$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/efQCsJWe6dJf_hq9ljl93vJmEDc.roa File: efQCsJWe6dJf_hq9ljl93vJmEDc.roa (raw, json) Hash identifier: 3Xv8SIN5vjZZrLRE5H9X85WlGA1pMgbYqVUHl6yLses= Subject key identifier: 79:F4:02:B0:95:9E:E9:D2:5F:FE:1A:BD:96:39:7D:DE:F2:66:10:37 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1DEA Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/efQCsJWe6dJf_hq9ljl93vJmEDc.roa Signing time: Sat 13 Sep 2025 03:04:42 +0000 ROA not before: Sat 13 Sep 2025 03:04:42 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 139259 IP address blocks: 103.221.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7658 (0x1dea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:04:42 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=79F402B0959EE9D25FFE1ABD96397DDEF2661037 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:8b:8f:fd:8e:20:a9:90:8f:2d:e9:23:34:94: dc:c1:60:73:4c:82:e7:1c:57:fc:29:c3:c6:7e:3f: ee:0f:24:13:f4:9b:99:cf:fe:cc:c1:2d:85:4b:53: ef:fe:1e:dc:cb:0c:c7:b7:66:28:98:21:46:c5:93: 36:30:ae:36:8f:fa:e5:3d:59:8d:c9:38:c6:36:65: 58:06:32:08:18:5b:95:78:46:85:00:71:8d:ea:15: d1:4d:ee:61:5e:1c:7b:8c:d3:4a:ef:e4:be:f7:97: 2b:dc:d8:83:68:5e:63:42:e6:e3:08:00:ce:71:60: c2:e6:5c:f6:9f:17:86:5b:1c:55:46:85:c3:17:bc: 4c:95:6f:0b:01:ad:5a:f4:c3:82:99:67:24:15:16: 76:ac:67:79:d5:a5:a7:c3:21:f4:53:59:85:af:e4: 9b:ca:58:c2:b3:5f:d4:6c:f3:a8:5e:5c:bb:ed:41: 2e:69:d1:88:ce:07:06:10:2b:10:85:26:93:64:1a: 8f:8d:6c:8e:8b:8b:6e:97:36:5b:5b:ce:47:39:9b: c2:52:d1:d6:ad:8b:17:b2:c9:db:69:fc:75:76:c8: 13:d6:be:58:ca:36:ed:e7:5d:6c:71:39:5b:35:79: 42:14:7d:71:5f:c1:ca:4d:0c:e7:e1:b0:7b:56:84: 76:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:F4:02:B0:95:9E:E9:D2:5F:FE:1A:BD:96:39:7D:DE:F2:66:10:37 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/efQCsJWe6dJf_hq9ljl93vJmEDc.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.8.0/24 Signature Algorithm: sha256WithRSAEncryption 0c:3e:45:91:94:9f:ef:e3:99:4a:9d:d4:d2:46:17:4e:62:b0: 2f:08:96:77:51:72:b0:09:cc:a4:a1:17:4b:a0:6e:8f:f2:b9: a7:52:34:29:a6:a7:78:62:ec:0f:55:46:79:32:8a:98:3a:74: 4d:85:01:19:ec:17:41:52:b3:e8:4b:3c:ed:ae:9e:ff:64:d4: a2:ec:83:23:e9:f7:e9:28:65:11:b2:2f:e3:7b:01:da:f6:d1: 4f:7f:37:fd:d4:32:49:95:d8:f9:06:21:1f:d9:c3:6c:a6:72: 52:84:5a:5e:95:a0:d8:4a:db:85:8f:de:9a:7e:f6:7b:dd:99: 9e:28:19:cf:ae:1f:10:ba:7c:f2:5d:5c:1a:50:84:e3:dc:3e: db:46:80:94:cc:be:c8:a4:83:88:65:2f:0c:ad:3b:6e:e4:06: 96:9c:de:68:4a:bc:95:18:10:39:0b:73:13:f9:53:2f:e0:1d: ef:4a:e7:1f:e6:f0:1f:2d:cb:2c:07:66:27:b0:dc:3e:0e:b1: 9b:89:29:78:82:45:dc:04:b8:30:63:01:e1:80:a3:f6:de:de: d5:b1:75:38:57:0f:81:9d:82:19:ac:89:55:4a:7e:6d:26:8c: 50:ad:c5:6b:84:fe:18:ca:86:76:57:e9:af:9f:a4:89:4b:4e: 1f:e1:00:0c -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHeowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA0NDJaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDc5RjQwMkIwOTU5RUU5 RDI1RkZFMUFCRDk2Mzk3RERFRjI2NjEwMzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/i4/9jiCpkI8t6SM0lNzBYHNMguccV/wpw8Z+P+4PJBP0m5nP /szBLYVLU+/+HtzLDMe3ZiiYIUbFkzYwrjaP+uU9WY3JOMY2ZVgGMggYW5V4RoUA cY3qFdFN7mFeHHuM00rv5L73lyvc2INoXmNC5uMIAM5xYMLmXPafF4ZbHFVGhcMX vEyVbwsBrVr0w4KZZyQVFnasZ3nVpafDIfRTWYWv5JvKWMKzX9Rs86heXLvtQS5p 0YjOBwYQKxCFJpNkGo+NbI6Li26XNltbzkc5m8JS0datixeyydtp/HV2yBPWvljK Nu3nXWxxOVs1eUIUfXFfwcpNDOfhsHtWhHYfAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUefQCsJWe6dJf/hq9ljl93vJmEDcwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L2VmUUNzSldlNmRKZl9o cTlsamw5M3ZKbUVEYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn3QgwDQYJKoZIhvcNAQELBQADggEBAAw+RZGUn+/jmUqd1NJGF05isC8IlndR crAJzKShF0ugbo/yuadSNCmmp3hi7A9VRnkyipg6dE2FARnsF0FSs+hLPO2unv9k 1KLsgyPp9+koZRGyL+N7Adr20U9/N/3UMkmV2PkGIR/Zw2ymclKEWl6VoNhK24WP 3pp+9nvdmZ4oGc+uHxC6fPJdXBpQhOPcPttGgJTMvsikg4hlLwytO27kBpac3mhK vJUYEDkLcxP5Uy/gHe9K5x/m8B8tyywHZiew3D4OsZuJKXiCRdwEuDBjAeGAo/be 3tWxdThXD4GdghmsiVVKfm0mjFCtxWuE/hjKhnZX6a+fpIlLTh/hAAw= -----END CERTIFICATE-----Generated at Mon Oct 20 13:17:59 2025 by rpki-client