$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/azIieCHH3NjLsyjQhnBKLs7RMzg.roa File: azIieCHH3NjLsyjQhnBKLs7RMzg.roa (raw, json) Hash identifier: ALazFTVccfD3fW/5boxa5nlqdfJWXGiBsjXgolOu1Ig= Subject key identifier: 6B:32:22:78:21:C7:DC:D8:CB:B3:28:D0:86:70:4A:2E:CE:D1:33:38 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1E09 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/azIieCHH3NjLsyjQhnBKLs7RMzg.roa Signing time: Sat 13 Sep 2025 03:04:48 +0000 ROA not before: Sat 13 Sep 2025 03:04:48 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 139259 IP address blocks: 103.221.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 00:35:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7689 (0x1e09) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:04:48 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=6B32227821C7DCD8CBB328D086704A2ECED13338 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:10:06:29:2a:db:17:31:32:7e:0c:90:fa:b8: c9:e7:96:6c:75:56:d9:1c:f9:1f:22:0b:4c:c9:7c: 8c:2c:71:08:ac:d1:e3:77:96:3d:e2:f1:34:00:d2: 74:08:c2:39:60:86:7a:42:77:93:3b:77:fe:72:91: f0:30:ac:1f:29:b6:d4:fb:77:d7:ae:85:dd:bf:54: be:aa:f8:c7:38:5e:34:ae:93:f4:08:2a:eb:08:e4: 64:8f:be:1f:50:59:2d:f2:e2:c7:b6:1d:a6:d7:1e: 9a:f4:88:62:3e:ec:d2:96:3d:bd:48:58:0b:39:00: 02:b1:68:25:62:0e:bc:fd:4d:dd:89:03:86:e6:73: 25:40:6c:ca:76:2f:86:25:a9:f7:a0:17:46:6d:73: 52:07:17:68:c5:69:b6:ee:8d:36:8c:45:cc:7d:4e: 99:62:91:f9:43:64:37:43:e6:49:5c:ce:a8:fd:2f: f5:12:6e:22:80:75:2c:86:f2:ab:e2:85:36:49:50: 51:1f:51:07:77:0e:59:f2:be:58:c0:69:eb:9a:0f: 5f:f1:5e:79:e4:25:a4:2f:43:6c:6e:ec:db:a6:c4: 2e:a3:5b:fd:2f:f0:54:22:75:4f:a5:81:45:dd:b4: e0:e3:29:40:44:0c:e9:89:9a:39:d9:ef:2c:4c:e8: d2:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:32:22:78:21:C7:DC:D8:CB:B3:28:D0:86:70:4A:2E:CE:D1:33:38 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/azIieCHH3NjLsyjQhnBKLs7RMzg.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.20.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:e8:d9:8e:72:59:9b:69:cc:4a:23:d1:a5:b3:3e:f7:5e:b4: db:ae:b8:21:54:7e:28:bc:d4:db:24:26:06:3d:6a:b0:dd:24: e5:65:a2:da:bb:cb:22:ef:12:4c:04:d2:fc:8b:a7:bd:b6:52: c3:12:b3:4f:21:e4:c0:dd:f8:a6:6b:f7:13:81:99:28:2e:a3: 2e:5f:0d:20:fe:6a:48:e4:37:52:28:f8:01:4b:3c:84:e3:2f: d9:4a:ce:c3:96:5a:b6:55:d8:99:1d:e3:d9:82:a6:aa:d9:c3: a4:8a:ed:98:96:ec:07:f9:45:c6:58:ce:50:e7:81:26:f9:b3: 18:c8:32:4f:5b:69:78:10:1f:a6:6a:31:75:12:d7:78:ec:f1: 48:c1:51:c2:24:02:bc:66:da:51:f6:1e:b3:bf:01:2b:a3:f3: 62:56:7c:22:a4:b9:af:8b:8d:31:53:34:51:55:f7:f2:c5:4f: 12:81:31:77:fc:6c:47:67:26:f3:24:69:77:e0:c2:05:94:c8: d4:18:27:04:db:38:6e:a7:64:3b:4d:54:74:7d:43:5e:01:ec: e3:93:18:45:0d:7a:43:da:2b:4a:59:00:f6:eb:00:aa:5f:13: aa:3b:0a:28:4c:43:d6:d3:1e:de:24:34:fd:de:e1:5a:85:d5: 58:07:88:6e -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHgkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA0NDhaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDZCMzIyMjc4MjFDN0RD RDhDQkIzMjhEMDg2NzA0QTJFQ0VEMTMzMzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDaEAYpKtsXMTJ+DJD6uMnnlmx1Vtkc+R8iC0zJfIwscQis0eN3 lj3i8TQA0nQIwjlghnpCd5M7d/5ykfAwrB8pttT7d9euhd2/VL6q+Mc4XjSuk/QI KusI5GSPvh9QWS3y4se2HabXHpr0iGI+7NKWPb1IWAs5AAKxaCViDrz9Td2JA4bm cyVAbMp2L4YlqfegF0Ztc1IHF2jFabbujTaMRcx9TplikflDZDdD5klczqj9L/US biKAdSyG8qvihTZJUFEfUQd3DlnyvljAaeuaD1/xXnnkJaQvQ2xu7NumxC6jW/0v 8FQidU+lgUXdtODjKUBEDOmJmjnZ7yxM6NKrAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUazIieCHH3NjLsyjQhnBKLs7RMzgwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L2F6SWllQ0hIM05qTHN5 alFobkJLTHM3Uk16Zy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn3RQwDQYJKoZIhvcNAQELBQADggEBAGzo2Y5yWZtpzEoj0aWzPvdetNuuuCFU fii81NskJgY9arDdJOVlotq7yyLvEkwE0vyLp722UsMSs08h5MDd+KZr9xOBmSgu oy5fDSD+akjkN1Io+AFLPITjL9lKzsOWWrZV2Jkd49mCpqrZw6SK7ZiW7Af5RcZY zlDngSb5sxjIMk9baXgQH6ZqMXUS13js8UjBUcIkArxm2lH2HrO/ASuj82JWfCKk ua+LjTFTNFFV9/LFTxKBMXf8bEdnJvMkaXfgwgWUyNQYJwTbOG6nZDtNVHR9Q14B 7OOTGEUNekPaK0pZAPbrAKpfE6o7CihMQ9bTHt4kNP3e4VqF1VgHiG4= -----END CERTIFICATE-----Generated at Mon Oct 20 23:27:38 2025 by rpki-client