$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/VxqMhbws_o6wslj6kddqVuneEjA.roa File: VxqMhbws_o6wslj6kddqVuneEjA.roa (raw, json) Hash identifier: VUxxibsS9inSBAAmtrSUgAhRvFVqhtNJsC3rVO9d+P8= Subject key identifier: 57:1A:8C:85:BC:2C:FE:8E:B0:B2:58:FA:91:D7:6A:56:E9:DE:12:30 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1E95 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/VxqMhbws_o6wslj6kddqVuneEjA.roa Signing time: Sat 13 Sep 2025 03:05:16 +0000 ROA not before: Sat 13 Sep 2025 03:05:16 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 13444 IP address blocks: 103.6.110.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 00:35:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7829 (0x1e95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:05:16 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=571A8C85BC2CFE8EB0B258FA91D76A56E9DE1230 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:8b:ec:12:cf:5c:88:97:94:e4:4d:5a:d4:31: e9:b9:f2:e2:ab:09:ef:3b:b1:ac:b2:45:51:8a:5f: 25:a0:b2:ea:ce:a0:1e:29:41:12:09:58:d8:77:12: 24:fa:9e:11:e9:03:4a:70:a8:5c:29:79:6f:0e:c1: b8:30:bb:37:3d:de:9f:eb:64:fa:ad:25:2b:09:19: fa:29:cb:48:78:2b:f6:ca:20:04:cf:f4:47:28:d2: 54:93:10:04:67:fd:9c:b6:57:22:43:4b:9b:d3:6a: fd:17:29:8b:ac:24:32:cd:c9:2b:26:67:78:81:b7: 13:fe:55:55:51:fc:88:49:58:be:97:55:33:4c:dc: 0c:25:79:ef:c6:9a:d2:75:21:9b:a3:3e:3b:10:e1: 48:25:7e:2d:56:2c:f4:1d:c3:07:c7:ba:fa:f8:dd: d9:a2:f8:c5:f6:8e:95:bd:1a:92:d0:ba:9a:2d:cc: 46:5e:33:ed:19:88:16:c4:e5:89:5f:e2:cc:ad:19: 24:74:d8:bf:b0:ef:d5:b6:a9:80:74:d0:b6:bb:50: ee:82:64:07:4a:dc:d3:55:cf:78:f8:d3:b4:17:16: 63:a4:03:f6:f5:e0:10:ad:53:6a:ba:f6:7a:3b:77: 36:eb:8d:f1:73:4f:68:2a:33:ce:97:d2:1f:d5:7a: 6d:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:1A:8C:85:BC:2C:FE:8E:B0:B2:58:FA:91:D7:6A:56:E9:DE:12:30 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/VxqMhbws_o6wslj6kddqVuneEjA.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.6.110.0/24 Signature Algorithm: sha256WithRSAEncryption 05:68:8c:fc:cb:aa:60:70:af:a3:45:60:79:86:71:53:dc:7e: e4:95:36:c4:24:b4:4d:15:de:16:23:95:02:d4:ee:08:a6:31: 06:79:36:58:da:e4:11:54:68:3d:4f:47:81:9d:d9:74:b4:b0: d4:05:06:31:3a:c7:70:4f:c5:b7:11:e2:64:04:52:4b:50:4d: ae:fa:79:d6:31:0e:f4:e6:e7:ad:4a:97:20:4c:b9:5f:75:5b: 3a:9d:1b:77:61:8b:d7:1f:5c:57:c0:d3:b1:22:27:73:43:a7: db:f6:0e:e6:ca:09:02:6e:a1:89:31:20:b9:f0:41:8c:bd:4c: 7e:0c:4b:eb:68:79:e6:4c:6f:b3:7b:01:0c:22:4b:c5:ce:96: a0:3a:27:55:48:48:80:cb:b7:99:0f:4f:65:fc:4b:6b:da:be: 1c:cb:a2:f5:b0:c1:5e:ec:33:8b:77:85:21:a2:be:53:b4:f9: ad:cd:7a:93:c1:85:07:71:9a:cb:e7:38:ec:f4:15:3e:1a:ad: 35:05:40:6c:1d:55:e0:76:d0:f9:4a:af:55:8d:3c:18:40:84: e7:9d:3d:62:23:91:18:26:86:7d:8e:51:17:b1:09:bc:b8:d4: 31:ba:2b:90:f5:12:3b:4a:ec:85:5c:dc:6c:21:12:77:f4:8f: b1:b5:5a:04 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHpUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA1MTZaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDU3MUE4Qzg1QkMyQ0ZF OEVCMEIyNThGQTkxRDc2QTU2RTlERTEyMzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCgi+wSz1yIl5TkTVrUMem58uKrCe87sayyRVGKXyWgsurOoB4p QRIJWNh3EiT6nhHpA0pwqFwpeW8Owbgwuzc93p/rZPqtJSsJGfopy0h4K/bKIATP 9Eco0lSTEARn/Zy2VyJDS5vTav0XKYusJDLNySsmZ3iBtxP+VVVR/IhJWL6XVTNM 3Awlee/GmtJ1IZujPjsQ4Uglfi1WLPQdwwfHuvr43dmi+MX2jpW9GpLQupotzEZe M+0ZiBbE5Ylf4sytGSR02L+w79W2qYB00La7UO6CZAdK3NNVz3j407QXFmOkA/b1 4BCtU2q69no7dzbrjfFzT2gqM86X0h/Vem1zAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUVxqMhbws/o6wslj6kddqVuneEjAwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L1Z4cU1oYndzX282d3Ns ajZrZGRxVnVuZUVqQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnBm4wDQYJKoZIhvcNAQELBQADggEBAAVojPzLqmBwr6NFYHmGcVPcfuSVNsQk tE0V3hYjlQLU7gimMQZ5Nlja5BFUaD1PR4Gd2XS0sNQFBjE6x3BPxbcR4mQEUktQ Ta76edYxDvTm561KlyBMuV91WzqdG3dhi9cfXFfA07EiJ3NDp9v2DubKCQJuoYkx ILnwQYy9TH4MS+toeeZMb7N7AQwiS8XOlqA6J1VISIDLt5kPT2X8S2vavhzLovWw wV7sM4t3hSGivlO0+a3NepPBhQdxmsvnOOz0FT4arTUFQGwdVeB20PlKr1WNPBhA hOedPWIjkRgmhn2OURexCby41DG6K5D1EjtK7IVc3GwhEnf0j7G1WgQ= -----END CERTIFICATE-----Generated at Mon Oct 20 23:27:17 2025 by rpki-client