$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/7F1-IPS4A9jeRzga04d2MjX_c6w.roa File: 7F1-IPS4A9jeRzga04d2MjX_c6w.roa (raw, json) Hash identifier: oSQDxhhbaIs5DQtnLmPYeDeR8IZw2+/NGbGMiLc0b8Q= Subject key identifier: EC:5D:7E:20:F4:B8:03:D8:DE:47:38:1A:D3:87:76:32:35:FF:73:AC Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1EEE Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/7F1-IPS4A9jeRzga04d2MjX_c6w.roa Signing time: Sat 13 Sep 2025 03:05:37 +0000 ROA not before: Sat 13 Sep 2025 03:05:37 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 13444 IP address blocks: 103.221.30.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7918 (0x1eee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:05:37 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=EC5D7E20F4B803D8DE47381AD387763235FF73AC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:2a:fb:18:bd:1c:13:b0:4e:3b:ae:30:1d:f7: 47:6c:a5:59:2f:54:a1:f7:2d:9c:0b:c4:92:aa:14: d7:0c:c5:23:d2:9c:28:ce:83:19:7d:61:e4:ef:8e: 63:17:e4:9f:8f:79:df:87:25:42:d4:fd:71:f3:13: 21:d0:83:d8:e3:4e:b3:98:d8:7f:3a:64:d4:4d:d2: 41:d4:e1:07:c0:f2:0f:04:bf:f2:fd:e1:15:25:1c: 97:ba:db:ac:55:12:37:06:17:f7:95:37:77:a6:c4: 3b:9f:29:b6:54:5d:a4:a9:4b:5d:df:68:6f:40:f5: 87:2b:90:d3:e2:66:70:94:24:bc:17:75:7c:cf:97: 39:6f:75:77:1a:e4:27:a5:6c:8b:76:4f:aa:a4:50: d8:ad:08:99:0c:06:5c:d3:73:d3:ed:15:82:07:15: 96:84:6f:fd:19:dc:32:81:74:e5:d7:51:96:c1:92: ab:43:af:86:0b:4e:75:46:ac:f5:d0:77:97:00:13: c5:3a:91:bb:ff:d2:f5:d7:67:8a:18:cb:8a:80:ab: 2b:f9:e8:7f:eb:9a:45:56:36:ae:bc:b2:98:24:ff: e2:b6:29:fc:29:36:38:1e:2c:b2:bf:4f:d9:25:f5: 1d:28:3f:5b:b5:c3:78:24:81:65:4d:61:4a:df:d6: 52:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:5D:7E:20:F4:B8:03:D8:DE:47:38:1A:D3:87:76:32:35:FF:73:AC X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/7F1-IPS4A9jeRzga04d2MjX_c6w.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.30.0/24 Signature Algorithm: sha256WithRSAEncryption 30:07:63:0f:e7:c3:3b:d2:8b:de:7f:4d:f6:30:a5:35:df:04: f3:5d:98:b3:87:01:09:c0:58:97:a5:e4:79:77:bb:dc:c9:24: 1a:de:2f:ff:30:56:5e:45:f6:c5:c1:4b:70:67:3f:89:51:55: c9:7b:aa:b9:77:1c:ca:79:4d:f6:e3:7b:b0:db:4a:82:22:fa: b4:b8:33:94:4b:0e:92:7b:66:5a:4c:7a:77:19:17:b1:40:b2: 7e:ed:bf:a0:87:3e:14:12:ee:a7:62:c7:e4:48:7f:d1:e2:9f: 53:4f:70:b1:2d:dd:db:68:ce:21:06:63:34:8b:bc:1a:e5:71: 2e:5c:50:4a:73:ae:1a:39:8d:5e:4d:c1:14:c1:38:c1:59:8f: ce:88:23:11:9b:7c:4f:c8:3b:0e:1a:3e:31:7f:d9:e2:76:a9: 45:d9:bc:9d:dc:6c:b9:e9:22:98:9d:dd:f1:f7:52:29:a4:81: b7:b3:26:6f:fd:33:5f:fc:bb:ca:b0:3d:9a:25:a3:52:93:ca: b2:4e:30:aa:95:90:ff:2a:5a:05:88:b2:52:76:58:21:96:ce: c2:2e:d3:1e:38:bd:19:b2:9b:9f:29:fd:89:0e:eb:c0:ab:3e: 43:c7:77:b3:17:2b:c6:f6:cc:66:9e:d0:30:eb:e2:6b:a6:84: d8:6c:14:3f -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHu4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA1MzdaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEVDNUQ3RTIwRjRCODAz RDhERTQ3MzgxQUQzODc3NjMyMzVGRjczQUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQClKvsYvRwTsE47rjAd90dspVkvVKH3LZwLxJKqFNcMxSPSnCjO gxl9YeTvjmMX5J+Ped+HJULU/XHzEyHQg9jjTrOY2H86ZNRN0kHU4QfA8g8Ev/L9 4RUlHJe626xVEjcGF/eVN3emxDufKbZUXaSpS13faG9A9YcrkNPiZnCUJLwXdXzP lzlvdXca5CelbIt2T6qkUNitCJkMBlzTc9PtFYIHFZaEb/0Z3DKBdOXXUZbBkqtD r4YLTnVGrPXQd5cAE8U6kbv/0vXXZ4oYy4qAqyv56H/rmkVWNq68spgk/+K2Kfwp NjgeLLK/T9kl9R0oP1u1w3gkgWVNYUrf1lJnAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQU7F1+IPS4A9jeRzga04d2MjX/c6wwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3LzdGMS1JUFM0QTlqZVJ6 Z2EwNGQyTWpYX2M2dy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn3R4wDQYJKoZIhvcNAQELBQADggEBADAHYw/nwzvSi95/TfYwpTXfBPNdmLOH AQnAWJel5Hl3u9zJJBreL/8wVl5F9sXBS3BnP4lRVcl7qrl3HMp5Tfbje7DbSoIi +rS4M5RLDpJ7ZlpMencZF7FAsn7tv6CHPhQS7qdix+RIf9Hin1NPcLEt3dtoziEG YzSLvBrlcS5cUEpzrho5jV5NwRTBOMFZj86IIxGbfE/IOw4aPjF/2eJ2qUXZvJ3c bLnpIpid3fH3UimkgbezJm/9M1/8u8qwPZolo1KTyrJOMKqVkP8qWgWIslJ2WCGW zsIu0x44vRmym58p/YkO68CrPkPHd7MXK8b2zGae0DDr4mumhNhsFD8= -----END CERTIFICATE-----Generated at Mon Oct 20 13:30:55 2025 by rpki-client