$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/MwZ428xHsrmqzVqqLF4VBMTiM0E.roa File: MwZ428xHsrmqzVqqLF4VBMTiM0E.roa (raw, json) Hash identifier: ybpe4boqct4Vt3F+FQL/eIU8MvJGmWhUJ1DIWVzLryQ= Subject key identifier: 33:06:78:DB:CC:47:B2:B9:AA:CD:5A:AA:2C:5E:15:04:C4:E2:33:41 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1E48 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/MwZ428xHsrmqzVqqLF4VBMTiM0E.roa Signing time: Sat 13 Sep 2025 03:04:59 +0000 ROA not before: Sat 13 Sep 2025 03:04:59 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 13444 IP address blocks: 45.252.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7752 (0x1e48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:04:59 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=330678DBCC47B2B9AACD5AAA2C5E1504C4E23341 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:e8:fa:93:a1:a5:07:87:81:ff:1d:89:90:22: 17:92:a7:d6:f4:74:79:b4:31:18:5e:0e:69:f5:04: ca:59:12:09:e6:74:37:ff:ea:67:2f:62:c6:87:b2: 9f:b4:55:72:1c:f7:11:68:b4:cc:2f:a1:db:e6:94: ca:da:e0:6f:a1:2b:23:fb:ce:fb:4c:b4:f1:08:f1: b2:c1:99:dc:96:a8:89:c4:02:91:35:74:f1:be:9c: 7f:5e:9a:ae:c6:0e:dd:23:f0:ad:ad:ee:6e:3e:19: cc:35:87:e8:65:90:5c:41:45:b4:c6:48:34:e0:d8: 8d:b3:4f:22:e9:1a:23:89:e5:fb:6f:9b:b5:31:43: 3d:85:2a:3f:d2:35:44:db:0b:3a:e9:53:64:9f:d8: ee:c5:f5:cd:01:fa:ee:6c:52:c5:a4:61:2e:13:be: 7c:4b:69:a1:46:a8:a3:20:d1:aa:a6:e2:04:9f:33: 14:58:05:59:4f:de:d3:4e:3e:2f:7e:62:4a:43:b5: 8c:af:53:f8:2a:de:08:af:e0:54:e9:09:11:60:9f: b0:66:53:45:07:3f:db:b5:44:8d:71:3d:7d:bf:9c: 47:8b:3a:a2:45:89:4d:74:9e:77:a3:a5:29:54:79: 07:85:98:d7:da:01:ab:47:0f:51:0d:12:58:0b:eb: 38:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:06:78:DB:CC:47:B2:B9:AA:CD:5A:AA:2C:5E:15:04:C4:E2:33:41 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/MwZ428xHsrmqzVqqLF4VBMTiM0E.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 45.252.145.0/24 Signature Algorithm: sha256WithRSAEncryption ce:65:5d:84:b8:8f:3a:18:ed:72:fb:5a:12:d6:ff:34:12:f9: 66:c8:b8:9f:f7:0b:2c:e1:0c:6f:18:01:80:67:5a:6f:b6:cb: 0f:1f:a9:12:32:08:c4:d9:9e:08:6f:d9:5e:ca:2e:8a:f6:64: 75:f5:15:08:3b:f0:13:ef:a7:46:6c:02:b6:88:06:ea:e2:c4: 48:c2:36:8f:cf:05:c2:4b:2a:ff:62:19:51:9d:c0:e0:3b:a1: 36:42:14:d0:5c:f6:cc:04:2f:a0:a1:ce:01:25:32:10:6a:f1: 7b:8a:8c:d1:34:bb:f7:64:84:53:ee:24:9e:2b:01:21:d1:23: d7:25:27:af:00:57:c2:a0:ff:11:af:86:bf:4d:a3:2c:65:61: 78:54:23:ca:e9:2c:52:c1:a3:5d:b4:79:88:f3:14:ff:47:bd: 35:79:31:f0:ce:ed:94:97:e6:92:4b:9d:51:d6:c3:f7:fa:01: 82:62:0a:93:18:c2:9e:a5:a9:37:5d:d6:44:35:6f:6c:52:4c: dd:57:54:d2:2e:8e:41:32:34:b2:b0:d9:30:ff:2e:1f:88:b0: 3f:99:fb:47:ee:fd:bc:4a:ff:c0:93:c8:51:dd:27:0b:84:c3: 12:52:49:a0:a6:47:f2:83:8a:f0:82:09:1f:9f:7f:c5:0e:3f: e4:ae:6d:31 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHkgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA0NTlaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDMzMDY3OERCQ0M0N0Iy QjlBQUNENUFBQTJDNUUxNTA0QzRFMjMzNDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCl6PqToaUHh4H/HYmQIheSp9b0dHm0MRheDmn1BMpZEgnmdDf/ 6mcvYsaHsp+0VXIc9xFotMwvodvmlMra4G+hKyP7zvtMtPEI8bLBmdyWqInEApE1 dPG+nH9emq7GDt0j8K2t7m4+Gcw1h+hlkFxBRbTGSDTg2I2zTyLpGiOJ5ftvm7Ux Qz2FKj/SNUTbCzrpU2Sf2O7F9c0B+u5sUsWkYS4TvnxLaaFGqKMg0aqm4gSfMxRY BVlP3tNOPi9+YkpDtYyvU/gq3giv4FTpCRFgn7BmU0UHP9u1RI1xPX2/nEeLOqJF iU10nnejpSlUeQeFmNfaAatHD1ENElgL6zi/AgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUMwZ428xHsrmqzVqqLF4VBMTiM0EwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L013WjQyOHhIc3JtcXpW cXFMRjRWQk1UaU0wRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAAt/JEwDQYJKoZIhvcNAQELBQADggEBAM5lXYS4jzoY7XL7WhLW/zQS+WbIuJ/3 CyzhDG8YAYBnWm+2yw8fqRIyCMTZnghv2V7KLor2ZHX1FQg78BPvp0ZsAraIBuri xEjCNo/PBcJLKv9iGVGdwOA7oTZCFNBc9swEL6ChzgElMhBq8XuKjNE0u/dkhFPu JJ4rASHRI9clJ68AV8Kg/xGvhr9NoyxlYXhUI8rpLFLBo120eYjzFP9HvTV5MfDO 7ZSX5pJLnVHWw/f6AYJiCpMYwp6lqTdd1kQ1b2xSTN1XVNIujkEyNLKw2TD/Lh+I sD+Z+0fu/bxK/8CTyFHdJwuEwxJSSaCmR/KDivCCCR+ff8UOP+SubTE= -----END CERTIFICATE-----Generated at Mon Oct 20 13:30:47 2025 by rpki-client