$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/93BOalR2HhcqLrmgDVdtkxjksmk.roa File: 93BOalR2HhcqLrmgDVdtkxjksmk.roa (raw, json) Hash identifier: HmD/xQEohlcsZFXgbh3j3A+iwpcSp34Z9RcR9wwjeho= Subject key identifier: F7:70:4E:6A:54:76:1E:17:2A:2E:B9:A0:0D:57:6D:93:18:E4:B2:69 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1E74 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/93BOalR2HhcqLrmgDVdtkxjksmk.roa Signing time: Sat 13 Sep 2025 03:05:10 +0000 ROA not before: Sat 13 Sep 2025 03:05:10 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 13444 IP address blocks: 103.221.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 00:35:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7796 (0x1e74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:05:10 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=F7704E6A54761E172A2EB9A00D576D9318E4B269 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:61:bd:31:71:01:aa:3f:8f:a3:5d:25:ef:ac: c7:66:5a:79:25:64:0b:83:24:fc:e5:f7:8d:a8:2b: a8:67:ad:e9:9c:42:9c:56:52:40:89:eb:41:46:34: ec:52:27:3f:9a:db:67:b4:66:e1:ba:b1:e7:20:91: 25:80:ce:d9:77:2b:37:96:3f:d3:ea:18:47:22:6d: 3d:d4:05:50:c9:4c:51:95:24:2a:48:8c:41:7b:45: da:39:d0:e3:0b:89:8f:b7:d9:d4:27:e2:b3:55:c5: 29:00:5c:3d:ef:38:a2:68:6c:d8:e8:2f:47:31:33: 3d:fd:00:0d:cd:99:b2:b0:cb:86:85:44:97:e9:a1: 0f:e0:05:dd:46:32:59:58:a2:76:34:d2:67:f0:99: 11:03:20:e0:64:81:cd:ff:3d:4b:4e:ca:33:1b:47: b0:61:39:88:23:9f:68:48:bc:50:28:65:28:00:7d: 06:c2:d0:c8:26:ce:e3:7c:25:03:00:2e:da:de:6f: a9:ae:16:ad:91:01:a7:50:63:67:32:db:6d:bd:cb: 2e:11:d2:46:53:0a:73:e4:2b:02:0e:e1:69:35:fc: 6f:44:69:17:6a:02:2b:11:f1:54:73:61:b2:62:5f: 3a:13:b0:e3:81:cf:15:0b:75:1b:d2:9d:89:73:92: 13:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:70:4E:6A:54:76:1E:17:2A:2E:B9:A0:0D:57:6D:93:18:E4:B2:69 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/93BOalR2HhcqLrmgDVdtkxjksmk.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.17.0/24 Signature Algorithm: sha256WithRSAEncryption a5:92:28:c3:ed:c7:10:00:79:ec:4c:ce:e4:2e:30:b7:d7:96: f4:33:f2:0b:79:74:42:37:50:ed:a2:ab:81:6b:04:de:aa:b6: c7:a0:f3:38:f9:4b:43:1d:a6:2c:12:a3:ba:07:10:01:45:90: 60:3f:28:11:ac:9d:a8:a0:60:10:3c:ab:6e:2f:95:3a:08:f3: 2d:62:be:0b:5d:9c:0a:7f:4f:27:aa:6e:bb:82:f4:b0:e0:9b: 7a:d7:d4:cf:3b:7f:cc:da:58:a8:a4:1b:b6:1b:6b:43:1a:54: 20:74:11:7a:00:8d:04:4b:2c:56:89:76:7d:28:d0:40:c5:fb: 97:14:20:41:9c:04:46:17:5a:06:62:c7:ec:0d:eb:46:02:10: bc:20:d6:c2:d3:9a:c2:c0:0e:79:f2:7b:d6:db:8c:f8:40:3e: 9a:bb:bd:db:94:b0:c8:06:8e:2f:12:8e:04:a5:fb:76:88:90: f8:45:eb:8a:0e:08:f3:19:5c:99:de:a5:f5:2c:ed:1c:11:35: 51:ae:fb:c4:d3:f2:41:1f:07:26:d2:3e:03:85:d3:95:63:c5: 12:0a:5f:0f:06:4c:4e:2e:c0:a2:0d:8c:8d:77:fb:2f:f8:fa: 5a:fc:a2:a4:ab:ec:a3:08:72:eb:b4:cf:32:11:5b:00:15:4b: ad:a1:65:43 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHnQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA1MTBaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEY3NzA0RTZBNTQ3NjFF MTcyQTJFQjlBMDBENTc2RDkzMThFNEIyNjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDpYb0xcQGqP4+jXSXvrMdmWnklZAuDJPzl942oK6hnremcQpxW UkCJ60FGNOxSJz+a22e0ZuG6secgkSWAztl3KzeWP9PqGEcibT3UBVDJTFGVJCpI jEF7Rdo50OMLiY+32dQn4rNVxSkAXD3vOKJobNjoL0cxMz39AA3NmbKwy4aFRJfp oQ/gBd1GMllYonY00mfwmREDIOBkgc3/PUtOyjMbR7BhOYgjn2hIvFAoZSgAfQbC 0MgmzuN8JQMALtreb6muFq2RAadQY2cy2229yy4R0kZTCnPkKwIO4Wk1/G9EaRdq AisR8VRzYbJiXzoTsOOBzxULdRvSnYlzkhO1AgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQU93BOalR2HhcqLrmgDVdtkxjksmkwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3LzkzQk9hbFIySGhjcUxy bWdEVmR0a3hqa3Ntay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn3REwDQYJKoZIhvcNAQELBQADggEBAKWSKMPtxxAAeexMzuQuMLfXlvQz8gt5 dEI3UO2iq4FrBN6qtseg8zj5S0MdpiwSo7oHEAFFkGA/KBGsnaigYBA8q24vlToI 8y1ivgtdnAp/TyeqbruC9LDgm3rX1M87f8zaWKikG7Yba0MaVCB0EXoAjQRLLFaJ dn0o0EDF+5cUIEGcBEYXWgZix+wN60YCELwg1sLTmsLADnnye9bbjPhAPpq7vduU sMgGji8SjgSl+3aIkPhF64oOCPMZXJnepfUs7RwRNVGu+8TT8kEfBybSPgOF05Vj xRIKXw8GTE4uwKINjI13+y/4+lr8oqSr7KMIcuu0zzIRWwAVS62hZUM= -----END CERTIFICATE-----Generated at Mon Oct 20 23:27:18 2025 by rpki-client