$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/bqASAVNC2-lg52tnmvna1L8Gr8Y.roa File: bqASAVNC2-lg52tnmvna1L8Gr8Y.roa (raw, json) Hash identifier: ZnI0AnN7FK2M5leBiyYRoN3yqfvNlriE2ecpL75oQaI= Subject key identifier: 6E:A0:12:01:53:42:DB:E9:60:E7:6B:67:9A:F9:DA:D4:BF:06:AF:C6 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1EE7 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/bqASAVNC2-lg52tnmvna1L8Gr8Y.roa Signing time: Sat 13 Sep 2025 03:05:36 +0000 ROA not before: Sat 13 Sep 2025 03:05:36 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 138527 IP address blocks: 103.198.240.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7911 (0x1ee7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:05:36 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=6EA012015342DBE960E76B679AF9DAD4BF06AFC6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:46:81:0e:60:97:66:59:12:1b:35:a1:20:d1: 3a:b9:6c:75:d2:74:eb:76:52:7f:be:bd:2b:18:bd: 37:4e:32:92:23:f6:83:aa:b4:f0:ec:a8:e3:b8:f6: 6b:45:a6:01:ea:b0:8f:7c:ac:f4:99:78:d3:d4:8b: 0f:86:38:47:fe:21:5c:80:3e:80:d1:da:a1:12:d0: 6d:73:51:21:7d:16:34:ba:ab:ae:10:82:74:5e:98: 1b:79:41:36:ca:6a:62:3b:06:45:13:e9:fd:04:4a: 21:28:79:6d:fd:58:af:e7:26:d3:ab:33:fe:fe:e5: 29:9c:0d:78:6d:ff:e7:bd:e1:05:bf:29:c7:8b:b4: 88:1c:6e:87:c0:30:66:59:17:de:e3:37:49:27:9a: 36:1a:9e:b0:fc:69:9d:59:e2:6b:5a:56:6c:a5:74: fa:f4:65:41:15:9d:de:96:c9:4f:9c:34:95:04:33: 3d:ce:c3:22:dd:54:ff:72:f4:dd:30:73:a4:8b:fc: a3:bf:8e:9f:63:49:1b:3f:11:e9:67:30:34:13:c0: c3:04:04:5e:cd:1a:56:ea:61:d2:a0:b0:10:5e:54: db:ef:b1:b1:0a:a8:99:a8:74:81:ef:ff:54:8b:11: 20:70:99:df:af:87:10:6f:23:c7:f1:23:34:15:b8: a0:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:A0:12:01:53:42:DB:E9:60:E7:6B:67:9A:F9:DA:D4:BF:06:AF:C6 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/bqASAVNC2-lg52tnmvna1L8Gr8Y.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.198.240.0/22 Signature Algorithm: sha256WithRSAEncryption 89:e1:b3:05:c9:8e:38:da:66:a0:8d:8a:52:6f:74:4f:b9:7c: cd:0a:02:6d:03:83:6d:8e:0d:07:63:6b:17:f9:c5:d6:c1:39: ae:61:d3:93:ca:72:e1:17:82:a8:6b:2f:a0:71:de:ef:fc:ab: 4c:c0:7f:b8:bb:c1:1b:76:a3:ea:17:03:7f:ae:5a:9e:cd:df: 79:1f:73:08:05:b5:2a:23:a6:c9:22:92:85:8c:06:e4:34:e1: 79:36:a8:4b:59:d1:9f:9d:b9:8e:e4:aa:19:ea:be:7a:ba:75: e6:8d:c4:c5:d4:42:6f:90:1c:e7:9c:9e:d1:a2:94:4a:82:05: ac:eb:c6:e3:b0:64:df:d0:27:29:15:30:ce:bc:7a:b5:49:01: fd:51:3c:cb:b1:32:96:07:65:74:bc:eb:e1:6d:9e:08:03:31: 56:53:94:3a:1a:28:c9:58:54:94:38:9c:44:fa:56:50:7e:fa: d4:ff:2a:2f:b5:43:41:50:e6:f1:21:80:f7:bc:96:0c:a3:56: 5b:fe:3d:37:19:7d:ee:5f:46:6f:23:f1:91:9f:e4:b2:17:95: 37:0d:bf:48:74:4f:9d:f7:64:c8:81:8b:23:24:6c:4f:1f:04: 0b:28:a6:f5:ae:88:6b:85:b8:e6:1b:d8:09:d4:c4:fb:01:75: 46:2b:af:58 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHucwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA1MzZaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDZFQTAxMjAxNTM0MkRC RTk2MEU3NkI2NzlBRjlEQUQ0QkYwNkFGQzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDbRoEOYJdmWRIbNaEg0Tq5bHXSdOt2Un++vSsYvTdOMpIj9oOq tPDsqOO49mtFpgHqsI98rPSZeNPUiw+GOEf+IVyAPoDR2qES0G1zUSF9FjS6q64Q gnRemBt5QTbKamI7BkUT6f0ESiEoeW39WK/nJtOrM/7+5SmcDXht/+e94QW/KceL tIgcbofAMGZZF97jN0knmjYanrD8aZ1Z4mtaVmyldPr0ZUEVnd6WyU+cNJUEMz3O wyLdVP9y9N0wc6SL/KO/jp9jSRs/EelnMDQTwMMEBF7NGlbqYdKgsBBeVNvvsbEK qJmodIHv/1SLESBwmd+vhxBvI8fxIzQVuKDdAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUbqASAVNC2+lg52tnmvna1L8Gr8YwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L2JxQVNBVk5DMi1sZzUy dG5tdm5hMUw4R3I4WS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJnxvAwDQYJKoZIhvcNAQELBQADggEBAInhswXJjjjaZqCNilJvdE+5fM0KAm0D g22ODQdjaxf5xdbBOa5h05PKcuEXgqhrL6Bx3u/8q0zAf7i7wRt2o+oXA3+uWp7N 33kfcwgFtSojpskikoWMBuQ04Xk2qEtZ0Z+duY7kqhnqvnq6deaNxMXUQm+QHOec ntGilEqCBazrxuOwZN/QJykVMM68erVJAf1RPMuxMpYHZXS86+FtnggDMVZTlDoa KMlYVJQ4nET6VlB++tT/Ki+1Q0FQ5vEhgPe8lgyjVlv+PTcZfe5fRm8j8ZGf5LIX lTcNv0h0T533ZMiBiyMkbE8fBAsopvWuiGuFuOYb2AnUxPsBdUYrr1g= -----END CERTIFICATE-----Generated at Mon Oct 20 13:13:38 2025 by rpki-client