$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/MQp49o2M-KO8Vt1cTQgfhpPphJw.roa File: MQp49o2M-KO8Vt1cTQgfhpPphJw.roa (raw, json) Hash identifier: +a427AqGYWh7X/4GGb5xJU/jg3gv9R+M0ja3jxEN9KI= Subject key identifier: 31:0A:78:F6:8D:8C:F8:A3:BC:56:DD:5C:4D:08:1F:86:93:E9:84:9C Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1E12 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/MQp49o2M-KO8Vt1cTQgfhpPphJw.roa Signing time: Sat 13 Sep 2025 03:04:50 +0000 ROA not before: Sat 13 Sep 2025 03:04:50 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 13444 IP address blocks: 103.221.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7698 (0x1e12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:04:50 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=310A78F68D8CF8A3BC56DD5C4D081F8693E9849C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:91:b9:d1:a7:44:77:5f:96:90:ce:be:fb:ca: a5:e3:5a:ee:ee:fa:e9:97:37:41:39:da:25:b6:fc: 4b:8b:9d:82:41:f8:26:29:07:b6:1a:db:c4:c0:11: 61:42:58:41:bf:65:c0:75:24:e5:50:f0:19:38:cb: fb:8d:05:e9:a8:56:08:df:0c:d9:e2:d8:cc:b7:b5: 28:c8:bd:df:dd:bd:40:4e:a2:52:83:19:52:cc:7e: 63:f4:11:d5:d9:c2:38:33:f6:1a:88:3a:a8:12:95: 92:b7:4a:af:91:8a:df:f0:40:3d:60:65:a2:8f:e9: 42:1f:d7:93:2f:4a:30:32:f3:53:2b:ef:06:6c:0c: d9:25:c7:92:f6:6d:6f:30:03:47:6b:05:e0:a6:c2: 71:da:97:f5:a9:6f:a4:d7:c1:17:83:3a:5a:93:d1: a3:46:47:72:f3:94:bd:a1:b5:cd:e0:0b:54:4d:f2: ce:a7:f1:5c:9d:d0:df:7c:8d:5c:a6:65:26:d5:79: 06:14:42:75:74:c7:07:08:10:95:0b:7b:45:8e:5f: 2d:e7:6a:ef:3e:41:a8:80:9d:c4:ef:4a:d1:7e:4f: 20:28:03:fa:1e:c8:e6:24:73:53:4e:43:1d:2b:0a: 51:4e:d4:9a:0d:af:6f:ff:97:c2:f3:33:01:25:67: 1f:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:0A:78:F6:8D:8C:F8:A3:BC:56:DD:5C:4D:08:1F:86:93:E9:84:9C X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/MQp49o2M-KO8Vt1cTQgfhpPphJw.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.1.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:0f:80:13:d8:c9:0b:23:e0:e4:c3:ce:fc:11:7c:b7:89:a8: 41:21:fe:82:f0:12:97:ab:f9:8c:8d:73:e7:6d:74:1d:e8:fa: 23:cb:99:95:79:cd:ae:92:4f:07:96:6a:89:d4:fd:96:3f:11: 7b:71:1c:22:d4:d5:64:f9:be:a8:51:04:60:6c:dc:e7:c2:b1: 2b:26:ad:f2:4e:5c:14:f5:81:2a:26:c2:5d:1a:7b:95:88:95: 24:12:92:cb:5e:f0:ba:10:db:4c:1b:ce:17:9d:8d:46:aa:67: a6:7c:ae:55:fa:52:15:18:a2:f3:de:d5:de:d7:71:e2:da:b8: 8a:7a:c7:9d:5e:0c:ef:61:e7:56:04:96:7e:d1:64:fa:fb:69: 28:7d:b9:59:ab:f8:53:b6:5d:7d:be:3b:a6:df:72:50:9b:bc: e3:21:fe:d1:39:2c:fd:c7:0c:de:81:bf:18:20:94:76:22:12: 14:57:1d:c7:cb:79:e8:63:be:b4:e5:68:24:15:3a:0a:0d:b5: fc:c6:cb:16:46:4e:f9:4f:96:2f:13:fa:95:4b:fe:a1:8c:99: e8:44:d0:71:68:fe:12:ae:aa:1f:ba:95:9b:55:a8:57:60:ed: 86:33:bb:22:58:6f:77:94:a0:64:2e:d1:b8:ff:02:2b:e9:89: 04:34:3d:5f -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHhIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA0NTBaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDMxMEE3OEY2OEQ4Q0Y4 QTNCQzU2REQ1QzREMDgxRjg2OTNFOTg0OUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDgkbnRp0R3X5aQzr77yqXjWu7u+umXN0E52iW2/EuLnYJB+CYp B7Ya28TAEWFCWEG/ZcB1JOVQ8Bk4y/uNBemoVgjfDNni2My3tSjIvd/dvUBOolKD GVLMfmP0EdXZwjgz9hqIOqgSlZK3Sq+Rit/wQD1gZaKP6UIf15MvSjAy81Mr7wZs DNklx5L2bW8wA0drBeCmwnHal/Wpb6TXwReDOlqT0aNGR3LzlL2htc3gC1RN8s6n 8Vyd0N98jVymZSbVeQYUQnV0xwcIEJULe0WOXy3nau8+QaiAncTvStF+TyAoA/oe yOYkc1NOQx0rClFO1JoNr2//l8LzMwElZx9bAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUMQp49o2M+KO8Vt1cTQgfhpPphJwwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L01RcDQ5bzJNLUtPOFZ0 MWNUUWdmaHBQcGhKdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn3QEwDQYJKoZIhvcNAQELBQADggEBAA8PgBPYyQsj4OTDzvwRfLeJqEEh/oLw Eper+YyNc+dtdB3o+iPLmZV5za6STweWaonU/ZY/EXtxHCLU1WT5vqhRBGBs3OfC sSsmrfJOXBT1gSomwl0ae5WIlSQSkste8LoQ20wbzhedjUaqZ6Z8rlX6UhUYovPe 1d7XceLauIp6x51eDO9h51YEln7RZPr7aSh9uVmr+FO2XX2+O6bfclCbvOMh/tE5 LP3HDN6BvxgglHYiEhRXHcfLeehjvrTlaCQVOgoNtfzGyxZGTvlPli8T+pVL/qGM mehE0HFo/hKuqh+6lZtVqFdg7YYzuyJYb3eUoGQu0bj/AivpiQQ0PV8= -----END CERTIFICATE-----Generated at Mon Oct 20 12:50:44 2025 by rpki-client