$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/eWu8kTZS4HWckdl2tTMc2_chbdI.roa File: eWu8kTZS4HWckdl2tTMc2_chbdI.roa (raw, json) Hash identifier: p5yo5QcGbS/HQiH5Qo2lQAZA6XIXliXxo3niBtx6/8o= Subject key identifier: 79:6B:BC:91:36:52:E0:75:9C:91:D9:76:B5:33:1C:DB:F7:21:6D:D2 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1EA0 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/eWu8kTZS4HWckdl2tTMc2_chbdI.roa Signing time: Sat 13 Sep 2025 03:05:19 +0000 ROA not before: Sat 13 Sep 2025 03:05:19 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 139259 IP address blocks: 103.221.48.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7840 (0x1ea0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:05:19 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=796BBC913652E0759C91D976B5331CDBF7216DD2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:2a:ac:4c:db:ed:36:9e:05:33:bf:22:a0:5d: 74:a7:05:b0:c1:4c:af:2f:a7:ea:bd:11:8d:9f:fc: 51:0c:32:bb:dd:9b:9d:d8:5b:30:54:78:46:82:7f: 65:59:e6:67:6b:cd:ad:ad:54:77:6e:3a:86:f8:84: e1:1f:4a:dd:81:9d:f7:e0:b8:01:04:f3:94:cd:0a: 1b:a3:92:36:d9:65:0c:9e:ff:f2:2e:82:8c:dc:fd: 05:00:ef:f9:55:bd:13:fe:06:ce:ef:fb:60:16:60: ca:4d:e9:d4:5d:c6:48:20:a5:0f:b0:b3:3a:4d:b1: f9:fa:3e:3a:09:dd:08:10:89:8e:60:29:a9:1d:a3: 83:21:c0:eb:e8:78:23:de:86:8b:5f:01:9f:6b:af: c2:6d:4f:d1:b9:d5:cd:a7:1c:8f:ed:4a:39:0d:38: c1:aa:55:eb:b5:d6:1a:e9:d6:3b:bf:c5:72:cd:1b: b4:df:4f:59:23:4f:3d:e5:33:3e:95:89:91:dc:9d: 80:52:6b:d8:65:f0:0c:82:c5:85:74:e2:70:c0:2e: ec:df:42:9e:b5:71:f9:ae:ee:a1:0b:2f:4d:1b:62: 6b:42:d7:e6:e6:2f:6d:61:cb:17:91:e1:c1:fa:88: 6c:07:c7:87:fd:ce:3d:d9:09:94:b0:e5:b5:71:1c: 2f:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:6B:BC:91:36:52:E0:75:9C:91:D9:76:B5:33:1C:DB:F7:21:6D:D2 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/eWu8kTZS4HWckdl2tTMc2_chbdI.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.48.0/24 Signature Algorithm: sha256WithRSAEncryption db:fc:14:7f:ec:80:fa:00:a5:d9:46:b1:75:17:6b:1e:85:b0: cf:2f:7b:2f:40:6b:f3:0d:69:f4:34:ac:5e:65:cf:e6:48:c4: 51:0e:f1:59:a9:35:7e:75:7a:83:26:74:9e:c3:e0:63:31:4d: 0f:85:74:8c:36:87:ba:31:ec:9a:7b:14:76:6d:8d:da:9b:47: 8d:07:24:55:c1:97:c7:94:6f:e4:0e:6c:32:81:f0:54:87:fb: f7:0f:0e:b7:e2:14:b7:ad:22:88:78:11:66:97:30:76:22:7e: ab:8e:c3:fa:a7:0f:c8:31:11:d7:1e:a3:ae:63:d4:09:c3:4e: a2:ac:60:0c:df:23:36:76:4d:1c:45:89:7f:28:cb:89:31:77: 40:66:7e:3e:ef:3d:91:4e:6e:1b:bf:58:46:58:fc:2d:1d:b1: da:e3:64:19:80:85:39:bc:30:d6:24:cf:c1:c1:ed:46:b5:c4: 50:c8:7f:ce:56:52:d1:ef:b2:98:5d:f8:46:6c:c3:73:08:79: c0:e0:26:ad:10:3e:a2:27:35:64:2f:b0:eb:7e:7e:ce:64:31: 00:e3:53:1f:65:e7:c1:3a:0d:cf:f9:d2:fa:83:e1:c4:75:26: d6:b4:e6:09:a9:d3:76:cc:0d:6d:a0:1c:19:e7:cf:0e:99:39: 1e:4e:87:a1 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHqAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA1MTlaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDc5NkJCQzkxMzY1MkUw NzU5QzkxRDk3NkI1MzMxQ0RCRjcyMTZERDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+KqxM2+02ngUzvyKgXXSnBbDBTK8vp+q9EY2f/FEMMrvdm53Y WzBUeEaCf2VZ5mdrza2tVHduOob4hOEfSt2BnffguAEE85TNChujkjbZZQye//Iu gozc/QUA7/lVvRP+Bs7v+2AWYMpN6dRdxkggpQ+wszpNsfn6PjoJ3QgQiY5gKakd o4MhwOvoeCPehotfAZ9rr8JtT9G51c2nHI/tSjkNOMGqVeu11hrp1ju/xXLNG7Tf T1kjTz3lMz6ViZHcnYBSa9hl8AyCxYV04nDALuzfQp61cfmu7qELL00bYmtC1+bm L21hyxeR4cH6iGwHx4f9zj3ZCZSw5bVxHC8/AgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUeWu8kTZS4HWckdl2tTMc2/chbdIwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L2VXdThrVFpTNEhXY2tk bDJ0VE1jMl9jaGJkSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn3TAwDQYJKoZIhvcNAQELBQADggEBANv8FH/sgPoApdlGsXUXax6FsM8vey9A a/MNafQ0rF5lz+ZIxFEO8VmpNX51eoMmdJ7D4GMxTQ+FdIw2h7ox7Jp7FHZtjdqb R40HJFXBl8eUb+QObDKB8FSH+/cPDrfiFLetIoh4EWaXMHYifquOw/qnD8gxEdce o65j1AnDTqKsYAzfIzZ2TRxFiX8oy4kxd0Bmfj7vPZFObhu/WEZY/C0dsdrjZBmA hTm8MNYkz8HB7Ua1xFDIf85WUtHvsphd+EZsw3MIecDgJq0QPqInNWQvsOt+fs5k MQDjUx9l58E6Dc/50vqD4cR1Jta05gmp03bMDW2gHBnnzw6ZOR5Oh6E= -----END CERTIFICATE-----Generated at Mon Oct 20 13:18:02 2025 by rpki-client