$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/4_85mviPJ_6r-vIy8f5Lh1Vr14g.roa File: 4_85mviPJ_6r-vIy8f5Lh1Vr14g.roa (raw, json) Hash identifier: xrtL8/wWnv/R/JGs21MXksm+PzPGegIlytPSulYY0rU= Subject key identifier: E3:FF:39:9A:F8:8F:27:FE:AB:FA:F2:32:F1:FE:4B:87:55:6B:D7:88 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1E2D Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/4_85mviPJ_6r-vIy8f5Lh1Vr14g.roa Signing time: Sat 13 Sep 2025 03:04:54 +0000 ROA not before: Sat 13 Sep 2025 03:04:54 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 139259 IP address blocks: 103.221.6.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 00:35:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7725 (0x1e2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:04:54 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=E3FF399AF88F27FEABFAF232F1FE4B87556BD788 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:57:09:11:d2:37:b0:a7:33:0c:3c:a9:fa:7e: e7:54:23:da:4e:8e:28:fe:24:4b:09:57:2a:3f:d8: a4:7a:e9:89:3d:a8:57:ba:2c:1d:aa:55:1b:ed:7b: 81:1f:5a:2c:c0:ca:e6:b0:1b:26:2a:71:2f:06:b7: 40:4f:f5:4e:8d:9c:4d:dc:99:5b:ae:d7:e8:fc:3e: 45:99:d5:4f:2a:e3:92:1e:a8:8e:3f:19:cc:79:ec: 87:b4:64:90:1c:74:38:11:45:2f:d9:e3:2a:d7:83: 3d:39:e3:ef:30:6c:4d:31:85:b1:56:0f:10:de:b6: e2:f7:c5:34:b9:e5:12:83:f3:e7:94:43:a9:d2:b8: 3e:d1:d7:32:43:cf:f0:bc:db:47:77:ec:29:38:10: ab:f2:a9:12:be:99:7b:ab:b0:f2:a0:67:37:1a:ff: 46:f0:fc:6e:fb:a3:d9:83:78:3d:25:5b:b1:10:54: f5:7f:2b:ab:63:8d:e5:dc:90:df:58:fe:3e:0a:13: cc:04:fa:90:93:af:27:a8:1a:d0:3b:d1:05:5c:b8: b6:a9:d7:7a:02:3c:ea:bd:a2:02:d1:ad:55:7c:5d: 95:20:df:dc:08:7c:a3:91:e3:b2:18:89:98:d2:11: 77:fb:e8:4d:5e:4d:ca:89:cf:69:2c:31:91:50:b2: 91:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:FF:39:9A:F8:8F:27:FE:AB:FA:F2:32:F1:FE:4B:87:55:6B:D7:88 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/4_85mviPJ_6r-vIy8f5Lh1Vr14g.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.6.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:e7:cc:31:c8:92:bd:ab:90:24:ea:c4:fe:fb:43:07:bb:b9: eb:6e:9a:23:4a:50:f4:a5:74:bf:7f:da:e3:f7:bf:54:91:ca: c9:c0:b3:63:98:1b:b5:97:dc:1b:68:0d:3b:d3:b9:58:0e:f0: 8e:8e:12:e5:69:c4:68:3b:bd:28:0d:ff:09:16:8f:d4:dd:4e: 74:0f:06:29:86:2e:59:36:1c:d4:98:4a:5f:ca:79:64:89:e2: 5f:43:11:d9:a5:aa:9e:00:c5:e8:03:16:38:82:46:8a:c5:62: c7:3d:b0:b6:b8:8f:c6:6e:a7:c3:bd:7b:60:e8:65:f1:af:3b: 1f:cd:d9:45:52:1c:3e:96:fe:8d:3e:b9:48:1e:69:16:5a:29: 48:ea:09:d5:2d:3f:b9:f7:f3:2b:04:0e:84:56:8b:a6:2c:d0: 57:5d:3a:32:29:c3:ad:1d:7c:99:75:bc:5d:14:8b:23:44:16: 5c:1e:39:07:8b:bc:0a:b0:48:b2:4f:b6:cc:a3:98:4a:34:80: 62:31:66:bd:e8:f8:36:05:33:42:87:29:28:14:60:c1:30:13: 0d:1a:17:b9:e1:ba:0c:4d:0d:65:23:c2:d9:60:b2:d5:3b:f8: 3d:1a:bd:fc:2e:30:55:8f:c7:78:7d:c4:80:6b:ef:cb:7b:7e: 38:5c:24:4b -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHi0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA0NTRaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEUzRkYzOTlBRjg4RjI3 RkVBQkZBRjIzMkYxRkU0Qjg3NTU2QkQ3ODgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQVwkR0jewpzMMPKn6fudUI9pOjij+JEsJVyo/2KR66Yk9qFe6 LB2qVRvte4EfWizAyuawGyYqcS8Gt0BP9U6NnE3cmVuu1+j8PkWZ1U8q45IeqI4/ Gcx57Ie0ZJAcdDgRRS/Z4yrXgz054+8wbE0xhbFWDxDetuL3xTS55RKD8+eUQ6nS uD7R1zJDz/C820d37Ck4EKvyqRK+mXursPKgZzca/0bw/G77o9mDeD0lW7EQVPV/ K6tjjeXckN9Y/j4KE8wE+pCTryeoGtA70QVcuLap13oCPOq9ogLRrVV8XZUg39wI fKOR47IYiZjSEXf76E1eTcqJz2ksMZFQspG/AgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQU4/85mviPJ/6r+vIy8f5Lh1Vr14gwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3LzRfODVtdmlQSl82ci12 SXk4ZjVMaDFWcjE0Zy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn3QYwDQYJKoZIhvcNAQELBQADggEBAA/nzDHIkr2rkCTqxP77Qwe7uetumiNK UPSldL9/2uP3v1SRysnAs2OYG7WX3BtoDTvTuVgO8I6OEuVpxGg7vSgN/wkWj9Td TnQPBimGLlk2HNSYSl/KeWSJ4l9DEdmlqp4AxegDFjiCRorFYsc9sLa4j8Zup8O9 e2DoZfGvOx/N2UVSHD6W/o0+uUgeaRZaKUjqCdUtP7n38ysEDoRWi6Ys0FddOjIp w60dfJl1vF0UiyNEFlweOQeLvAqwSLJPtsyjmEo0gGIxZr3o+DYFM0KHKSgUYMEw Ew0aF7nhugxNDWUjwtlgstU7+D0avfwuMFWPx3h9xIBr78t7fjhcJEs= -----END CERTIFICATE-----Generated at Mon Oct 20 23:27:44 2025 by rpki-client