$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/GbzgYZSQKnPY2autJM6BjV3y4rg.roa File: GbzgYZSQKnPY2autJM6BjV3y4rg.roa (raw, json) Hash identifier: 6I63US3Af2BVotrj+jMag5WY8Fm1QpRO0X24f36mto8= Subject key identifier: 19:BC:E0:61:94:90:2A:73:D8:D9:AB:AD:24:CE:81:8D:5D:F2:E2:B8 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1FCA Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/GbzgYZSQKnPY2autJM6BjV3y4rg.roa Signing time: Thu 16 Oct 2025 03:30:08 +0000 ROA not before: Thu 16 Oct 2025 03:30:08 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 139259 IP address blocks: 103.6.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8138 (0x1fca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Oct 16 03:30:08 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=19BCE06194902A73D8D9ABAD24CE818D5DF2E2B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:fb:4b:fd:79:26:24:c6:da:9f:f9:d3:e1:bf: e2:8e:8d:3b:17:d0:27:a7:7d:60:8b:1d:e5:b7:7a: 1d:f6:24:6f:b8:f3:5f:2b:27:88:79:da:49:09:76: 66:16:83:84:dd:66:d9:26:9c:95:bf:52:e0:a1:11: ed:47:e5:e4:73:11:10:3c:e6:95:06:0d:b4:dc:19: 2f:97:41:75:80:48:c6:52:7e:ff:ce:bc:99:a9:62: b3:91:7a:fb:4e:fe:d3:38:66:54:15:f9:d6:39:61: e5:9f:ce:f1:1b:68:b7:4f:f3:b1:22:ab:5b:46:b3: 79:c3:51:3b:13:47:0b:12:03:ca:ca:c0:ae:b6:97: 97:e2:ae:12:e7:1f:5d:09:c8:55:0d:3a:43:01:52: 7b:1f:4c:40:40:7e:a9:07:ae:66:f0:3a:9e:22:39: ea:8d:07:17:b7:bf:99:55:4c:e2:1d:78:b0:7a:21: 67:c8:b7:68:69:1f:47:10:dd:bd:cf:7b:1a:8c:66: 6e:c3:be:b0:67:74:23:90:37:60:ed:b3:18:e9:b9: 93:64:12:21:fb:f2:b4:b0:02:22:da:a6:20:62:c6: 9d:b6:88:95:a6:25:9d:00:b0:09:38:af:d9:25:e1: 72:0e:54:d0:ae:9a:ec:a9:98:fd:90:e5:dd:12:84: a3:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:BC:E0:61:94:90:2A:73:D8:D9:AB:AD:24:CE:81:8D:5D:F2:E2:B8 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/GbzgYZSQKnPY2autJM6BjV3y4rg.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.6.228.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:6d:9a:f1:ba:5f:07:09:bd:e7:02:6b:d1:86:c4:e5:8b:80: f0:75:2f:50:34:45:69:4e:5d:0d:78:7d:59:9a:61:db:6f:18: f4:51:69:b6:da:d5:3b:f6:75:5f:e4:a6:36:8b:4c:e9:f9:39: 30:79:00:43:a9:97:7f:df:72:8a:84:70:7d:a8:6a:46:52:dd: 4c:95:12:f3:af:49:b2:1f:72:60:88:b4:0b:e3:30:0f:dc:23: 96:8c:5d:a0:00:c4:5c:23:2e:56:2b:20:a3:4a:92:e3:97:2d: 6e:6e:83:74:5d:17:48:59:5e:45:b1:d3:82:c8:29:87:80:3c: 12:4e:6e:99:a5:c7:c0:08:27:7a:c4:65:77:3d:37:d5:55:c3: 0b:2c:ae:63:ea:f2:7d:82:13:bb:59:a2:87:6c:c7:34:c1:26: e5:1d:e1:e3:00:75:9c:41:e5:bc:2b:e3:d5:d7:4e:bf:d7:95: 62:bf:87:66:44:50:92:c6:c1:2e:f6:7e:a9:07:48:8a:9f:ec: 0d:a3:c3:d8:88:7f:a5:20:d9:77:31:f4:3b:f4:a5:cf:82:75: 86:a9:f3:21:52:0e:dd:da:29:b0:24:da:0b:1b:0a:4c:3a:02: f1:21:e2:ae:15:8a:d9:67:7c:e3:f3:11:65:07:93:af:aa:40: 00:06:53:e4 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICH8owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTEwMTYw MzMwMDhaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDE5QkNFMDYxOTQ5MDJB NzNEOEQ5QUJBRDI0Q0U4MThENURGMkUyQjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDb+0v9eSYkxtqf+dPhv+KOjTsX0CenfWCLHeW3eh32JG+4818r J4h52kkJdmYWg4TdZtkmnJW/UuChEe1H5eRzERA85pUGDbTcGS+XQXWASMZSfv/O vJmpYrORevtO/tM4ZlQV+dY5YeWfzvEbaLdP87Eiq1tGs3nDUTsTRwsSA8rKwK62 l5firhLnH10JyFUNOkMBUnsfTEBAfqkHrmbwOp4iOeqNBxe3v5lVTOIdeLB6IWfI t2hpH0cQ3b3PexqMZm7DvrBndCOQN2DtsxjpuZNkEiH78rSwAiLapiBixp22iJWm JZ0AsAk4r9kl4XIOVNCumuypmP2Q5d0ShKNjAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUGbzgYZSQKnPY2autJM6BjV3y4rgwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L0diemdZWlNRS25QWTJh dXRKTTZCalYzeTRyZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnBuQwDQYJKoZIhvcNAQELBQADggEBAGttmvG6XwcJvecCa9GGxOWLgPB1L1A0 RWlOXQ14fVmaYdtvGPRRabba1Tv2dV/kpjaLTOn5OTB5AEOpl3/fcoqEcH2oakZS 3UyVEvOvSbIfcmCItAvjMA/cI5aMXaAAxFwjLlYrIKNKkuOXLW5ug3RdF0hZXkWx 04LIKYeAPBJObpmlx8AIJ3rEZXc9N9VVwwssrmPq8n2CE7tZoodsxzTBJuUd4eMA dZxB5bwr49XXTr/XlWK/h2ZEUJLGwS72fqkHSIqf7A2jw9iIf6Ug2Xcx9Dv0pc+C dYap8yFSDt3aKbAk2gsbCkw6AvEh4q4VitlnfOPzEWUHk6+qQAAGU+Q= -----END CERTIFICATE-----Generated at Mon Oct 20 13:13:56 2025 by rpki-client