$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/IxlCn5xbMtQUqQ0H-j4PpAzjyNQ.roa File: IxlCn5xbMtQUqQ0H-j4PpAzjyNQ.roa (raw, json) Hash identifier: JNiQD9foNGw02dnQhtQy2TqxV2FUGYyKOrtwSl/llVI= Subject key identifier: 23:19:42:9F:9C:5B:32:D4:14:A9:0D:07:FA:3E:0F:A4:0C:E3:C8:D4 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1E19 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/IxlCn5xbMtQUqQ0H-j4PpAzjyNQ.roa Signing time: Sat 13 Sep 2025 03:04:51 +0000 ROA not before: Sat 13 Sep 2025 03:04:51 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 13444 IP address blocks: 103.221.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 00:35:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7705 (0x1e19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:04:51 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=2319429F9C5B32D414A90D07FA3E0FA40CE3C8D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:5f:53:ec:a1:69:ef:be:0b:90:0c:96:09:86: 42:05:87:e5:61:d7:f2:e3:7c:44:d8:7b:71:d7:fb: ff:43:cb:db:a5:02:b4:d7:f0:bc:fd:c5:cb:f3:40: 8c:0e:3b:e1:66:43:f7:c2:bd:06:fb:1e:4f:b7:ec: 9a:29:10:e0:da:10:b7:9f:50:53:35:f4:f7:66:bd: 34:91:c5:2b:91:66:16:28:67:80:e5:c6:91:5a:89: 2d:ea:95:7f:84:77:1e:ce:26:44:d2:55:46:49:69: e9:b3:8d:2a:6f:9e:35:91:d9:d9:6e:a9:ef:25:b3: 5e:e7:3d:a4:7b:df:77:bb:50:ea:10:21:d4:d0:95: fb:23:42:7d:52:bd:6e:58:51:e4:57:f0:3a:44:4e: ea:b8:b9:ef:f0:2b:a1:01:13:23:5b:6c:2a:31:30: d9:1e:cf:9f:34:68:cd:f2:12:69:27:35:d6:c5:b5: ee:c1:9d:d5:f5:50:39:e7:e1:0b:c7:52:bb:8c:cf: 88:e0:2a:d4:63:59:eb:73:bf:ec:b4:f1:a6:07:fc: 96:a4:00:de:9e:8e:84:50:d3:7e:20:e0:f6:9d:9d: f0:30:e8:e1:64:62:a6:0e:f5:90:db:c1:d0:dd:41: 9b:2c:bd:11:fd:1e:29:ea:09:32:96:b2:61:09:2c: 09:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:19:42:9F:9C:5B:32:D4:14:A9:0D:07:FA:3E:0F:A4:0C:E3:C8:D4 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/IxlCn5xbMtQUqQ0H-j4PpAzjyNQ.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.27.0/24 Signature Algorithm: sha256WithRSAEncryption 36:a9:6d:74:6f:05:b1:21:d3:48:2b:51:b3:1b:7f:89:02:8a: 2e:3b:97:6e:c8:bd:f2:39:a0:4e:96:bf:fb:19:22:83:18:82: ce:3e:8d:f3:23:77:cc:12:5e:45:0f:e2:17:d4:18:a0:9a:1e: f6:91:36:3e:fa:e2:c5:ed:ab:13:a8:a2:e6:70:ac:77:87:d2: 4e:1c:f8:37:0c:bd:e6:a6:b1:3d:a7:58:d2:7c:8f:e0:9b:9f: fe:86:29:ec:ec:8e:8c:d7:18:51:5c:93:ab:83:e6:27:9d:fb: fe:33:b7:44:58:2b:a2:c6:0b:d8:7c:6e:0d:fc:7b:1b:55:e8: 45:46:58:05:3d:28:66:37:47:79:39:59:51:3a:87:d3:83:90: ce:6f:e0:ff:3d:f9:1b:53:8a:1b:31:e2:4e:cf:f9:2b:89:cf: 82:a5:79:7c:d5:17:88:41:39:e5:b3:51:b5:dd:b5:ef:bc:20: 70:ec:30:c3:74:9f:a1:34:e3:ef:e4:1e:85:03:94:b7:83:6b: 4f:86:a3:30:e4:1a:c7:50:01:59:50:cc:fb:9b:36:e6:10:de: 94:e7:f5:66:58:d8:c0:5e:ef:d2:a3:35:e7:d4:5b:d1:22:7b: 0f:e1:f9:46:35:b3:f3:a7:87:9b:4e:d2:da:40:e7:cc:63:7a: 26:21:1d:5e -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHhkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA0NTFaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDIzMTk0MjlGOUM1QjMy RDQxNEE5MEQwN0ZBM0UwRkE0MENFM0M4RDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCeX1PsoWnvvguQDJYJhkIFh+Vh1/LjfETYe3HX+/9Dy9ulArTX 8Lz9xcvzQIwOO+FmQ/fCvQb7Hk+37JopEODaELefUFM19PdmvTSRxSuRZhYoZ4Dl xpFaiS3qlX+Edx7OJkTSVUZJaemzjSpvnjWR2dluqe8ls17nPaR733e7UOoQIdTQ lfsjQn1SvW5YUeRX8DpETuq4ue/wK6EBEyNbbCoxMNkez580aM3yEmknNdbFte7B ndX1UDnn4QvHUruMz4jgKtRjWetzv+y08aYH/JakAN6ejoRQ034g4PadnfAw6OFk YqYO9ZDbwdDdQZssvRH9HinqCTKWsmEJLAklAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUIxlCn5xbMtQUqQ0H+j4PpAzjyNQwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L0l4bENuNXhiTXRRVXFR MEgtajRQcEF6anlOUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn3RswDQYJKoZIhvcNAQELBQADggEBADapbXRvBbEh00grUbMbf4kCii47l27I vfI5oE6Wv/sZIoMYgs4+jfMjd8wSXkUP4hfUGKCaHvaRNj764sXtqxOoouZwrHeH 0k4c+DcMveamsT2nWNJ8j+Cbn/6GKezsjozXGFFck6uD5ied+/4zt0RYK6LGC9h8 bg38extV6EVGWAU9KGY3R3k5WVE6h9ODkM5v4P89+RtTihsx4k7P+SuJz4KleXzV F4hBOeWzUbXdte+8IHDsMMN0n6E04+/kHoUDlLeDa0+GozDkGsdQAVlQzPubNuYQ 3pTn9WZY2MBe79KjNefUW9Eiew/h+UY1s/Onh5tO0tpA58xjeiYhHV4= -----END CERTIFICATE-----Generated at Mon Oct 20 23:27:30 2025 by rpki-client