$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/E5KmhXM3_4uybXl_AR5lhRZkGiI.roa File: E5KmhXM3_4uybXl_AR5lhRZkGiI.roa (raw, json) Hash identifier: hURKgLK9e/89ecpUXQ1KOOt7BdC2mMCdBwtS9p+zFK0= Subject key identifier: 13:92:A6:85:73:37:FF:8B:B2:6D:79:7F:01:1E:65:85:16:64:1A:22 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1ED0 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/E5KmhXM3_4uybXl_AR5lhRZkGiI.roa Signing time: Sat 13 Sep 2025 03:05:31 +0000 ROA not before: Sat 13 Sep 2025 03:05:31 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 139259 IP address blocks: 103.221.42.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7888 (0x1ed0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:05:31 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=1392A6857337FF8BB26D797F011E658516641A22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:cc:5a:a5:cf:4d:ae:9e:99:e0:90:fd:6f:08: 36:53:55:81:b2:9a:bc:86:48:4d:c9:67:c4:5b:bd: 98:b8:3d:09:61:01:43:ad:7b:cc:98:72:b0:56:f7: 6c:c8:61:d1:72:e8:ec:31:08:ad:28:45:a6:fc:53: 07:f5:7c:94:e2:b4:cf:0c:4d:4a:87:37:ef:77:11: 8f:4e:30:ff:82:72:c8:7c:d5:6a:97:4e:af:f3:04: de:74:4b:a2:44:0d:3a:1f:8a:08:03:95:ac:2b:46: 04:0f:8a:cd:6d:a4:e2:1b:c3:70:20:ff:b0:6b:85: 63:30:0f:22:74:17:91:89:0e:39:ba:4b:89:b6:97: d6:a7:2d:65:ae:c6:aa:05:3b:7e:80:61:b0:0f:ee: 72:29:57:38:37:3a:76:b5:9e:b0:ee:42:29:d5:52: 04:34:02:40:de:0b:68:ea:78:61:ee:c5:35:5d:c5: 04:94:4b:ae:c6:9b:b0:5c:a6:44:c7:af:7c:71:ea: 41:b8:94:eb:6b:c1:c0:2b:5c:a3:47:51:6f:2c:be: 53:bf:f8:26:1c:e5:70:4e:39:a6:19:88:f2:2b:0f: a6:b3:cc:ae:9d:90:1d:b5:dc:1d:cb:e2:b3:4d:04: 88:16:a9:7c:b1:97:33:0d:1f:15:83:f4:65:02:a3: 55:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:92:A6:85:73:37:FF:8B:B2:6D:79:7F:01:1E:65:85:16:64:1A:22 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/E5KmhXM3_4uybXl_AR5lhRZkGiI.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.42.0/24 Signature Algorithm: sha256WithRSAEncryption 00:1b:b2:63:ec:24:96:d4:6c:af:25:1f:c6:40:78:f1:e5:86: 81:56:73:96:cf:73:04:d4:ef:1d:01:a0:5f:ec:da:3a:88:2e: cb:d8:9c:fa:a9:7f:8a:1b:bb:2a:d9:8d:fb:53:b4:4e:52:8d: e4:71:da:ea:6c:3a:4d:ca:a9:26:2e:10:a9:d9:10:4e:47:ec: cc:a9:bc:b1:89:0d:c5:e6:34:4d:e9:56:5a:81:70:18:ea:1b: 5d:a9:48:f5:93:d9:b1:64:59:9f:f4:d4:fc:96:86:26:60:ac: 49:d3:8d:80:7f:dc:f0:27:1c:be:2e:c8:26:59:89:d9:78:eb: b6:66:c4:22:ae:ed:17:29:81:64:2a:16:57:ee:31:ea:73:b3: 6d:7b:1b:37:ab:c2:9c:cc:07:54:bc:98:08:4d:07:26:4e:4f: c1:38:4b:95:9a:ec:ed:ef:a0:8e:fd:12:bc:2f:71:dc:87:6c: d1:f1:49:82:8b:a5:35:10:56:2d:f3:f3:13:84:f5:08:e7:95: 22:fc:b1:da:ae:6e:df:1d:f8:ee:bb:ed:d2:e6:5c:69:9a:61: 91:34:02:b6:af:93:88:b4:17:2f:e2:3f:95:55:8c:53:20:28: da:74:d0:b1:20:7d:68:c2:e3:78:da:49:25:1b:bf:3e:9b:4b: 8e:ff:19:e3 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHtAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA1MzFaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDEzOTJBNjg1NzMzN0ZG OEJCMjZENzk3RjAxMUU2NTg1MTY2NDFBMjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCszFqlz02unpngkP1vCDZTVYGymryGSE3JZ8RbvZi4PQlhAUOt e8yYcrBW92zIYdFy6OwxCK0oRab8Uwf1fJTitM8MTUqHN+93EY9OMP+Ccsh81WqX Tq/zBN50S6JEDTofiggDlawrRgQPis1tpOIbw3Ag/7BrhWMwDyJ0F5GJDjm6S4m2 l9anLWWuxqoFO36AYbAP7nIpVzg3Ona1nrDuQinVUgQ0AkDeC2jqeGHuxTVdxQSU S67Gm7BcpkTHr3xx6kG4lOtrwcArXKNHUW8svlO/+CYc5XBOOaYZiPIrD6azzK6d kB213B3L4rNNBIgWqXyxlzMNHxWD9GUCo1VDAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUE5KmhXM3/4uybXl/AR5lhRZkGiIwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L0U1S21oWE0zXzR1eWJY bF9BUjVsaFJaa0dpSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn3SowDQYJKoZIhvcNAQELBQADggEBAAAbsmPsJJbUbK8lH8ZAePHlhoFWc5bP cwTU7x0BoF/s2jqILsvYnPqpf4obuyrZjftTtE5SjeRx2upsOk3KqSYuEKnZEE5H 7MypvLGJDcXmNE3pVlqBcBjqG12pSPWT2bFkWZ/01PyWhiZgrEnTjYB/3PAnHL4u yCZZidl467ZmxCKu7RcpgWQqFlfuMepzs217GzerwpzMB1S8mAhNByZOT8E4S5Wa 7O3voI79ErwvcdyHbNHxSYKLpTUQVi3z8xOE9QjnlSL8sdqubt8d+O677dLmXGma YZE0Aravk4i0Fy/iP5VVjFMgKNp00LEgfWjC43jaSSUbvz6bS47/GeM= -----END CERTIFICATE-----Generated at Mon Oct 20 13:30:55 2025 by rpki-client