$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/VoboihHe1SM-SwcBg7D13096H8o.roa File: VoboihHe1SM-SwcBg7D13096H8o.roa (raw, json) Hash identifier: oYm/wRMwJ22ZWf4PsOy2ZHd3sdie0rQsO1l5f9Q/XI8= Subject key identifier: 56:86:E8:8A:11:DE:D5:23:3E:4B:07:01:83:B0:F5:DF:4F:7A:1F:CA Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1DEC Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/VoboihHe1SM-SwcBg7D13096H8o.roa Signing time: Sat 13 Sep 2025 03:04:42 +0000 ROA not before: Sat 13 Sep 2025 03:04:42 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 13444 IP address blocks: 103.221.92.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7660 (0x1dec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:04:42 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=5686E88A11DED5233E4B070183B0F5DF4F7A1FCA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:39:dc:e6:55:84:cf:5e:99:95:ae:07:b1:b5: 89:83:1f:ae:d2:c8:b0:e9:d6:ae:00:6a:0b:b6:3e: da:ca:8b:14:75:1c:74:37:f6:1c:14:ff:10:e4:27: 68:2d:05:ff:e8:a3:9d:69:9f:df:62:c0:18:1b:ac: fa:c3:27:15:f3:57:8f:c3:08:68:c6:3c:6f:b6:1a: 50:d7:53:9d:93:07:b3:ea:20:aa:6f:6e:f0:89:87: 5f:9e:24:18:fd:ad:61:c3:8b:19:61:b4:70:85:b7: ae:25:ec:f6:55:94:d8:85:fb:ab:e4:e5:f2:c1:17: f4:73:32:f7:f7:e2:dd:9d:ac:91:8e:5f:8f:9e:9d: 1c:76:38:e6:8e:3a:07:b6:d5:78:2e:af:c9:04:32: 70:11:ee:92:a6:2a:9d:13:ce:94:95:a9:34:d3:0b: 2f:8b:89:78:04:bb:4e:51:fb:ba:d8:93:72:2a:72: 63:55:f7:ad:6d:d8:13:ec:92:3b:2e:1a:03:9e:d2: 50:ec:a8:e7:9a:00:36:4b:10:20:27:bf:e5:d3:56: 5c:9a:96:b6:56:63:1c:5f:a1:c0:97:7b:ba:ad:e9: b3:8f:4e:b2:7b:d6:60:f9:12:9e:62:ba:c2:fd:0f: 47:77:71:c6:34:20:2d:e4:14:89:99:29:45:81:5c: c5:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:86:E8:8A:11:DE:D5:23:3E:4B:07:01:83:B0:F5:DF:4F:7A:1F:CA X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/VoboihHe1SM-SwcBg7D13096H8o.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.92.0/22 Signature Algorithm: sha256WithRSAEncryption 7d:ec:ec:33:82:6b:d4:67:4f:4f:fa:e2:c8:1c:31:86:84:4f: 5a:80:82:df:1b:cc:97:71:a0:5f:fc:88:e0:9b:cb:ec:3f:1c: 0c:40:ba:ca:68:58:2f:54:51:10:b8:8d:86:ef:af:69:44:4a: 02:20:63:ea:ea:2b:6d:5e:7d:34:fb:87:d3:0c:d1:c9:b1:81: 45:fa:f9:f5:27:38:3a:db:6d:13:a9:fc:36:8d:01:6b:de:75: 6b:b5:ce:4e:0d:fa:46:99:65:87:07:ad:92:e8:13:be:01:48: d0:56:6e:68:16:02:55:a2:56:1e:5f:90:08:62:84:5a:49:61: a6:66:f5:29:e9:d1:0f:b7:90:9b:2e:18:9d:73:9b:00:a2:a1: b0:77:35:7c:27:ca:8c:c3:17:c7:21:e7:d8:6b:d4:99:85:ac: 28:88:8a:80:16:8d:50:f8:a9:74:16:7d:15:3d:47:0f:ea:bb: e1:db:e8:65:ca:28:3e:af:49:76:57:53:6d:d9:e5:d1:84:33: 8a:72:3d:a8:53:48:fc:a8:ef:68:71:5a:54:64:a6:c7:5e:bf: d6:2e:db:bc:0f:ef:7d:0f:e8:d3:bb:91:04:04:14:69:78:5f: 27:42:cb:65:42:cd:ff:bf:ae:3a:6a:fb:8a:3d:0d:b0:3f:1f: cd:20:00:8e -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHewwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA0NDJaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDU2ODZFODhBMTFERUQ1 MjMzRTRCMDcwMTgzQjBGNURGNEY3QTFGQ0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGOdzmVYTPXpmVrgextYmDH67SyLDp1q4Aagu2PtrKixR1HHQ3 9hwU/xDkJ2gtBf/oo51pn99iwBgbrPrDJxXzV4/DCGjGPG+2GlDXU52TB7PqIKpv bvCJh1+eJBj9rWHDixlhtHCFt64l7PZVlNiF+6vk5fLBF/RzMvf34t2drJGOX4+e nRx2OOaOOge21Xgur8kEMnAR7pKmKp0TzpSVqTTTCy+LiXgEu05R+7rYk3IqcmNV 961t2BPskjsuGgOe0lDsqOeaADZLECAnv+XTVlyalrZWYxxfocCXe7qt6bOPTrJ7 1mD5Ep5iusL9D0d3ccY0IC3kFImZKUWBXMWlAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUVoboihHe1SM+SwcBg7D13096H8owHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L1ZvYm9paEhlMVNNLVN3 Y0JnN0QxMzA5Nkg4by5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJn3VwwDQYJKoZIhvcNAQELBQADggEBAH3s7DOCa9RnT0/64sgcMYaET1qAgt8b zJdxoF/8iOCby+w/HAxAuspoWC9UURC4jYbvr2lESgIgY+rqK21efTT7h9MM0cmx gUX6+fUnODrbbROp/DaNAWvedWu1zk4N+kaZZYcHrZLoE74BSNBWbmgWAlWiVh5f kAhihFpJYaZm9Snp0Q+3kJsuGJ1zmwCiobB3NXwnyozDF8ch59hr1JmFrCiIioAW jVD4qXQWfRU9Rw/qu+Hb6GXKKD6vSXZXU23Z5dGEM4pyPahTSPyo72hxWlRkpsde v9Yu27wP730P6NO7kQQEFGl4XydCy2VCzf+/rjpq+4o9DbA/H80gAI4= -----END CERTIFICATE-----Generated at Mon Oct 20 13:13:38 2025 by rpki-client