$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/YL0miD8sEwnaHJfuCPTuxoWuL9Y.roa File: YL0miD8sEwnaHJfuCPTuxoWuL9Y.roa (raw, json) Hash identifier: L8UdmLnZ0Z7dXl8DPH1juRkD29sq19ecKOrWyGsPth0= Subject key identifier: 60:BD:26:88:3F:2C:13:09:DA:1C:97:EE:08:F4:EE:C6:85:AE:2F:D6 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1E65 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/YL0miD8sEwnaHJfuCPTuxoWuL9Y.roa Signing time: Sat 13 Sep 2025 03:05:06 +0000 ROA not before: Sat 13 Sep 2025 03:05:06 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 138527 IP address blocks: 103.221.20.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7781 (0x1e65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:05:06 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=60BD26883F2C1309DA1C97EE08F4EEC685AE2FD6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:2b:b4:dd:4d:5c:f1:fc:9e:e5:48:c4:18:4e: 86:7c:b1:4b:31:f5:2d:2d:19:2b:27:2a:c5:f0:b0: a6:b4:3b:8b:d5:b2:51:30:b2:7e:90:44:8c:8d:9b: cd:64:52:79:ad:0e:1a:cb:87:b6:f4:02:f2:5c:72: 40:d1:69:c9:79:8e:cf:d3:66:b5:e4:f8:c7:aa:ed: 1a:3a:d9:66:ae:76:28:19:f2:dd:e2:84:b7:f5:60: 57:2e:cf:2c:82:23:86:f2:0b:1c:70:31:18:28:d8: 4b:38:ca:99:15:3d:d0:aa:d2:35:55:81:8e:2a:cc: 13:04:b8:8c:33:8b:4f:2d:15:72:6b:28:e5:e9:dd: 4d:33:06:9d:5c:8f:9e:d1:6d:f7:a6:db:8c:89:84: 2c:d3:56:06:94:ce:49:e6:fe:87:8c:c6:a6:5c:13: 82:0c:46:2e:fd:44:4b:db:6a:e5:94:25:a5:cf:5c: b4:16:06:53:5d:e6:b5:df:79:d8:33:58:57:f0:ab: 3c:3c:5b:c6:99:da:36:89:28:fb:73:bb:e6:f4:c9: d9:93:01:1f:3a:9d:d7:4d:f3:dc:d9:37:9e:9f:34: ab:94:0a:ef:f6:90:3f:76:8b:6e:a5:ea:d5:85:35: 8d:f9:28:7e:28:0e:7a:31:18:27:9e:55:4f:61:d7: 96:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:BD:26:88:3F:2C:13:09:DA:1C:97:EE:08:F4:EE:C6:85:AE:2F:D6 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/YL0miD8sEwnaHJfuCPTuxoWuL9Y.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.20.0/22 Signature Algorithm: sha256WithRSAEncryption ba:53:7c:82:04:b9:bb:8e:2b:b7:58:7d:d2:08:30:e3:ba:33: be:4e:ca:83:7e:bd:d2:d6:a6:7e:56:fb:c0:14:9e:94:31:84: 24:07:f8:eb:46:1b:70:7d:2d:1d:c1:d6:5a:ee:c6:b5:87:a5: b7:aa:35:87:8c:93:8b:2f:e4:f0:b5:28:a0:bb:80:c3:1c:ae: f3:f7:be:f0:b7:c8:f2:45:77:d3:3f:78:af:8e:f5:a6:3c:b8: 4f:9c:ee:37:4a:1e:62:a5:4e:84:a8:38:20:a4:3c:6d:ad:f3: 6b:d1:da:7e:75:61:45:b3:c2:15:fd:17:b1:37:f5:55:21:ba: 31:d5:12:35:4a:cb:da:ed:1d:c5:64:98:fc:0b:11:be:fb:b4: bf:fa:9a:7b:5a:dd:91:69:33:58:50:9e:52:96:31:4e:38:f4: a7:1e:fb:40:e1:15:76:f0:b1:f4:15:99:93:35:a6:ed:c4:d7: c1:98:7a:7e:f7:be:c0:f2:a2:48:a4:c5:f0:31:90:6f:5d:4b: de:fc:df:d9:bb:9c:29:43:99:66:23:64:53:a6:e8:4c:55:1e: 89:36:bf:ba:df:2a:00:1c:f8:e7:10:c8:c7:fb:a0:2c:d8:89: f5:24:a2:f2:96:18:1b:76:b2:28:5f:c7:9e:2d:4c:6d:05:be: 2b:18:32:a4 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHmUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA1MDZaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDYwQkQyNjg4M0YyQzEz MDlEQTFDOTdFRTA4RjRFRUM2ODVBRTJGRDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQK7TdTVzx/J7lSMQYToZ8sUsx9S0tGSsnKsXwsKa0O4vVslEw sn6QRIyNm81kUnmtDhrLh7b0AvJcckDRacl5js/TZrXk+Meq7Ro62WaudigZ8t3i hLf1YFcuzyyCI4byCxxwMRgo2Es4ypkVPdCq0jVVgY4qzBMEuIwzi08tFXJrKOXp 3U0zBp1cj57Rbfem24yJhCzTVgaUzknm/oeMxqZcE4IMRi79REvbauWUJaXPXLQW BlNd5rXfedgzWFfwqzw8W8aZ2jaJKPtzu+b0ydmTAR86nddN89zZN56fNKuUCu/2 kD92i26l6tWFNY35KH4oDnoxGCeeVU9h15b9AgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUYL0miD8sEwnaHJfuCPTuxoWuL9YwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L1lMMG1pRDhzRXduYUhK ZnVDUFR1eG9XdUw5WS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJn3RQwDQYJKoZIhvcNAQELBQADggEBALpTfIIEubuOK7dYfdIIMOO6M75OyoN+ vdLWpn5W+8AUnpQxhCQH+OtGG3B9LR3B1lruxrWHpbeqNYeMk4sv5PC1KKC7gMMc rvP3vvC3yPJFd9M/eK+O9aY8uE+c7jdKHmKlToSoOCCkPG2t82vR2n51YUWzwhX9 F7E39VUhujHVEjVKy9rtHcVkmPwLEb77tL/6mnta3ZFpM1hQnlKWMU449Kce+0Dh FXbwsfQVmZM1pu3E18GYen73vsDyokikxfAxkG9dS97839m7nClDmWYjZFOm6ExV Hok2v7rfKgAc+OcQyMf7oCzYifUkovKWGBt2sihfx54tTG0FvisYMqQ= -----END CERTIFICATE-----Generated at Mon Oct 20 13:13:56 2025 by rpki-client