$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/Gr-W9I1GyKzLdZv0sWsKiknrETY.roa File: Gr-W9I1GyKzLdZv0sWsKiknrETY.roa (raw, json) Hash identifier: BzaaQcD/zqR0aYwzJk6nyuzfLUl0JUY8mSyNQLn/gOU= Subject key identifier: 1A:BF:96:F4:8D:46:C8:AC:CB:75:9B:F4:B1:6B:0A:8A:49:EB:11:36 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1DE1 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/Gr-W9I1GyKzLdZv0sWsKiknrETY.roa Signing time: Sat 13 Sep 2025 03:04:39 +0000 ROA not before: Sat 13 Sep 2025 03:04:39 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 24373 IP address blocks: 45.252.24.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 18:07:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7649 (0x1de1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:04:39 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=1ABF96F48D46C8ACCB759BF4B16B0A8A49EB1136 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f0:4e:be:0a:3b:2c:5c:95:0f:70:69:2a:e1: fe:ee:92:a4:60:a4:1e:40:2d:cb:c7:03:4e:1c:84: 9e:4d:2b:ac:92:44:9b:91:0c:03:f3:fa:d2:3b:3a: 2d:d4:d9:ab:ab:e1:2d:1a:a9:f5:75:d7:1b:14:dc: 91:45:a9:32:4c:26:91:a2:9b:b8:a7:96:9a:76:71: d8:ab:c4:76:56:4f:69:e6:0d:7a:3f:1a:9b:21:4b: f8:c9:bf:4f:2b:a4:00:31:ba:f2:7b:57:1d:5e:da: 42:96:30:ba:b4:25:c1:d9:27:2d:2e:51:4d:dc:ce: 1c:cd:4c:81:69:dc:5c:9f:46:70:06:70:d7:e9:30: 0f:fe:e7:ba:e2:88:08:22:e3:fc:4d:fb:44:a8:29: a0:60:ff:31:95:73:cb:9b:d5:e4:30:5a:1c:7e:95: 7b:82:44:b9:93:97:9a:a7:af:bd:71:6f:0a:5a:18: 96:37:f4:79:cf:76:16:88:54:33:cd:27:d4:4e:29: dc:59:be:8d:8b:52:2a:21:07:25:86:f8:92:47:4b: 94:57:a8:94:20:4e:1e:3c:3d:33:26:0e:df:7c:96: 45:c1:43:d0:b1:0c:bb:43:e6:7c:4f:71:2e:db:e7: 3f:df:e0:f4:5c:57:d6:03:a1:67:69:26:27:81:bd: f8:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:BF:96:F4:8D:46:C8:AC:CB:75:9B:F4:B1:6B:0A:8A:49:EB:11:36 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/Gr-W9I1GyKzLdZv0sWsKiknrETY.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 45.252.24.0/22 Signature Algorithm: sha256WithRSAEncryption 2a:ba:dc:eb:d5:cf:74:f2:9e:cd:94:24:77:48:73:91:e9:21: 5b:32:ae:d1:2b:91:40:7c:4f:01:bd:82:a9:f5:9c:74:f3:69: a4:4a:d8:66:16:a0:27:7b:be:b3:0c:b6:23:9b:a5:96:0d:0f: 8f:e2:c2:30:3e:8a:a2:c6:21:fe:55:bf:49:1c:76:15:b8:a4: 49:da:f3:9a:e7:8b:e4:5f:ad:a4:a6:91:92:46:75:dc:8f:eb: 4a:f2:f5:84:63:40:a9:6b:ae:66:16:1f:1f:dc:57:bd:47:4e: 66:29:1a:da:a9:65:26:09:9d:08:1a:53:ae:4e:14:a9:ac:87: b4:43:db:2c:3e:fd:f8:f2:aa:67:3f:61:24:46:72:8f:f7:fe: 5a:69:96:3f:d8:90:ff:65:5f:fe:a2:af:13:e9:f0:70:65:b2: be:f6:e6:a1:8c:47:86:d2:e6:c8:7e:66:6f:1a:ac:26:a6:39: 24:6f:87:fe:13:46:25:60:42:08:d6:d5:06:d0:5b:c4:90:f9: 5a:c7:18:f0:01:57:ea:54:5a:22:f8:38:c5:53:d1:12:d7:e7: b2:f8:57:29:cc:c5:e3:11:a1:92:e8:92:2e:55:eb:c1:dc:fa: 39:04:80:77:a9:02:12:27:ff:12:9e:0a:2b:79:33:32:7a:02: 69:af:68:c1 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHeEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA0MzlaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDFBQkY5NkY0OEQ0NkM4 QUNDQjc1OUJGNEIxNkIwQThBNDlFQjExMzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDC8E6+CjssXJUPcGkq4f7ukqRgpB5ALcvHA04chJ5NK6ySRJuR DAPz+tI7Oi3U2aur4S0aqfV11xsU3JFFqTJMJpGim7inlpp2cdirxHZWT2nmDXo/ GpshS/jJv08rpAAxuvJ7Vx1e2kKWMLq0JcHZJy0uUU3czhzNTIFp3FyfRnAGcNfp MA/+57riiAgi4/xN+0SoKaBg/zGVc8ub1eQwWhx+lXuCRLmTl5qnr71xbwpaGJY3 9HnPdhaIVDPNJ9ROKdxZvo2LUiohByWG+JJHS5RXqJQgTh48PTMmDt98lkXBQ9Cx DLtD5nxPcS7b5z/f4PRcV9YDoWdpJieBvfilAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUGr+W9I1GyKzLdZv0sWsKiknrETYwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L0dyLVc5STFHeUt6TGRa djBzV3NLaWtuckVUWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAIt/BgwDQYJKoZIhvcNAQELBQADggEBACq63OvVz3Tyns2UJHdIc5HpIVsyrtEr kUB8TwG9gqn1nHTzaaRK2GYWoCd7vrMMtiObpZYND4/iwjA+iqLGIf5Vv0kcdhW4 pEna85rni+RfraSmkZJGddyP60ry9YRjQKlrrmYWHx/cV71HTmYpGtqpZSYJnQga U65OFKmsh7RD2yw+/fjyqmc/YSRGco/3/lpplj/YkP9lX/6irxPp8HBlsr725qGM R4bS5sh+Zm8arCamOSRvh/4TRiVgQgjW1QbQW8SQ+VrHGPABV+pUWiL4OMVT0RLX 57L4VynMxeMRoZLoki5V68Hc+jkEgHepAhIn/xKeCit5MzJ6AmmvaME= -----END CERTIFICATE-----Generated at Mon Oct 20 16:57:13 2025 by rpki-client