$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/_em7ra15RRxi3zG32WMWPZWU1wo.roa File: _em7ra15RRxi3zG32WMWPZWU1wo.roa (raw, json) Hash identifier: xKllafE6raZDUpIECaopOrDwBEOaCPnnS8L+Vmo5CoY= Subject key identifier: FD:E9:BB:AD:AD:79:45:1C:62:DF:31:B7:D9:63:16:3D:95:94:D7:0A Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1EAF Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/_em7ra15RRxi3zG32WMWPZWU1wo.roa Signing time: Sat 13 Sep 2025 03:05:22 +0000 ROA not before: Sat 13 Sep 2025 03:05:22 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 13444 IP address blocks: 103.221.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7855 (0x1eaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:05:22 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=FDE9BBADAD79451C62DF31B7D963163D9594D70A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:86:02:eb:20:37:c8:ab:50:60:22:e1:e7:dc: 13:fe:85:ca:e6:33:c8:cc:3f:28:a5:87:e8:62:5c: 2f:29:8b:f9:1f:3e:86:e3:d4:4f:33:71:d7:09:e2: a6:8a:24:2e:cc:6a:e5:56:12:64:c2:8b:68:01:63: b6:75:b5:da:32:93:1d:6f:e8:25:2d:62:5c:19:db: 08:77:9e:56:92:a2:15:18:60:a9:23:91:be:1d:d1: 79:94:d3:6c:cc:ef:b2:d7:e1:79:f4:aa:1e:69:34: 59:a3:65:a1:63:c3:76:b4:b7:19:d2:d3:98:75:b5: 95:3c:4e:85:03:67:fa:32:4b:d7:33:b2:27:08:00: dc:7a:19:6c:39:14:5f:4a:dd:3f:2a:77:b0:05:e4: 72:f0:f7:57:8e:67:a3:dd:9a:9a:b6:0c:46:49:4a: 2c:65:0d:25:57:d5:c5:96:b6:8e:50:ae:68:95:19: 6d:0e:e8:db:69:43:93:a5:a2:00:ec:c8:5c:d7:b9: 97:fe:9a:13:e3:14:fb:7b:2f:b2:0c:eb:08:9e:f4: 47:93:20:6d:4d:f1:b4:a8:11:50:ea:ec:06:58:c1: d4:1e:01:cd:54:83:c3:92:38:37:2d:85:19:bc:02: f6:7b:a6:14:30:ea:b6:a5:e6:2d:1f:09:02:40:d9: 3c:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:E9:BB:AD:AD:79:45:1C:62:DF:31:B7:D9:63:16:3D:95:94:D7:0A X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/_em7ra15RRxi3zG32WMWPZWU1wo.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.4.0/24 Signature Algorithm: sha256WithRSAEncryption 92:6e:53:ed:eb:f6:6b:15:f4:43:76:64:53:bd:df:c6:8c:d0: f0:a7:1f:88:ad:93:25:b2:fd:75:65:67:25:b1:fa:94:d1:2d: f4:b9:04:91:5c:b9:fd:a5:3c:2c:c9:32:0e:ef:af:b1:f7:74: 4e:cf:a4:71:52:1c:1b:d5:a7:b7:c7:df:4e:ca:74:b2:70:91: 2b:6e:9b:3c:17:e6:35:60:8f:83:88:fb:ae:13:77:ab:56:a1: c8:4a:2a:25:4b:46:b1:1f:0b:aa:f4:3b:be:b1:e0:f5:1f:07: 5b:1a:a5:af:ec:49:e6:be:58:b0:a7:81:38:dd:f7:2f:62:12: 57:77:fb:67:13:0e:09:a9:b7:2f:04:98:cf:4f:4f:48:3c:e9: b9:c7:cf:5a:f9:ff:2a:3c:f3:e3:37:6b:71:81:99:e1:7e:79: e9:c8:f6:39:ff:a2:9d:45:4c:d8:36:04:c1:6e:85:18:e6:37: ea:a9:88:3b:6e:c0:ad:b9:b1:3a:70:01:6a:e4:75:5b:1a:64: 5c:d3:fd:6c:00:ee:d7:9c:c9:1c:1f:e1:72:57:84:d5:1c:f2: 39:b1:3c:c9:4f:85:35:d9:c0:5e:3d:72:d6:e8:01:06:29:a3: 12:22:c5:6b:10:0c:cf:89:ad:5f:c8:83:d3:40:70:36:19:1f: b4:b4:0b:a4 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHq8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA1MjJaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEZERTlCQkFEQUQ3OTQ1 MUM2MkRGMzFCN0Q5NjMxNjNEOTU5NEQ3MEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBhgLrIDfIq1BgIuHn3BP+hcrmM8jMPyilh+hiXC8pi/kfPobj 1E8zcdcJ4qaKJC7MauVWEmTCi2gBY7Z1tdoykx1v6CUtYlwZ2wh3nlaSohUYYKkj kb4d0XmU02zM77LX4Xn0qh5pNFmjZaFjw3a0txnS05h1tZU8ToUDZ/oyS9czsicI ANx6GWw5FF9K3T8qd7AF5HLw91eOZ6Pdmpq2DEZJSixlDSVX1cWWto5QrmiVGW0O 6NtpQ5OlogDsyFzXuZf+mhPjFPt7L7IM6wie9EeTIG1N8bSoEVDq7AZYwdQeAc1U g8OSODcthRm8AvZ7phQw6ral5i0fCQJA2TxfAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQU/em7ra15RRxi3zG32WMWPZWU1wowHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L19lbTdyYTE1UlJ4aTN6 RzMyV01XUFpXVTF3by5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn3QQwDQYJKoZIhvcNAQELBQADggEBAJJuU+3r9msV9EN2ZFO938aM0PCnH4it kyWy/XVlZyWx+pTRLfS5BJFcuf2lPCzJMg7vr7H3dE7PpHFSHBvVp7fH307KdLJw kStumzwX5jVgj4OI+64Td6tWochKKiVLRrEfC6r0O76x4PUfB1sapa/sSea+WLCn gTjd9y9iEld3+2cTDgmpty8EmM9PT0g86bnHz1r5/yo88+M3a3GBmeF+eenI9jn/ op1FTNg2BMFuhRjmN+qpiDtuwK25sTpwAWrkdVsaZFzT/WwA7tecyRwf4XJXhNUc 8jmxPMlPhTXZwF49ctboAQYpoxIixWsQDM+JrV/Ig9NAcDYZH7S0C6Q= -----END CERTIFICATE-----Generated at Mon Oct 20 13:30:43 2025 by rpki-client