$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/c_qlmXn4wOktbdlz_c9qmKHUOPg.roa File: c_qlmXn4wOktbdlz_c9qmKHUOPg.roa (raw, json) Hash identifier: 7O5Q76D9SpZnSjzw9iek2lv7jaSNHivGduPJN0PY6lM= Subject key identifier: 73:FA:A5:99:79:F8:C0:E9:2D:6D:D9:73:FD:CF:6A:98:A1:D4:38:F8 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1EF4 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/c_qlmXn4wOktbdlz_c9qmKHUOPg.roa Signing time: Sat 13 Sep 2025 03:05:39 +0000 ROA not before: Sat 13 Sep 2025 03:05:39 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 139259 IP address blocks: 103.221.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7924 (0x1ef4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:05:39 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=73FAA59979F8C0E92D6DD973FDCF6A98A1D438F8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:00:08:76:1b:0f:d4:7b:05:3e:32:4a:32:1c: d3:43:67:13:bc:cc:4c:96:5d:b0:cd:9e:92:a7:25: b5:5a:bd:2f:b6:c3:22:25:0f:66:25:59:06:64:12: c7:0e:aa:bd:8d:85:6f:0e:ff:d1:60:17:c7:10:d9: 09:ba:0c:5c:e0:a1:66:f3:7a:8d:85:70:8e:e9:10: 6a:cd:52:e8:31:dd:b7:1e:b2:21:f2:8c:de:4b:c9: 18:9f:34:71:bd:6d:e5:af:cb:59:6c:8c:9c:98:c9: 18:6e:8e:89:46:b9:b5:cf:eb:1e:5f:2b:ec:59:2a: 14:e5:66:fd:94:b9:6e:3f:6e:6a:7a:51:f0:91:23: 39:4b:fd:a7:a9:e2:f7:6f:b6:9a:36:96:5b:ae:17: 5d:da:c5:00:65:3a:e1:9a:1e:46:1d:c5:20:3b:40: b7:a7:38:8d:eb:20:0b:c7:73:82:5f:ab:1a:b2:47: 75:f3:4a:66:05:a8:22:b3:8e:7a:ab:1f:42:0c:9e: 74:67:f6:0c:fb:0a:99:f8:e8:b0:4e:19:28:af:99: 03:34:d7:9d:e4:b2:c8:1f:92:70:c7:16:42:e8:04: af:3b:9a:b5:4f:b9:92:b9:62:e6:e8:09:49:21:04: d5:b3:89:86:fc:69:6b:af:94:37:26:f6:3c:cc:2e: b3:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:FA:A5:99:79:F8:C0:E9:2D:6D:D9:73:FD:CF:6A:98:A1:D4:38:F8 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/c_qlmXn4wOktbdlz_c9qmKHUOPg.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.45.0/24 Signature Algorithm: sha256WithRSAEncryption 35:17:6a:0a:80:03:a9:43:a9:b7:e5:ee:d8:be:57:d9:d7:87: 67:14:f5:8b:88:77:74:9c:62:6c:f7:36:1e:5a:3a:5d:c5:5f: c5:db:20:4a:ad:ed:21:e2:8a:4d:f0:bc:99:3c:64:74:b5:c9: 90:95:8f:7b:a0:6b:73:c7:d7:f6:5b:fa:61:21:e6:c4:c2:6f: 98:45:e6:17:14:37:2c:d4:ab:7a:b4:ee:e0:67:14:8b:29:a0: b0:fb:49:f1:d1:61:7d:e5:46:11:be:49:97:fe:7e:9a:78:36: 06:31:97:8f:7e:15:98:6c:32:aa:59:63:46:94:04:3c:7e:fd: 78:3e:6a:8c:4f:34:2e:94:5e:37:67:9a:20:12:d9:21:b3:68: cf:09:94:4a:1e:c8:42:c2:c0:c3:93:dd:93:33:1d:90:86:8f: 8c:28:21:69:fc:32:61:48:03:b2:03:5e:d9:49:2a:82:37:89: 8e:e8:2d:42:c4:0b:38:f6:bb:d8:86:78:d5:df:ae:35:88:9f: cb:f3:93:d9:b9:64:21:44:43:06:00:8c:89:fe:99:74:ea:19: e1:4b:20:53:3c:6d:47:ac:d7:d3:a8:de:52:45:2d:a3:b8:71: 39:e2:ff:66:d0:23:da:55:ab:29:f6:ec:1b:17:4e:90:6e:f5: 84:b5:6f:9c -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHvQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA1MzlaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDczRkFBNTk5NzlGOEMw RTkyRDZERDk3M0ZEQ0Y2QTk4QTFENDM4RjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCZAAh2Gw/UewU+MkoyHNNDZxO8zEyWXbDNnpKnJbVavS+2wyIl D2YlWQZkEscOqr2NhW8O/9FgF8cQ2Qm6DFzgoWbzeo2FcI7pEGrNUugx3bcesiHy jN5LyRifNHG9beWvy1lsjJyYyRhujolGubXP6x5fK+xZKhTlZv2UuW4/bmp6UfCR IzlL/aep4vdvtpo2lluuF13axQBlOuGaHkYdxSA7QLenOI3rIAvHc4JfqxqyR3Xz SmYFqCKzjnqrH0IMnnRn9gz7Cpn46LBOGSivmQM0153kssgfknDHFkLoBK87mrVP uZK5YuboCUkhBNWziYb8aWuvlDcm9jzMLrP5AgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUc/qlmXn4wOktbdlz/c9qmKHUOPgwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L2NfcWxtWG40d09rdGJk bHpfYzlxbUtIVU9QZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn3S0wDQYJKoZIhvcNAQELBQADggEBADUXagqAA6lDqbfl7ti+V9nXh2cU9YuI d3ScYmz3Nh5aOl3FX8XbIEqt7SHiik3wvJk8ZHS1yZCVj3uga3PH1/Zb+mEh5sTC b5hF5hcUNyzUq3q07uBnFIspoLD7SfHRYX3lRhG+SZf+fpp4NgYxl49+FZhsMqpZ Y0aUBDx+/Xg+aoxPNC6UXjdnmiAS2SGzaM8JlEoeyELCwMOT3ZMzHZCGj4woIWn8 MmFIA7IDXtlJKoI3iY7oLULECzj2u9iGeNXfrjWIn8vzk9m5ZCFEQwYAjIn+mXTq GeFLIFM8bUes19Oo3lJFLaO4cTni/2bQI9pVqyn27BsXTpBu9YS1b5w= -----END CERTIFICATE-----Generated at Mon Oct 20 13:13:50 2025 by rpki-client