$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/9WcZDFMa7V-X63pi-7HkGUzsa3M.roa File: 9WcZDFMa7V-X63pi-7HkGUzsa3M.roa (raw, json) Hash identifier: AUC/IjhYu3aPE/eo2aFRTnD6NiJjDH5TqVjz2N7GOjg= Subject key identifier: F5:67:19:0C:53:1A:ED:5F:97:EB:7A:62:FB:B1:E4:19:4C:EC:6B:73 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1ECD Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/9WcZDFMa7V-X63pi-7HkGUzsa3M.roa Signing time: Sat 13 Sep 2025 03:05:29 +0000 ROA not before: Sat 13 Sep 2025 03:05:29 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 59083 IP address blocks: 59.153.168.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7885 (0x1ecd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:05:29 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=F567190C531AED5F97EB7A62FBB1E4194CEC6B73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f0:e3:8d:2c:2f:37:98:c9:36:c0:c2:eb:a2: 96:06:52:b6:12:8a:ec:29:ff:eb:df:26:ad:e2:16: 8a:2d:69:2d:97:9d:f2:d6:19:78:ba:de:47:0c:12: ab:d7:ec:d6:4b:c6:65:9e:73:c1:08:26:5e:c2:c3: b2:17:0b:04:1b:dc:7f:8d:1d:39:75:e0:19:25:ae: 68:07:47:9f:b5:de:90:8e:9d:e1:0c:ae:f4:87:13: 92:0d:9b:fc:f6:43:4f:b4:65:15:60:0b:1b:3d:24: 1c:d5:72:d0:96:a1:43:75:a9:8d:8d:71:77:2b:a2: e1:78:c4:17:e4:6b:ba:b3:f8:fa:3d:84:42:87:52: 05:5e:0c:90:33:de:b8:4f:9f:3f:9a:54:f5:74:ba: 61:93:fb:e1:25:12:c7:45:5d:61:55:ba:fe:fc:1c: db:73:9a:55:2d:48:55:1b:aa:86:70:08:46:06:a1: 57:3b:f0:e7:a1:24:d9:a9:89:fa:00:88:16:6d:01: 1c:6b:1f:53:a2:5b:bb:fc:a9:f5:17:1d:d8:70:06: c0:8e:18:ac:86:c4:e1:c7:e0:99:26:9b:cb:80:e0: b2:c3:4d:22:13:80:d3:d5:3f:b6:ca:52:69:17:e0: e1:ea:45:6e:54:3c:57:79:78:5b:58:f2:79:b6:ec: 40:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:67:19:0C:53:1A:ED:5F:97:EB:7A:62:FB:B1:E4:19:4C:EC:6B:73 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/9WcZDFMa7V-X63pi-7HkGUzsa3M.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 59.153.168.0/23 Signature Algorithm: sha256WithRSAEncryption 46:f1:17:af:a0:38:9b:b0:0c:d1:a9:50:ae:ea:db:6f:8e:2c: aa:6f:34:16:6e:2e:c4:d7:b3:18:98:e6:26:c7:60:98:4c:52: 6d:36:f9:b0:e2:0a:3f:69:3b:db:44:64:cf:42:97:ff:36:28: 53:89:e8:be:cf:ba:03:fe:ac:1f:70:54:bb:79:24:94:fb:08: 37:ba:d3:b3:92:ac:e5:3d:77:46:34:99:09:78:2f:a8:de:20: f0:87:70:fd:46:5c:7c:ae:76:81:de:ac:e0:0e:9e:b2:69:f3: 88:18:32:af:ad:b8:16:8a:b6:5c:a3:3f:e1:b3:34:a8:ee:0a: 97:c1:43:26:1d:90:f1:f5:c8:41:42:41:d7:94:49:63:c3:1b: 74:f1:8f:64:a9:2c:cd:b2:88:52:16:d7:7d:f4:db:a6:cc:69: 47:9c:72:6b:39:b7:bb:22:8f:d0:ef:e2:8c:e0:e3:8e:a6:68: 37:c9:be:8f:3c:ce:96:fe:0d:14:f0:c5:65:23:9d:0c:f9:81: 23:c5:37:85:fc:19:6a:d2:e0:03:a3:e6:49:46:08:20:c4:cc: 22:31:0d:cc:5f:9c:c8:64:91:e3:2e:df:67:73:2f:b0:e7:9e: a8:36:f4:c5:01:df:58:27:f5:a2:c1:e6:f7:5f:30:c9:c6:8e: de:ef:b9:45 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHs0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA1MjlaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEY1NjcxOTBDNTMxQUVE NUY5N0VCN0E2MkZCQjFFNDE5NENFQzZCNzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC58OONLC83mMk2wMLropYGUrYSiuwp/+vfJq3iFootaS2XnfLW GXi63kcMEqvX7NZLxmWec8EIJl7Cw7IXCwQb3H+NHTl14BklrmgHR5+13pCOneEM rvSHE5INm/z2Q0+0ZRVgCxs9JBzVctCWoUN1qY2NcXcrouF4xBfka7qz+Po9hEKH UgVeDJAz3rhPnz+aVPV0umGT++ElEsdFXWFVuv78HNtzmlUtSFUbqoZwCEYGoVc7 8OehJNmpifoAiBZtARxrH1OiW7v8qfUXHdhwBsCOGKyGxOHH4Jkmm8uA4LLDTSIT gNPVP7bKUmkX4OHqRW5UPFd5eFtY8nm27ECnAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQU9WcZDFMa7V+X63pi+7HkGUzsa3MwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3LzlXY1pERk1hN1YtWDYz cGktN0hrR1V6c2EzTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAE7magwDQYJKoZIhvcNAQELBQADggEBAEbxF6+gOJuwDNGpUK7q22+OLKpvNBZu LsTXsxiY5ibHYJhMUm02+bDiCj9pO9tEZM9Cl/82KFOJ6L7PugP+rB9wVLt5JJT7 CDe607OSrOU9d0Y0mQl4L6jeIPCHcP1GXHyudoHerOAOnrJp84gYMq+tuBaKtlyj P+GzNKjuCpfBQyYdkPH1yEFCQdeUSWPDG3Txj2SpLM2yiFIW133026bMaUeccms5 t7sij9Dv4ozg446maDfJvo88zpb+DRTwxWUjnQz5gSPFN4X8GWrS4AOj5klGCCDE zCIxDcxfnMhkkeMu32dzL7Dnnqg29MUB31gn9aLB5vdfMMnGjt7vuUU= -----END CERTIFICATE-----Generated at Mon Oct 20 13:31:03 2025 by rpki-client