$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/8c-MPvpMnATjBba9zc_PY3sAtZw.roa File: 8c-MPvpMnATjBba9zc_PY3sAtZw.roa (raw, json) Hash identifier: QUiKCpMkdQP7sT9tILP4UNcuDdKhneS58AHbudEzTlI= Subject key identifier: F1:CF:8C:3E:FA:4C:9C:04:E3:05:B6:BD:CD:CF:CF:63:7B:00:B5:9C Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1E7A Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/8c-MPvpMnATjBba9zc_PY3sAtZw.roa Signing time: Sat 13 Sep 2025 03:05:11 +0000 ROA not before: Sat 13 Sep 2025 03:05:11 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 13444 IP address blocks: 45.252.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 18:07:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7802 (0x1e7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:05:11 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=F1CF8C3EFA4C9C04E305B6BDCDCFCF637B00B59C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:cf:0d:f9:2c:c0:e4:bc:38:bd:2a:7c:e8:8f: 3d:77:ba:c4:3b:74:95:5b:50:0d:54:1f:0e:7e:f3: 52:a0:8f:1f:55:8f:54:47:fd:53:21:84:2e:80:05: d8:ab:62:f6:b1:ec:e6:66:5f:4a:95:5c:ed:3f:19: 2b:86:7a:62:24:1d:c5:1c:69:a8:7e:13:ad:e4:3a: e9:0a:20:0c:c5:1c:13:dc:01:a9:b4:af:5d:87:e8: 39:50:94:55:d3:4c:fd:69:82:10:17:db:08:86:2b: 48:37:cd:8d:75:51:11:a9:4b:0f:65:6a:d1:06:4d: 38:90:2f:dc:ed:ed:eb:3a:57:29:d3:b5:11:01:a1: 49:0e:a1:a6:2d:e3:07:d3:a3:b9:97:49:1e:c1:70: ed:d8:73:43:81:de:e5:7d:ec:ba:a2:8c:52:a1:ca: bf:47:bd:79:0a:8b:57:41:18:82:30:21:08:f0:bb: 50:db:bf:d8:0b:23:42:2a:a9:d1:f4:5b:49:5c:1c: b1:76:74:31:37:d2:f9:c5:e7:3e:39:8f:02:a3:e5: 0a:8a:a0:3f:87:66:e3:7d:58:3a:12:7f:71:bb:be: 3c:46:2e:bb:e2:11:7b:69:50:3e:82:36:ee:97:21: f5:fb:42:c9:83:e3:02:35:ac:bc:7b:a9:06:3a:a0: f4:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:CF:8C:3E:FA:4C:9C:04:E3:05:B6:BD:CD:CF:CF:63:7B:00:B5:9C X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/8c-MPvpMnATjBba9zc_PY3sAtZw.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 45.252.100.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:13:0e:70:eb:0e:fd:38:c5:7a:06:b0:d6:73:65:d5:60:08: d8:bf:d7:53:27:2d:9c:27:41:6b:e0:33:84:5f:40:44:52:e8: ef:ea:53:c5:c9:2b:cf:80:32:cb:ef:56:6f:f9:fd:0c:46:77: 8b:47:ac:fb:70:86:93:4e:3a:85:e5:22:f3:13:41:83:cf:3c: b2:4f:86:51:79:6d:0e:35:a4:34:f6:f5:f5:e6:d9:6b:e0:a9: c0:7c:6d:34:71:8b:bf:8d:3f:d4:a3:1d:10:7d:c2:9f:ab:28: ed:72:11:e2:13:c1:cf:df:55:65:eb:fd:4f:9c:df:22:2e:c2: 43:de:bd:b5:85:74:58:40:f1:c6:23:34:67:2b:47:d1:b4:14: 1a:18:c9:fc:ad:1a:e1:97:45:6e:7b:e1:94:2c:ad:04:a3:dc: 69:a3:15:2e:f3:f3:b5:3e:5a:a0:15:c8:d2:6a:a1:b6:ec:c4: 02:98:9b:8b:d7:72:fe:c3:df:71:b3:ae:d7:da:f6:68:16:99: 4b:f5:29:c3:ad:41:a1:9a:db:9e:77:86:e1:61:16:69:35:d7: 04:06:ff:03:ae:e7:ac:e0:e6:1f:7b:26:86:a8:61:62:08:28: 2d:56:8e:09:c7:42:1b:a6:5f:5c:e9:cc:51:90:82:b0:da:78: b3:92:a0:ca -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHnowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA1MTFaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEYxQ0Y4QzNFRkE0QzlD MDRFMzA1QjZCRENEQ0ZDRjYzN0IwMEI1OUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtzw35LMDkvDi9Knzojz13usQ7dJVbUA1UHw5+81Kgjx9Vj1RH /VMhhC6ABdirYvax7OZmX0qVXO0/GSuGemIkHcUcaah+E63kOukKIAzFHBPcAam0 r12H6DlQlFXTTP1pghAX2wiGK0g3zY11URGpSw9latEGTTiQL9zt7es6VynTtREB oUkOoaYt4wfTo7mXSR7BcO3Yc0OB3uV97LqijFKhyr9HvXkKi1dBGIIwIQjwu1Db v9gLI0IqqdH0W0lcHLF2dDE30vnF5z45jwKj5QqKoD+HZuN9WDoSf3G7vjxGLrvi EXtpUD6CNu6XIfX7QsmD4wI1rLx7qQY6oPQLAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQU8c+MPvpMnATjBba9zc/PY3sAtZwwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3LzhjLU1QdnBNbkFUakJi YTl6Y19QWTNzQXRady5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAAt/GQwDQYJKoZIhvcNAQELBQADggEBABoTDnDrDv04xXoGsNZzZdVgCNi/11Mn LZwnQWvgM4RfQERS6O/qU8XJK8+AMsvvVm/5/QxGd4tHrPtwhpNOOoXlIvMTQYPP PLJPhlF5bQ41pDT29fXm2WvgqcB8bTRxi7+NP9SjHRB9wp+rKO1yEeITwc/fVWXr /U+c3yIuwkPevbWFdFhA8cYjNGcrR9G0FBoYyfytGuGXRW574ZQsrQSj3GmjFS7z 87U+WqAVyNJqobbsxAKYm4vXcv7D33Gzrtfa9mgWmUv1KcOtQaGa2553huFhFmk1 1wQG/wOu56zg5h97JoaoYWIIKC1WjgnHQhumX1zpzFGQgrDaeLOSoMo= -----END CERTIFICATE-----Generated at Mon Oct 20 15:28:18 2025 by rpki-client