$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/5JaP3xdI9EJNKDMh9sds40sbE3g.roa File: 5JaP3xdI9EJNKDMh9sds40sbE3g.roa (raw, json) Hash identifier: XmtBBbcL1MD1cqqH8u/V4N0bdcZOtq0bNRPkkabvFfU= Subject key identifier: E4:96:8F:DF:17:48:F4:42:4D:28:33:21:F6:C7:6C:E3:4B:1B:13:78 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1EF0 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/5JaP3xdI9EJNKDMh9sds40sbE3g.roa Signing time: Sat 13 Sep 2025 03:05:38 +0000 ROA not before: Sat 13 Sep 2025 03:05:38 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 59083 IP address blocks: 103.10.0.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 00:35:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7920 (0x1ef0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:05:38 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=E4968FDF1748F4424D283321F6C76CE34B1B1378 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:5e:01:f3:e9:cd:4b:e9:39:99:b6:6d:5a:ad: 5b:28:e8:6a:65:9d:54:b6:b5:c4:23:bc:8a:a9:0c: 38:4e:1c:36:10:83:26:fe:a2:27:64:b5:50:d8:92: c3:10:b7:0a:e0:c6:f0:81:d1:14:69:f4:2a:fd:15: bd:f0:0b:96:8e:94:0f:15:12:e2:b0:fc:db:0f:06: 56:07:e0:f5:fa:d8:f8:10:9f:c3:12:b1:14:05:83: 13:e8:c9:f1:2b:a6:35:18:e2:11:e9:ef:97:4f:34: a2:5f:c9:ab:93:a4:60:ab:38:be:45:8d:b0:08:e0: 9a:d3:34:95:cf:5b:d3:d1:bf:26:c0:ba:45:27:c4: 33:d6:8e:e2:eb:c1:0e:05:af:94:20:0b:0e:56:cd: 1d:05:10:33:91:78:c0:35:a0:58:c5:a6:6b:ab:53: 79:4d:c0:e5:a0:17:9b:e5:75:f8:da:b0:c0:81:e0: f3:c1:85:50:b3:89:b2:77:86:82:1c:fc:af:c1:ed: 5b:78:0e:17:bf:22:3b:85:9f:8d:91:56:7e:c8:b9: 70:1e:87:47:6d:ad:a6:e9:25:1a:89:fc:39:d3:67: 44:d7:f7:91:c3:80:04:87:54:aa:2c:06:5b:0f:9e: 68:7f:1e:29:79:10:1b:fb:5a:19:03:32:36:28:bc: 8c:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:96:8F:DF:17:48:F4:42:4D:28:33:21:F6:C7:6C:E3:4B:1B:13:78 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/5JaP3xdI9EJNKDMh9sds40sbE3g.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.10.0.0/23 Signature Algorithm: sha256WithRSAEncryption 81:33:81:9d:fe:f3:a7:93:b0:6a:52:c8:4f:e9:96:63:3b:9d: f3:ee:8e:62:94:cf:cb:5c:6b:40:33:18:93:97:de:ba:9a:6d: 42:7b:71:f1:97:69:c6:11:be:1e:a5:85:4d:a5:6c:2b:89:e9: 05:2a:75:bd:57:f1:20:4f:8e:de:f1:ae:6a:d3:e2:11:4b:ab: 5e:0c:74:05:fe:06:b4:be:93:ec:ef:64:b0:f8:c6:26:bd:e1: 78:81:b7:72:64:8c:cd:b7:1b:4d:49:a4:d4:04:dd:84:d1:1f: f7:d2:14:b1:d2:6e:8a:a9:62:d9:14:33:b8:d0:a3:31:cf:60: 55:0b:f8:14:40:8f:e6:bb:93:92:83:f9:31:77:50:f8:c6:44: 86:d6:27:26:32:91:a8:0a:2c:a0:de:6e:8d:02:ae:33:26:e4: d9:83:b0:68:2b:a9:77:a1:f0:42:e0:f0:ed:69:58:4e:d5:75: 0d:64:84:65:1f:76:70:13:2f:67:66:fe:be:fc:8e:7c:2e:cc: 1e:74:04:13:1e:e6:5c:63:87:75:e2:d6:24:00:e4:68:21:cd: f0:23:6c:d7:26:4f:ad:65:40:76:a9:a4:a5:a9:0d:47:31:39: 1f:b7:50:16:2f:ad:0a:f4:2e:00:13:6f:14:5b:6b:f5:e3:e2: 3b:cf:ee:4b -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHvAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA1MzhaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEU0OTY4RkRGMTc0OEY0 NDI0RDI4MzMyMUY2Qzc2Q0UzNEIxQjEzNzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGXgHz6c1L6TmZtm1arVso6GplnVS2tcQjvIqpDDhOHDYQgyb+ oidktVDYksMQtwrgxvCB0RRp9Cr9Fb3wC5aOlA8VEuKw/NsPBlYH4PX62PgQn8MS sRQFgxPoyfErpjUY4hHp75dPNKJfyauTpGCrOL5FjbAI4JrTNJXPW9PRvybAukUn xDPWjuLrwQ4Fr5QgCw5WzR0FEDOReMA1oFjFpmurU3lNwOWgF5vldfjasMCB4PPB hVCzibJ3hoIc/K/B7Vt4Dhe/IjuFn42RVn7IuXAeh0dtrabpJRqJ/DnTZ0TX95HD gASHVKosBlsPnmh/Hil5EBv7WhkDMjYovIwlAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQU5JaP3xdI9EJNKDMh9sds40sbE3gwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3LzVKYVAzeGRJOUVKTktE TWg5c2RzNDBzYkUzZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnCgAwDQYJKoZIhvcNAQELBQADggEBAIEzgZ3+86eTsGpSyE/plmM7nfPujmKU z8tca0AzGJOX3rqabUJ7cfGXacYRvh6lhU2lbCuJ6QUqdb1X8SBPjt7xrmrT4hFL q14MdAX+BrS+k+zvZLD4xia94XiBt3JkjM23G01JpNQE3YTRH/fSFLHSboqpYtkU M7jQozHPYFUL+BRAj+a7k5KD+TF3UPjGRIbWJyYykagKLKDebo0CrjMm5NmDsGgr qXeh8ELg8O1pWE7VdQ1khGUfdnATL2dm/r78jnwuzB50BBMe5lxjh3Xi1iQA5Ggh zfAjbNcmT61lQHappKWpDUcxOR+3UBYvrQr0LgATbxRba/Xj4jvP7ks= -----END CERTIFICATE-----Generated at Mon Oct 20 23:27:42 2025 by rpki-client