$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/8mQfbAPMavS2SHiMaDWvmwUfXN4.roa File: 8mQfbAPMavS2SHiMaDWvmwUfXN4.roa (raw, json) Hash identifier: N1tpmaJ+yPKk52bKJHhUZSq0+Sj61FpUGftncoCRvC4= Subject key identifier: F2:64:1F:6C:03:CC:6A:F4:B6:48:78:8C:68:35:AF:9B:05:1F:5C:DE Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1E55 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/8mQfbAPMavS2SHiMaDWvmwUfXN4.roa Signing time: Sat 13 Sep 2025 03:05:03 +0000 ROA not before: Sat 13 Sep 2025 03:05:03 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 139259 IP address blocks: 103.221.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7765 (0x1e55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:05:03 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=F2641F6C03CC6AF4B648788C6835AF9B051F5CDE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:e7:ad:46:11:74:e2:3c:49:ba:cf:3b:e7:1d: ad:a7:fd:a0:3b:ce:ba:01:37:1a:a0:f7:b7:15:bc: 41:e4:5f:e9:82:03:e4:29:4e:70:ff:c5:cd:5c:73: c6:2c:5e:ca:64:1f:0e:b2:dd:b5:d5:2b:a2:1a:79: 0e:cf:c5:f1:5d:25:d8:97:92:b1:0e:44:f6:10:dc: f5:74:9e:85:83:e2:0f:b8:ac:01:8b:a3:18:ab:fb: 95:73:78:b0:8c:e4:12:14:97:5b:be:71:7f:9e:93: c1:ed:39:34:00:ea:db:2e:ff:f2:a7:6b:74:5c:01: 17:c9:62:14:6c:af:9b:97:c1:70:3a:e6:89:da:4d: 26:c9:46:c7:e8:1e:ed:d0:f8:92:1b:8f:fb:d5:e8: 8f:31:77:09:7b:4f:d4:11:31:9a:6e:56:27:a5:82: a8:38:84:e3:df:b5:fd:9a:0d:19:dd:d5:95:b0:8d: f0:d9:b5:46:8f:f9:b9:bb:55:51:ea:42:f6:2a:71: 9a:f5:c5:19:66:76:99:69:34:20:1c:ad:4c:67:a0: 40:da:47:02:d8:d3:f8:f4:86:62:5f:19:f9:ec:25: 0d:b7:9f:8a:00:4e:64:dd:8a:91:e5:58:e6:b5:b5: 1f:7b:e0:41:e4:08:e8:06:81:f1:3d:37:47:0b:a1: f1:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:64:1F:6C:03:CC:6A:F4:B6:48:78:8C:68:35:AF:9B:05:1F:5C:DE X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/8mQfbAPMavS2SHiMaDWvmwUfXN4.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.3.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:e2:4f:e2:be:44:0f:11:78:75:b5:7b:07:91:c6:82:dc:5f: ea:bb:00:71:55:24:90:67:83:0a:ea:a6:3d:4b:98:f4:fb:de: 2c:74:c4:b5:0a:00:4b:b7:13:3d:13:e1:81:51:0f:da:54:30: 6c:aa:04:e1:ed:dc:5f:e5:9e:97:16:d7:d9:ac:bd:c9:0c:73: d3:9f:aa:4f:7d:8a:d5:58:25:df:ca:1c:5c:25:cd:6f:e9:9a: c6:9e:6b:d3:68:fe:9e:c0:74:85:98:4c:92:02:bf:a0:3a:c1: 47:df:2f:e5:7d:07:9a:e5:d1:1b:d9:b7:6b:57:96:e6:fe:9c: 00:d2:32:e5:da:5f:33:d4:e3:7d:95:69:5b:a5:12:02:5d:ad: 63:30:91:5e:a5:66:3e:4b:a9:4a:e0:02:8f:20:d8:8e:69:9a: 85:3f:ec:ab:18:86:a0:75:42:b8:fc:03:9a:e6:5a:fb:ce:3b: 56:0f:e6:7d:53:c7:11:cd:41:80:be:73:84:0f:5e:9a:7d:cd: dc:a8:8d:67:0b:74:41:da:0c:dd:47:57:a1:0a:05:98:95:c5: 71:70:16:4f:77:a6:53:ff:28:5d:c1:c0:36:9b:98:4b:a9:61: e1:2b:4e:aa:ca:54:2f:6b:3a:94:d6:17:36:87:1f:fb:b7:bc: de:6b:3e:6b -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHlUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA1MDNaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEYyNjQxRjZDMDNDQzZB RjRCNjQ4Nzg4QzY4MzVBRjlCMDUxRjVDREUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDT561GEXTiPEm6zzvnHa2n/aA7zroBNxqg97cVvEHkX+mCA+Qp TnD/xc1cc8YsXspkHw6y3bXVK6IaeQ7PxfFdJdiXkrEORPYQ3PV0noWD4g+4rAGL oxir+5VzeLCM5BIUl1u+cX+ek8HtOTQA6tsu//Kna3RcARfJYhRsr5uXwXA65ona TSbJRsfoHu3Q+JIbj/vV6I8xdwl7T9QRMZpuVielgqg4hOPftf2aDRnd1ZWwjfDZ tUaP+bm7VVHqQvYqcZr1xRlmdplpNCAcrUxnoEDaRwLY0/j0hmJfGfnsJQ23n4oA TmTdipHlWOa1tR974EHkCOgGgfE9N0cLofG7AgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQU8mQfbAPMavS2SHiMaDWvmwUfXN4wHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3LzhtUWZiQVBNYXZTMlNI aU1hRFd2bXdVZlhONC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn3QMwDQYJKoZIhvcNAQELBQADggEBADriT+K+RA8ReHW1eweRxoLcX+q7AHFV JJBngwrqpj1LmPT73ix0xLUKAEu3Ez0T4YFRD9pUMGyqBOHt3F/lnpcW19msvckM c9Ofqk99itVYJd/KHFwlzW/pmsaea9No/p7AdIWYTJICv6A6wUffL+V9B5rl0RvZ t2tXlub+nADSMuXaXzPU432VaVulEgJdrWMwkV6lZj5LqUrgAo8g2I5pmoU/7KsY hqB1Qrj8A5rmWvvOO1YP5n1TxxHNQYC+c4QPXpp9zdyojWcLdEHaDN1HV6EKBZiV xXFwFk93plP/KF3BwDabmEupYeErTqrKVC9rOpTWFzaHH/u3vN5rPms= -----END CERTIFICATE-----Generated at Mon Oct 20 13:17:59 2025 by rpki-client