$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/RZJptE8mfOhnA1gCOGdtVTn49ic.roa File: RZJptE8mfOhnA1gCOGdtVTn49ic.roa (raw, json) Hash identifier: QjhR2ZlTGerAvnq9eXADXWslP5bDNO1CvRjf+381c9o= Subject key identifier: 45:92:69:B4:4F:26:7C:E8:67:03:58:02:38:67:6D:55:39:F8:F6:27 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1E6A Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/RZJptE8mfOhnA1gCOGdtVTn49ic.roa Signing time: Sat 13 Sep 2025 03:05:08 +0000 ROA not before: Sat 13 Sep 2025 03:05:08 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 59083 IP address blocks: 43.254.152.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7786 (0x1e6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:05:08 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=459269B44F267CE86703580238676D5539F8F627 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:5a:81:38:df:43:3c:7f:7e:1b:b5:8e:87:af: 81:58:b4:94:86:41:fe:5e:18:bc:1c:36:9e:f4:36: a3:09:a4:b5:e3:bd:a6:79:19:cd:7c:be:a6:b3:92: e4:4f:e5:4f:d9:63:7b:f2:80:c0:a2:c7:0a:d9:f6: 9f:b4:b7:e5:f3:9f:8b:53:5b:e4:2e:2a:a6:2c:ca: 17:fc:63:51:d1:69:c4:72:41:81:82:a9:17:18:7e: 03:49:72:47:25:d0:d0:b2:8d:db:f6:83:ed:f0:60: 9d:14:75:b6:22:67:69:58:e0:10:a6:9b:a7:cc:cb: 1b:15:c7:13:1f:df:d1:9f:60:fe:ad:9a:45:62:7c: df:cd:39:0f:be:fc:49:7e:d5:c3:a3:27:36:6a:86: 5e:e6:58:e8:d9:07:b1:8a:ef:cc:94:55:6c:23:d5: c2:9e:eb:e6:67:21:6f:5e:23:b5:f9:f6:db:d8:38: f2:bc:fb:fd:68:08:c4:c9:5e:55:25:e0:3e:c0:e0: 0f:5c:99:a2:05:9d:19:8c:3c:37:c8:55:7b:ab:61: fa:fe:2e:45:8b:8f:51:4c:46:62:a8:05:82:1e:20: de:de:98:a5:ad:9f:5f:d1:2e:58:4f:0b:84:cd:f7: 53:1f:92:f2:42:88:28:3e:db:be:2e:2c:bd:0a:26: 3e:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:92:69:B4:4F:26:7C:E8:67:03:58:02:38:67:6D:55:39:F8:F6:27 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/RZJptE8mfOhnA1gCOGdtVTn49ic.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.254.152.0/22 Signature Algorithm: sha256WithRSAEncryption 2d:5d:aa:10:fe:dd:47:e5:05:f6:ad:c4:58:27:01:b9:88:fa: e1:67:c7:2f:ea:44:c0:1a:0d:8d:12:28:04:a7:4c:2e:98:c8: b4:df:57:ab:f3:41:41:5f:18:5f:95:c4:d0:c9:a0:07:eb:51: e7:ee:89:ae:50:5a:08:b8:e8:d8:92:25:42:0e:99:dc:ed:b7: d0:10:23:df:51:41:82:43:6f:6e:0c:df:9d:02:da:41:d6:eb: 21:0a:dc:4a:df:d9:c3:54:a2:e5:82:5f:89:37:92:4d:c6:6d: 81:e5:ba:ac:72:04:85:8f:f6:ec:b7:c0:ff:ae:dc:45:4b:36: de:b3:e4:8f:38:bc:50:8e:c0:7f:93:ff:29:c5:c2:71:be:c7: 1b:f4:e1:48:62:a5:1d:2a:a8:ae:8a:ba:ed:a1:7e:7d:94:00: 55:95:66:eb:37:d2:26:03:c6:1d:ef:f3:de:6a:60:08:15:b0: 56:45:f5:d0:ff:09:12:89:a0:bb:62:4e:27:72:00:fb:b1:a9: a8:78:76:0a:1d:58:cf:eb:bf:d9:57:c8:36:71:6b:2a:9c:47: bc:7a:3a:37:06:5c:7f:c1:92:e5:b7:8d:a2:ca:6f:4b:1a:99: cc:77:ef:d4:97:f2:e4:fa:09:a1:14:f3:7a:2a:51:78:4d:ea: 5f:35:8e:ed -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHmowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA1MDhaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDQ1OTI2OUI0NEYyNjdD RTg2NzAzNTgwMjM4Njc2RDU1MzlGOEY2MjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGWoE430M8f34btY6Hr4FYtJSGQf5eGLwcNp70NqMJpLXjvaZ5 Gc18vqazkuRP5U/ZY3vygMCixwrZ9p+0t+Xzn4tTW+QuKqYsyhf8Y1HRacRyQYGC qRcYfgNJckcl0NCyjdv2g+3wYJ0UdbYiZ2lY4BCmm6fMyxsVxxMf39GfYP6tmkVi fN/NOQ++/El+1cOjJzZqhl7mWOjZB7GK78yUVWwj1cKe6+ZnIW9eI7X59tvYOPK8 +/1oCMTJXlUl4D7A4A9cmaIFnRmMPDfIVXurYfr+LkWLj1FMRmKoBYIeIN7emKWt n1/RLlhPC4TN91MfkvJCiCg+274uLL0KJj6hAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQURZJptE8mfOhnA1gCOGdtVTn49icwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L1JaSnB0RThtZk9obkEx Z0NPR2R0VlRuNDlpYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAIr/pgwDQYJKoZIhvcNAQELBQADggEBAC1dqhD+3UflBfatxFgnAbmI+uFnxy/q RMAaDY0SKASnTC6YyLTfV6vzQUFfGF+VxNDJoAfrUefuia5QWgi46NiSJUIOmdzt t9AQI99RQYJDb24M350C2kHW6yEK3Erf2cNUouWCX4k3kk3GbYHluqxyBIWP9uy3 wP+u3EVLNt6z5I84vFCOwH+T/ynFwnG+xxv04UhipR0qqK6Kuu2hfn2UAFWVZus3 0iYDxh3v895qYAgVsFZF9dD/CRKJoLtiTidyAPuxqah4dgodWM/rv9lXyDZxayqc R7x6OjcGXH/BkuW3jaLKb0samcx379SX8uT6CaEU83oqUXhN6l81ju0= -----END CERTIFICATE-----Generated at Mon Oct 20 13:13:38 2025 by rpki-client