$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/5eqxHuvEq2cAwOO49MfJdV8DQZM.roa File: 5eqxHuvEq2cAwOO49MfJdV8DQZM.roa (raw, json) Hash identifier: WQbWHLUN2DJQVg+naxgVve6eZ0D+LQD3mg3wAZWFWD8= Subject key identifier: E5:EA:B1:1E:EB:C4:AB:67:00:C0:E3:B8:F4:C7:C9:75:5F:03:41:93 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1DF4 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/5eqxHuvEq2cAwOO49MfJdV8DQZM.roa Signing time: Sat 13 Sep 2025 03:04:44 +0000 ROA not before: Sat 13 Sep 2025 03:04:44 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 138527 IP address blocks: 103.221.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7668 (0x1df4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:04:44 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=E5EAB11EEBC4AB6700C0E3B8F4C7C9755F034193 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:2c:1c:63:66:d5:5a:60:f6:3c:4a:77:fd:79: 35:73:18:8c:24:e8:a6:ea:e5:8a:da:de:d9:e9:a1: 3a:58:b7:9d:1f:ee:ba:f7:f9:da:d8:46:4e:a2:ca: 30:e0:9b:c5:25:62:de:2f:9d:4a:13:c1:9b:7e:90: 86:c0:64:e6:23:99:da:c1:d1:a2:7c:86:50:c8:69: b3:3d:00:14:af:21:86:0f:f2:b6:f2:b4:42:98:3a: 20:0c:8d:1f:09:71:49:64:0d:d4:49:59:d5:73:78: ab:dd:6e:69:2c:df:38:5a:9b:a0:ad:68:f0:f3:66: d3:d8:f3:80:2b:42:25:09:13:5f:b6:4b:1e:36:5f: a8:8a:7d:a0:da:6f:ed:5e:5d:a6:09:f4:ee:42:42: d1:01:67:4f:4e:da:59:40:ae:e3:fe:96:4d:27:6a: f8:57:f4:71:19:4d:eb:04:6b:cb:19:d0:72:2a:9e: 85:94:ce:4b:93:60:bf:20:5d:9c:04:58:95:bc:ce: 9d:ba:2c:b2:86:57:c6:4e:bb:e7:0b:3e:1d:3b:75: 66:82:fe:f8:fa:11:f9:7a:68:68:ef:6d:80:f3:c0: 42:1e:2a:97:f7:dd:26:28:db:ac:41:e8:49:54:fc: db:4a:08:ef:ab:ba:74:55:b0:9e:90:e4:4a:4f:05: af:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:EA:B1:1E:EB:C4:AB:67:00:C0:E3:B8:F4:C7:C9:75:5F:03:41:93 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/5eqxHuvEq2cAwOO49MfJdV8DQZM.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.4.0/22 Signature Algorithm: sha256WithRSAEncryption 0a:01:1d:74:ba:98:18:89:cd:e1:ef:72:d1:1b:09:98:cd:66: 23:b5:26:32:de:c8:d9:f6:b3:69:d3:b7:de:21:b6:85:dc:33: bb:9c:df:f6:5d:ce:71:a2:70:49:8a:34:d7:f6:ce:be:f4:e6: 0c:13:45:51:c3:04:dc:f1:e2:9d:51:32:20:1f:53:0f:8d:88: 30:7b:d6:ab:26:5d:a7:7c:7b:30:98:4d:65:39:3a:8e:fe:ef: ca:b8:34:f1:e7:3c:ae:59:e0:2b:46:98:8e:9d:f5:df:bc:06: 26:a3:ad:b3:cd:a6:5e:6c:e5:eb:fe:1a:11:16:db:9d:83:2c: 17:e5:04:c4:2c:27:a2:27:28:1c:7e:60:d7:d7:48:5f:9f:c9: ea:a8:71:ae:b3:87:66:45:c8:e4:ac:c7:1b:69:16:3d:fe:13: e5:4a:f8:c8:a9:65:11:7f:94:ae:e0:8c:f2:52:e5:43:75:e8: 53:9d:91:32:2d:2b:ec:11:5a:ae:99:4e:cc:4e:cf:43:a6:23: 90:3d:0b:ad:81:f6:57:d3:48:9b:a6:38:28:25:7f:93:23:f1: ce:0e:97:88:61:00:9e:d7:d6:40:ad:3b:97:2d:5e:ff:d0:bc: 67:f5:00:1a:10:50:26:ae:1c:8d:92:74:02:2f:51:ae:3c:50: c8:bf:6d:a8 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHfQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA0NDRaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEU1RUFCMTFFRUJDNEFC NjcwMEMwRTNCOEY0QzdDOTc1NUYwMzQxOTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqLBxjZtVaYPY8Snf9eTVzGIwk6Kbq5Yra3tnpoTpYt50f7rr3 +drYRk6iyjDgm8UlYt4vnUoTwZt+kIbAZOYjmdrB0aJ8hlDIabM9ABSvIYYP8rby tEKYOiAMjR8JcUlkDdRJWdVzeKvdbmks3zham6CtaPDzZtPY84ArQiUJE1+2Sx42 X6iKfaDab+1eXaYJ9O5CQtEBZ09O2llAruP+lk0navhX9HEZTesEa8sZ0HIqnoWU zkuTYL8gXZwEWJW8zp26LLKGV8ZOu+cLPh07dWaC/vj6Efl6aGjvbYDzwEIeKpf3 3SYo26xB6ElU/NtKCO+runRVsJ6Q5EpPBa+zAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQU5eqxHuvEq2cAwOO49MfJdV8DQZMwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3LzVlcXhIdXZFcTJjQXdP TzQ5TWZKZFY4RFFaTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJn3QQwDQYJKoZIhvcNAQELBQADggEBAAoBHXS6mBiJzeHvctEbCZjNZiO1JjLe yNn2s2nTt94htoXcM7uc3/ZdznGicEmKNNf2zr705gwTRVHDBNzx4p1RMiAfUw+N iDB71qsmXad8ezCYTWU5Oo7+78q4NPHnPK5Z4CtGmI6d9d+8BiajrbPNpl5s5ev+ GhEW252DLBflBMQsJ6InKBx+YNfXSF+fyeqoca6zh2ZFyOSsxxtpFj3+E+VK+Mip ZRF/lK7gjPJS5UN16FOdkTItK+wRWq6ZTsxOz0OmI5A9C62B9lfTSJumOCglf5Mj 8c4Ol4hhAJ7X1kCtO5ctXv/QvGf1ABoQUCauHI2SdAIvUa48UMi/bag= -----END CERTIFICATE-----Generated at Mon Oct 20 13:13:35 2025 by rpki-client