$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/5pTUoDJ33zcuo9-QTynyoVEqHJI.roa File: 5pTUoDJ33zcuo9-QTynyoVEqHJI.roa (raw, json) Hash identifier: KbTKspQW+iSoG/PnSt4kM/NLSKY5e3Gc3PR6B6m9IQ0= Subject key identifier: E6:94:D4:A0:32:77:DF:37:2E:A3:DF:90:4F:29:F2:A1:51:2A:1C:92 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1E4E Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/5pTUoDJ33zcuo9-QTynyoVEqHJI.roa Signing time: Sat 13 Sep 2025 03:05:01 +0000 ROA not before: Sat 13 Sep 2025 03:05:01 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 139259 IP address blocks: 103.221.36.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7758 (0x1e4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:05:01 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=E694D4A03277DF372EA3DF904F29F2A1512A1C92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:f4:01:4d:22:1e:aa:ff:22:d0:c2:94:45:e1: 4a:a9:24:f0:94:59:b4:4e:61:b4:80:f0:42:a0:4c: 6a:f8:c7:cf:cf:56:e3:77:09:18:2b:05:30:9d:ed: 58:3f:ed:a9:3b:4b:fe:98:5c:b8:2b:67:dd:6d:90: 28:29:d5:e9:1b:03:50:d6:31:52:4d:cf:7e:19:7f: 4d:73:bf:14:b9:09:94:35:77:2d:e6:07:0e:ea:3c: 5e:c5:f3:88:04:4b:d8:f3:f5:e6:1b:02:c6:10:ed: 39:d7:2f:19:7a:7b:e8:f6:2d:ec:2a:68:6b:c3:2e: 50:4f:52:07:1c:6c:6b:da:89:00:3d:5a:89:a4:4c: 08:7d:40:20:c7:83:a5:0b:ad:5a:ac:22:a8:cd:a0: b3:02:78:75:4d:0c:35:57:c2:58:bb:ea:0d:74:b8: ea:b5:3a:bc:e8:fc:55:4f:5c:9d:8c:15:d7:08:1a: 23:f6:ac:58:d5:63:33:e9:68:4b:da:dd:21:41:0f: 8a:4c:fa:2c:20:e3:88:ae:4d:9f:cc:30:fd:a7:58: 8d:34:9e:9d:f7:90:5d:00:f9:74:bd:cd:f0:21:67: 67:de:46:64:79:02:0b:5b:7c:5e:52:c8:7a:a4:bd: 63:e1:48:d2:4e:71:e1:37:0d:35:90:e4:1d:0d:4d: a4:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:94:D4:A0:32:77:DF:37:2E:A3:DF:90:4F:29:F2:A1:51:2A:1C:92 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/5pTUoDJ33zcuo9-QTynyoVEqHJI.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.36.0/22 Signature Algorithm: sha256WithRSAEncryption be:15:b6:0e:c3:1a:d2:5c:46:f4:a4:ca:56:1a:55:36:2d:97: e9:ee:3e:3b:9f:d3:78:f2:14:83:67:e8:a6:83:dc:c6:c8:45: 69:0e:87:10:75:05:e6:5b:cf:aa:9d:8b:b8:69:8a:fb:30:65: bc:67:32:d3:28:64:43:bd:1b:47:b2:48:d9:9f:ff:8e:53:e8: 1c:90:cf:54:73:61:2d:b3:29:1d:69:77:74:e5:fb:03:86:06: f8:ed:c6:cf:7f:39:52:34:41:df:05:22:06:28:24:51:1d:07: 59:7e:9c:68:8e:c3:7b:dd:8c:c1:3e:8a:63:01:45:38:99:be: 54:78:34:53:bd:27:a7:17:dd:02:f7:59:52:64:c1:ab:de:f5: c5:b8:58:dc:0c:42:ab:6a:cf:01:e1:84:72:69:96:18:74:db: 1f:58:b6:e9:61:5b:3f:4d:44:6b:70:ed:e4:ab:a3:76:6b:d5: 23:11:58:11:f9:d9:32:eb:cd:62:f9:7c:82:f8:77:e4:60:b4: ff:84:2f:85:6e:8a:a5:04:0d:2d:eb:57:c4:50:51:a7:42:5a: 34:b7:0f:b8:d2:d5:45:b1:dc:f9:a9:03:3c:d7:30:1e:26:ab: 6b:ed:f2:61:d0:ee:80:3e:68:de:1c:22:76:d9:56:4c:00:65: e5:66:b8:d2 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHk4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA1MDFaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEU2OTRENEEwMzI3N0RG MzcyRUEzREY5MDRGMjlGMkExNTEyQTFDOTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCz9AFNIh6q/yLQwpRF4UqpJPCUWbROYbSA8EKgTGr4x8/PVuN3 CRgrBTCd7Vg/7ak7S/6YXLgrZ91tkCgp1ekbA1DWMVJNz34Zf01zvxS5CZQ1dy3m Bw7qPF7F84gES9jz9eYbAsYQ7TnXLxl6e+j2LewqaGvDLlBPUgccbGvaiQA9Womk TAh9QCDHg6ULrVqsIqjNoLMCeHVNDDVXwli76g10uOq1Orzo/FVPXJ2MFdcIGiP2 rFjVYzPpaEva3SFBD4pM+iwg44iuTZ/MMP2nWI00np33kF0A+XS9zfAhZ2feRmR5 AgtbfF5SyHqkvWPhSNJOceE3DTWQ5B0NTaTvAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQU5pTUoDJ33zcuo9+QTynyoVEqHJIwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3LzVwVFVvREozM3pjdW85 LVFUeW55b1ZFcUhKSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJn3SQwDQYJKoZIhvcNAQELBQADggEBAL4Vtg7DGtJcRvSkylYaVTYtl+nuPjuf 03jyFINn6KaD3MbIRWkOhxB1BeZbz6qdi7hpivswZbxnMtMoZEO9G0eySNmf/45T 6ByQz1RzYS2zKR1pd3Tl+wOGBvjtxs9/OVI0Qd8FIgYoJFEdB1l+nGiOw3vdjME+ imMBRTiZvlR4NFO9J6cX3QL3WVJkwave9cW4WNwMQqtqzwHhhHJplhh02x9Ytulh Wz9NRGtw7eSro3Zr1SMRWBH52TLrzWL5fIL4d+RgtP+EL4VuiqUEDS3rV8RQUadC WjS3D7jS1UWx3PmpAzzXMB4mq2vt8mHQ7oA+aN4cInbZVkwAZeVmuNI= -----END CERTIFICATE-----Generated at Mon Oct 20 13:30:43 2025 by rpki-client