$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/UNJslyFZ5YBtp26YzVEsvRHc-RA.roa File: UNJslyFZ5YBtp26YzVEsvRHc-RA.roa (raw, json) Hash identifier: B8BiW701UPviQKZkdw6+Gu8D0fy88RJFasd69pnu0Zw= Subject key identifier: 50:D2:6C:97:21:59:E5:80:6D:A7:6E:98:CD:51:2C:BD:11:DC:F9:10 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1E44 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/UNJslyFZ5YBtp26YzVEsvRHc-RA.roa Signing time: Sat 13 Sep 2025 03:04:58 +0000 ROA not before: Sat 13 Sep 2025 03:04:58 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 139259 IP address blocks: 103.221.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 18:07:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7748 (0x1e44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:04:58 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=50D26C972159E5806DA76E98CD512CBD11DCF910 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:64:63:33:50:e8:8f:4d:5e:d1:a8:3f:4c:ab: 7d:e7:c1:dd:f7:0e:6f:49:14:d5:34:9b:eb:e6:09: 5a:e0:07:56:19:b6:e9:c2:ab:ec:b9:76:a7:e9:7c: 5b:c2:e7:e4:b2:75:d5:ad:c1:6a:7c:26:c3:f3:06: 4e:ac:b0:43:7d:ee:66:92:a1:3f:bc:0d:e0:2a:42: 6d:84:89:79:1c:72:aa:9f:59:f7:c5:b7:50:eb:11: 62:37:00:a6:51:8b:00:b4:12:dc:95:66:3c:12:11: 86:bc:2d:71:c9:b0:5e:d3:d5:80:f2:a3:73:fa:c3: ef:76:bb:3e:95:b1:e2:e7:ab:7f:f5:f4:80:b2:2c: c1:4b:0f:12:01:55:ac:47:1b:f4:4f:99:be:b4:60: ce:f1:f9:ea:bd:e8:ae:dc:6f:85:21:0b:e8:35:b4: 8f:86:2e:ec:75:a6:94:21:5d:ad:33:80:e3:53:c8: 74:4b:2f:61:e7:79:de:dd:dd:45:60:4e:1e:fe:76: e3:03:70:4c:f3:a0:1d:3e:aa:b2:e8:be:bc:03:8c: 68:af:46:63:20:ff:1f:5d:6f:90:80:3b:2e:2f:8a: f8:32:bc:27:68:b0:b0:75:e5:4b:3b:54:66:81:85: ff:6b:fc:61:ae:44:2f:ce:32:f2:75:b5:fe:0b:82: ec:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:D2:6C:97:21:59:E5:80:6D:A7:6E:98:CD:51:2C:BD:11:DC:F9:10 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/UNJslyFZ5YBtp26YzVEsvRHc-RA.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.16.0/24 Signature Algorithm: sha256WithRSAEncryption 84:3b:37:fd:77:f8:45:0b:d8:b6:cf:04:0f:52:77:51:a8:ab: 02:9a:5a:f3:b9:df:ce:85:5d:65:4d:62:9d:ae:b1:d9:9e:2b: 94:f1:ff:2f:95:e2:65:c3:45:dd:d4:b9:b3:e9:03:5d:12:1f: b9:02:db:14:c5:7b:d4:64:0b:c3:02:84:3f:af:34:6f:a1:ef: 91:83:f6:a9:4f:76:2f:61:5d:ec:ad:5f:37:37:e2:42:ce:36: 61:16:a5:c1:cf:79:f2:82:9d:8a:e4:be:82:74:e4:bb:58:76: 74:8b:d8:76:a1:0a:17:bc:f7:5f:82:97:33:5a:01:19:e9:97: 39:29:b7:2e:83:d3:b4:0b:73:a3:2b:69:bc:0e:89:cd:2b:6f: 78:45:8a:4c:47:63:87:98:dd:68:5d:76:45:18:1a:eb:c9:88: 6a:46:76:34:f6:db:96:01:87:70:1c:97:71:9e:35:4c:54:a9: ff:cb:44:3c:a9:f8:63:5c:5b:72:21:b8:a4:c2:22:aa:c6:15: a3:df:f1:82:dc:08:71:c5:6f:98:1a:cb:d5:21:6b:8c:79:52: be:0a:ab:99:79:4c:6a:8a:ee:39:08:22:8c:c7:bd:e2:92:16: 62:ad:b0:25:f3:c7:ff:e2:49:d4:e9:71:e0:70:67:bb:44:16: 7d:8e:a1:c9 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHkQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA0NThaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDUwRDI2Qzk3MjE1OUU1 ODA2REE3NkU5OENENTEyQ0JEMTFEQ0Y5MTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9ZGMzUOiPTV7RqD9Mq33nwd33Dm9JFNU0m+vmCVrgB1YZtunC q+y5dqfpfFvC5+SyddWtwWp8JsPzBk6ssEN97maSoT+8DeAqQm2EiXkccqqfWffF t1DrEWI3AKZRiwC0EtyVZjwSEYa8LXHJsF7T1YDyo3P6w+92uz6VseLnq3/19ICy LMFLDxIBVaxHG/RPmb60YM7x+eq96K7cb4UhC+g1tI+GLux1ppQhXa0zgONTyHRL L2Hned7d3UVgTh7+duMDcEzzoB0+qrLovrwDjGivRmMg/x9db5CAOy4vivgyvCdo sLB15Us7VGaBhf9r/GGuRC/OMvJ1tf4LguxPAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUUNJslyFZ5YBtp26YzVEsvRHc+RAwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L1VOSnNseUZaNVlCdHAy Nll6VkVzdlJIYy1SQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn3RAwDQYJKoZIhvcNAQELBQADggEBAIQ7N/13+EUL2LbPBA9Sd1GoqwKaWvO5 386FXWVNYp2usdmeK5Tx/y+V4mXDRd3UubPpA10SH7kC2xTFe9RkC8MChD+vNG+h 75GD9qlPdi9hXeytXzc34kLONmEWpcHPefKCnYrkvoJ05LtYdnSL2HahChe891+C lzNaARnplzkpty6D07QLc6MrabwOic0rb3hFikxHY4eY3WhddkUYGuvJiGpGdjT2 25YBh3Acl3GeNUxUqf/LRDyp+GNcW3IhuKTCIqrGFaPf8YLcCHHFb5gay9Uha4x5 Ur4Kq5l5TGqK7jkIIozHveKSFmKtsCXzx//iSdTpceBwZ7tEFn2Oock= -----END CERTIFICATE-----Generated at Mon Oct 20 17:58:27 2025 by rpki-client