$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/357/x5QVZDphAkH7CzFBCzLgL2MjOd0.roa File: x5QVZDphAkH7CzFBCzLgL2MjOd0.roa (raw, json) Hash identifier: 6A34zx0W2QnUlb/xF7z1XN5nspBMkkv6MUauraQMbQQ= Subject key identifier: C7:94:15:64:3A:61:02:41:FB:0B:31:41:0B:32:E0:2F:63:23:39:DD Certificate issuer: /CN=CE0A9CB02937B57DCE66A17FB84216D7ABE76434 Certificate serial: 1930 Authority key identifier: CE:0A:9C:B0:29:37:B5:7D:CE:66:A1:7F:B8:42:16:D7:AB:E7:64:34 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/zgqcsCk3tX3OZqF_uEIW16vnZDQ.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/357/x5QVZDphAkH7CzFBCzLgL2MjOd0.roa Signing time: Sat 06 Sep 2025 08:04:57 +0000 ROA not before: Sat 06 Sep 2025 08:04:57 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 37963 IP address blocks: 47.112.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/357/zgqcsCk3tX3OZqF_uEIW16vnZDQ.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/357/zgqcsCk3tX3OZqF_uEIW16vnZDQ.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/zgqcsCk3tX3OZqF_uEIW16vnZDQ.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6448 (0x1930) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CE0A9CB02937B57DCE66A17FB84216D7ABE76434 Validity Not Before: Sep 6 08:04:57 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=C79415643A610241FB0B31410B32E02F632339DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:4a:5b:9a:14:27:74:95:a9:dd:01:4f:42:d9: b9:38:f7:03:bd:04:50:0b:2e:70:59:01:fb:b6:52: 7c:27:99:f6:24:66:5e:8f:60:75:bb:08:a7:32:65: 4f:a8:17:44:d9:c0:67:b1:18:6a:98:62:94:b4:3f: 11:95:a1:86:22:4d:22:f9:f6:4f:3c:8b:60:9c:3c: 9e:3f:18:0d:38:e0:a1:3d:12:5b:f6:c9:4e:33:71: c3:6e:fc:42:41:66:d0:35:a8:9b:e2:de:98:7b:8d: dc:09:4a:39:a9:c5:d1:c5:2d:f3:30:f3:64:34:fe: 1b:62:b1:97:fe:00:62:b1:84:d8:60:9f:61:82:03: 42:d2:70:7e:32:fa:d9:d4:75:2e:07:ea:f7:4d:e7: 31:b3:45:8b:59:87:aa:6b:2c:15:29:e3:e4:e0:d5: d0:d1:f7:d9:ee:95:a1:2a:02:77:a3:72:23:b7:27: a6:31:d2:34:0a:eb:26:16:2a:bf:9b:34:41:57:0c: 44:17:41:f5:34:64:36:8e:3e:b2:4e:05:e9:ea:82: dc:97:d1:e4:3e:20:eb:b1:7f:6e:c3:4b:2f:6b:1e: 6a:33:ce:40:ba:f6:6c:8a:09:5c:4f:84:d8:c6:f6: 2c:2c:15:94:d1:c2:1c:b5:59:64:83:47:94:c1:4d: 53:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:94:15:64:3A:61:02:41:FB:0B:31:41:0B:32:E0:2F:63:23:39:DD X509v3 Authority Key Identifier: keyid:CE:0A:9C:B0:29:37:B5:7D:CE:66:A1:7F:B8:42:16:D7:AB:E7:64:34 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/357/zgqcsCk3tX3OZqF_uEIW16vnZDQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/zgqcsCk3tX3OZqF_uEIW16vnZDQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/357/x5QVZDphAkH7CzFBCzLgL2MjOd0.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 47.112.0.0/15 Signature Algorithm: sha256WithRSAEncryption ae:1b:aa:e6:38:ab:77:e9:61:c9:b2:d9:5f:75:aa:ae:12:8d: 10:ea:34:ae:ea:c2:17:e5:3c:b8:f3:f2:0d:97:68:87:64:9e: 0a:5e:6b:ce:cf:09:ed:80:11:0a:b1:a1:0c:77:7b:b7:91:2b: 22:ba:46:89:07:a0:cb:aa:58:c7:ba:5f:a9:d8:c5:2d:d1:bb: af:27:5a:fe:03:83:81:d4:e1:f9:a4:ed:8a:7f:54:66:17:7e: fd:4d:b0:81:09:4e:1a:c0:94:1f:d0:68:4a:f3:c2:d5:70:a6: 93:d7:03:fe:94:7b:14:2b:51:53:cb:79:f2:a1:1a:ee:b5:33: 50:58:ea:08:a5:ae:14:a8:65:c5:13:9d:f1:c0:a5:a7:fd:a1: e6:94:4a:e6:7e:36:b8:b2:9d:08:df:91:ee:36:e8:cf:cb:c3: c8:39:ac:b7:76:46:d1:a6:d9:fc:12:32:e0:e6:d3:30:43:7b: 31:e7:5c:68:d9:ee:f5:d3:01:5f:c4:df:d1:94:1b:89:ba:7d: 86:48:e4:52:3c:00:30:00:fa:c5:e2:50:dd:81:6b:8f:0a:d2: a9:f9:88:a0:07:b8:1e:09:3f:fd:98:c7:ff:92:c6:87:08:a7: db:15:30:31:e5:ce:07:aa:c7:73:a3:60:ef:31:94:6c:6d:fc: 1d:f2:6a:f4 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICGTAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0Uw QTlDQjAyOTM3QjU3RENFNjZBMTdGQjg0MjE2RDdBQkU3NjQzNDAeFw0yNTA5MDYw ODA0NTdaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEM3OTQxNTY0M0E2MTAy NDFGQjBCMzE0MTBCMzJFMDJGNjMyMzM5REQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDESluaFCd0landAU9C2bk49wO9BFALLnBZAfu2UnwnmfYkZl6P YHW7CKcyZU+oF0TZwGexGGqYYpS0PxGVoYYiTSL59k88i2CcPJ4/GA044KE9Elv2 yU4zccNu/EJBZtA1qJvi3ph7jdwJSjmpxdHFLfMw82Q0/htisZf+AGKxhNhgn2GC A0LScH4y+tnUdS4H6vdN5zGzRYtZh6prLBUp4+Tg1dDR99nulaEqAnejciO3J6Yx 0jQK6yYWKr+bNEFXDEQXQfU0ZDaOPrJOBenqgtyX0eQ+IOuxf27DSy9rHmozzkC6 9myKCVxPhNjG9iwsFZTRwhy1WWSDR5TBTVMPAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUx5QVZDphAkH7CzFBCzLgL2MjOd0wHwYDVR0jBBgwFoAUzgqcsCk3tX3OZqF/ uEIW16vnZDQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzU3 L3pncWNzQ2szdFgzT1pxRl91RUlXMTZ2blpEUS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvemdxY3NDazN0WDNPWnFGX3VFSVcxNnZuWkRRLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzU3L3g1UVZaRHBoQWtIN0N6 RkJDekxnTDJNak9kMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD AwEvcDANBgkqhkiG9w0BAQsFAAOCAQEArhuq5jird+lhybLZX3WqrhKNEOo0rurC F+U8uPPyDZdoh2SeCl5rzs8J7YARCrGhDHd7t5ErIrpGiQegy6pYx7pfqdjFLdG7 ryda/gODgdTh+aTtin9UZhd+/U2wgQlOGsCUH9BoSvPC1XCmk9cD/pR7FCtRU8t5 8qEa7rUzUFjqCKWuFKhlxROd8cClp/2h5pRK5n42uLKdCN+R7jboz8vDyDmst3ZG 0abZ/BIy4ObTMEN7MedcaNnu9dMBX8Tf0ZQbibp9hkjkUjwAMAD6xeJQ3YFrjwrS qfmIoAe4Hgk//ZjH/5LGhwin2xUwMeXOB6rHc6Ng7zGUbG38HfJq9A== -----END CERTIFICATE-----Generated at Mon Sep 8 14:25:16 2025 by rpki-client