$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/6BjhRiHLOFomHxWN8e1lJA-wpEY.roa File: 6BjhRiHLOFomHxWN8e1lJA-wpEY.roa (raw, json) Hash identifier: jtfnGXKFJDoxaWQ1nWqa/CLdTUbBUAfaw1fD8K6NyIs= Subject key identifier: E8:18:E1:46:21:CB:38:5A:26:1F:15:8D:F1:ED:65:24:0F:B0:A4:46 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1E1B Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/6BjhRiHLOFomHxWN8e1lJA-wpEY.roa Signing time: Sat 13 Sep 2025 03:04:51 +0000 ROA not before: Sat 13 Sep 2025 03:04:51 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 139259 IP address blocks: 103.221.16.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7707 (0x1e1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:04:51 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=E818E14621CB385A261F158DF1ED65240FB0A446 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:74:a4:56:c9:d4:b8:1c:69:86:2d:d3:55:b3: 77:8e:37:9e:7e:b8:14:d4:9b:c9:22:55:fa:d7:14: f4:ed:ff:e2:cc:7f:bf:d1:69:13:d5:76:f3:78:c1: 93:81:45:0b:bb:a4:1c:c4:99:6e:36:0b:69:6d:80: f2:d6:f2:00:c8:1f:46:c8:11:28:83:18:6a:30:0e: d3:1b:57:61:fb:aa:07:0e:ab:06:d4:71:95:8d:ce: fe:5b:e7:f8:5b:ab:47:0c:a3:6f:ce:1f:65:19:96: 05:14:eb:c7:6d:4a:08:42:a0:2f:c9:12:f1:55:1f: eb:96:e8:3e:5f:ff:c8:0a:9c:54:e6:69:12:81:fa: bf:59:24:c2:ad:5d:d1:1b:0e:ad:0c:44:22:c1:f7: 43:29:7a:4d:6f:77:fe:86:36:24:bb:a6:b5:28:42: 0f:aa:50:36:ff:84:91:24:bd:7b:6e:44:77:e9:fb: e9:75:c7:f7:94:22:3c:fd:84:35:61:c8:1c:95:56: fb:63:87:8f:86:66:0d:7e:ba:d3:82:01:44:85:23: e4:b0:16:4b:f9:b6:b5:0c:96:d2:bc:74:05:db:25: e9:3d:9e:ee:1d:3b:4b:6f:f0:92:61:6c:ad:aa:af: 4b:e3:31:06:13:02:ee:e6:71:24:74:69:00:97:18: 3d:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:18:E1:46:21:CB:38:5A:26:1F:15:8D:F1:ED:65:24:0F:B0:A4:46 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/6BjhRiHLOFomHxWN8e1lJA-wpEY.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.16.0/22 Signature Algorithm: sha256WithRSAEncryption 98:dd:fe:3b:5c:0c:50:b1:fb:73:8f:bc:07:93:67:41:54:85: 83:95:be:fb:2e:15:23:26:17:47:4d:fa:08:b8:38:6f:3c:f8: c7:05:9a:ca:ea:08:44:74:aa:b4:a6:44:43:f6:53:dd:e8:17: 60:3a:21:3d:ee:af:74:ba:70:17:6b:ef:34:33:10:37:16:4c: d7:3e:2e:3a:44:3b:a7:94:6a:b9:9c:62:29:c6:d7:48:e9:d7: 9f:90:09:75:94:e3:c8:f8:3f:8f:f1:22:3b:58:a7:c1:a1:77: 41:50:a0:8c:10:5c:3a:d4:4c:95:8e:46:a4:8e:ee:99:ce:d8: 15:02:87:3d:93:97:e2:3a:17:35:3c:7a:d7:cc:6e:03:b7:ec: 9b:33:12:f1:72:4b:36:a2:ff:17:d8:dc:c4:02:ef:fb:ea:d1: e5:3b:a9:d8:11:48:3f:8c:92:f0:b4:1d:a9:36:78:c7:12:1b: 99:b3:cd:91:09:f2:1d:dd:a8:46:2e:4b:26:f8:37:5c:37:2b: d1:17:16:f5:9d:79:fd:95:2b:85:c8:95:9b:08:8d:57:0e:2e: 21:cb:e3:49:d5:3e:bf:ea:18:29:1f:4c:2d:ab:92:69:08:5c: d9:6d:f0:84:35:e8:61:15:25:14:d7:5d:39:65:3e:53:02:21: 91:16:e4:db -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHhswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA0NTFaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEU4MThFMTQ2MjFDQjM4 NUEyNjFGMTU4REYxRUQ2NTI0MEZCMEE0NDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0dKRWydS4HGmGLdNVs3eON55+uBTUm8kiVfrXFPTt/+LMf7/R aRPVdvN4wZOBRQu7pBzEmW42C2ltgPLW8gDIH0bIESiDGGowDtMbV2H7qgcOqwbU cZWNzv5b5/hbq0cMo2/OH2UZlgUU68dtSghCoC/JEvFVH+uW6D5f/8gKnFTmaRKB +r9ZJMKtXdEbDq0MRCLB90Mpek1vd/6GNiS7prUoQg+qUDb/hJEkvXtuRHfp++l1 x/eUIjz9hDVhyByVVvtjh4+GZg1+utOCAUSFI+SwFkv5trUMltK8dAXbJek9nu4d O0tv8JJhbK2qr0vjMQYTAu7mcSR0aQCXGD1TAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQU6BjhRiHLOFomHxWN8e1lJA+wpEYwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3LzZCamhSaUhMT0ZvbUh4 V044ZTFsSkEtd3BFWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJn3RAwDQYJKoZIhvcNAQELBQADggEBAJjd/jtcDFCx+3OPvAeTZ0FUhYOVvvsu FSMmF0dN+gi4OG88+McFmsrqCER0qrSmREP2U93oF2A6IT3ur3S6cBdr7zQzEDcW TNc+LjpEO6eUarmcYinG10jp15+QCXWU48j4P4/xIjtYp8Ghd0FQoIwQXDrUTJWO RqSO7pnO2BUChz2Tl+I6FzU8etfMbgO37JszEvFySzai/xfY3MQC7/vq0eU7qdgR SD+MkvC0Hak2eMcSG5mzzZEJ8h3dqEYuSyb4N1w3K9EXFvWdef2VK4XIlZsIjVcO LiHL40nVPr/qGCkfTC2rkmkIXNlt8IQ16GEVJRTXXTllPlMCIZEW5Ns= -----END CERTIFICATE-----Generated at Mon Oct 20 13:13:44 2025 by rpki-client