$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/344/sa3luU9UeUL06Ib0LWq2kOckxFg.roa File: sa3luU9UeUL06Ib0LWq2kOckxFg.roa (raw, json) Hash identifier: 6s7ATAKOtk2+EttjdCrwuFOZjWqvfVZg0zYuufVKk7A= Subject key identifier: B1:AD:E5:B9:4F:54:79:42:F4:E8:86:F4:2D:6A:B6:90:E7:24:C4:58 Certificate issuer: /CN=240ED9E7AD0A83829D8F1A990C9FF94D6A106ED7 Certificate serial: 06 Authority key identifier: 24:0E:D9:E7:AD:0A:83:82:9D:8F:1A:99:0C:9F:F9:4D:6A:10:6E:D7 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/JA7Z560Kg4KdjxqZDJ_5TWoQbtc.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/344/sa3luU9UeUL06Ib0LWq2kOckxFg.roa Signing time: Tue 26 Aug 2025 01:21:40 +0000 ROA not before: Tue 26 Aug 2025 01:21:40 +0000 ROA not after: Wed 26 Aug 2026 01:18:16 +0000 asID: 9808 IP address blocks: 182.157.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/344/JA7Z560Kg4KdjxqZDJ_5TWoQbtc.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/344/JA7Z560Kg4KdjxqZDJ_5TWoQbtc.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/JA7Z560Kg4KdjxqZDJ_5TWoQbtc.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 10:05:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=240ED9E7AD0A83829D8F1A990C9FF94D6A106ED7 Validity Not Before: Aug 26 01:21:40 2025 GMT Not After : Aug 26 01:18:16 2026 GMT Subject: CN=B1ADE5B94F547942F4E886F42D6AB690E724C458 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:68:85:5d:da:41:66:e1:cc:65:a9:f8:c5:83: d3:aa:13:87:ca:90:09:4e:7b:d7:03:e1:80:3d:fb: 51:f7:c6:b0:c2:ed:9d:7f:52:4d:b0:1a:a8:f8:6c: 1e:8c:46:fa:e1:5e:b5:24:08:82:13:a1:37:de:81: 75:17:54:df:5c:b8:95:6f:f0:f2:f4:2e:5a:af:6d: a0:a7:b0:4e:2d:d7:56:67:0e:5d:dc:47:28:19:c9: 01:15:6c:37:35:90:43:6e:2b:3e:be:b6:3e:7a:d4: 77:fa:9e:f9:fb:af:3f:e7:b7:34:1f:fd:59:e1:13: 65:41:07:70:73:26:c7:bf:31:e0:c7:f5:e2:72:6b: 4d:90:5e:a7:62:66:08:89:cc:49:b8:29:7e:38:c7: 8d:6c:5a:08:64:ba:9e:e9:90:61:28:a2:92:9e:6e: 68:58:b8:7c:50:fa:0c:35:f5:7b:76:f5:8b:df:b2: 38:e1:de:93:c3:51:06:62:be:9b:71:42:e3:67:dc: df:92:03:ea:92:57:bc:a1:f9:ed:1b:6c:91:51:5a: 4f:10:55:79:dd:89:7f:e7:90:7d:0a:08:fa:d3:cb: 18:c6:0c:66:a2:bc:75:a0:54:0b:e2:b8:5b:9c:fe: 75:06:a0:b9:82:d9:46:44:f5:02:2e:49:f1:da:79: ed:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:AD:E5:B9:4F:54:79:42:F4:E8:86:F4:2D:6A:B6:90:E7:24:C4:58 X509v3 Authority Key Identifier: keyid:24:0E:D9:E7:AD:0A:83:82:9D:8F:1A:99:0C:9F:F9:4D:6A:10:6E:D7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/344/JA7Z560Kg4KdjxqZDJ_5TWoQbtc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/JA7Z560Kg4KdjxqZDJ_5TWoQbtc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/344/sa3luU9UeUL06Ib0LWq2kOckxFg.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 182.157.0.0/16 Signature Algorithm: sha256WithRSAEncryption 22:15:ad:41:12:54:67:7b:03:0d:a4:31:35:04:67:87:b6:34: e8:be:dd:ae:6e:c3:31:38:d6:37:25:ec:ec:55:45:8d:ed:f4: 63:3d:68:a6:8f:d8:8d:6e:b0:12:7f:47:61:22:b7:73:bc:10: 6b:ac:59:33:ed:cf:37:ea:fd:32:36:4b:03:31:08:28:1f:64: 2e:36:ed:e0:3f:66:b7:3d:7a:97:74:e1:86:f4:23:f6:0e:19: 8c:66:f9:1d:44:52:5e:6c:e6:88:6d:d0:15:5e:c0:03:73:ae: 9e:77:6a:8a:fa:19:2b:f4:d1:f4:ee:12:e4:a9:18:a9:5e:80: 43:fc:d6:88:d0:da:b2:61:14:55:ab:d0:f2:fa:f5:bb:92:d7: 52:68:89:e8:65:ef:f5:fa:38:a1:d5:3b:76:f8:bc:ea:64:63: 43:fd:70:03:f6:5d:05:05:0a:90:10:34:5a:7f:7f:28:b8:11: 46:dd:67:8f:7a:ee:21:ea:cd:05:61:18:df:b7:5d:b7:da:45: 8e:4e:15:21:80:a5:19:f2:20:8c:0e:11:e9:d7:7a:a8:b1:c8: 43:3f:4f:02:2e:31:e1:b6:a7:aa:34:53:10:c0:13:2c:9b:df: a2:29:c0:5f:56:9a:a3:b5:ef:c3:23:c4:b5:4d:64:55:99:2a: 3f:9c:38:b2 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgIBBjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygyNDBF RDlFN0FEMEE4MzgyOUQ4RjFBOTkwQzlGRjk0RDZBMTA2RUQ3MB4XDTI1MDgyNjAx MjE0MFoXDTI2MDgyNjAxMTgxNlowMzExMC8GA1UEAxMoQjFBREU1Qjk0RjU0Nzk0 MkY0RTg4NkY0MkQ2QUI2OTBFNzI0QzQ1ODCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKFohV3aQWbhzGWp+MWD06oTh8qQCU571wPhgD37UffGsMLtnX9S TbAaqPhsHoxG+uFetSQIghOhN96BdRdU31y4lW/w8vQuWq9toKewTi3XVmcOXdxH KBnJARVsNzWQQ24rPr62PnrUd/qe+fuvP+e3NB/9WeETZUEHcHMmx78x4Mf14nJr TZBep2JmCInMSbgpfjjHjWxaCGS6numQYSiikp5uaFi4fFD6DDX1e3b1i9+yOOHe k8NRBmK+m3FC42fc35ID6pJXvKH57RtskVFaTxBVed2Jf+eQfQoI+tPLGMYMZqK8 daBUC+K4W5z+dQaguYLZRkT1Ai5J8dp57fECAwEAAaOCAfAwggHsMB0GA1UdDgQW BBSxreW5T1R5QvTohvQtaraQ5yTEWDAfBgNVHSMEGDAWgBQkDtnnrQqDgp2PGpkM n/lNahBu1zAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFwGA1UdHwRVMFMwUaBP oE2GS3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8zNDQv SkE3WjU2MEtnNEtkanhxWkRKXzVUV29RYnRjLmNybDBjBggrBgEFBQcBAQRXMFUw UwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNE MDAwMC9KQTdaNTYwS2c0S2RqeHFaREpfNVRXb1FidGMuY2VyMA4GA1UdDwEB/wQE AwIHgDCBnAYIKwYBBQUHAQsEgY8wgYwwVwYIKwYBBQUHMAuGS3JzeW5jOi8vcnBr aS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8zNDQvc2EzbHVVOVVlVUwwNkli MExXcTJrT2NreEZnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNubmlj LmNuL3JyZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMD ALadMA0GCSqGSIb3DQEBCwUAA4IBAQAiFa1BElRnewMNpDE1BGeHtjTovt2ubsMx ONY3JezsVUWN7fRjPWimj9iNbrASf0dhIrdzvBBrrFkz7c836v0yNksDMQgoH2Qu Nu3gP2a3PXqXdOGG9CP2DhmMZvkdRFJebOaIbdAVXsADc66ed2qK+hkr9NH07hLk qRipXoBD/NaI0NqyYRRVq9Dy+vW7ktdSaInoZe/1+jih1Tt2+LzqZGND/XAD9l0F BQqQEDRaf38ouBFG3WePeu4h6s0FYRjft1232kWOThUhgKUZ8iCMDhHp13qoschD P08CLjHhtqeqNFMQwBMsm9+iKcBfVpqjte/DI8S1TWRVmSo/nDiy -----END CERTIFICATE-----Generated at Mon Sep 8 09:10:21 2025 by rpki-client