$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/HhpCfsMqQ9AiPIFD5H0u3lvKYn4.roa File: HhpCfsMqQ9AiPIFD5H0u3lvKYn4.roa (raw, json) Hash identifier: fjxHYG8nEVy9sGr/bLPih7FGO/ygsqVA/z1DJJUdxL8= Subject key identifier: 1E:1A:42:7E:C3:2A:43:D0:22:3C:81:43:E4:7D:2E:DE:5B:CA:62:7E Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1DE8 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/HhpCfsMqQ9AiPIFD5H0u3lvKYn4.roa Signing time: Sat 13 Sep 2025 03:04:41 +0000 ROA not before: Sat 13 Sep 2025 03:04:41 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 13444 IP address blocks: 103.221.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 18:07:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7656 (0x1de8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:04:41 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=1E1A427EC32A43D0223C8143E47D2EDE5BCA627E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:6e:33:11:97:93:e1:0d:f1:f7:a3:8b:c1:3b: f8:d4:87:31:cd:31:57:96:cb:54:b0:d1:f1:5f:12: f4:92:72:68:7d:89:4b:ef:7a:54:5c:cb:de:16:33: 43:ad:af:09:9e:a3:19:07:7d:13:44:92:29:16:5d: 8c:93:52:67:16:ef:00:63:cd:dc:03:fa:5a:72:77: 8d:58:9d:20:34:6f:cf:61:8c:42:76:e2:28:e9:c1: dc:2d:f2:68:57:34:37:e1:bc:a3:10:4f:2e:49:a1: fd:8c:58:fa:1e:27:da:f7:4e:f6:45:34:7a:b2:aa: dc:32:d5:6f:9a:0a:e7:44:27:65:53:2f:42:0c:d2: 19:98:d3:84:70:3f:30:d3:b5:3c:7d:c7:09:48:d3: ed:3d:c5:87:e5:9d:43:2f:79:18:cf:a7:57:ea:4a: 5a:d6:89:f6:a0:91:34:7c:52:f6:77:11:59:9a:f6: 9b:9b:89:ef:21:65:e7:5a:16:00:12:6a:cb:18:1e: dd:0a:82:16:73:d0:2b:39:80:1a:d4:41:46:2c:e7: 2f:55:30:00:55:9b:d6:3a:62:90:28:59:07:5c:9f: 12:76:24:51:46:dc:13:cf:cd:89:74:d9:30:87:05: 54:d5:dd:9d:3f:bd:3b:78:90:81:1f:45:80:17:54: cc:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:1A:42:7E:C3:2A:43:D0:22:3C:81:43:E4:7D:2E:DE:5B:CA:62:7E X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/HhpCfsMqQ9AiPIFD5H0u3lvKYn4.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.15.0/24 Signature Algorithm: sha256WithRSAEncryption ae:23:63:25:05:85:df:37:41:1b:f7:10:e2:41:60:8c:ea:f6: 82:d1:f8:cf:74:db:0b:1f:69:83:c7:2b:6c:bd:de:5d:62:6a: 39:e3:46:81:48:e5:11:36:f6:8e:d4:d5:4c:d5:5f:83:5b:6f: 06:69:bc:2e:7c:5a:74:e7:46:33:09:6a:88:f2:9b:b3:68:a2: 19:db:a3:7c:c2:0c:4d:84:87:60:21:06:c2:9a:38:b6:50:c8: 00:36:92:0c:6a:7b:30:16:86:b6:fa:f3:e7:48:fb:05:57:46: f4:42:50:db:b0:09:86:53:cd:8c:31:a0:fb:b7:65:92:99:ff: 1b:d4:3c:d2:60:c9:27:e5:72:06:cb:3f:66:7a:12:7d:5e:b5: f8:55:64:ac:87:ee:22:86:f9:76:e2:0e:6b:81:19:77:a9:96: 0e:66:b1:62:65:65:fd:6e:5c:00:ef:31:13:26:43:3f:ba:ff: 92:6c:50:60:dd:18:80:ab:32:3f:37:fd:ad:4c:81:aa:5c:50: cf:31:9c:3d:f3:a4:62:6a:e1:ee:4c:35:d7:21:1f:9d:6f:f6: fe:34:d5:21:a8:ef:03:1b:4b:47:2c:13:91:cd:39:d1:69:5f: 50:09:5d:55:55:67:46:8f:37:76:6d:fc:79:d3:85:95:61:fb: 1a:a1:71:4a -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHegwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA0NDFaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDFFMUE0MjdFQzMyQTQz RDAyMjNDODE0M0U0N0QyRURFNUJDQTYyN0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQClbjMRl5PhDfH3o4vBO/jUhzHNMVeWy1Sw0fFfEvSScmh9iUvv elRcy94WM0OtrwmeoxkHfRNEkikWXYyTUmcW7wBjzdwD+lpyd41YnSA0b89hjEJ2 4ijpwdwt8mhXNDfhvKMQTy5Jof2MWPoeJ9r3TvZFNHqyqtwy1W+aCudEJ2VTL0IM 0hmY04RwPzDTtTx9xwlI0+09xYflnUMveRjPp1fqSlrWifagkTR8UvZ3EVma9pub ie8hZedaFgASassYHt0KghZz0Cs5gBrUQUYs5y9VMABVm9Y6YpAoWQdcnxJ2JFFG 3BPPzYl02TCHBVTV3Z0/vTt4kIEfRYAXVMy5AgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUHhpCfsMqQ9AiPIFD5H0u3lvKYn4wHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L0hocENmc01xUTlBaVBJ RkQ1SDB1M2x2S1luNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn3Q8wDQYJKoZIhvcNAQELBQADggEBAK4jYyUFhd83QRv3EOJBYIzq9oLR+M90 2wsfaYPHK2y93l1iajnjRoFI5RE29o7U1UzVX4NbbwZpvC58WnTnRjMJaojym7No ohnbo3zCDE2Eh2AhBsKaOLZQyAA2kgxqezAWhrb68+dI+wVXRvRCUNuwCYZTzYwx oPu3ZZKZ/xvUPNJgySflcgbLP2Z6En1etfhVZKyH7iKG+XbiDmuBGXeplg5msWJl Zf1uXADvMRMmQz+6/5JsUGDdGICrMj83/a1MgapcUM8xnD3zpGJq4e5MNdchH51v 9v401SGo7wMbS0csE5HNOdFpX1AJXVVVZ0aPN3Zt/HnThZVh+xqhcUo= -----END CERTIFICATE-----Generated at Mon Oct 20 15:28:28 2025 by rpki-client