$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/Qc_4GBvyJZXqqyFW-9MCqBrkAOE.roa File: Qc_4GBvyJZXqqyFW-9MCqBrkAOE.roa (raw, json) Hash identifier: nkzFD4ChPaSj8uq3RAFAdNQmYRqupFCKag3zNcZ+U5M= Subject key identifier: 41:CF:F8:18:1B:F2:25:95:EA:AB:21:56:FB:D3:02:A8:1A:E4:00:E1 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1E80 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/Qc_4GBvyJZXqqyFW-9MCqBrkAOE.roa Signing time: Sat 13 Sep 2025 03:05:12 +0000 ROA not before: Sat 13 Sep 2025 03:05:12 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 138527 IP address blocks: 103.221.40.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 00:35:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7808 (0x1e80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:05:12 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=41CFF8181BF22595EAAB2156FBD302A81AE400E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:34:e5:3d:94:47:75:7f:d1:4e:f7:ae:ff:b1: c0:d7:2b:bb:a9:d1:c9:b6:e8:fa:b2:50:7e:88:4a: 26:cf:a5:28:29:c7:e8:05:da:6c:0e:d3:f7:50:0d: d2:b4:fa:7d:37:3a:11:83:27:48:2f:6a:f7:eb:a7: d8:c8:07:ad:b5:5b:e8:9d:89:56:24:48:b8:e2:97: f4:dc:e8:ea:0d:38:6e:1e:e4:b3:cf:05:f5:65:cd: c2:22:48:89:f8:5e:7d:b2:a5:56:5a:b2:ad:2a:a1: 8e:be:17:51:a1:6c:34:19:c3:b2:79:f7:16:54:5f: ca:08:4b:2c:0b:3c:ac:99:f0:07:fa:14:02:b7:5b: dd:a9:eb:ba:06:3e:64:53:8b:18:df:6d:82:6a:a2: a7:36:fd:aa:10:1e:bc:c5:3c:4e:a5:0a:b7:3b:8d: 8c:c2:b9:04:e1:d7:46:2a:fa:f5:d3:fa:19:68:e9: 0f:b0:0b:47:cf:ca:ff:a4:98:4b:44:52:05:a9:70: ed:ff:84:01:14:92:09:6f:3a:15:58:5b:07:cd:c5: 31:d7:bc:28:86:fc:d1:cc:26:fd:f5:94:c7:4a:8c: 0e:0b:cb:80:af:83:9c:7b:46:80:57:1b:fc:db:5a: 26:d9:30:4a:f4:11:39:44:3e:5b:a1:f1:e2:86:f2: 86:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:CF:F8:18:1B:F2:25:95:EA:AB:21:56:FB:D3:02:A8:1A:E4:00:E1 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/Qc_4GBvyJZXqqyFW-9MCqBrkAOE.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.40.0/22 Signature Algorithm: sha256WithRSAEncryption b6:d2:89:6c:8a:d3:60:18:3d:ba:b3:4c:d7:2f:d9:c4:cb:c5: 0e:03:aa:f1:cc:89:c2:e7:5d:93:ab:26:70:d0:ef:09:a1:53: c3:00:a0:50:db:31:fe:89:03:df:39:13:b2:e4:95:f6:15:0b: 49:32:c7:d7:23:2a:59:e4:82:f3:a7:d1:ab:d4:e6:d7:90:79: ed:62:81:61:6e:aa:3e:61:9e:b5:f4:bb:7b:2f:d3:74:78:7a: 41:ff:f0:68:2f:cc:b7:ce:0e:33:10:10:66:04:94:59:3f:98: ca:18:54:16:91:3f:b6:ed:9e:14:97:65:0d:3e:6d:93:b3:5e: 3c:8f:a6:83:07:e1:65:c0:cc:6b:80:a2:9e:95:06:db:a5:4f: f7:eb:61:77:d0:3b:1d:81:ec:7a:3e:e1:a4:ae:bc:1f:93:b4: 0d:d4:28:1f:46:a2:c1:86:b7:10:66:4f:79:18:24:71:20:e8: 44:c7:e9:12:4e:b9:8c:6b:ed:d8:a4:ca:36:af:58:9a:a2:eb: c3:3c:92:08:69:e8:8c:9a:62:dc:3f:c9:49:7e:9e:f3:13:5b: e2:a9:45:1a:aa:4f:47:18:39:22:40:cb:3f:4c:40:81:8a:c5: c5:46:88:fc:22:dd:50:11:86:da:41:15:28:89:3c:92:e8:5f: f0:50:d0:13 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHoAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA1MTJaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDQxQ0ZGODE4MUJGMjI1 OTVFQUFCMjE1NkZCRDMwMkE4MUFFNDAwRTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLNOU9lEd1f9FO967/scDXK7up0cm26PqyUH6ISibPpSgpx+gF 2mwO0/dQDdK0+n03OhGDJ0gvavfrp9jIB621W+idiVYkSLjil/Tc6OoNOG4e5LPP BfVlzcIiSIn4Xn2ypVZasq0qoY6+F1GhbDQZw7J59xZUX8oISywLPKyZ8Af6FAK3 W92p67oGPmRTixjfbYJqoqc2/aoQHrzFPE6lCrc7jYzCuQTh10Yq+vXT+hlo6Q+w C0fPyv+kmEtEUgWpcO3/hAEUkglvOhVYWwfNxTHXvCiG/NHMJv31lMdKjA4Ly4Cv g5x7RoBXG/zbWibZMEr0ETlEPluh8eKG8oZlAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUQc/4GBvyJZXqqyFW+9MCqBrkAOEwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L1FjXzRHQnZ5SlpYcXF5 RlctOU1DcUJya0FPRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJn3SgwDQYJKoZIhvcNAQELBQADggEBALbSiWyK02AYPbqzTNcv2cTLxQ4DqvHM icLnXZOrJnDQ7wmhU8MAoFDbMf6JA985E7LklfYVC0kyx9cjKlnkgvOn0avU5teQ ee1igWFuqj5hnrX0u3sv03R4ekH/8GgvzLfODjMQEGYElFk/mMoYVBaRP7btnhSX ZQ0+bZOzXjyPpoMH4WXAzGuAop6VBtulT/frYXfQOx2B7Ho+4aSuvB+TtA3UKB9G osGGtxBmT3kYJHEg6ETH6RJOuYxr7dikyjavWJqi68M8kghp6IyaYtw/yUl+nvMT W+KpRRqqT0cYOSJAyz9MQIGKxcVGiPwi3VARhtpBFSiJPJLoX/BQ0BM= -----END CERTIFICATE-----Generated at Mon Oct 20 23:27:22 2025 by rpki-client