$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/76l2yDnVxZEC7Qp4v-BjHEcRD2Y.roa File: 76l2yDnVxZEC7Qp4v-BjHEcRD2Y.roa (raw, json) Hash identifier: VhNELH24TZ8uEI9dC5maatLay8tPbH7UHCTQxNEy+/M= Subject key identifier: EF:A9:76:C8:39:D5:C5:91:02:ED:0A:78:BF:E0:63:1C:47:11:0F:66 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1E61 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/76l2yDnVxZEC7Qp4v-BjHEcRD2Y.roa Signing time: Sat 13 Sep 2025 03:05:06 +0000 ROA not before: Sat 13 Sep 2025 03:05:06 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 59083 IP address blocks: 202.136.248.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7777 (0x1e61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:05:06 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=EFA976C839D5C59102ED0A78BFE0631C47110F66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f0:06:8c:22:30:76:6a:38:62:97:ab:db:11: 4a:26:32:4d:93:1e:5b:84:d1:6c:a0:5c:cd:cf:bb: 5e:c5:e4:b0:e0:ac:51:b1:5c:c5:d8:f3:7a:40:d4: f7:a0:2a:87:2c:05:36:b7:9f:d9:94:1d:94:e4:bc: dd:af:62:58:15:73:9c:73:4d:ce:65:f3:82:2a:34: 01:53:91:a6:7c:83:88:b2:02:9b:11:2f:15:7a:aa: d1:ec:ac:50:17:28:2c:cf:48:45:c9:36:1f:7f:ef: 0a:e7:1d:f3:a9:79:2b:54:32:b6:fc:f4:fa:8b:61: 24:fc:c5:11:48:fe:f1:01:08:63:e8:6c:98:d2:7b: fa:e2:d2:5c:5c:01:8b:83:c0:6f:63:8b:29:ee:c3: e0:e8:22:75:de:84:54:be:21:7c:fa:77:77:f1:7d: 0f:76:da:c6:08:39:0a:5a:44:2c:29:3a:da:f0:e8: eb:7a:0c:ce:30:4e:4e:97:e7:14:30:6a:e1:c8:b4: 59:3b:11:80:28:3c:0c:07:7f:04:13:ed:c4:82:e9: 5e:a6:e7:e7:0a:9d:f1:19:a6:9a:8c:fc:ea:ef:6c: 6a:5b:88:04:6f:e2:61:5f:7a:f8:e5:af:49:ec:65: 1e:36:1c:fa:e6:e2:2c:fd:c7:81:9e:d1:87:65:e9: 63:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:A9:76:C8:39:D5:C5:91:02:ED:0A:78:BF:E0:63:1C:47:11:0F:66 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/76l2yDnVxZEC7Qp4v-BjHEcRD2Y.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 202.136.248.0/23 Signature Algorithm: sha256WithRSAEncryption c9:95:63:e0:c3:74:2d:00:d7:09:dd:bd:90:66:fb:cf:3c:78: 32:96:f2:23:a7:bf:41:f5:7f:20:b5:85:31:08:08:a1:98:d0: f2:e0:23:47:86:a7:b0:e6:10:a9:6e:0e:0b:ae:d1:76:dd:3f: ea:3d:8b:c3:7f:52:fd:45:87:db:bc:c7:85:7c:cc:43:fe:60: 45:bf:90:66:5a:3f:47:7c:e9:7d:34:f7:2a:1b:81:82:d6:10: b5:df:d4:9d:41:91:ab:bb:0d:a7:dc:14:b3:43:dc:98:21:a8: c3:7b:57:48:86:83:b3:66:c2:a2:29:1f:1f:7f:cb:ff:45:86: 80:f5:01:ac:7a:c9:2e:29:b3:50:aa:47:1d:e5:fe:03:87:f8: 62:3f:02:33:0a:00:4f:eb:19:79:4d:f4:e9:11:d9:33:b2:27: 55:3f:ec:e4:a4:9c:e0:85:40:fa:59:ae:80:59:57:42:b3:b1: ba:ed:44:92:b0:df:7d:41:83:33:97:a5:86:51:02:ac:64:e1: f4:67:2f:50:d3:3a:65:45:de:bc:9f:db:cb:c4:72:8b:63:e2: 04:b3:ac:bf:ae:ab:02:12:5f:64:81:2a:aa:cd:51:10:da:99: 95:4c:e7:27:5d:9c:8f:0e:62:73:a7:8c:fb:6c:10:4d:7f:22: 66:ac:35:3d -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHmEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA1MDZaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEVGQTk3NkM4MzlENUM1 OTEwMkVEMEE3OEJGRTA2MzFDNDcxMTBGNjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC88AaMIjB2ajhil6vbEUomMk2THluE0WygXM3Pu17F5LDgrFGx XMXY83pA1PegKocsBTa3n9mUHZTkvN2vYlgVc5xzTc5l84IqNAFTkaZ8g4iyApsR LxV6qtHsrFAXKCzPSEXJNh9/7wrnHfOpeStUMrb89PqLYST8xRFI/vEBCGPobJjS e/ri0lxcAYuDwG9jiynuw+DoInXehFS+IXz6d3fxfQ922sYIOQpaRCwpOtrw6Ot6 DM4wTk6X5xQwauHItFk7EYAoPAwHfwQT7cSC6V6m5+cKnfEZppqM/OrvbGpbiARv 4mFfevjlr0nsZR42HPrm4iz9x4Ge0Ydl6WNbAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQU76l2yDnVxZEC7Qp4v+BjHEcRD2YwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3Lzc2bDJ5RG5WeFpFQzdR cDR2LUJqSEVjUkQyWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAHKiPgwDQYJKoZIhvcNAQELBQADggEBAMmVY+DDdC0A1wndvZBm+888eDKW8iOn v0H1fyC1hTEICKGY0PLgI0eGp7DmEKluDguu0XbdP+o9i8N/Uv1Fh9u8x4V8zEP+ YEW/kGZaP0d86X009yobgYLWELXf1J1Bkau7DafcFLND3JghqMN7V0iGg7NmwqIp Hx9/y/9FhoD1Aax6yS4ps1CqRx3l/gOH+GI/AjMKAE/rGXlN9OkR2TOyJ1U/7OSk nOCFQPpZroBZV0KzsbrtRJKw331BgzOXpYZRAqxk4fRnL1DTOmVF3ryf28vEcotj 4gSzrL+uqwISX2SBKqrNURDamZVM5yddnI8OYnOnjPtsEE1/ImasNT0= -----END CERTIFICATE-----Generated at Mon Oct 20 13:30:50 2025 by rpki-client