$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/341/tLcmaLRL5ow6ONPLFExoGrjFXUg.roa File: tLcmaLRL5ow6ONPLFExoGrjFXUg.roa (raw, json) Hash identifier: BqOnsDlye4FTFONHzDyWPpsT/GJiiF+Nkv7UT0czVVw= Subject key identifier: B4:B7:26:68:B4:4B:E6:8C:3A:38:D3:CB:14:4C:68:1A:B8:C5:5D:48 Certificate issuer: /CN=856DA85F9A8A286B652870D4E47635FF3D0E92AE Certificate serial: 1913 Authority key identifier: 85:6D:A8:5F:9A:8A:28:6B:65:28:70:D4:E4:76:35:FF:3D:0E:92:AE Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/hW2oX5qKKGtlKHDU5HY1_z0Okq4.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/341/tLcmaLRL5ow6ONPLFExoGrjFXUg.roa Signing time: Sat 06 Sep 2025 08:02:20 +0000 ROA not before: Sat 06 Sep 2025 08:02:20 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 37963 IP address blocks: 110.75.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/341/hW2oX5qKKGtlKHDU5HY1_z0Okq4.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/341/hW2oX5qKKGtlKHDU5HY1_z0Okq4.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/hW2oX5qKKGtlKHDU5HY1_z0Okq4.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 11:06:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6419 (0x1913) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=856DA85F9A8A286B652870D4E47635FF3D0E92AE Validity Not Before: Sep 6 08:02:20 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=B4B72668B44BE68C3A38D3CB144C681AB8C55D48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:3d:88:d7:20:b1:62:5a:b9:3b:c8:ff:bd:c0: 6b:39:5c:07:5b:20:d9:0c:aa:07:23:5b:0d:3b:a0: 32:84:ed:43:36:a4:66:b2:25:a2:49:eb:3d:5b:c9: 7b:fa:1e:99:04:07:19:3a:d1:aa:15:12:56:5d:6c: 6c:ce:d9:50:2c:d8:13:fc:1b:38:cd:f6:62:4c:83: 23:17:26:5b:84:2e:74:1b:9c:7e:60:ad:63:1d:97: e6:80:d3:46:6b:9c:f8:7b:5b:5c:be:1c:1f:59:2e: 64:ad:cb:ee:f0:b6:09:b4:1d:3a:6f:13:68:77:1d: e2:85:49:8f:b5:3e:5a:68:f4:bd:45:bb:f0:29:1d: 93:86:59:7c:c7:21:3a:be:b1:bc:45:10:9c:e0:3c: 81:00:01:5f:98:e7:39:36:90:2c:5e:3a:f2:b8:30: 5e:d9:b5:82:5a:c7:90:86:d3:bf:fb:9c:14:7a:0d: a0:ed:24:9d:b2:06:a3:f6:82:e8:fb:81:6d:a8:9f: 05:4a:1e:ed:cb:f2:8b:19:1c:53:fa:21:94:90:a7: 21:4d:b0:45:e2:7b:f6:a0:49:10:a6:e5:76:43:8b: f1:d2:d4:ba:0e:34:c4:90:6b:88:29:36:31:e9:97: 2b:39:5b:4e:50:a1:95:46:3b:78:de:1e:2f:b7:db: c1:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:B7:26:68:B4:4B:E6:8C:3A:38:D3:CB:14:4C:68:1A:B8:C5:5D:48 X509v3 Authority Key Identifier: keyid:85:6D:A8:5F:9A:8A:28:6B:65:28:70:D4:E4:76:35:FF:3D:0E:92:AE X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/341/hW2oX5qKKGtlKHDU5HY1_z0Okq4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/hW2oX5qKKGtlKHDU5HY1_z0Okq4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/341/tLcmaLRL5ow6ONPLFExoGrjFXUg.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 110.75.0.0/17 Signature Algorithm: sha256WithRSAEncryption 16:aa:2d:64:66:d0:fc:5d:3a:3c:68:ef:03:79:90:c0:2e:08: e1:94:40:0e:f1:dd:8f:a7:fc:c3:1f:94:b0:65:99:d1:7b:23: af:3e:84:25:f0:79:c8:be:a9:5e:a5:ce:61:39:c4:50:f8:4e: 7c:79:5e:ac:e2:bc:1c:8e:b5:ab:ba:2e:17:49:05:45:9e:1a: 04:e5:16:2b:f4:44:a3:03:68:03:30:f0:70:49:ad:c8:6c:de: e8:bf:98:df:7d:b1:e5:68:27:e7:a5:43:0b:61:3a:4d:63:54: 19:c8:58:7b:54:97:2c:a0:67:0d:47:84:02:41:7f:3c:6a:ea: f2:27:ee:7d:4a:4f:19:6d:55:60:df:a7:f5:fb:54:0b:ee:3f: 81:35:55:5c:c8:f3:22:b6:27:a2:ce:17:20:1e:c8:8b:7c:cd: 4b:42:b1:e4:7f:41:7f:43:5a:b2:d3:7e:0a:7d:f8:1d:bf:82: 33:57:3e:47:ba:93:8d:b9:47:b4:bf:bf:9b:dd:c3:a2:26:83: 54:19:8b:c1:4c:10:2a:29:ce:58:0e:22:ec:a4:b7:00:db:f3: 7f:39:d2:21:d2:5d:2c:b9:f5:2d:65:93:05:66:fa:f6:1c:16: 66:a1:c4:43:ae:d9:bc:42:23:7f:3c:90:fe:f1:d6:15:43:80: 33:f7:fd:60 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICGRMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODU2 REE4NUY5QThBMjg2QjY1Mjg3MEQ0RTQ3NjM1RkYzRDBFOTJBRTAeFw0yNTA5MDYw ODAyMjBaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEI0QjcyNjY4QjQ0QkU2 OEMzQTM4RDNDQjE0NEM2ODFBQjhDNTVENDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/PYjXILFiWrk7yP+9wGs5XAdbINkMqgcjWw07oDKE7UM2pGay JaJJ6z1byXv6HpkEBxk60aoVElZdbGzO2VAs2BP8GzjN9mJMgyMXJluELnQbnH5g rWMdl+aA00ZrnPh7W1y+HB9ZLmSty+7wtgm0HTpvE2h3HeKFSY+1Plpo9L1Fu/Ap HZOGWXzHITq+sbxFEJzgPIEAAV+Y5zk2kCxeOvK4MF7ZtYJax5CG07/7nBR6DaDt JJ2yBqP2guj7gW2onwVKHu3L8osZHFP6IZSQpyFNsEXie/agSRCm5XZDi/HS1LoO NMSQa4gpNjHplys5W05QoZVGO3jeHi+328ENAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUtLcmaLRL5ow6ONPLFExoGrjFXUgwHwYDVR0jBBgwFoAUhW2oX5qKKGtlKHDU 5HY1/z0Okq4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzQx L2hXMm9YNXFLS0d0bEtIRFU1SFkxX3owT2txNC5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvaFcyb1g1cUtLR3RsS0hEVTVIWTFfejBPa3E0LmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzQxL3RMY21hTFJMNW93Nk9O UExGRXhvR3JqRlhVZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAduSwAwDQYJKoZIhvcNAQELBQADggEBABaqLWRm0PxdOjxo7wN5kMAuCOGUQA7x 3Y+n/MMflLBlmdF7I68+hCXweci+qV6lzmE5xFD4Tnx5XqzivByOtau6LhdJBUWe GgTlFiv0RKMDaAMw8HBJrchs3ui/mN99seVoJ+elQwthOk1jVBnIWHtUlyygZw1H hAJBfzxq6vIn7n1KTxltVWDfp/X7VAvuP4E1VVzI8yK2J6LOFyAeyIt8zUtCseR/ QX9DWrLTfgp9+B2/gjNXPke6k425R7S/v5vdw6Img1QZi8FMECopzlgOIuyktwDb 83850iHSXSy59S1lkwVm+vYcFmahxEOu2bxCI388kP7x1hVDgDP3/WA= -----END CERTIFICATE-----Generated at Tue Sep 9 08:05:21 2025 by rpki-client