$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/_Gx-B_kninduvcD4OF5eXLRfeAY.roa File: _Gx-B_kninduvcD4OF5eXLRfeAY.roa (raw, json) Hash identifier: nbDflcW+KHxILeDR5xRp254mgkhEEqD1UH57S97eAIg= Subject key identifier: FC:6C:7E:07:F9:27:8A:77:6E:BD:C0:F8:38:5E:5E:5C:B4:5F:78:06 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1E3E Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/_Gx-B_kninduvcD4OF5eXLRfeAY.roa Signing time: Sat 13 Sep 2025 03:04:57 +0000 ROA not before: Sat 13 Sep 2025 03:04:57 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 59083 IP address blocks: 103.10.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7742 (0x1e3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:04:57 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=FC6C7E07F9278A776EBDC0F8385E5E5CB45F7806 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:64:b0:ba:3f:69:81:1c:32:1f:8a:fe:6e:00: ad:64:89:21:22:94:ea:16:09:1a:44:17:e5:ae:e8: 61:41:29:9a:ed:8f:4a:c7:b8:75:8c:6b:48:bc:07: 84:23:ca:be:5c:92:f6:a1:c4:1b:ac:94:e2:af:74: 46:8c:9b:0a:96:90:f4:59:81:f6:d3:9c:c9:c4:32: 92:b2:da:34:de:c7:00:78:83:20:2f:62:bd:a5:12: 0c:fc:88:e2:2d:9d:74:f3:c7:70:28:8d:af:5a:f8: 1f:d9:1d:94:08:81:29:05:3b:d6:a9:5f:31:e4:8e: e6:12:c9:7f:a6:ca:24:36:53:9c:f1:a6:3e:41:61: 81:a9:72:26:89:a3:f2:ab:9c:6b:3d:e7:6f:6a:34: 04:0c:91:6a:9e:50:72:c7:d9:63:f7:a4:09:af:b1: ac:8d:41:2a:48:e3:59:f4:97:e1:e1:05:86:8e:77: 7c:3d:65:28:2a:32:9a:c3:c8:3d:5f:5a:1a:91:8a: 82:4b:74:58:fc:f8:b8:56:9b:08:c6:64:32:e2:a9: 0b:52:fc:c5:38:10:26:89:3d:bf:bf:74:c7:78:02: 35:0b:6e:2f:58:c6:67:22:19:63:3f:4e:ce:a2:06: ff:a5:c0:08:17:b4:57:bc:05:1d:7b:c6:de:b5:85: 3f:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:6C:7E:07:F9:27:8A:77:6E:BD:C0:F8:38:5E:5E:5C:B4:5F:78:06 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/_Gx-B_kninduvcD4OF5eXLRfeAY.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.10.3.0/24 Signature Algorithm: sha256WithRSAEncryption df:2f:c1:98:45:72:4f:03:5e:5f:df:a3:dd:2e:32:f5:76:57: f0:36:99:46:09:ad:da:36:02:59:ad:77:d2:c9:8a:4c:42:54: 2e:5d:34:ca:ab:d9:a6:ce:ef:f2:0e:b4:5a:e9:4e:63:60:30: de:38:0c:40:df:b2:46:e7:80:35:4b:4d:08:39:98:c5:94:bb: 3b:85:32:62:8e:dd:60:fc:d3:4e:8d:e0:f5:4e:d7:7e:4f:8f: d4:1b:3e:e5:6a:39:c6:ea:c8:4f:63:70:89:77:dd:42:19:78: 65:db:49:7c:26:52:56:73:da:8d:fd:83:99:a5:71:d6:8c:6d: fa:7e:9f:4c:fa:5b:75:57:f1:e3:fb:f8:b6:aa:7a:54:ff:60: b3:e3:86:cf:87:f1:5b:33:22:53:2c:38:bf:b4:a0:83:cd:66: 0b:6e:89:2d:d1:69:c8:9e:2b:0d:35:5f:55:16:9d:9d:df:8f: 30:ce:8a:46:70:51:21:49:a1:97:43:74:ac:69:a8:05:0f:44: 31:b7:69:07:7a:8d:6c:fb:74:5f:a8:86:4e:18:59:95:b8:01: 72:de:38:fa:b9:71:a4:4d:9d:16:f0:bc:26:14:7a:bc:1b:ac: 91:b8:4d:27:7f:c1:a8:ef:35:f5:d6:eb:8f:5c:25:74:c3:14: 76:d2:ec:ac -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHj4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA0NTdaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEZDNkM3RTA3RjkyNzhB Nzc2RUJEQzBGODM4NUU1RTVDQjQ1Rjc4MDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDeZLC6P2mBHDIfiv5uAK1kiSEilOoWCRpEF+Wu6GFBKZrtj0rH uHWMa0i8B4Qjyr5ckvahxBuslOKvdEaMmwqWkPRZgfbTnMnEMpKy2jTexwB4gyAv Yr2lEgz8iOItnXTzx3Aoja9a+B/ZHZQIgSkFO9apXzHkjuYSyX+myiQ2U5zxpj5B YYGpciaJo/KrnGs9529qNAQMkWqeUHLH2WP3pAmvsayNQSpI41n0l+HhBYaOd3w9 ZSgqMprDyD1fWhqRioJLdFj8+LhWmwjGZDLiqQtS/MU4ECaJPb+/dMd4AjULbi9Y xmciGWM/Ts6iBv+lwAgXtFe8BR17xt61hT/DAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQU/Gx+B/kninduvcD4OF5eXLRfeAYwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L19HeC1CX2tuaW5kdXZj RDRPRjVlWExSZmVBWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnCgMwDQYJKoZIhvcNAQELBQADggEBAN8vwZhFck8DXl/fo90uMvV2V/A2mUYJ rdo2Almtd9LJikxCVC5dNMqr2abO7/IOtFrpTmNgMN44DEDfskbngDVLTQg5mMWU uzuFMmKO3WD8006N4PVO135Pj9QbPuVqOcbqyE9jcIl33UIZeGXbSXwmUlZz2o39 g5mlcdaMbfp+n0z6W3VX8eP7+LaqelT/YLPjhs+H8VszIlMsOL+0oIPNZgtuiS3R acieKw01X1UWnZ3fjzDOikZwUSFJoZdDdKxpqAUPRDG3aQd6jWz7dF+ohk4YWZW4 AXLeOPq5caRNnRbwvCYUerwbrJG4TSd/wajvNfXW649cJXTDFHbS7Kw= -----END CERTIFICATE-----Generated at Mon Oct 20 13:13:54 2025 by rpki-client