$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/6E5KB9XYuOyQ-DImrz5TTR0kCVw.roa File: 6E5KB9XYuOyQ-DImrz5TTR0kCVw.roa (raw, json) Hash identifier: 86Qkr8aef9yAekvdmH0uvow10UJoa140u1BZMqam744= Subject key identifier: E8:4E:4A:07:D5:D8:B8:EC:90:F8:32:26:AF:3E:53:4D:1D:24:09:5C Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1E0D Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/6E5KB9XYuOyQ-DImrz5TTR0kCVw.roa Signing time: Sat 13 Sep 2025 03:04:49 +0000 ROA not before: Sat 13 Sep 2025 03:04:49 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 13444 IP address blocks: 103.221.26.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 00:35:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7693 (0x1e0d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:04:49 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=E84E4A07D5D8B8EC90F83226AF3E534D1D24095C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:71:50:91:44:c4:95:31:bf:d0:28:28:d0:41: f6:96:e1:d3:9d:ee:92:15:fe:f2:66:35:ee:b5:2d: 3c:b8:22:9b:bd:a8:73:09:bb:3a:94:2c:d5:bc:8f: b1:ee:0c:f2:4d:ed:27:e4:08:fc:e7:2b:a3:4d:56: 84:86:4d:6a:e3:b1:c8:8a:30:0b:31:3a:ca:64:05: fd:11:a4:f4:fb:1d:84:26:94:bd:25:90:b5:4f:be: 7b:27:ef:0e:7f:e9:45:94:b3:ce:e3:c0:b0:eb:f9: d9:b4:1a:cf:4e:00:29:fc:88:25:9b:17:12:02:75: 23:d4:65:ed:cb:53:39:b8:db:c2:90:b9:b0:be:02: 9b:86:23:1b:74:1a:a3:e9:c8:dc:57:d2:30:e7:fd: b8:32:86:12:9c:56:55:ea:9c:21:53:5e:43:72:b8: 6f:9a:53:40:70:b6:a5:3f:89:fd:95:3e:89:f3:16: 67:81:a5:e3:58:e8:96:2b:1a:7a:73:84:de:4d:7a: ba:1f:7a:bf:98:2e:89:d2:e4:a7:22:47:75:b1:d9: 36:c7:06:73:12:1a:56:2a:26:97:47:20:fc:92:b3: cd:9e:03:ba:fb:04:7d:b6:52:87:7e:85:d4:61:14: fa:df:da:12:cb:47:68:20:c2:ee:41:95:3b:39:fb: ac:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:4E:4A:07:D5:D8:B8:EC:90:F8:32:26:AF:3E:53:4D:1D:24:09:5C X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/6E5KB9XYuOyQ-DImrz5TTR0kCVw.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.26.0/24 Signature Algorithm: sha256WithRSAEncryption da:98:cf:01:f4:a0:c1:20:6e:0e:71:32:77:e6:43:b8:25:d0: 4b:5f:01:1a:47:dd:60:b6:05:b3:40:4e:b5:78:7f:f5:8e:36: e0:53:4d:91:66:2b:57:9b:b1:25:33:77:06:6e:5a:b9:0a:7a: 51:9c:ae:9e:2f:37:67:21:9c:b1:6d:f2:f8:d6:e1:2f:f4:5d: ad:a2:05:a4:54:b4:c6:49:65:a9:35:e4:19:72:4f:e0:bc:81: 63:6a:f9:fc:61:98:ea:d0:c8:a7:00:57:9f:2c:ed:ba:73:c5: 28:08:3f:93:9c:6a:ce:c0:dc:f9:2a:41:95:1e:c6:66:ee:27: 1a:b8:78:59:45:b1:d3:80:e3:0d:0c:56:03:52:b1:16:7f:90: b3:3d:54:9f:c7:c0:bd:2b:b8:bd:64:ea:da:92:81:dd:8e:ec: cc:f1:2e:db:e3:a3:07:39:ad:34:e1:9b:13:12:36:c7:cf:28: 65:f3:e9:8d:56:26:a3:b4:5d:f2:32:86:d3:88:89:80:ec:76: e2:fe:79:6f:af:8a:07:54:48:9a:10:0c:0b:55:bb:c2:5e:9d: dc:90:8c:aa:57:9a:be:91:13:9f:7d:47:61:37:90:e3:30:d6: c7:b6:22:76:a6:64:86:f2:68:55:7e:f7:51:c5:42:5e:46:2d: ed:c2:e3:ed -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHg0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA0NDlaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEU4NEU0QTA3RDVEOEI4 RUM5MEY4MzIyNkFGM0U1MzREMUQyNDA5NUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCycVCRRMSVMb/QKCjQQfaW4dOd7pIV/vJmNe61LTy4Ipu9qHMJ uzqULNW8j7HuDPJN7SfkCPznK6NNVoSGTWrjsciKMAsxOspkBf0RpPT7HYQmlL0l kLVPvnsn7w5/6UWUs87jwLDr+dm0Gs9OACn8iCWbFxICdSPUZe3LUzm428KQubC+ ApuGIxt0GqPpyNxX0jDn/bgyhhKcVlXqnCFTXkNyuG+aU0BwtqU/if2VPonzFmeB peNY6JYrGnpzhN5Nerofer+YLonS5KciR3Wx2TbHBnMSGlYqJpdHIPySs82eA7r7 BH22Uod+hdRhFPrf2hLLR2ggwu5BlTs5+6xXAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQU6E5KB9XYuOyQ+DImrz5TTR0kCVwwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3LzZFNUtCOVhZdU95US1E SW1yejVUVFIwa0NWdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn3RowDQYJKoZIhvcNAQELBQADggEBANqYzwH0oMEgbg5xMnfmQ7gl0EtfARpH 3WC2BbNATrV4f/WONuBTTZFmK1ebsSUzdwZuWrkKelGcrp4vN2chnLFt8vjW4S/0 Xa2iBaRUtMZJZak15BlyT+C8gWNq+fxhmOrQyKcAV58s7bpzxSgIP5Ocas7A3Pkq QZUexmbuJxq4eFlFsdOA4w0MVgNSsRZ/kLM9VJ/HwL0ruL1k6tqSgd2O7MzxLtvj owc5rTThmxMSNsfPKGXz6Y1WJqO0XfIyhtOIiYDsduL+eW+vigdUSJoQDAtVu8Je ndyQjKpXmr6RE599R2E3kOMw1se2InamZIbyaFV+91HFQl5GLe3C4+0= -----END CERTIFICATE-----Generated at Mon Oct 20 23:27:47 2025 by rpki-client