$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/Sv7Qh8py3SjRCPiQVZfZNAj3bM8.roa File: Sv7Qh8py3SjRCPiQVZfZNAj3bM8.roa (raw, json) Hash identifier: BoQb+tCnHXAfwjKd0tQwZUR5t5jM3M7pNHUopUvkyCM= Subject key identifier: 4A:FE:D0:87:CA:72:DD:28:D1:08:F8:90:55:97:D9:34:08:F7:6C:CF Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1E75 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/Sv7Qh8py3SjRCPiQVZfZNAj3bM8.roa Signing time: Sat 13 Sep 2025 03:05:11 +0000 ROA not before: Sat 13 Sep 2025 03:05:11 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 139259 IP address blocks: 45.252.20.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7797 (0x1e75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:05:11 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=4AFED087CA72DD28D108F8905597D93408F76CCF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:7e:dd:84:8e:79:8d:83:74:2c:64:d3:1f:3a: 49:aa:ed:21:56:10:14:56:a7:b6:52:33:29:31:37: 8d:f2:f0:ac:8e:2c:41:65:37:27:66:cf:42:ef:51: 63:42:ce:e5:1d:bc:fd:9e:82:c3:ff:e3:93:08:86: 83:60:08:ff:0b:e8:f8:aa:d7:96:02:56:74:3f:90: 09:85:1a:9d:55:ba:e3:b6:57:77:e2:e3:71:0e:8b: 86:01:2b:c6:a4:58:84:27:3c:54:53:f1:1b:8a:fd: 4b:67:50:ac:6c:e0:9f:cb:49:4f:0c:d9:93:43:4b: bd:69:09:c0:ee:3a:ff:e9:95:02:43:15:f5:5d:26: 7d:67:d8:19:97:9e:69:33:4f:74:f5:0b:5e:cd:a1: 66:47:da:26:89:40:0d:90:f7:ea:8a:10:dc:e6:c2: 27:7d:55:ee:49:31:e2:3b:e2:a7:5d:a9:9f:1a:8e: 7c:7a:cc:3b:a8:0c:77:62:c5:d7:fb:3f:ec:f3:6e: 60:41:2d:ca:e9:fe:98:84:6b:89:f9:a8:dc:0f:d1: e3:95:d9:d4:6a:3f:83:c4:1b:28:51:1c:8c:56:7e: 4a:25:9d:52:c5:ff:03:c6:08:d1:6e:d4:e0:12:4f: ef:22:3e:b3:7c:03:78:98:71:25:c7:e6:78:3e:0b: ff:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:FE:D0:87:CA:72:DD:28:D1:08:F8:90:55:97:D9:34:08:F7:6C:CF X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/Sv7Qh8py3SjRCPiQVZfZNAj3bM8.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 45.252.20.0/22 Signature Algorithm: sha256WithRSAEncryption 97:44:b8:4b:85:6f:c7:16:0b:00:7b:60:cc:fe:52:69:cd:60: ff:89:ba:65:7f:81:f1:0c:df:1d:e9:47:43:a4:2e:75:98:f7: 3e:14:90:c4:f2:d9:95:6e:f6:07:33:7f:2c:28:07:be:3b:29: c9:10:8b:32:22:4c:9f:64:fb:ce:26:18:d9:96:44:0e:31:e8: f6:8c:6b:7a:90:87:0e:ed:3b:d0:6b:ad:ec:b5:b8:37:cc:26: b8:e7:fb:9b:d6:71:43:ec:08:f3:a7:05:52:1b:0f:4f:59:92: 79:5a:e7:b3:21:9a:e1:e9:95:49:61:a1:ef:4d:5d:b6:d4:22: 8f:c3:9c:bf:24:1a:2d:e4:75:01:e6:de:d1:f5:ec:e3:90:60: 7f:66:2b:07:59:3d:c2:3f:cf:c6:f1:b4:b2:11:11:e3:88:de: d5:6c:f6:b8:c1:ab:21:3a:5d:19:b3:d6:33:73:a1:44:18:cb: 44:9d:33:19:4b:f5:af:92:69:43:88:4c:4c:e2:c5:85:cf:01: e8:77:eb:42:07:93:ab:53:22:1e:68:99:72:cf:33:18:59:f2: 01:47:3c:f9:da:ff:1e:9e:ab:3a:9f:ac:a6:fe:d5:c9:f3:32: c2:ba:f9:dc:92:ed:4f:1b:ce:11:93:d7:86:75:80:fa:35:f9: fa:3a:4d:06 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHnUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA1MTFaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDRBRkVEMDg3Q0E3MkRE MjhEMTA4Rjg5MDU1OTdEOTM0MDhGNzZDQ0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDnft2EjnmNg3QsZNMfOkmq7SFWEBRWp7ZSMykxN43y8KyOLEFl Nydmz0LvUWNCzuUdvP2egsP/45MIhoNgCP8L6Piq15YCVnQ/kAmFGp1VuuO2V3fi 43EOi4YBK8akWIQnPFRT8RuK/UtnUKxs4J/LSU8M2ZNDS71pCcDuOv/plQJDFfVd Jn1n2BmXnmkzT3T1C17NoWZH2iaJQA2Q9+qKENzmwid9Ve5JMeI74qddqZ8ajnx6 zDuoDHdixdf7P+zzbmBBLcrp/piEa4n5qNwP0eOV2dRqP4PEGyhRHIxWfkolnVLF /wPGCNFu1OAST+8iPrN8A3iYcSXH5ng+C/+zAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUSv7Qh8py3SjRCPiQVZfZNAj3bM8wHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L1N2N1FoOHB5M1NqUkNQ aVFWWmZaTkFqM2JNOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAIt/BQwDQYJKoZIhvcNAQELBQADggEBAJdEuEuFb8cWCwB7YMz+UmnNYP+JumV/ gfEM3x3pR0OkLnWY9z4UkMTy2ZVu9gczfywoB747KckQizIiTJ9k+84mGNmWRA4x 6PaMa3qQhw7tO9Brrey1uDfMJrjn+5vWcUPsCPOnBVIbD09Zknla57MhmuHplUlh oe9NXbbUIo/DnL8kGi3kdQHm3tH17OOQYH9mKwdZPcI/z8bxtLIREeOI3tVs9rjB qyE6XRmz1jNzoUQYy0SdMxlL9a+SaUOITEzixYXPAeh360IHk6tTIh5omXLPMxhZ 8gFHPPna/x6eqzqfrKb+1cnzMsK6+dyS7U8bzhGT14Z1gPo1+fo6TQY= -----END CERTIFICATE-----Generated at Mon Oct 20 13:13:43 2025 by rpki-client