$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/R3u713kpAJIFlGi_NH37eu1SWAI.roa File: R3u713kpAJIFlGi_NH37eu1SWAI.roa (raw, json) Hash identifier: 91N132DmcRyjvl47+HXRxoaY31mk/Bg3vRfsC9muv3M= Subject key identifier: 47:7B:BB:D7:79:29:00:92:05:94:68:BF:34:7D:FB:7A:ED:52:58:02 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1ED2 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/R3u713kpAJIFlGi_NH37eu1SWAI.roa Signing time: Sat 13 Sep 2025 03:05:31 +0000 ROA not before: Sat 13 Sep 2025 03:05:31 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 13444 IP address blocks: 103.221.93.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7890 (0x1ed2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:05:31 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=477BBBD779290092059468BF347DFB7AED525802 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:0a:7b:84:d5:65:8e:fd:77:c3:50:e6:23:4b: e0:8e:35:02:75:ca:e1:5c:a6:51:0d:19:01:ce:e4: fa:1e:c0:87:2d:00:78:cf:cf:c4:ab:fa:23:93:e5: a3:3c:f3:a0:d6:1c:ec:13:cb:35:1f:17:ce:ef:9a: 81:53:e1:1e:ed:88:eb:97:97:87:10:d8:9a:b5:3c: 52:56:27:a3:30:04:bd:01:a9:c3:e9:de:96:50:06: 62:d5:29:de:3a:84:b2:40:d8:d7:06:70:5d:88:e7: 05:7f:a0:7e:fa:1f:f1:c9:c6:04:33:12:07:17:00: c5:42:18:7c:b0:4c:35:29:d7:00:f8:03:07:2c:22: c0:b8:eb:79:2c:b7:c0:7e:ca:f7:36:dc:17:6b:c6: ca:7e:0a:9f:90:ae:9e:92:49:5d:b5:3c:96:b1:13: 4d:2a:cc:34:52:db:e1:ba:36:6a:d3:86:1d:1d:27: 8b:ab:91:47:ee:f6:2c:b4:38:40:21:e2:0f:a4:b7: 42:50:5e:9e:d7:af:67:c0:54:19:14:2f:d5:77:32: cc:a2:fd:2f:97:b3:43:ae:78:ea:8a:77:6d:18:db: 23:b3:9e:44:42:32:c9:22:40:7a:5a:ab:25:96:07: 49:13:7d:90:65:c2:05:93:d8:56:d9:33:6e:41:b3: 8a:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:7B:BB:D7:79:29:00:92:05:94:68:BF:34:7D:FB:7A:ED:52:58:02 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/R3u713kpAJIFlGi_NH37eu1SWAI.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.93.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:db:90:4e:65:c7:36:c2:ee:5e:21:50:59:5a:e0:5d:b8:7a: db:72:51:e1:29:22:a8:d1:d7:81:2e:74:03:3a:33:36:d3:03: d3:71:cf:df:3e:d0:30:0d:f7:95:58:49:21:22:09:d3:ea:fd: 75:21:62:a9:76:93:c5:9a:b4:94:1e:a6:06:7d:65:e3:50:4c: 10:f1:4c:bb:8b:42:1c:35:72:b9:34:f2:2a:3f:50:68:69:1b: b8:b3:c4:17:48:f2:ae:69:f4:0b:48:65:11:69:12:69:ca:93: 1d:4f:6a:26:28:2a:ae:9b:dc:d9:e3:86:2a:79:14:fb:05:55: 61:b4:8c:a6:1d:39:62:54:c4:5a:83:ba:44:d2:4a:57:a2:1c: 18:fa:6d:66:57:6a:ed:51:23:5c:09:27:8f:75:9f:1e:42:46: 9c:68:e1:3d:2f:9f:5c:d6:70:40:e4:e2:de:e3:3a:06:88:ae: 45:87:6e:45:32:00:82:b4:0f:ca:93:5a:ef:a0:79:e6:f3:4e: 7d:96:80:c3:07:8b:90:39:ed:5b:2e:b3:4f:1d:c8:a7:59:59: c9:fa:5d:cf:c9:57:e9:b0:97:a0:7c:ba:0e:86:10:db:ce:20: 60:d2:b2:a9:9e:25:6e:e8:2d:e5:7d:c4:4c:ce:c1:fd:65:e5: 0f:a7:5d:35 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHtIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA1MzFaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDQ3N0JCQkQ3NzkyOTAw OTIwNTk0NjhCRjM0N0RGQjdBRUQ1MjU4MDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpCnuE1WWO/XfDUOYjS+CONQJ1yuFcplENGQHO5PoewIctAHjP z8Sr+iOT5aM886DWHOwTyzUfF87vmoFT4R7tiOuXl4cQ2Jq1PFJWJ6MwBL0BqcPp 3pZQBmLVKd46hLJA2NcGcF2I5wV/oH76H/HJxgQzEgcXAMVCGHywTDUp1wD4Awcs IsC463kst8B+yvc23Bdrxsp+Cp+Qrp6SSV21PJaxE00qzDRS2+G6NmrThh0dJ4ur kUfu9iy0OEAh4g+kt0JQXp7Xr2fAVBkUL9V3Msyi/S+Xs0OueOqKd20Y2yOznkRC MskiQHpaqyWWB0kTfZBlwgWT2FbZM25Bs4o7AgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUR3u713kpAJIFlGi/NH37eu1SWAIwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L1IzdTcxM2twQUpJRmxH aV9OSDM3ZXUxU1dBSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn3V0wDQYJKoZIhvcNAQELBQADggEBAI7bkE5lxzbC7l4hUFla4F24ettyUeEp IqjR14EudAM6MzbTA9Nxz98+0DAN95VYSSEiCdPq/XUhYql2k8WatJQepgZ9ZeNQ TBDxTLuLQhw1crk08io/UGhpG7izxBdI8q5p9AtIZRFpEmnKkx1PaiYoKq6b3Nnj hip5FPsFVWG0jKYdOWJUxFqDukTSSleiHBj6bWZXau1RI1wJJ491nx5CRpxo4T0v n1zWcEDk4t7jOgaIrkWHbkUyAIK0D8qTWu+geebzTn2WgMMHi5A57Vsus08dyKdZ Wcn6Xc/JV+mwl6B8ug6GENvOIGDSsqmeJW7oLeV9xEzOwf1l5Q+nXTU= -----END CERTIFICATE-----Generated at Mon Oct 20 13:13:41 2025 by rpki-client