$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/aYoDojBHXHTv4X3P_YiYTy8xAaA.roa File: aYoDojBHXHTv4X3P_YiYTy8xAaA.roa (raw, json) Hash identifier: vTYldZJTWbDqi2ilizabg3KLbSAZzxz302lw5Xc1F44= Subject key identifier: 69:8A:03:A2:30:47:5C:74:EF:E1:7D:CF:FD:88:98:4F:2F:31:01:A0 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1E51 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/aYoDojBHXHTv4X3P_YiYTy8xAaA.roa Signing time: Sat 13 Sep 2025 03:05:02 +0000 ROA not before: Sat 13 Sep 2025 03:05:02 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 139259 IP address blocks: 103.221.46.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7761 (0x1e51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:05:02 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=698A03A230475C74EFE17DCFFD88984F2F3101A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:ae:bc:5e:87:eb:07:10:53:7f:1e:1f:f0:31: 6e:19:f1:7d:d3:b8:64:24:9e:b7:79:2b:a0:e4:83: c5:09:b2:94:20:ea:20:bc:59:91:df:be:8c:ac:ee: 9c:07:c7:0d:55:99:0f:23:ef:e7:f7:93:5a:99:98: f7:17:bb:1c:44:8c:e0:94:d7:24:2a:94:54:5b:5b: 6e:29:83:0e:3b:0f:0d:54:c3:e8:f0:d3:8f:a7:59: 0d:18:3f:6d:7d:25:cb:05:a7:e7:1a:93:48:cb:fc: fd:ed:c9:6e:c9:68:7d:8e:74:de:8e:6a:a3:69:e5: cb:6f:cc:3e:ff:ce:9f:82:44:4b:20:25:20:ea:50: 25:27:ed:70:ad:a4:c5:b1:8a:36:44:9e:00:71:92: 12:dc:fe:1b:59:88:a7:36:99:79:07:e3:e6:2a:89: 42:12:52:7c:63:7a:bb:d3:d0:12:e9:ef:3f:0f:5b: bc:93:dd:45:b6:17:22:71:de:56:ee:f5:51:b0:3c: 56:ef:dc:84:2d:0c:05:4c:a9:ec:d3:e3:d3:e5:6f: 41:ed:63:a3:23:26:58:52:7d:7c:c9:e2:52:d7:33: 2a:a6:82:40:cb:b1:5b:a0:1a:46:83:e0:a5:d2:e9: e5:62:2b:a4:23:7a:c3:b6:15:5f:7c:25:fe:fb:92: d1:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:8A:03:A2:30:47:5C:74:EF:E1:7D:CF:FD:88:98:4F:2F:31:01:A0 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/aYoDojBHXHTv4X3P_YiYTy8xAaA.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.46.0/24 Signature Algorithm: sha256WithRSAEncryption a6:e6:8e:f3:5c:b8:0f:71:b9:a4:06:1b:d2:97:b9:a8:c0:b9: 24:39:37:1c:25:eb:c1:92:e5:ed:ae:2f:10:82:9e:60:01:f1: e3:7c:47:27:d1:d3:26:80:29:3a:31:c5:f5:43:78:4e:dd:96: e0:7a:03:9d:d8:36:4d:b8:84:9f:e3:8e:d2:c9:1a:98:33:82: 6c:d6:b8:77:c5:6a:13:ff:a8:77:71:17:9f:fd:09:59:a9:bc: dd:60:0a:ef:b7:73:ac:1d:03:c0:8c:7e:eb:99:e3:0b:e7:4f: 6f:ed:d2:f9:99:2b:7e:ca:b9:7e:ff:66:04:06:e1:ab:12:35: df:1e:60:c7:d2:8b:b9:99:71:18:a6:9c:18:1f:5a:9a:17:81: bc:02:67:e4:f4:56:69:32:83:21:1e:7f:06:22:7e:f4:e1:df: 35:46:a0:a6:09:a2:82:bf:b2:9d:f8:d9:95:8e:9b:03:6d:b5: 69:af:bd:94:93:71:a3:9c:cd:3b:67:c3:62:e2:17:da:ee:d7: ec:b2:45:88:1a:b9:0d:55:3c:b4:f7:26:5f:b2:57:e3:6b:96: 6b:1a:b7:5a:22:c3:84:12:f9:5d:a8:53:77:02:11:66:18:3f: ae:52:7d:0b:5a:d3:07:44:05:4b:93:87:90:77:97:6c:ae:7f: 24:1b:a4:8b -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHlEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA1MDJaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDY5OEEwM0EyMzA0NzVD NzRFRkUxN0RDRkZEODg5ODRGMkYzMTAxQTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDmrrxeh+sHEFN/Hh/wMW4Z8X3TuGQknrd5K6Dkg8UJspQg6iC8 WZHfvoys7pwHxw1VmQ8j7+f3k1qZmPcXuxxEjOCU1yQqlFRbW24pgw47Dw1Uw+jw 04+nWQ0YP219JcsFp+cak0jL/P3tyW7JaH2OdN6OaqNp5ctvzD7/zp+CREsgJSDq UCUn7XCtpMWxijZEngBxkhLc/htZiKc2mXkH4+YqiUISUnxjervT0BLp7z8PW7yT 3UW2FyJx3lbu9VGwPFbv3IQtDAVMqezT49Plb0HtY6MjJlhSfXzJ4lLXMyqmgkDL sVugGkaD4KXS6eViK6QjesO2FV98Jf77ktGTAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUaYoDojBHXHTv4X3P/YiYTy8xAaAwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L2FZb0RvakJIWEhUdjRY M1BfWWlZVHk4eEFhQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn3S4wDQYJKoZIhvcNAQELBQADggEBAKbmjvNcuA9xuaQGG9KXuajAuSQ5Nxwl 68GS5e2uLxCCnmAB8eN8RyfR0yaAKToxxfVDeE7dluB6A53YNk24hJ/jjtLJGpgz gmzWuHfFahP/qHdxF5/9CVmpvN1gCu+3c6wdA8CMfuuZ4wvnT2/t0vmZK37KuX7/ ZgQG4asSNd8eYMfSi7mZcRimnBgfWpoXgbwCZ+T0VmkygyEefwYifvTh3zVGoKYJ ooK/sp342ZWOmwNttWmvvZSTcaOczTtnw2LiF9ru1+yyRYgauQ1VPLT3Jl+yV+Nr lmsat1oiw4QS+V2oU3cCEWYYP65SfQta0wdEBUuTh5B3l2yufyQbpIs= -----END CERTIFICATE-----Generated at Mon Oct 20 13:13:56 2025 by rpki-client