$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/HuvaYnBDHwj2hd7QfAOLtXqmup4.roa File: HuvaYnBDHwj2hd7QfAOLtXqmup4.roa (raw, json) Hash identifier: SStQOjYMs6ZfTlCLt4nTViNtom8wFFTxzMHMujW+8oo= Subject key identifier: 1E:EB:DA:62:70:43:1F:08:F6:85:DE:D0:7C:03:8B:B5:7A:A6:BA:9E Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1E4D Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/HuvaYnBDHwj2hd7QfAOLtXqmup4.roa Signing time: Sat 13 Sep 2025 03:05:00 +0000 ROA not before: Sat 13 Sep 2025 03:05:00 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 13444 IP address blocks: 103.221.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7757 (0x1e4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:05:00 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=1EEBDA6270431F08F685DED07C038BB57AA6BA9E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:b6:b6:4f:8c:42:ae:84:9d:de:2d:25:40:e1: cd:49:06:af:dd:3b:d9:8e:6b:6a:a7:0c:6a:e4:75: 91:f9:41:c8:99:e9:b0:30:60:87:0c:9d:b6:3f:6b: a2:b9:df:f9:63:78:6a:33:ef:68:75:98:8f:e5:7d: 4e:c2:2f:d1:ef:a2:05:30:20:1d:ed:2d:a9:13:61: 64:87:a8:89:d1:1d:42:b2:9b:2d:10:7a:e8:f1:a9: 64:b9:87:38:a6:e5:59:87:6d:7d:73:71:da:eb:7b: 59:d8:c2:16:9f:71:c1:b0:86:5b:19:83:1a:6f:13: 53:27:df:87:f6:74:4a:65:e3:80:8c:e8:1f:35:bb: c3:cc:b9:ba:87:82:7a:2a:77:8c:80:6b:89:48:35: 12:e1:2b:ce:ab:82:8a:84:94:4b:27:a5:16:a9:88: 15:de:f7:14:7a:6b:b8:11:cf:4b:7d:40:d7:e3:7d: b3:66:c3:e3:3f:a8:0c:bf:b3:b6:d7:d4:4c:0c:4b: 16:b2:55:aa:20:77:26:ae:33:35:a2:68:3c:6a:ad: a1:02:77:c7:c2:31:9c:5b:16:82:fd:ba:0e:c7:b2: cb:de:50:0b:c1:a7:ad:2f:e7:50:cb:45:f4:cb:ab: 01:ca:c4:89:e5:d3:f3:9b:cd:84:16:b6:c7:66:de: 5d:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:EB:DA:62:70:43:1F:08:F6:85:DE:D0:7C:03:8B:B5:7A:A6:BA:9E X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/HuvaYnBDHwj2hd7QfAOLtXqmup4.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.45.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:03:ad:12:be:02:00:18:b2:b2:fc:33:88:2b:d8:fd:11:02: 7a:21:cd:05:84:cb:04:b5:d0:c1:4a:b1:62:c8:35:16:26:02: b5:69:bd:a4:0f:65:85:8b:79:e1:fe:15:b6:f6:83:c7:2a:9a: 66:97:d2:20:0c:86:37:33:43:e9:57:f6:9a:13:7d:8a:aa:e1: 6d:b6:2f:51:22:26:7e:09:b9:bd:c7:63:5b:f3:69:24:be:15: 91:42:f3:2c:07:2b:01:58:d1:53:6b:73:a7:c8:17:22:68:ca: 13:a2:a2:ff:92:11:6e:4d:10:44:57:5f:3d:1c:f1:60:7d:f5: de:ab:13:88:31:4d:be:d0:72:76:93:80:fe:bd:fa:89:ce:26: 8f:a7:11:d1:c9:36:60:fe:8e:f0:94:ac:e3:40:a9:05:f5:b0: e3:02:b8:d0:f7:9c:68:b8:51:7e:5a:e2:6b:9b:5e:13:58:9b: 9b:4b:16:00:b4:0b:8e:35:1d:0d:8b:01:7b:55:7b:12:ad:ef: df:4d:33:ce:46:b6:98:53:85:47:22:05:eb:f8:1a:ee:0a:a0: 11:f8:46:6d:2c:be:1d:aa:68:07:d3:47:b3:0f:cb:cb:20:bc: a6:60:07:a2:a7:e8:a1:4f:39:cf:f5:dc:f2:2b:79:2f:d7:87: 4d:76:07:4e -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHk0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA1MDBaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDFFRUJEQTYyNzA0MzFG MDhGNjg1REVEMDdDMDM4QkI1N0FBNkJBOUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCntrZPjEKuhJ3eLSVA4c1JBq/dO9mOa2qnDGrkdZH5QciZ6bAw YIcMnbY/a6K53/ljeGoz72h1mI/lfU7CL9HvogUwIB3tLakTYWSHqInRHUKymy0Q eujxqWS5hzim5VmHbX1zcdrre1nYwhafccGwhlsZgxpvE1Mn34f2dEpl44CM6B81 u8PMubqHgnoqd4yAa4lINRLhK86rgoqElEsnpRapiBXe9xR6a7gRz0t9QNfjfbNm w+M/qAy/s7bX1EwMSxayVaogdyauMzWiaDxqraECd8fCMZxbFoL9ug7HssveUAvB p60v51DLRfTLqwHKxInl0/ObzYQWtsdm3l25AgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUHuvaYnBDHwj2hd7QfAOLtXqmup4wHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L0h1dmFZbkJESHdqMmhk N1FmQU9MdFhxbXVwNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn3S0wDQYJKoZIhvcNAQELBQADggEBAFsDrRK+AgAYsrL8M4gr2P0RAnohzQWE ywS10MFKsWLINRYmArVpvaQPZYWLeeH+Fbb2g8cqmmaX0iAMhjczQ+lX9poTfYqq 4W22L1EiJn4Jub3HY1vzaSS+FZFC8ywHKwFY0VNrc6fIFyJoyhOiov+SEW5NEERX Xz0c8WB99d6rE4gxTb7QcnaTgP69+onOJo+nEdHJNmD+jvCUrONAqQX1sOMCuND3 nGi4UX5a4mubXhNYm5tLFgC0C441HQ2LAXtVexKt799NM85GtphThUciBev4Gu4K oBH4Rm0svh2qaAfTR7MPy8sgvKZgB6Kn6KFPOc/13PIreS/Xh012B04= -----END CERTIFICATE-----Generated at Mon Oct 20 13:30:48 2025 by rpki-client