$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/SCyOFZlODSl_eABnbFVvQ4nO9Fo.roa File: SCyOFZlODSl_eABnbFVvQ4nO9Fo.roa (raw, json) Hash identifier: pz0wsndhL8t767Co2kSAvL6qTF6IWygCUnokM6yYr3A= Subject key identifier: 48:2C:8E:15:99:4E:0D:29:7F:78:00:67:6C:55:6F:43:89:CE:F4:5A Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1E70 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/SCyOFZlODSl_eABnbFVvQ4nO9Fo.roa Signing time: Sat 13 Sep 2025 03:05:09 +0000 ROA not before: Sat 13 Sep 2025 03:05:09 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 139259 IP address blocks: 103.221.30.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7792 (0x1e70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:05:09 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=482C8E15994E0D297F7800676C556F4389CEF45A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:b0:4f:32:6f:31:35:06:bd:3c:92:35:45:17: a6:89:12:78:72:34:aa:e2:02:5c:5a:7b:d2:8f:4a: 3b:4d:71:c3:1f:4f:ce:86:b1:d4:a5:94:bd:74:27: 35:3c:a8:44:66:40:35:9b:fc:e1:37:59:4d:ef:be: 14:ec:9a:a9:b5:31:e4:77:26:3c:06:0b:58:d8:f4: 2e:35:6e:27:c8:67:c8:c5:d8:2a:55:6c:d1:39:05: 5b:e3:14:9f:19:6d:df:ec:e2:c1:a9:da:a1:fa:14: b5:6f:4e:79:8a:da:6a:1f:6d:ac:36:d2:4a:72:4f: bd:80:1b:54:1b:fe:ad:e8:86:30:8b:77:05:89:37: 5f:b2:cd:89:9b:93:39:29:30:ee:ae:b1:1a:8e:d1: c7:42:4d:38:57:35:f3:b2:b2:00:b6:1e:7b:46:0c: 20:fd:e3:9e:4d:e9:ac:4a:cb:86:74:01:70:cd:08: ef:91:98:b1:80:01:8b:81:96:83:64:3b:57:65:28: e2:bb:18:3f:dd:8e:4e:79:64:1b:03:39:71:d6:1d: f0:46:e4:6b:43:45:6b:ac:dc:ae:b3:36:31:3e:b1: f7:71:e9:cb:45:cc:57:49:f3:12:26:d0:0e:97:b1: 83:d5:5c:39:25:de:bf:d6:e1:ce:0d:e0:0f:1b:44: 4f:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:2C:8E:15:99:4E:0D:29:7F:78:00:67:6C:55:6F:43:89:CE:F4:5A X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/SCyOFZlODSl_eABnbFVvQ4nO9Fo.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.30.0/24 Signature Algorithm: sha256WithRSAEncryption 04:0d:74:c1:a6:ff:d9:41:35:f1:b4:9e:f1:cc:bf:39:ad:83: e2:32:e8:29:3f:0b:8e:94:d5:e6:87:94:2b:7f:35:bb:ab:a8: 3f:56:40:84:10:f2:6b:61:8c:08:03:5d:3e:a3:05:ee:ee:28: e2:a7:81:3f:d7:a0:03:cc:1e:d2:ee:58:72:94:66:fc:b3:9e: 6c:9a:1c:28:74:34:03:a7:1d:af:06:d4:3e:99:84:b7:ea:49: 4c:02:fe:65:9a:1b:ef:69:20:5e:92:69:ac:89:3f:f8:7f:5c: 87:63:fd:02:87:dc:20:9c:aa:cd:9e:4f:ec:df:27:e6:22:ed: c5:01:1b:e8:49:59:ed:3d:b4:b0:23:ad:52:50:7a:43:29:b4: b0:7c:20:c5:68:c8:f4:82:05:ad:cc:59:c1:b2:80:62:c6:e3: 3d:13:9f:0b:e7:fe:e5:24:19:61:b5:ed:f3:28:23:5a:c4:cd: 35:bc:2e:bf:63:8e:4f:4b:b2:fb:c3:e5:f0:ef:d8:4a:95:14: 2b:24:a7:50:e2:1c:c1:68:e4:e1:7b:4b:8c:e4:ec:d7:f1:e0: f5:6a:1a:33:fe:27:1e:bc:0e:42:63:73:54:59:22:7b:99:22: fc:e9:a9:ef:40:f0:0a:cd:59:9e:6e:c3:88:e8:d9:80:6a:36: f1:3c:df:de -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHnAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA1MDlaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDQ4MkM4RTE1OTk0RTBE Mjk3Rjc4MDA2NzZDNTU2RjQzODlDRUY0NUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCnsE8ybzE1Br08kjVFF6aJEnhyNKriAlxae9KPSjtNccMfT86G sdSllL10JzU8qERmQDWb/OE3WU3vvhTsmqm1MeR3JjwGC1jY9C41bifIZ8jF2CpV bNE5BVvjFJ8Zbd/s4sGp2qH6FLVvTnmK2mofbaw20kpyT72AG1Qb/q3ohjCLdwWJ N1+yzYmbkzkpMO6usRqO0cdCTThXNfOysgC2HntGDCD9455N6axKy4Z0AXDNCO+R mLGAAYuBloNkO1dlKOK7GD/djk55ZBsDOXHWHfBG5GtDRWus3K6zNjE+sfdx6ctF zFdJ8xIm0A6XsYPVXDkl3r/W4c4N4A8bRE/tAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUSCyOFZlODSl/eABnbFVvQ4nO9FowHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L1NDeU9GWmxPRFNsX2VB Qm5iRlZ2UTRuTzlGby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn3R4wDQYJKoZIhvcNAQELBQADggEBAAQNdMGm/9lBNfG0nvHMvzmtg+Iy6Ck/ C46U1eaHlCt/NburqD9WQIQQ8mthjAgDXT6jBe7uKOKngT/XoAPMHtLuWHKUZvyz nmyaHCh0NAOnHa8G1D6ZhLfqSUwC/mWaG+9pIF6SaayJP/h/XIdj/QKH3CCcqs2e T+zfJ+Yi7cUBG+hJWe09tLAjrVJQekMptLB8IMVoyPSCBa3MWcGygGLG4z0Tnwvn /uUkGWG17fMoI1rEzTW8Lr9jjk9LsvvD5fDv2EqVFCskp1DiHMFo5OF7S4zk7Nfx 4PVqGjP+Jx68DkJjc1RZInuZIvzpqe9A8ArNWZ5uw4jo2YBqNvE8394= -----END CERTIFICATE-----Generated at Mon Oct 20 13:13:47 2025 by rpki-client