$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/6_sn1JipX1Mm5P6gQ2n4gihjczY.roa File: 6_sn1JipX1Mm5P6gQ2n4gihjczY.roa (raw, json) Hash identifier: Z5BmVigfaqcmmDkCZ4TnhsFxJJK/OUCQ7St1nPQd5kU= Subject key identifier: EB:FB:27:D4:98:A9:5F:53:26:E4:FE:A0:43:69:F8:82:28:63:73:36 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1E02 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/6_sn1JipX1Mm5P6gQ2n4gihjczY.roa Signing time: Sat 13 Sep 2025 03:04:46 +0000 ROA not before: Sat 13 Sep 2025 03:04:46 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 13444 IP address blocks: 103.221.50.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7682 (0x1e02) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:04:46 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=EBFB27D498A95F5326E4FEA04369F88228637336 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:69:af:28:6e:e2:34:86:a0:79:aa:5b:54:58: 36:c6:22:9f:65:de:14:b9:8f:2e:69:7f:8e:b1:c9: e8:92:a3:35:85:73:05:2b:53:2d:b8:93:14:ae:66: 78:80:e3:1d:3d:70:b8:9f:ad:1f:64:77:07:e0:64: 8d:51:83:76:72:a7:8b:34:cf:9b:50:a6:cd:69:9f: 06:22:51:32:46:5e:36:4e:0d:b9:06:d5:e1:30:00: 40:a7:49:e1:37:f1:36:7c:60:fe:3a:15:08:f0:5f: 0a:de:6e:6c:d9:f1:db:39:c6:7d:b7:3a:ae:27:19: 7a:27:9f:f7:5f:78:a0:9f:e5:11:2b:44:3f:30:d8: 8e:f0:e0:95:9d:d3:42:f0:4f:94:d6:c4:c1:e5:9d: 80:53:56:fd:2c:2a:3a:3b:22:67:2c:31:d1:77:12: 1d:f5:9b:14:cb:68:d4:47:a2:6e:45:ac:75:f2:e8: 4b:d9:84:b0:94:f4:a9:ee:6e:b3:3a:c8:a9:a5:01: cd:d5:d7:22:c8:7a:63:f3:8a:1e:2b:ba:6d:21:09: 7a:c9:3a:f2:09:2e:c4:83:04:57:55:e5:10:a0:92: 9a:15:fe:45:19:f9:ba:19:6a:6b:42:4f:1e:6c:13: be:a9:d7:98:af:3f:28:c8:35:1b:49:e7:f6:b6:3d: 91:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:FB:27:D4:98:A9:5F:53:26:E4:FE:A0:43:69:F8:82:28:63:73:36 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/6_sn1JipX1Mm5P6gQ2n4gihjczY.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.50.0/24 Signature Algorithm: sha256WithRSAEncryption 60:0c:30:4d:64:d9:2b:fe:47:44:e9:36:db:ad:6f:3e:88:cf: dc:2d:b6:4b:2c:38:f5:6c:13:81:aa:de:c2:c4:9d:c3:f9:02: 01:46:89:d0:9d:86:94:37:4b:cb:33:5f:f4:af:53:be:7d:a2: d7:b7:e0:e4:b9:6f:b6:3c:aa:1d:f9:8d:78:0d:42:cd:ed:46: 19:ad:2b:1c:2f:40:f5:2f:f5:24:94:83:47:d6:ca:f0:22:f3: ea:fd:5e:ed:fe:b7:b8:ca:f8:48:15:a0:cd:5a:f9:9d:e0:9f: ab:d6:39:5a:4b:67:c4:2d:22:3b:33:d1:36:b6:c6:2d:22:fc: ab:d0:1b:9c:77:78:56:5f:d1:b5:45:ae:f9:3d:bb:88:84:4e: 6b:94:26:7c:3a:f1:ce:b9:e7:2a:bf:c0:40:1f:e7:39:48:03: c4:9b:ca:d8:8e:0a:bb:32:c9:5b:3c:48:d4:85:db:4d:e2:3d: 4f:de:da:58:78:e5:6a:51:d4:16:12:d6:3b:99:0d:0f:13:53: af:e9:44:68:c1:4b:a9:a6:84:d1:8f:f3:94:e5:8a:14:af:79: b4:18:3c:70:72:09:21:a3:d3:06:44:4a:1f:5c:37:ec:f5:1d: 81:5a:ec:8e:68:3b:59:e8:e6:30:2b:8d:ac:47:ed:4d:0d:41: cc:b6:ba:6a -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHgIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA0NDZaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEVCRkIyN0Q0OThBOTVG NTMyNkU0RkVBMDQzNjlGODgyMjg2MzczMzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxaa8obuI0hqB5qltUWDbGIp9l3hS5jy5pf46xyeiSozWFcwUr Uy24kxSuZniA4x09cLifrR9kdwfgZI1Rg3Zyp4s0z5tQps1pnwYiUTJGXjZODbkG 1eEwAECnSeE38TZ8YP46FQjwXwrebmzZ8ds5xn23Oq4nGXonn/dfeKCf5RErRD8w 2I7w4JWd00LwT5TWxMHlnYBTVv0sKjo7ImcsMdF3Eh31mxTLaNRHom5FrHXy6EvZ hLCU9KnubrM6yKmlAc3V1yLIemPzih4rum0hCXrJOvIJLsSDBFdV5RCgkpoV/kUZ +boZamtCTx5sE76p15ivPyjINRtJ5/a2PZGXAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQU6/sn1JipX1Mm5P6gQ2n4gihjczYwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3LzZfc24xSmlwWDFNbTVQ NmdRMm40Z2loamN6WS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn3TIwDQYJKoZIhvcNAQELBQADggEBAGAMME1k2Sv+R0TpNtutbz6Iz9wttkss OPVsE4Gq3sLEncP5AgFGidCdhpQ3S8szX/SvU759ote34OS5b7Y8qh35jXgNQs3t RhmtKxwvQPUv9SSUg0fWyvAi8+r9Xu3+t7jK+EgVoM1a+Z3gn6vWOVpLZ8QtIjsz 0Ta2xi0i/KvQG5x3eFZf0bVFrvk9u4iETmuUJnw68c655yq/wEAf5zlIA8SbytiO CrsyyVs8SNSF203iPU/e2lh45WpR1BYS1juZDQ8TU6/pRGjBS6mmhNGP85TlihSv ebQYPHByCSGj0wZESh9cN+z1HYFa7I5oO1no5jArjaxH7U0NQcy2umo= -----END CERTIFICATE-----Generated at Mon Oct 20 13:13:37 2025 by rpki-client