$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/UD0_Ch7ZdQF9fdx3r3SyElnDSgs.roa File: UD0_Ch7ZdQF9fdx3r3SyElnDSgs.roa (raw, json) Hash identifier: nskJKxGFXIJMA7Y83QZtZXf+EGvPeAGpEOKxYYx8ax4= Subject key identifier: 50:3D:3F:0A:1E:D9:75:01:7D:7D:DC:77:AF:74:B2:12:59:C3:4A:0B Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1EC4 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/UD0_Ch7ZdQF9fdx3r3SyElnDSgs.roa Signing time: Sat 13 Sep 2025 03:05:27 +0000 ROA not before: Sat 13 Sep 2025 03:05:27 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 138527 IP address blocks: 103.221.36.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7876 (0x1ec4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:05:27 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=503D3F0A1ED975017D7DDC77AF74B21259C34A0B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:49:cb:b8:d1:af:29:38:c9:03:92:8d:e8:6f: dc:c3:d7:21:e3:d4:4a:41:fb:f4:16:eb:ae:98:52: d3:4e:4b:9a:c3:a4:34:43:76:e6:ef:8e:ea:b1:0e: f0:63:99:46:9d:41:82:c9:7f:d9:46:34:66:a1:9d: ea:9f:fa:a6:e7:6f:2f:7a:32:ad:76:98:82:05:31: c2:89:d7:28:5e:54:59:ea:df:89:db:a3:59:68:8d: a9:2d:32:d0:89:2b:7e:53:49:b2:ab:bd:b3:12:d0: 90:bc:99:dd:91:87:cf:81:88:b7:90:bf:2c:bb:7a: 7b:af:97:06:cd:32:03:c6:92:d4:f1:4e:50:87:57: 7e:83:d2:51:bd:b6:cd:2e:1b:73:3b:a6:f7:c9:9d: d2:89:8a:bb:7d:f2:26:99:e5:df:7b:97:9a:dd:a8: 02:7f:b0:7d:3c:c3:06:30:40:07:1f:84:6e:e0:88: a5:4d:81:27:e7:f7:e6:df:17:ff:a1:ae:30:4f:d6: 5e:e0:79:ff:09:bd:5d:95:64:3f:19:74:60:b2:91: 3a:76:73:56:f2:84:0e:75:db:62:db:f1:45:8f:96: 6c:39:fe:3f:d9:a1:2b:90:59:2d:2e:2b:62:23:10: 80:56:a0:5f:fd:90:88:1d:93:e8:34:d7:d7:99:eb: 1e:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:3D:3F:0A:1E:D9:75:01:7D:7D:DC:77:AF:74:B2:12:59:C3:4A:0B X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/UD0_Ch7ZdQF9fdx3r3SyElnDSgs.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.36.0/22 Signature Algorithm: sha256WithRSAEncryption 5e:c8:5e:a9:d2:5d:99:ac:10:a5:16:64:dc:30:9f:2e:0d:e8: ad:26:0c:43:cc:e0:79:d6:20:40:69:6a:11:7e:58:52:42:0c: 5e:c2:4e:b8:04:67:14:af:65:51:a6:9d:aa:39:bc:06:72:dc: 00:3e:33:be:54:48:4e:82:2f:14:b1:4c:3e:61:fb:b4:1d:d0: ff:3c:79:d1:e1:8b:60:ad:c7:1e:e6:7d:04:93:ea:ca:0c:41: 3c:ed:ca:f7:6d:30:ff:ee:6f:f5:a9:87:e4:18:28:02:19:e8: 07:96:bd:3d:d9:92:84:89:d1:87:78:d4:8c:52:65:25:e5:f3: 49:ae:fe:39:7c:2c:c7:2d:75:0b:26:4c:c0:e9:b6:ab:07:bd: fa:63:56:aa:fc:f9:59:72:0f:56:50:0a:c6:55:ec:8c:d9:40: b2:6c:fe:92:e1:88:db:3e:b0:4e:d4:79:46:19:8b:73:ed:96: 14:45:83:b1:9e:85:22:88:86:fa:2b:1c:52:c3:15:96:cd:ac: dd:3a:46:50:9d:f8:89:ec:f7:f4:f0:6c:72:e1:86:4b:4c:0e: fd:78:39:ad:90:16:ee:81:04:72:33:bb:b4:1a:83:b2:7f:79: 43:88:70:c7:78:f0:a6:d9:29:ff:63:72:a4:ea:25:01:7f:9d: 3f:fd:15:9b -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHsQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA1MjdaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDUwM0QzRjBBMUVEOTc1 MDE3RDdEREM3N0FGNzRCMjEyNTlDMzRBMEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDScu40a8pOMkDko3ob9zD1yHj1EpB+/QW666YUtNOS5rDpDRD dubvjuqxDvBjmUadQYLJf9lGNGahneqf+qbnby96Mq12mIIFMcKJ1yheVFnq34nb o1lojaktMtCJK35TSbKrvbMS0JC8md2Rh8+BiLeQvyy7enuvlwbNMgPGktTxTlCH V36D0lG9ts0uG3M7pvfJndKJirt98iaZ5d97l5rdqAJ/sH08wwYwQAcfhG7giKVN gSfn9+bfF/+hrjBP1l7gef8JvV2VZD8ZdGCykTp2c1byhA5122Lb8UWPlmw5/j/Z oSuQWS0uK2IjEIBWoF/9kIgdk+g019eZ6x5PAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUUD0/Ch7ZdQF9fdx3r3SyElnDSgswHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L1VEMF9DaDdaZFFGOWZk eDNyM1N5RWxuRFNncy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJn3SQwDQYJKoZIhvcNAQELBQADggEBAF7IXqnSXZmsEKUWZNwwny4N6K0mDEPM 4HnWIEBpahF+WFJCDF7CTrgEZxSvZVGmnao5vAZy3AA+M75USE6CLxSxTD5h+7Qd 0P88edHhi2Ctxx7mfQST6soMQTztyvdtMP/ub/Wph+QYKAIZ6AeWvT3ZkoSJ0Yd4 1IxSZSXl80mu/jl8LMctdQsmTMDptqsHvfpjVqr8+VlyD1ZQCsZV7IzZQLJs/pLh iNs+sE7UeUYZi3PtlhRFg7GehSKIhvorHFLDFZbNrN06RlCd+Ins9/TwbHLhhktM Dv14Oa2QFu6BBHIzu7Qag7J/eUOIcMd48KbZKf9jcqTqJQF/nT/9FZs= -----END CERTIFICATE-----Generated at Mon Oct 20 13:13:37 2025 by rpki-client