$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/FU7jCAxcq2F8Z5MWwinRTRVcfk4.roa File: FU7jCAxcq2F8Z5MWwinRTRVcfk4.roa (raw, json) Hash identifier: cPlApgYPaxziCPiYuQKziKoNjSjE9QYxGw7dhDc8uC4= Subject key identifier: 15:4E:E3:08:0C:5C:AB:61:7C:67:93:16:C2:29:D1:4D:15:5C:7E:4E Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1EF9 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/FU7jCAxcq2F8Z5MWwinRTRVcfk4.roa Signing time: Sat 13 Sep 2025 03:05:40 +0000 ROA not before: Sat 13 Sep 2025 03:05:40 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 139259 IP address blocks: 103.221.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 00:35:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7929 (0x1ef9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:05:40 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=154EE3080C5CAB617C679316C229D14D155C7E4E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:b6:28:91:9b:27:1f:70:80:d1:e8:a5:a8:8e: 58:71:e8:14:52:bd:80:39:1a:e0:60:e2:09:2e:18: f7:d6:d8:b3:49:8d:67:19:07:91:f3:48:b8:f2:34: 4a:0a:e9:01:14:54:03:75:a2:f1:fd:8c:f2:79:74: 75:41:a4:1c:b9:38:10:3d:86:08:4c:84:5c:e0:f9: 58:8e:14:a8:b3:01:85:c9:5f:be:5c:ac:db:85:94: 31:d8:49:a8:da:a0:f7:61:bd:0d:fe:de:ec:f6:f9: 05:10:98:45:54:3c:15:79:01:de:44:5e:a3:cf:69: 99:1a:60:65:8d:46:5e:ba:21:8f:45:e4:0f:63:b4: ef:3d:f6:28:ac:06:ab:10:b0:46:f1:e6:fd:6d:d6: 06:79:89:6b:50:8a:b8:b4:30:bc:89:57:85:ef:07: 93:c6:73:33:79:58:df:d7:8b:4a:6d:0d:fe:7b:d6: 69:57:5f:01:61:53:13:79:49:c9:bc:34:81:7c:d9: 57:e9:82:eb:a7:79:d1:8b:ab:c0:8d:af:8e:7f:66: af:4f:2a:40:ff:56:95:cc:a5:00:cd:0f:73:ad:9b: db:fe:07:5e:aa:94:78:ca:0a:a3:5d:05:01:6c:c9: 41:76:a9:6c:d5:97:1b:bf:61:e7:57:20:b6:4c:a3: 37:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:4E:E3:08:0C:5C:AB:61:7C:67:93:16:C2:29:D1:4D:15:5C:7E:4E X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/FU7jCAxcq2F8Z5MWwinRTRVcfk4.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.25.0/24 Signature Algorithm: sha256WithRSAEncryption 43:94:b3:00:90:d3:59:d8:68:7f:1a:2b:a7:36:56:87:3c:e0: 94:38:26:89:3c:b7:73:75:c8:d8:dd:9b:b0:1c:f3:5e:40:37: 13:01:42:8b:bf:f6:a4:89:41:86:2b:05:7b:3f:74:e8:de:71: 00:ac:9a:3a:c3:3c:44:d4:c7:67:8f:42:3f:5d:59:c5:53:99: 93:9f:01:e8:3e:f4:af:e4:b0:d2:76:af:6a:18:ef:0e:de:53: 12:c6:ce:8f:42:8f:22:a5:5f:cf:49:00:03:89:51:3c:d8:44: 35:36:4b:9a:ba:07:42:f9:a8:ca:c9:93:e6:a6:b5:38:73:c2: c0:41:79:99:09:02:c3:2b:61:ba:22:fd:02:02:48:60:ed:10: 40:e3:de:c1:1c:46:9d:11:fa:e9:5a:8f:3c:c7:1a:7d:76:ca: d3:fe:ad:75:18:30:81:6c:7e:2f:81:71:79:0d:9a:47:30:df: 64:05:16:a5:53:98:03:db:32:62:49:66:47:eb:4c:ea:6c:4c: 7c:83:96:cc:d5:8a:9a:16:fe:76:d2:30:52:cb:8f:7b:e9:69: cd:d5:e9:b1:b3:bf:de:db:0f:3e:63:b3:79:bf:75:97:87:72: 10:be:b0:dc:bf:03:76:0b:a7:a7:f3:a9:59:c3:c7:08:e0:d1: 0b:c5:3c:e0 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHvkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA1NDBaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDE1NEVFMzA4MEM1Q0FC NjE3QzY3OTMxNkMyMjlEMTREMTU1QzdFNEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDUtiiRmycfcIDR6KWojlhx6BRSvYA5GuBg4gkuGPfW2LNJjWcZ B5HzSLjyNEoK6QEUVAN1ovH9jPJ5dHVBpBy5OBA9hghMhFzg+ViOFKizAYXJX75c rNuFlDHYSajaoPdhvQ3+3uz2+QUQmEVUPBV5Ad5EXqPPaZkaYGWNRl66IY9F5A9j tO899iisBqsQsEbx5v1t1gZ5iWtQiri0MLyJV4XvB5PGczN5WN/Xi0ptDf571mlX XwFhUxN5Scm8NIF82VfpguunedGLq8CNr45/Zq9PKkD/VpXMpQDND3Otm9v+B16q lHjKCqNdBQFsyUF2qWzVlxu/YedXILZMozdjAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUFU7jCAxcq2F8Z5MWwinRTRVcfk4wHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L0ZVN2pDQXhjcTJGOFo1 TVd3aW5SVFJWY2ZrNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn3RkwDQYJKoZIhvcNAQELBQADggEBAEOUswCQ01nYaH8aK6c2Voc84JQ4Jok8 t3N1yNjdm7Ac815ANxMBQou/9qSJQYYrBXs/dOjecQCsmjrDPETUx2ePQj9dWcVT mZOfAeg+9K/ksNJ2r2oY7w7eUxLGzo9CjyKlX89JAAOJUTzYRDU2S5q6B0L5qMrJ k+amtThzwsBBeZkJAsMrYboi/QICSGDtEEDj3sEcRp0R+ulajzzHGn12ytP+rXUY MIFsfi+BcXkNmkcw32QFFqVTmAPbMmJJZkfrTOpsTHyDlszVipoW/nbSMFLLj3vp ac3V6bGzv97bDz5js3m/dZeHchC+sNy/A3YLp6fzqVnDxwjg0QvFPOA= -----END CERTIFICATE-----Generated at Mon Oct 20 23:27:31 2025 by rpki-client