$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/344/uVEAKOrOie3LMJDWDVWn4PD-RrY.roa File: uVEAKOrOie3LMJDWDVWn4PD-RrY.roa (raw, json) Hash identifier: wq3kbTxQOLfauTr4JujFCoAVcaIROufsrnbX/Io0m6w= Subject key identifier: B9:51:00:28:EA:CE:89:ED:CB:30:90:D6:0D:55:A7:E0:F0:FE:46:B6 Certificate issuer: /CN=240ED9E7AD0A83829D8F1A990C9FF94D6A106ED7 Certificate serial: 04 Authority key identifier: 24:0E:D9:E7:AD:0A:83:82:9D:8F:1A:99:0C:9F:F9:4D:6A:10:6E:D7 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/JA7Z560Kg4KdjxqZDJ_5TWoQbtc.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/344/uVEAKOrOie3LMJDWDVWn4PD-RrY.roa Signing time: Tue 26 Aug 2025 01:21:39 +0000 ROA not before: Tue 26 Aug 2025 01:21:39 +0000 ROA not after: Wed 26 Aug 2026 01:18:16 +0000 asID: 9808 IP address blocks: 110.236.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/344/JA7Z560Kg4KdjxqZDJ_5TWoQbtc.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/344/JA7Z560Kg4KdjxqZDJ_5TWoQbtc.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/JA7Z560Kg4KdjxqZDJ_5TWoQbtc.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 10:05:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=240ED9E7AD0A83829D8F1A990C9FF94D6A106ED7 Validity Not Before: Aug 26 01:21:39 2025 GMT Not After : Aug 26 01:18:16 2026 GMT Subject: CN=B9510028EACE89EDCB3090D60D55A7E0F0FE46B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:fb:29:71:64:56:b7:28:ec:c9:37:2b:94:cf: 2e:00:40:b3:f0:65:2d:28:b1:6a:5a:d3:88:4f:11: 0e:23:93:4f:b9:d3:5e:6c:bf:28:1c:67:ed:5e:2f: e4:b3:8e:0d:c3:59:e0:7e:d9:b0:ed:f9:32:a1:4b: e2:0f:98:f5:fa:43:34:8b:86:bd:ae:23:36:ca:1e: 47:32:96:f7:37:9d:a4:b2:c6:04:ca:b7:18:21:21: d2:bc:1f:6c:13:94:51:1a:c3:8b:0f:06:88:93:af: dd:fa:4d:b2:17:d7:be:e7:32:5a:5f:6e:ae:b0:4d: 03:60:52:d5:7a:81:82:c2:9f:b0:78:df:13:38:b3: 72:4d:c0:df:19:40:9a:ff:9c:d4:5e:97:bc:60:41: b6:0b:ba:6e:06:93:af:df:81:76:ae:5a:79:59:32: f6:41:b6:03:30:69:3d:e8:04:c3:1f:36:57:75:08: 6c:36:7c:32:92:44:ed:95:bc:99:1a:6b:a1:a6:f0: dc:1f:4f:dd:3d:d6:4b:ad:13:09:dc:fb:ea:a4:c7: 2b:0e:11:99:9e:23:f9:78:8f:ad:36:b8:48:ff:12: 55:c9:39:f1:e1:4c:52:2f:2b:d2:73:92:2f:f0:d3: 33:ac:e2:95:d0:cd:bc:2d:7a:ae:78:bd:a7:6c:a2: b0:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:51:00:28:EA:CE:89:ED:CB:30:90:D6:0D:55:A7:E0:F0:FE:46:B6 X509v3 Authority Key Identifier: keyid:24:0E:D9:E7:AD:0A:83:82:9D:8F:1A:99:0C:9F:F9:4D:6A:10:6E:D7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/344/JA7Z560Kg4KdjxqZDJ_5TWoQbtc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/JA7Z560Kg4KdjxqZDJ_5TWoQbtc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/344/uVEAKOrOie3LMJDWDVWn4PD-RrY.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 110.236.0.0/15 Signature Algorithm: sha256WithRSAEncryption 20:e6:f7:61:1e:f8:08:73:d5:0a:fd:44:a9:eb:6e:b0:42:ca: e6:a2:b0:9a:00:e0:58:a0:3b:66:24:6c:b3:06:73:d6:dc:71: 66:e6:13:80:97:c9:7a:18:2c:16:2a:30:04:dd:0c:41:c9:e0: 53:91:3f:c7:07:ab:48:a7:86:84:41:d6:80:df:c3:3f:51:7f: 3c:8f:4a:1b:15:ce:e0:5e:21:c3:40:a3:05:9f:6e:19:f9:52: 56:bb:bc:82:76:d0:3b:82:33:5e:1c:b5:94:ff:df:17:5e:c3: 89:49:68:35:67:89:0a:c4:21:1c:10:26:01:83:6f:1e:cc:ec: a2:61:9c:35:f4:fa:8b:38:ee:71:07:18:bd:cf:19:98:85:4e: 5e:91:81:33:95:1b:03:b0:39:c2:2f:1b:0b:0f:ba:e6:4b:ad: a5:13:3d:23:92:1a:b4:5f:98:8a:4a:cd:14:d2:28:bb:87:1f: c4:3a:e1:41:cf:1d:ec:fe:be:31:b4:f4:8e:73:5c:3e:c3:87: 18:8d:ba:55:5b:eb:f3:be:39:c6:0e:8d:70:50:fe:cb:07:c5: 97:57:78:4e:34:42:65:da:05:ca:05:b2:c9:f7:2b:18:98:a4: 68:56:ae:ac:45:4c:91:03:69:61:cb:8d:b4:cc:34:1b:9d:c0: 25:0c:b7:15 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgIBBDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygyNDBF RDlFN0FEMEE4MzgyOUQ4RjFBOTkwQzlGRjk0RDZBMTA2RUQ3MB4XDTI1MDgyNjAx MjEzOVoXDTI2MDgyNjAxMTgxNlowMzExMC8GA1UEAxMoQjk1MTAwMjhFQUNFODlF RENCMzA5MEQ2MEQ1NUE3RTBGMEZFNDZCNjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALr7KXFkVrco7Mk3K5TPLgBAs/BlLSixalrTiE8RDiOTT7nTXmy/ KBxn7V4v5LOODcNZ4H7ZsO35MqFL4g+Y9fpDNIuGva4jNsoeRzKW9zedpLLGBMq3 GCEh0rwfbBOUURrDiw8GiJOv3fpNshfXvucyWl9urrBNA2BS1XqBgsKfsHjfEziz ck3A3xlAmv+c1F6XvGBBtgu6bgaTr9+Bdq5aeVky9kG2AzBpPegEwx82V3UIbDZ8 MpJE7ZW8mRproabw3B9P3T3WS60TCdz76qTHKw4RmZ4j+XiPrTa4SP8SVck58eFM Ui8r0nOSL/DTM6zildDNvC16rni9p2yisJ8CAwEAAaOCAfAwggHsMB0GA1UdDgQW BBS5UQAo6s6J7cswkNYNVafg8P5GtjAfBgNVHSMEGDAWgBQkDtnnrQqDgp2PGpkM n/lNahBu1zAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFwGA1UdHwRVMFMwUaBP oE2GS3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8zNDQv SkE3WjU2MEtnNEtkanhxWkRKXzVUV29RYnRjLmNybDBjBggrBgEFBQcBAQRXMFUw UwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNE MDAwMC9KQTdaNTYwS2c0S2RqeHFaREpfNVRXb1FidGMuY2VyMA4GA1UdDwEB/wQE AwIHgDCBnAYIKwYBBQUHAQsEgY8wgYwwVwYIKwYBBQUHMAuGS3JzeW5jOi8vcnBr aS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8zNDQvdVZFQUtPck9pZTNMTUpE V0RWV240UEQtUnJZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNubmlj LmNuL3JyZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMD AW7sMA0GCSqGSIb3DQEBCwUAA4IBAQAg5vdhHvgIc9UK/USp626wQsrmorCaAOBY oDtmJGyzBnPW3HFm5hOAl8l6GCwWKjAE3QxByeBTkT/HB6tIp4aEQdaA38M/UX88 j0obFc7gXiHDQKMFn24Z+VJWu7yCdtA7gjNeHLWU/98XXsOJSWg1Z4kKxCEcECYB g28ezOyiYZw19PqLOO5xBxi9zxmYhU5ekYEzlRsDsDnCLxsLD7rmS62lEz0jkhq0 X5iKSs0U0ii7hx/EOuFBzx3s/r4xtPSOc1w+w4cYjbpVW+vzvjnGDo1wUP7LB8WX V3hONEJl2gXKBbLJ9ysYmKRoVq6sRUyRA2lhy420zDQbncAlDLcV -----END CERTIFICATE-----Generated at Mon Sep 8 09:12:39 2025 by rpki-client