$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/HJ4aQlVL6FgcFqKIwMbO9kc0X_8.roa File: HJ4aQlVL6FgcFqKIwMbO9kc0X_8.roa (raw, json) Hash identifier: +YpOb14fEqtp3NXY5s4Qfq3Ys1LGBzw86PIASGInJTM= Subject key identifier: 1C:9E:1A:42:55:4B:E8:58:1C:16:A2:88:C0:C6:CE:F6:47:34:5F:FF Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1EC2 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/HJ4aQlVL6FgcFqKIwMbO9kc0X_8.roa Signing time: Sat 13 Sep 2025 03:05:27 +0000 ROA not before: Sat 13 Sep 2025 03:05:27 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 139259 IP address blocks: 103.221.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7874 (0x1ec2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:05:27 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=1C9E1A42554BE8581C16A288C0C6CEF647345FFF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:13:ac:cc:da:5c:04:48:7d:7d:7b:e2:cf:51: b1:9b:3d:b0:e8:5c:91:91:77:cc:81:3e:18:91:7e: f1:ba:47:d4:21:da:db:f6:79:c2:6e:d0:ac:28:8f: 2b:50:b3:20:8f:81:04:05:a4:3c:4a:a7:7f:2c:5d: 21:f8:6e:e7:dd:21:33:02:6e:5d:47:10:d5:38:92: f4:f3:ad:de:dd:67:ed:c1:15:87:4d:1d:6e:5a:05: ad:07:eb:79:a6:c2:6c:11:15:4e:d5:df:a9:59:f7: 1f:31:27:36:9c:29:f9:e4:97:2e:99:30:26:79:b6: 66:39:cd:fb:f9:5c:91:76:b3:8d:bb:35:7f:ce:85: d6:a6:78:47:03:0a:4f:b5:86:c0:50:4e:9f:73:24: 29:2a:b5:85:cd:b4:b5:1d:be:1d:be:a9:00:bb:5a: 7f:c3:44:68:cc:fb:50:9f:5b:ab:c0:44:0f:4c:ef: d6:e0:01:cb:d0:25:c1:f5:fd:b5:0a:3e:9f:05:6b: 89:f4:5a:c4:0b:dc:26:d3:78:41:63:9e:c9:71:bf: 21:88:dd:bf:09:d0:44:ed:17:6d:37:9f:bb:dd:35: 50:23:f2:31:10:15:40:4c:3b:0c:eb:8a:6f:3c:fc: 5f:9a:27:ac:50:03:e2:d7:b1:67:40:8d:6d:14:31: 07:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:9E:1A:42:55:4B:E8:58:1C:16:A2:88:C0:C6:CE:F6:47:34:5F:FF X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/HJ4aQlVL6FgcFqKIwMbO9kc0X_8.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.1.0/24 Signature Algorithm: sha256WithRSAEncryption c6:b0:c7:a6:af:14:29:ae:f8:3f:a1:3c:ec:c1:fd:74:7d:03: 48:04:ac:93:44:5b:9a:cb:57:f3:c3:0b:45:b6:59:ed:13:98: 31:67:75:3d:60:3b:e6:be:93:86:c6:45:08:10:11:96:3a:95: ad:73:a1:60:35:09:67:f6:3f:0f:00:0a:17:59:f1:7b:24:af: 0b:39:d2:21:58:9a:58:87:0f:86:17:e4:db:22:0c:78:77:c0: 47:cd:60:9b:8d:0c:eb:21:03:dd:b7:d0:d4:0b:cc:94:7e:c3: 5a:ea:23:79:35:53:9f:fd:dc:9b:24:b2:c3:b1:18:63:4d:7a: f7:cb:90:43:e6:fa:a6:74:26:7b:77:ab:cc:06:a6:bf:00:e0: 32:61:12:db:c2:91:4a:9a:e3:44:1a:a8:6a:b5:60:41:89:21: 32:9d:f8:9a:e6:f3:d4:b2:f5:16:2d:9a:be:0f:cd:f2:17:b1: 8e:17:c8:1f:46:f4:e4:27:9a:49:d3:f3:a7:f3:30:ff:e8:4e: d8:b2:31:7f:6a:19:53:67:b0:6b:e8:d2:65:50:32:48:2a:e8: 23:9c:38:c6:82:b7:b8:fd:00:25:eb:03:33:6f:e4:01:1f:17: 11:3f:89:03:ae:99:26:bb:a7:2b:d8:22:1f:c9:72:f7:f3:2d: 93:b9:6f:40 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHsIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA1MjdaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDFDOUUxQTQyNTU0QkU4 NTgxQzE2QTI4OEMwQzZDRUY2NDczNDVGRkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDlE6zM2lwESH19e+LPUbGbPbDoXJGRd8yBPhiRfvG6R9Qh2tv2 ecJu0KwojytQsyCPgQQFpDxKp38sXSH4bufdITMCbl1HENU4kvTzrd7dZ+3BFYdN HW5aBa0H63mmwmwRFU7V36lZ9x8xJzacKfnkly6ZMCZ5tmY5zfv5XJF2s427NX/O hdameEcDCk+1hsBQTp9zJCkqtYXNtLUdvh2+qQC7Wn/DRGjM+1CfW6vARA9M79bg AcvQJcH1/bUKPp8Fa4n0WsQL3CbTeEFjnslxvyGI3b8J0ETtF203n7vdNVAj8jEQ FUBMOwzrim88/F+aJ6xQA+LXsWdAjW0UMQfJAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUHJ4aQlVL6FgcFqKIwMbO9kc0X/8wHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L0hKNGFRbFZMNkZnY0Zx S0l3TWJPOWtjMFhfOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn3QEwDQYJKoZIhvcNAQELBQADggEBAMawx6avFCmu+D+hPOzB/XR9A0gErJNE W5rLV/PDC0W2We0TmDFndT1gO+a+k4bGRQgQEZY6la1zoWA1CWf2Pw8AChdZ8Xsk rws50iFYmliHD4YX5NsiDHh3wEfNYJuNDOshA9230NQLzJR+w1rqI3k1U5/93Jsk ssOxGGNNevfLkEPm+qZ0Jnt3q8wGpr8A4DJhEtvCkUqa40QaqGq1YEGJITKd+Jrm 89Sy9RYtmr4PzfIXsY4XyB9G9OQnmknT86fzMP/oTtiyMX9qGVNnsGvo0mVQMkgq 6COcOMaCt7j9ACXrAzNv5AEfFxE/iQOumSa7pyvYIh/JcvfzLZO5b0A= -----END CERTIFICATE-----Generated at Mon Oct 20 13:13:57 2025 by rpki-client