$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/1E0n4ROZj5qS1mv3Psb2nYulmJ4.roa File: 1E0n4ROZj5qS1mv3Psb2nYulmJ4.roa (raw, json) Hash identifier: qhmNRZc3ESeMJG2OfLqEuQh9vQeNOyj9lfUcEXerXMg= Subject key identifier: D4:4D:27:E1:13:99:8F:9A:92:D6:6B:F7:3E:C6:F6:9D:8B:A5:98:9E Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA Certificate serial: 7F91 Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/1E0n4ROZj5qS1mv3Psb2nYulmJ4.roa Signing time: Wed 06 Aug 2025 07:33:15 +0000 ROA not before: Wed 06 Aug 2025 07:33:15 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 24426 IP address blocks: 110.44.144.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 14:33:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32657 (0x7f91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA Validity Not Before: Aug 6 07:33:15 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=D44D27E113998F9A92D66BF73EC6F69D8BA5989E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:7d:9f:1c:a4:4e:0e:05:77:3a:4e:02:58:fc: 7c:dd:67:e3:88:29:f1:cc:41:8f:58:c0:95:6e:f7: 28:ba:66:7d:0c:52:c7:8e:e3:be:ae:74:9b:bd:33: 5f:5a:b1:3a:37:3c:2e:c9:48:69:3e:3c:0d:53:e7: 17:d9:99:26:63:42:da:d5:a1:40:cf:a0:c3:3a:b1: 98:11:6c:90:22:e6:a9:c3:ea:82:28:69:07:5e:24: 6b:83:88:ae:d0:46:74:ba:f7:32:61:b6:04:11:96: f5:2a:6b:03:ef:88:e9:20:44:67:e7:1f:50:7d:83: d2:38:43:94:7c:e6:1c:30:fc:44:40:fa:72:76:16: 6f:2d:30:7c:25:d8:14:d3:e5:24:c1:29:71:9a:07: a1:f4:a5:0b:c0:d9:10:71:e9:a0:97:11:02:3c:3e: f2:a6:04:ad:61:a1:bd:5e:bb:a8:88:7b:6f:f2:8a: 09:3f:f9:b8:84:a1:f8:81:e0:3b:42:11:f0:01:30: 40:26:b0:b5:1c:64:dd:3a:52:f4:ef:a1:b8:a7:ac: bb:95:87:fb:1b:d6:1b:84:b8:9c:2b:7f:e1:ed:19: 45:38:75:bc:59:09:72:90:03:ef:c7:ce:aa:4a:ec: 62:d8:15:75:ec:99:bd:bd:56:5d:d0:6c:0b:f4:eb: e8:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:4D:27:E1:13:99:8F:9A:92:D6:6B:F7:3E:C6:F6:9D:8B:A5:98:9E X509v3 Authority Key Identifier: keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/1E0n4ROZj5qS1mv3Psb2nYulmJ4.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 110.44.144.0/20 Signature Algorithm: sha256WithRSAEncryption 48:01:54:b5:44:c6:29:d0:e4:ba:e3:5e:dd:ec:b5:95:c2:bb: 87:40:70:b7:b0:71:57:53:3b:f1:96:75:49:61:c8:22:e6:6e: 3f:bd:b0:43:fc:86:8c:05:c4:df:4b:8a:3f:ef:d7:57:92:d8: f8:e9:20:cf:34:10:f5:7b:a0:fd:3b:de:96:00:04:8e:44:d9: fa:c4:62:2e:0b:e9:14:b5:cc:d0:48:2c:7a:98:5a:ba:6f:9c: 58:e8:56:86:85:a3:a0:65:0b:aa:65:9d:3e:bf:0d:53:86:ef: 2b:c4:41:53:5c:32:2c:36:73:3b:db:3e:d8:0c:e9:dd:ab:d1: 33:3c:27:3a:3b:fa:1b:4d:3a:93:13:d5:60:ea:fc:e9:e3:b7: c2:89:47:d9:2f:d0:8d:92:0a:a3:58:29:64:b2:09:1d:86:97: f5:ca:0a:9f:09:94:ae:57:2a:5c:15:61:ca:a2:42:42:98:77: 3c:d6:31:05:1c:be:cf:b7:b4:76:75:f0:85:7b:b4:44:04:00: 4e:d3:94:c4:0e:62:ce:07:dc:1e:45:af:77:ba:43:43:4b:24: 56:e2:c9:9e:b7:69:9b:96:f0:33:02:7c:4c:b7:fe:f8:9e:6e: 63:a8:a4:00:1c:8f:83:21:08:c7:14:58:46:39:7c:bf:62:7d: d0:07:39:22 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICf5EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkRF QkVEODY0MENCQTY1OTNEQTlGOUEzREQyMjhEMzg5MTI0NThFQTAeFw0yNTA4MDYw NzMzMTVaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKEQ0NEQyN0UxMTM5OThG OUE5MkQ2NkJGNzNFQzZGNjlEOEJBNTk4OUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDefZ8cpE4OBXc6TgJY/HzdZ+OIKfHMQY9YwJVu9yi6Zn0MUseO 476udJu9M19asTo3PC7JSGk+PA1T5xfZmSZjQtrVoUDPoMM6sZgRbJAi5qnD6oIo aQdeJGuDiK7QRnS69zJhtgQRlvUqawPviOkgRGfnH1B9g9I4Q5R85hww/ERA+nJ2 Fm8tMHwl2BTT5STBKXGaB6H0pQvA2RBx6aCXEQI8PvKmBK1hob1eu6iIe2/yigk/ +biEofiB4DtCEfABMEAmsLUcZN06UvTvobinrLuVh/sb1huEuJwrf+HtGUU4dbxZ CXKQA+/HzqpK7GLYFXXsmb29Vl3QbAv06+jnAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQU1E0n4ROZj5qS1mv3Psb2nYulmJ4wHwYDVR0jBBgwFoAUvevthkDLplk9qfmj 3SKNOJEkWOowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3 L3ZldnRoa0RMcGxrOXFmbWozU0tOT0pFa1dPby5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvdmV2dGhrRExwbGs5cWZtajNTS05PSkVrV09vLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3LzFFMG40Uk9aajVxUzFt djNQc2Iybll1bG1KNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BARuLJAwDQYJKoZIhvcNAQELBQADggEBAEgBVLVExinQ5LrjXt3stZXCu4dAcLew cVdTO/GWdUlhyCLmbj+9sEP8howFxN9Lij/v11eS2PjpIM80EPV7oP073pYABI5E 2frEYi4L6RS1zNBILHqYWrpvnFjoVoaFo6BlC6plnT6/DVOG7yvEQVNcMiw2czvb PtgM6d2r0TM8Jzo7+htNOpMT1WDq/Onjt8KJR9kv0I2SCqNYKWSyCR2Gl/XKCp8J lK5XKlwVYcqiQkKYdzzWMQUcvs+3tHZ18IV7tEQEAE7TlMQOYs4H3B5Fr3e6Q0NL JFbiyZ63aZuW8DMCfEy3/viebmOopAAcj4MhCMcUWEY5fL9ifdAHOSI= -----END CERTIFICATE-----Generated at Thu Aug 14 11:06:03 2025 by rpki-client