$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/RtlCiDufZV8qzKMYFCX0EM3QOzE.roa File: RtlCiDufZV8qzKMYFCX0EM3QOzE.roa (raw, json) Hash identifier: iUAQIAuQq8YlpccAVm6HCmQCFM/HCrc681hRswWGOIA= Subject key identifier: 46:D9:42:88:3B:9F:65:5F:2A:CC:A3:18:14:25:F4:10:CD:D0:3B:31 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1EF7 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/RtlCiDufZV8qzKMYFCX0EM3QOzE.roa Signing time: Sat 13 Sep 2025 03:05:39 +0000 ROA not before: Sat 13 Sep 2025 03:05:39 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 13444 IP address blocks: 103.221.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7927 (0x1ef7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:05:39 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=46D942883B9F655F2ACCA3181425F410CDD03B31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:79:74:44:e5:a6:e0:14:35:4f:48:00:50:c0: e9:42:e9:7b:8b:b6:6d:d8:00:ee:6c:fe:aa:7b:d7: 8d:14:27:6c:2f:87:3f:7a:83:42:4b:f5:56:df:20: 27:96:13:fd:af:b0:e1:62:75:35:70:26:3e:10:b4: 2e:fe:77:4e:6d:1c:79:e7:e6:30:0b:8a:e2:05:d0: 92:69:59:8c:cb:8a:54:8c:a8:67:2f:54:b1:82:c2: ed:8e:27:aa:64:92:a0:57:00:e4:7c:aa:fc:81:49: e1:64:d0:04:59:9d:33:d4:3e:7f:75:57:f7:36:30: fb:40:19:36:33:63:43:19:16:e7:99:cf:7e:a1:36: fc:16:c1:7b:81:ee:d1:e0:10:87:2c:49:b4:24:da: 7a:ef:5c:63:38:e8:54:54:6f:81:ee:c4:4b:47:3a: 89:5e:d9:d4:81:66:e2:17:f2:64:43:4e:7f:cc:20: 0b:8a:87:19:d3:8f:91:cb:0d:98:4b:9d:b2:49:33: be:38:cf:9a:81:c8:18:d7:1d:09:dd:db:5e:6a:6a: c0:55:2e:ca:67:fe:6b:56:9f:7c:bf:a3:c8:0e:0b: 2b:ee:b1:12:32:e8:c3:c0:3e:14:4d:d0:4e:b9:0d: e2:72:9b:c8:c1:c4:d3:ee:1c:27:c0:06:61:e9:9c: b7:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:D9:42:88:3B:9F:65:5F:2A:CC:A3:18:14:25:F4:10:CD:D0:3B:31 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/RtlCiDufZV8qzKMYFCX0EM3QOzE.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.16.0/24 Signature Algorithm: sha256WithRSAEncryption 81:2d:87:f7:a4:ef:07:a2:0c:98:ab:54:02:03:34:ae:51:f3: a5:be:e6:e9:16:ee:ff:0a:7f:fd:bf:a7:96:48:16:29:a3:6b: 68:3e:7f:09:8f:9b:36:a6:7b:1c:21:84:60:0f:12:a1:51:f8: f3:27:e1:47:93:a9:75:e4:25:c5:7c:d5:b9:4e:ad:5b:11:c0: ec:92:74:de:20:50:2f:10:56:d6:ad:db:29:0a:8a:79:cb:77: 5b:0d:08:e8:0d:ec:21:7e:d4:3b:80:74:2c:b7:87:f9:bb:7d: ef:63:f7:81:ea:bc:f9:f0:2c:ea:4a:f7:94:33:08:70:dc:15: 1d:4b:7d:a4:f6:f2:ac:42:bd:2d:52:01:d3:75:91:97:14:ae: 43:a5:26:f0:10:59:13:c5:47:48:60:7f:e3:30:64:41:f4:b5: c5:0a:05:f7:8f:3b:46:0f:4f:cd:15:5f:b0:33:64:59:e4:44: 77:03:a7:04:4a:3b:a3:58:f7:48:69:bb:4f:e5:e1:55:d5:70: e3:a3:03:70:e5:a6:60:e1:92:d3:cc:ee:d4:48:49:e9:e9:6b: da:61:89:d8:99:44:f7:ff:f0:95:9f:f9:b8:2b:c2:60:56:b0: a8:1f:5a:8c:01:16:dc:03:54:fa:20:8a:85:7f:10:06:53:0e: 62:bb:93:bb -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHvcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA1MzlaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDQ2RDk0Mjg4M0I5RjY1 NUYyQUNDQTMxODE0MjVGNDEwQ0REMDNCMzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4eXRE5abgFDVPSABQwOlC6XuLtm3YAO5s/qp7140UJ2wvhz96 g0JL9VbfICeWE/2vsOFidTVwJj4QtC7+d05tHHnn5jALiuIF0JJpWYzLilSMqGcv VLGCwu2OJ6pkkqBXAOR8qvyBSeFk0ARZnTPUPn91V/c2MPtAGTYzY0MZFueZz36h NvwWwXuB7tHgEIcsSbQk2nrvXGM46FRUb4HuxEtHOole2dSBZuIX8mRDTn/MIAuK hxnTj5HLDZhLnbJJM744z5qByBjXHQnd215qasBVLspn/mtWn3y/o8gOCyvusRIy 6MPAPhRN0E65DeJym8jBxNPuHCfABmHpnLf/AgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQURtlCiDufZV8qzKMYFCX0EM3QOzEwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L1J0bENpRHVmWlY4cXpL TVlGQ1gwRU0zUU96RS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn3RAwDQYJKoZIhvcNAQELBQADggEBAIEth/ek7weiDJirVAIDNK5R86W+5ukW 7v8Kf/2/p5ZIFimja2g+fwmPmzamexwhhGAPEqFR+PMn4UeTqXXkJcV81blOrVsR wOySdN4gUC8QVtat2ykKinnLd1sNCOgN7CF+1DuAdCy3h/m7fe9j94HqvPnwLOpK 95QzCHDcFR1LfaT28qxCvS1SAdN1kZcUrkOlJvAQWRPFR0hgf+MwZEH0tcUKBfeP O0YPT80VX7AzZFnkRHcDpwRKO6NY90hpu0/l4VXVcOOjA3DlpmDhktPM7tRISenp a9phidiZRPf/8JWf+bgrwmBWsKgfWowBFtwDVPogioV/EAZTDmK7k7s= -----END CERTIFICATE-----Generated at Mon Oct 20 13:13:40 2025 by rpki-client