$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/ZSwp2Zrnq5W99l3XJ136QvR8XR0.roa File: ZSwp2Zrnq5W99l3XJ136QvR8XR0.roa (raw, json) Hash identifier: OaOpWwm8T2o8BhSR9GYzb2vCVrzGbHOP66SMXWv5TGk= Subject key identifier: 65:2C:29:D9:9A:E7:AB:95:BD:F6:5D:D7:27:5D:FA:42:F4:7C:5D:1D Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1E86 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/ZSwp2Zrnq5W99l3XJ136QvR8XR0.roa Signing time: Sat 13 Sep 2025 03:05:13 +0000 ROA not before: Sat 13 Sep 2025 03:05:13 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 13444 IP address blocks: 103.221.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7814 (0x1e86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:05:13 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=652C29D99AE7AB95BDF65DD7275DFA42F47C5D1D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:dc:28:ee:af:97:c7:ad:50:dc:55:82:45:4b: 7b:c1:c9:a9:d4:f8:51:b0:77:36:fc:72:5e:1b:68: 18:52:66:da:08:c0:9c:34:06:51:c2:5a:0a:0c:51: b8:87:15:6c:2e:a4:bd:54:b8:f3:9b:e8:0e:88:86: d5:e2:3f:4b:b0:69:7d:db:70:b2:de:0f:79:de:64: 76:14:a7:18:b9:61:46:67:d5:ac:39:6d:1f:ab:cc: 51:67:7b:14:a7:d1:94:54:07:cf:3f:ae:fd:de:da: 1f:cf:90:a9:d9:08:a2:f4:fb:83:9d:c3:5d:3b:45: e2:65:d6:ce:47:6a:c0:f8:25:1b:a9:5f:05:b7:7f: f5:9d:64:03:ae:22:04:ba:3f:10:a8:94:af:43:bf: c4:97:bc:bd:7c:35:37:69:56:3d:15:65:75:e4:49: ae:93:37:2e:d7:95:18:ea:6e:5f:0c:62:f5:b3:09: e6:2f:1c:64:31:cf:85:b8:9f:28:e8:ea:0e:aa:d1: d4:96:4a:29:47:cb:35:32:90:24:9e:b5:9a:3d:82: 2f:59:14:ca:1f:c2:4a:7f:74:51:5b:1c:57:4f:9f: cf:88:1b:30:52:26:a3:67:cc:70:5d:1e:88:41:96: d6:7a:c5:0f:2a:41:c6:51:29:fa:ad:b2:de:e0:ba: 84:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:2C:29:D9:9A:E7:AB:95:BD:F6:5D:D7:27:5D:FA:42:F4:7C:5D:1D X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/ZSwp2Zrnq5W99l3XJ136QvR8XR0.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.13.0/24 Signature Algorithm: sha256WithRSAEncryption 99:4a:0e:1b:2b:6b:fe:81:78:d3:f3:b3:1a:63:be:dc:02:aa: c7:05:88:b0:8b:2e:04:43:b5:03:f3:d8:31:34:a3:1c:18:e9: 5f:da:4f:3b:0a:a7:eb:42:6b:2d:b4:c0:2a:57:4c:cd:a7:ad: 1e:43:32:2a:88:0c:5d:8a:9c:a1:91:57:3f:cb:12:10:63:95: fa:42:1c:1a:33:78:33:39:96:16:d6:11:6e:c5:bf:75:2f:e7: e6:71:fe:77:7f:de:8a:d5:1e:94:fd:25:93:4b:b6:15:25:43: e7:9b:45:cb:34:31:b8:1e:85:cd:19:88:28:e6:9d:ec:75:25: d8:f6:53:2d:9d:95:07:3c:0c:62:f1:4b:43:fc:de:35:29:36: b5:67:f5:b2:85:c5:8f:aa:11:b8:52:de:53:f6:01:f4:af:63: 1d:09:e5:42:41:32:d6:29:77:9f:73:22:06:5c:c7:36:49:62: cd:d3:c8:21:28:be:8f:cb:d9:69:9f:5a:e8:f0:b1:d7:a6:ea: 7c:39:79:e2:c2:31:bc:91:dd:25:43:00:84:8c:f0:39:d9:55: 7c:96:bc:72:72:12:0d:a3:59:bb:2e:b4:ce:66:96:92:cf:2b: af:4a:ba:88:b7:43:8b:16:7e:24:94:c8:8f:1a:1a:f8:9e:11: ca:4e:2a:c4 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHoYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA1MTNaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDY1MkMyOUQ5OUFFN0FC OTVCREY2NURENzI3NURGQTQyRjQ3QzVEMUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDC3Cjur5fHrVDcVYJFS3vByanU+FGwdzb8cl4baBhSZtoIwJw0 BlHCWgoMUbiHFWwupL1UuPOb6A6IhtXiP0uwaX3bcLLeD3neZHYUpxi5YUZn1aw5 bR+rzFFnexSn0ZRUB88/rv3e2h/PkKnZCKL0+4Odw107ReJl1s5HasD4JRupXwW3 f/WdZAOuIgS6PxColK9Dv8SXvL18NTdpVj0VZXXkSa6TNy7XlRjqbl8MYvWzCeYv HGQxz4W4nyjo6g6q0dSWSilHyzUykCSetZo9gi9ZFMofwkp/dFFbHFdPn8+IGzBS JqNnzHBdHohBltZ6xQ8qQcZRKfqtst7guoQZAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUZSwp2Zrnq5W99l3XJ136QvR8XR0wHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L1pTd3AyWnJucTVXOTls M1hKMTM2UXZSOFhSMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn3Q0wDQYJKoZIhvcNAQELBQADggEBAJlKDhsra/6BeNPzsxpjvtwCqscFiLCL LgRDtQPz2DE0oxwY6V/aTzsKp+tCay20wCpXTM2nrR5DMiqIDF2KnKGRVz/LEhBj lfpCHBozeDM5lhbWEW7Fv3Uv5+Zx/nd/3orVHpT9JZNLthUlQ+ebRcs0Mbgehc0Z iCjmnex1Jdj2Uy2dlQc8DGLxS0P83jUpNrVn9bKFxY+qEbhS3lP2AfSvYx0J5UJB MtYpd59zIgZcxzZJYs3TyCEovo/L2WmfWujwsdem6nw5eeLCMbyR3SVDAISM8DnZ VXyWvHJyEg2jWbsutM5mlpLPK69Kuoi3Q4sWfiSUyI8aGvieEcpOKsQ= -----END CERTIFICATE-----Generated at Mon Oct 20 13:13:52 2025 by rpki-client