5e:1f:b7:db:31:03:f4:bb:e9:32: 4d:22:0e:55:f1:af:c7:27:1b:9c:ba:3b:4f:ae:d3:5a:c1:03: df:41:76:2e:e8:a6:a9:52:df:bb:c7:0e:b7:eb:4b:ad:26:f6: 3d:83:f6:3d:80:ae:74:3f:65:7a:38:00:59:e8:59:2e:76:cb: fd:d1:08:f8:29:ed:90:a6:1f:da:f4:60:a9:44:88:64:eb:73: e9:c8:71:10:70:ba:c5:e5:d6:dd:55:5d:c8:42:ff:dd:19:92: b5:f4:50:7a:91:14:3d:a0:8f:8e:d8:99:65:9b:2f:a7:e2:07: 4e:58:15:f0:e8:8e:4f:f9:73:c8:b6:34:84:a0:b3:71:3a:9e: d9:0a:10:38:8c:e8:20:76:16:71:80:b7:fb:60:28:37:7d:d2: e3:d2:74:40:f2:10:13:b1:55:a4:ac:8d:f2:d8:ca:17:8d:51: 32:71:6f:03:4c:e4:08:b6:66:7c:eb:b9:28:dd:63:61:ba:e2: c4:51:58:26 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgIBETANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygwMUJF MzM1RTZBNEVGQjk1NERCQTc4OTM4NDY5MjlBM0E1RjY4NjdBMB4XDTI1MTAyMjAy MTMyM1oXDTI2MTAyMTA4NTgwNVowMzExMC8GA1UEAxMoRTRCMzhCOTQwMjFGNDJD ODY3NjZGRjgwRkIyOEFERDlCNjBGNEM1QTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMdLy4KvEHuOenIydiFjWzLqKatjExplY5sP97vgJIrBlz5eXG1U i3A/b7AR7fS0omLa617n+/hmgcQ2z16s+dz/u7Uf1GR5F2Xj3G0rMinY9dLgJAHS 86FSL1gPwFRungwxsj+/MIUWmVK5cmjhuVuoiEM+z70Q4o0nrw7pp0E6g92sdV2N 94D57Csoa6NFkiHt9xM6vCKv8aoVTb59xctFc8WZexLcyyN9+sHbndFQW/sf18yh E+CQC7jaQ6pWTVcIYx+TreF32rUVJN3WB1wDCRwYm2BIKF1oPpebGOZKd5q2h5S5 wWElZYXgDS6QEmCeG6VsjWYIJavMQMz4aUMCAwEAAaOCAfMwggHvMB0GA1UdDgQW BBTks4uUAh9CyGdm/4D7KK3Ztg9MWjAfBgNVHSMEGDAWgBQBvjNeak77lU26eJOE aSmjpfaGejAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8zMTk0 L0FiNHpYbXBPLTVWTnVuaVRoR2twbzZYMmhuby5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvQWI0elhtcE8tNVZOdW5pVGhHa3BvNlgyaG5vLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzE5NC81TE9MbEFJZlFzaG5a di1BLXlpdDJiWVBURm8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25u aWMuY24vcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAZy2QMA0GCSqGSIb3DQEBCwUAA4IBAQAVV+o/gB/wvgN4V48/74RbEpidB5VD 0lawjZ7vH1QM4LNdjhDpy84pD1XjnKdK+UD07eNgRta7/3gTUFbnZV4ft9sxA/S7 6TJNIg5V8a/HJxucujtPrtNawQPfQXYu6KapUt+7xw6360utJvY9g/Y9gK50P2V6 OABZ6Fkudsv90Qj4Ke2Qph/a9GCpRIhk63PpyHEQcLrF5dbdVV3IQv/dGZK19FB6 kRQ9oI+O2Jllmy+n4gdOWBXw6I5P+XPItjSEoLNxOp7ZChA4jOggdhZxgLf7YCg3 fdLj0nRA8hATsVWkrI3y2MoXjVEycW8DTOQItmZ867ko3WNhuuLEUVgm -----END CERTIFICATE-----Generated at Sun Oct 26 04:51:56 2025 by rpki-client