$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/JSxP5uRjMzVj4GDNsXyb3abd0E8.roa File: JSxP5uRjMzVj4GDNsXyb3abd0E8.roa (raw, json) Hash identifier: /x6K3DmcHRTYA+p/B+0rwFMij9uMYzb6TDQeNoWNSUg= Subject key identifier: 25:2C:4F:E6:E4:63:33:35:63:E0:60:CD:B1:7C:9B:DD:A6:DD:D0:4F Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1E5A Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/JSxP5uRjMzVj4GDNsXyb3abd0E8.roa Signing time: Sat 13 Sep 2025 03:05:04 +0000 ROA not before: Sat 13 Sep 2025 03:05:04 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 24373 IP address blocks: 103.221.0.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7770 (0x1e5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:05:04 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=252C4FE6E463333563E060CDB17C9BDDA6DDD04F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:13:d9:1e:20:d6:68:fd:d7:f2:0f:35:77:22: 1d:50:c5:b5:24:c2:7f:e1:9d:65:42:72:1d:3c:5d: a9:8c:81:75:b4:93:95:21:7f:54:aa:88:85:ff:7b: f2:16:aa:f8:e1:eb:20:3e:b9:76:eb:9b:e3:59:20: d1:32:49:37:dc:69:3f:a7:28:a7:fa:a9:5d:17:03: 50:2c:8d:55:68:3c:cf:85:e3:e8:17:b3:ac:a1:02: 04:4c:92:b5:22:c0:d3:46:6a:6d:79:ef:66:a2:28: 84:45:58:85:b8:72:ef:a4:f3:90:17:4d:ce:6c:99: 9a:fc:c4:12:bc:b0:34:7a:3f:af:d0:20:8b:bd:49: 54:52:c3:62:5e:9b:b3:3b:2a:46:9a:ee:6f:fc:f9: e6:3b:d3:b4:b0:d1:4d:a8:24:08:c8:1e:32:2b:96: 0d:06:ed:e8:25:f1:3a:e7:5c:6d:19:5a:5b:ab:03: 91:5d:e6:81:d2:18:9f:28:5b:6a:6a:81:9a:72:a1: ae:c4:84:8b:76:f8:d7:e8:52:bc:a2:1f:0d:f3:03: 5b:52:38:52:5c:92:aa:17:13:7a:66:4f:a2:97:78: 76:37:ec:b5:75:f3:eb:52:36:f5:74:3a:e0:c4:14: b8:46:8f:81:34:82:89:b9:15:36:bd:29:90:6b:b6: 57:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:2C:4F:E6:E4:63:33:35:63:E0:60:CD:B1:7C:9B:DD:A6:DD:D0:4F X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/JSxP5uRjMzVj4GDNsXyb3abd0E8.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.0.0/22 Signature Algorithm: sha256WithRSAEncryption 78:23:8c:58:e0:26:49:63:ee:50:34:f9:71:c4:44:6d:f5:d2: e3:ea:d9:cf:27:fd:c3:f5:d2:fa:72:cf:33:e3:35:bb:3e:1c: 14:27:9e:43:ce:2c:06:f4:81:a5:53:5b:76:b9:df:68:44:15: 56:fa:45:64:15:22:16:33:85:30:25:03:25:2e:01:a0:18:0c: 3a:d3:9d:d9:6a:5d:6a:24:3b:a5:b8:61:a0:a8:81:fc:4a:e1: 80:4e:80:6c:7c:16:66:07:09:61:57:48:8b:c4:cf:82:d2:79: e4:a0:4a:de:28:51:2f:88:19:45:d9:8c:9f:57:96:cf:91:86: 36:18:cc:65:ff:80:2d:d3:2b:7f:e6:84:f0:71:78:0b:80:e3: 5f:12:eb:9d:97:55:66:e9:96:db:00:69:08:7d:e4:cc:41:45: cb:2d:48:82:8b:e1:db:eb:d5:35:e6:7f:b1:83:53:c0:2a:64: 5f:3b:a4:e1:45:d4:2b:50:e8:4f:a1:2a:70:19:84:6c:e9:b1: 05:f7:22:54:62:06:88:4a:b4:97:78:a8:bc:9a:0e:34:f3:c1: bd:81:e1:d1:e3:4c:0d:38:43:4a:26:5d:7c:f6:e5:32:a8:13: 0d:14:58:9b:28:b1:6b:fd:eb:32:dd:71:e2:67:58:6d:60:55: 53:54:5a:f3 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHlowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA1MDRaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDI1MkM0RkU2RTQ2MzMz MzU2M0UwNjBDREIxN0M5QkREQTZEREQwNEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKE9keINZo/dfyDzV3Ih1QxbUkwn/hnWVCch08XamMgXW0k5Uh f1SqiIX/e/IWqvjh6yA+uXbrm+NZINEySTfcaT+nKKf6qV0XA1AsjVVoPM+F4+gX s6yhAgRMkrUiwNNGam1572aiKIRFWIW4cu+k85AXTc5smZr8xBK8sDR6P6/QIIu9 SVRSw2Jem7M7Kkaa7m/8+eY707Sw0U2oJAjIHjIrlg0G7egl8TrnXG0ZWlurA5Fd 5oHSGJ8oW2pqgZpyoa7EhIt2+NfoUryiHw3zA1tSOFJckqoXE3pmT6KXeHY37LV1 8+tSNvV0OuDEFLhGj4E0gom5FTa9KZBrtlf7AgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUJSxP5uRjMzVj4GDNsXyb3abd0E8wHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L0pTeFA1dVJqTXpWajRH RE5zWHliM2FiZDBFOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJn3QAwDQYJKoZIhvcNAQELBQADggEBAHgjjFjgJklj7lA0+XHERG310uPq2c8n /cP10vpyzzPjNbs+HBQnnkPOLAb0gaVTW3a532hEFVb6RWQVIhYzhTAlAyUuAaAY DDrTndlqXWokO6W4YaCogfxK4YBOgGx8FmYHCWFXSIvEz4LSeeSgSt4oUS+IGUXZ jJ9Xls+RhjYYzGX/gC3TK3/mhPBxeAuA418S652XVWbpltsAaQh95MxBRcstSIKL 4dvr1TXmf7GDU8AqZF87pOFF1CtQ6E+hKnAZhGzpsQX3IlRiBohKtJd4qLyaDjTz wb2B4dHjTA04Q0omXXz25TKoEw0UWJsosWv96zLdceJnWG1gVVNUWvM= -----END CERTIFICATE-----Generated at Mon Oct 20 11:58:29 2025 by rpki-client