$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/J6uiYgpHVDChyF6CxZ4DrhJ6va8.roa File: J6uiYgpHVDChyF6CxZ4DrhJ6va8.roa (raw, json) Hash identifier: Bxkjxg/j7YJfC3GMdNZtgG+OYZ70wXC4TdtK7L4jAEs= Subject key identifier: 27:AB:A2:62:0A:47:54:30:A1:C8:5E:82:C5:9E:03:AE:12:7A:BD:AF Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1EA6 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/J6uiYgpHVDChyF6CxZ4DrhJ6va8.roa Signing time: Sat 13 Sep 2025 03:05:20 +0000 ROA not before: Sat 13 Sep 2025 03:05:20 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 139259 IP address blocks: 103.221.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 00:35:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7846 (0x1ea6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:05:20 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=27ABA2620A475430A1C85E82C59E03AE127ABDAF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:50:55:55:64:e8:64:64:2c:b0:85:b4:47:08: 94:dc:14:50:38:00:6e:7c:5f:d8:22:e8:57:1c:61: 9a:36:5a:34:ac:d3:14:a5:46:74:72:95:18:cf:2f: f7:59:95:31:6f:a1:ab:ca:d3:5f:31:01:d3:dd:85: f4:b6:19:d4:48:6b:09:42:3e:df:4d:49:fc:58:c3: 15:c5:67:d2:ef:20:17:f0:33:bb:c0:5b:ae:65:33: bf:dd:8d:81:8f:71:4e:69:f9:5c:b3:d1:ab:98:40: b6:9c:a6:a2:e1:17:da:c1:e9:6f:f3:5c:73:07:7d: 39:4c:d4:35:ed:89:b5:d0:8b:66:9b:01:ab:f4:10: 48:9c:ac:9e:63:a3:78:69:6e:1c:a6:39:e7:1e:7a: 68:15:7f:19:ef:65:5a:7f:f0:3c:52:0c:20:97:a0: e2:31:dc:23:a9:e0:94:00:64:f5:06:ae:eb:42:fd: 5e:26:95:e8:a0:c6:e6:76:a2:1e:cb:93:ad:60:65: a1:db:28:96:18:6a:67:c9:47:6a:87:7b:22:4e:71: 6b:2a:97:71:77:08:a3:0a:77:a5:75:f3:9b:42:15: a0:20:9b:9e:25:8e:4b:1f:16:d7:f7:cb:66:af:d6: a8:de:14:b8:cf:4c:cd:31:76:ad:e8:a2:79:05:17: 74:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:AB:A2:62:0A:47:54:30:A1:C8:5E:82:C5:9E:03:AE:12:7A:BD:AF X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/J6uiYgpHVDChyF6CxZ4DrhJ6va8.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.24.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:9e:8c:ac:d6:c3:b9:be:cb:ff:99:f2:7d:2a:38:9e:c4:f5: b6:d9:fd:69:d7:e8:bb:62:cd:d8:60:b5:f6:02:22:9d:d3:b8: 5b:f6:6d:c2:a6:53:e4:fd:8c:b1:e4:57:6b:c3:ea:d7:39:6c: b2:81:35:ca:90:fd:99:35:85:ab:63:b2:43:b0:8b:88:5a:9e: d5:51:27:2b:dc:02:4c:78:23:7a:41:2e:c4:37:23:84:b3:e7: 11:c0:ea:d3:14:c0:43:d2:47:11:ed:19:08:16:72:d2:2c:5d: 7b:29:38:6a:7e:b1:9a:d5:79:af:a2:4b:57:3c:fc:e2:1c:d8: c0:ef:e1:5b:cb:ac:bf:db:17:f8:a9:99:ff:a7:fb:69:94:7a: 18:c7:1e:03:9f:ba:ee:87:8c:87:4c:c9:65:c9:c6:9f:a9:56: 12:46:05:e8:07:37:bc:d1:84:09:bf:de:89:ff:81:20:8f:d9: 03:b3:42:b9:27:51:01:84:18:8c:8c:c5:96:a1:0d:04:51:60: f4:8a:dc:a6:7c:b1:29:ab:4c:1f:3c:10:e4:bd:4b:32:40:72: 98:47:6b:6d:da:4e:f5:fc:68:71:5b:cc:c4:c4:8d:dc:49:93: 4a:34:7f:12:8c:10:8b:c5:a3:e4:ea:99:ec:b0:4c:f1:56:ba: 55:c8:21:09 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHqYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA1MjBaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDI3QUJBMjYyMEE0NzU0 MzBBMUM4NUU4MkM1OUUwM0FFMTI3QUJEQUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCvUFVVZOhkZCywhbRHCJTcFFA4AG58X9gi6FccYZo2WjSs0xSl RnRylRjPL/dZlTFvoavK018xAdPdhfS2GdRIawlCPt9NSfxYwxXFZ9LvIBfwM7vA W65lM7/djYGPcU5p+Vyz0auYQLacpqLhF9rB6W/zXHMHfTlM1DXtibXQi2abAav0 EEicrJ5jo3hpbhymOeceemgVfxnvZVp/8DxSDCCXoOIx3COp4JQAZPUGrutC/V4m leigxuZ2oh7Lk61gZaHbKJYYamfJR2qHeyJOcWsql3F3CKMKd6V185tCFaAgm54l jksfFtf3y2av1qjeFLjPTM0xdq3oonkFF3TdAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUJ6uiYgpHVDChyF6CxZ4DrhJ6va8wHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L0o2dWlZZ3BIVkRDaHlG NkN4WjREcmhKNnZhOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn3RgwDQYJKoZIhvcNAQELBQADggEBAJuejKzWw7m+y/+Z8n0qOJ7E9bbZ/WnX 6LtizdhgtfYCIp3TuFv2bcKmU+T9jLHkV2vD6tc5bLKBNcqQ/Zk1hatjskOwi4ha ntVRJyvcAkx4I3pBLsQ3I4Sz5xHA6tMUwEPSRxHtGQgWctIsXXspOGp+sZrVea+i S1c8/OIc2MDv4VvLrL/bF/ipmf+n+2mUehjHHgOfuu6HjIdMyWXJxp+pVhJGBegH N7zRhAm/3on/gSCP2QOzQrknUQGEGIyMxZahDQRRYPSK3KZ8sSmrTB88EOS9SzJA cphHa23aTvX8aHFbzMTEjdxJk0o0fxKMEIvFo+TqmeywTPFWulXIIQk= -----END CERTIFICATE-----Generated at Mon Oct 20 23:27:23 2025 by rpki-client