$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/EyUIkl5jOBUvVqO_peKTvSqUA4A.roa File: EyUIkl5jOBUvVqO_peKTvSqUA4A.roa (raw, json) Hash identifier: ioKXQTsTofcTaIeitSoXt6cl7Wupn1vOnP2EWtxGvy8= Subject key identifier: 13:25:08:92:5E:63:38:15:2F:56:A3:BF:A5:E2:93:BD:2A:94:03:80 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1E0A Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/EyUIkl5jOBUvVqO_peKTvSqUA4A.roa Signing time: Sat 13 Sep 2025 03:04:48 +0000 ROA not before: Sat 13 Sep 2025 03:04:48 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 138527 IP address blocks: 103.221.24.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7690 (0x1e0a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:04:48 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=132508925E6338152F56A3BFA5E293BD2A940380 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:90:d8:0f:f4:30:cf:b3:9d:bc:23:1b:23:91: 96:d1:5a:21:ac:44:5e:15:6d:74:9d:b6:49:dc:4b: 60:13:50:22:9a:1d:7d:fd:a5:f6:e1:d7:27:c2:2c: 25:1e:42:4e:84:ba:b4:c1:dc:3d:6f:7b:b4:f7:74: 78:02:be:fa:46:b9:8b:23:b5:85:a3:80:57:0a:8d: 21:b0:d0:38:01:4d:34:0f:80:d1:1a:11:60:f1:7d: 38:00:4e:87:ab:74:92:36:72:9b:ce:d5:ec:67:1e: d3:9a:1a:8c:19:08:ab:9f:f4:32:0d:9b:6c:eb:34: 73:66:5a:3d:35:0c:64:87:95:a8:22:f4:4f:11:f5: e1:6f:6e:3e:a3:46:ef:05:a2:39:ab:91:05:1b:86: 14:fe:3a:ea:fe:7f:7e:65:4c:5a:96:a5:9a:1f:ac: ec:7e:30:67:e6:7d:f5:77:b9:c5:4d:34:97:10:f3: 3e:27:26:0f:98:67:53:1d:69:07:40:fe:cb:48:c8: 44:f5:30:aa:15:37:b4:30:27:fd:77:2a:ac:d7:58: 11:fc:5d:a7:a0:3a:22:09:21:14:8c:14:93:ed:53: 2d:2e:0d:0b:0f:a8:d7:bb:99:e9:d6:15:d1:46:e7: a8:7d:67:94:ca:3d:27:e4:2e:46:e9:26:62:bf:d5: 3a:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:25:08:92:5E:63:38:15:2F:56:A3:BF:A5:E2:93:BD:2A:94:03:80 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/EyUIkl5jOBUvVqO_peKTvSqUA4A.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.24.0/22 Signature Algorithm: sha256WithRSAEncryption cd:ec:a0:0a:33:7e:06:bd:06:df:02:bb:16:ee:10:84:a6:31: 11:49:ba:66:c2:7f:bf:fb:e4:89:87:a0:52:15:98:e1:fc:04: 69:63:54:cd:22:7b:3a:e9:29:c2:6f:db:f7:53:0d:e4:a7:70: 51:48:4d:21:73:97:08:05:33:ad:d7:a6:ae:e6:46:13:27:37: 34:8a:d3:36:40:18:da:4e:86:06:7d:df:aa:b8:73:96:16:4c: d5:9f:89:f6:37:84:59:e9:b9:79:00:1d:77:26:71:99:bc:18: 2b:1d:ba:36:7a:95:18:4a:d9:71:71:51:10:70:6e:13:00:dc: 2a:35:8a:41:fc:43:7d:91:bf:10:cf:14:30:5c:78:25:cd:17: 5a:45:e5:9b:85:9e:8b:8f:cd:96:ef:03:42:2f:0b:9f:1d:9d: 5c:55:88:14:63:14:c4:4c:a7:56:e4:e6:ce:f3:38:a1:e2:fd: 3a:74:a9:83:5a:f5:db:b3:af:1a:68:e3:98:8b:b9:89:d8:9e: cf:4d:bc:19:2f:6d:c0:72:28:27:2d:18:dc:f9:bb:be:32:92: f4:c9:7b:35:4e:59:fb:9a:a6:d3:f9:c6:4a:52:cf:bb:c2:fa: c7:fe:14:c8:79:d8:61:21:20:93:ce:f5:73:ad:cd:17:15:9d: 45:d4:25:5e -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHgowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA0NDhaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDEzMjUwODkyNUU2MzM4 MTUyRjU2QTNCRkE1RTI5M0JEMkE5NDAzODAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSkNgP9DDPs528IxsjkZbRWiGsRF4VbXSdtkncS2ATUCKaHX39 pfbh1yfCLCUeQk6EurTB3D1ve7T3dHgCvvpGuYsjtYWjgFcKjSGw0DgBTTQPgNEa EWDxfTgAToerdJI2cpvO1exnHtOaGowZCKuf9DINm2zrNHNmWj01DGSHlagi9E8R 9eFvbj6jRu8FojmrkQUbhhT+Our+f35lTFqWpZofrOx+MGfmffV3ucVNNJcQ8z4n Jg+YZ1MdaQdA/stIyET1MKoVN7QwJ/13KqzXWBH8XaegOiIJIRSMFJPtUy0uDQsP qNe7menWFdFG56h9Z5TKPSfkLkbpJmK/1TrBAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUEyUIkl5jOBUvVqO/peKTvSqUA4AwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L0V5VUlrbDVqT0JVdlZx T19wZUtUdlNxVUE0QS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJn3RgwDQYJKoZIhvcNAQELBQADggEBAM3soAozfga9Bt8CuxbuEISmMRFJumbC f7/75ImHoFIVmOH8BGljVM0iezrpKcJv2/dTDeSncFFITSFzlwgFM63Xpq7mRhMn NzSK0zZAGNpOhgZ936q4c5YWTNWfifY3hFnpuXkAHXcmcZm8GCsdujZ6lRhK2XFx URBwbhMA3Co1ikH8Q32RvxDPFDBceCXNF1pF5ZuFnouPzZbvA0IvC58dnVxViBRj FMRMp1bk5s7zOKHi/Tp0qYNa9duzrxpo45iLuYnYns9NvBkvbcByKCctGNz5u74y kvTJezVOWfuaptP5xkpSz7vC+sf+FMh52GEhIJPO9XOtzRcVnUXUJV4= -----END CERTIFICATE-----Generated at Mon Oct 20 13:13:47 2025 by rpki-client