$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/73Jz8odeKBFdAIwX9pnfykyJmmo.roa File: 73Jz8odeKBFdAIwX9pnfykyJmmo.roa (raw, json) Hash identifier: c0Fl9qLUNHTlKBogtSRuV/mkqiuBBfKFvlurcY3ET08= Subject key identifier: EF:72:73:F2:87:5E:28:11:5D:00:8C:17:F6:99:DF:CA:4C:89:9A:6A Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1EBB Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/73Jz8odeKBFdAIwX9pnfykyJmmo.roa Signing time: Sat 13 Sep 2025 03:05:25 +0000 ROA not before: Sat 13 Sep 2025 03:05:25 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 13444 IP address blocks: 103.220.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7867 (0x1ebb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:05:25 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=EF7273F2875E28115D008C17F699DFCA4C899A6A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:f5:42:79:4a:75:c0:1c:07:79:fc:13:a9:11: 49:e2:57:bc:02:46:48:c3:bc:17:1b:38:3a:cd:79: 49:d5:c2:f6:65:4f:8d:37:a1:ed:0e:b2:f2:c6:6d: 5f:c9:98:13:44:54:ef:a2:c3:63:81:68:03:39:a0: b1:87:3e:d7:9d:a5:3d:47:c8:e9:87:cd:0d:97:03: d1:46:b1:81:f9:35:ce:19:06:5f:b2:e7:f3:c1:f6: de:b3:41:cd:53:de:86:85:94:39:7d:39:45:7b:5e: 20:bf:5a:f5:08:e0:ba:f5:2e:2c:52:35:0b:0c:1b: 29:c4:ad:3f:8c:b6:11:19:43:2b:76:a2:bb:55:62: 1d:90:30:ee:b4:c8:cf:36:7b:46:19:c6:49:8c:83: 52:b8:a0:56:5b:e8:e1:33:e8:b2:4f:5d:d0:15:37: e4:d4:76:06:57:fe:60:be:2f:93:ff:21:a5:ec:b8: 12:7a:df:ba:33:5b:f3:10:05:a0:6d:49:1d:7d:1d: 97:2c:87:a6:39:41:8a:27:2e:9e:dd:fe:ff:e8:e8: c6:d4:18:6b:72:01:85:02:1f:49:34:c5:b1:d0:04: 29:27:04:df:5d:dd:53:1d:a8:db:c1:b5:c3:28:1a: 65:eb:e5:99:e3:2e:41:0a:af:23:a9:26:62:52:71: af:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:72:73:F2:87:5E:28:11:5D:00:8C:17:F6:99:DF:CA:4C:89:9A:6A X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/73Jz8odeKBFdAIwX9pnfykyJmmo.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.220.254.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:01:d3:bd:4d:16:1a:a5:91:02:62:ea:df:2e:68:aa:52:c6: d2:b4:e0:f7:78:c2:83:80:7f:b6:18:17:32:24:c3:4f:38:2c: e8:d8:8a:30:bf:94:a1:ef:27:c5:3b:0c:81:f7:0a:73:1c:f3: fb:1e:a3:27:90:21:94:d3:66:bc:9e:25:33:0a:d4:bd:58:55: 09:f7:06:29:3e:93:61:64:75:2e:1d:15:6e:05:4e:83:62:09: f3:ff:ee:11:1d:51:c6:e7:d5:2c:74:dd:92:d4:f9:9f:29:d1: 03:c4:49:54:11:99:dc:58:0c:ae:7d:29:e9:37:bb:27:b3:51: 15:81:fc:e3:89:de:b0:90:fd:09:58:66:af:af:1e:e4:f8:f5: fd:0e:0d:f1:7b:7c:95:ae:93:55:66:ba:75:13:ff:14:9a:4f: 11:80:26:8d:ce:45:df:26:38:c4:f5:a4:53:3e:3c:ed:15:c2: 6a:44:d0:63:f4:78:16:46:2a:ed:2e:97:2d:42:a9:58:1e:b3: 52:51:f7:9b:a2:af:be:55:79:34:fb:43:e8:22:32:06:ea:6e: 39:20:21:44:dd:ad:c9:3d:ef:b0:0e:8a:75:37:98:84:a7:74: e9:59:b7:ba:a0:8c:90:0d:fd:ed:c4:3a:b6:77:84:7d:5b:b4: 7e:a8:5a:3f -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHrswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA1MjVaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEVGNzI3M0YyODc1RTI4 MTE1RDAwOEMxN0Y2OTlERkNBNEM4OTlBNkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDk9UJ5SnXAHAd5/BOpEUniV7wCRkjDvBcbODrNeUnVwvZlT403 oe0OsvLGbV/JmBNEVO+iw2OBaAM5oLGHPtedpT1HyOmHzQ2XA9FGsYH5Nc4ZBl+y 5/PB9t6zQc1T3oaFlDl9OUV7XiC/WvUI4Lr1LixSNQsMGynErT+MthEZQyt2ortV Yh2QMO60yM82e0YZxkmMg1K4oFZb6OEz6LJPXdAVN+TUdgZX/mC+L5P/IaXsuBJ6 37ozW/MQBaBtSR19HZcsh6Y5QYonLp7d/v/o6MbUGGtyAYUCH0k0xbHQBCknBN9d 3VMdqNvBtcMoGmXr5ZnjLkEKryOpJmJSca85AgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQU73Jz8odeKBFdAIwX9pnfykyJmmowHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3LzczSno4b2RlS0JGZEFJ d1g5cG5meWt5Sm1tby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn3P4wDQYJKoZIhvcNAQELBQADggEBAI4B071NFhqlkQJi6t8uaKpSxtK04Pd4 woOAf7YYFzIkw084LOjYijC/lKHvJ8U7DIH3CnMc8/seoyeQIZTTZryeJTMK1L1Y VQn3Bik+k2FkdS4dFW4FToNiCfP/7hEdUcbn1Sx03ZLU+Z8p0QPESVQRmdxYDK59 Kek3uyezURWB/OOJ3rCQ/QlYZq+vHuT49f0ODfF7fJWuk1VmunUT/xSaTxGAJo3O Rd8mOMT1pFM+PO0VwmpE0GP0eBZGKu0uly1CqVges1JR95uir75VeTT7Q+giMgbq bjkgIUTdrck977AOinU3mISndOlZt7qgjJAN/e3EOrZ3hH1btH6oWj8= -----END CERTIFICATE-----Generated at Mon Oct 20 13:13:52 2025 by rpki-client