$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/ezuBe4WgTdChektz_xqO5fp4Ag8.roa File: ezuBe4WgTdChektz_xqO5fp4Ag8.roa (raw, json) Hash identifier: 5zXP0OCqHuVJ4hJ1F8ZSQZiVc+446BSy2Gc3GZLJEvA= Subject key identifier: 7B:3B:81:7B:85:A0:4D:D0:A1:7A:4B:73:FF:1A:8E:E5:FA:78:02:0F Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1ECC Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/ezuBe4WgTdChektz_xqO5fp4Ag8.roa Signing time: Sat 13 Sep 2025 03:05:29 +0000 ROA not before: Sat 13 Sep 2025 03:05:29 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 138527 IP address blocks: 103.220.252.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7884 (0x1ecc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:05:29 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=7B3B817B85A04DD0A17A4B73FF1A8EE5FA78020F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:0e:4f:9e:84:5e:0a:7d:2f:c7:d0:1b:b9:f0: e3:53:55:e6:69:a5:69:c2:27:9f:67:4f:f8:e1:fe: 1c:86:66:81:1d:e4:e3:c2:52:85:09:23:01:46:b4: 67:7c:05:16:14:08:20:1b:f0:ef:c7:ce:ea:8b:c8: 4f:e0:bf:f4:b4:f1:17:d2:dd:f4:df:9d:25:c7:04: 40:a7:78:ac:d5:3c:ca:34:11:d7:08:b9:25:ae:36: 09:06:6e:ee:72:8b:8a:4c:59:b1:eb:70:1b:8b:45: 2a:0d:3f:5e:ef:ed:19:d7:71:b4:4a:3c:0a:af:aa: 3e:12:42:e3:97:0a:41:26:0e:a0:0f:5d:25:80:0d: 30:ba:3f:1b:d1:da:d8:af:90:9a:a9:58:db:53:04: 87:b7:b2:92:0b:14:ec:57:a0:32:42:ad:26:76:29: b0:53:79:c9:20:ce:d3:66:a9:bd:68:c6:3d:24:3d: f7:71:fc:d6:55:bf:b9:38:6c:c2:01:55:cd:3e:2f: 39:71:11:fb:b9:4c:2a:18:4b:8b:4d:4c:f2:5a:52: 95:c0:fd:11:33:b7:cc:1c:43:13:d7:dd:52:00:14: b7:d4:e0:a3:9f:18:4a:b1:52:d6:56:a0:58:1f:fd: f7:2b:b6:fe:5d:93:62:bd:c8:87:5a:62:3f:0f:c8: ad:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:3B:81:7B:85:A0:4D:D0:A1:7A:4B:73:FF:1A:8E:E5:FA:78:02:0F X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/ezuBe4WgTdChektz_xqO5fp4Ag8.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.220.252.0/22 Signature Algorithm: sha256WithRSAEncryption 5c:5d:3e:87:75:20:13:2d:a3:cb:4d:d5:43:48:25:25:e4:c7: 25:88:be:f0:92:25:ce:5b:b9:ca:d1:f7:26:c3:19:08:b8:dc: 70:69:1f:bc:88:45:28:8c:dc:87:2d:06:a9:e3:33:af:b7:4f: 3d:8a:d0:ac:3c:9c:30:18:aa:0a:bd:3f:0a:f5:b5:c6:36:cb: 88:54:2a:ee:d1:76:06:b9:f9:5e:d2:2e:b1:e5:c9:8b:e0:62: 49:3c:f3:0e:ed:c4:c3:8f:66:0f:55:18:7f:ad:98:a5:45:7d: 25:73:76:76:bb:9a:78:33:c3:86:f0:eb:d3:00:c6:26:f2:e9: 16:e9:a1:eb:22:e4:a1:67:17:34:45:4b:46:8a:47:77:43:0b: de:4c:a1:2f:fd:4e:bf:36:d8:0d:d0:9f:65:80:ad:2e:5b:4d: 4a:2d:78:0f:6d:e4:e2:69:02:d8:65:15:a8:78:f3:0f:aa:59: 5c:b7:ad:24:22:0a:bc:a1:d4:96:4b:38:06:31:1d:fa:49:24: 5f:19:26:1c:8c:d1:3a:1c:05:3f:f5:6e:0b:e9:30:1a:4b:99: bf:3f:89:84:cb:61:74:16:5d:f6:45:a8:2c:7b:12:50:58:62: ea:ab:46:d3:2f:67:a7:87:17:21:af:4f:f8:08:74:18:91:ac: 87:cd:4d:7a -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHswwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA1MjlaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDdCM0I4MTdCODVBMDRE RDBBMTdBNEI3M0ZGMUE4RUU1RkE3ODAyMEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7Dk+ehF4KfS/H0Bu58ONTVeZppWnCJ59nT/jh/hyGZoEd5OPC UoUJIwFGtGd8BRYUCCAb8O/HzuqLyE/gv/S08RfS3fTfnSXHBECneKzVPMo0EdcI uSWuNgkGbu5yi4pMWbHrcBuLRSoNP17v7RnXcbRKPAqvqj4SQuOXCkEmDqAPXSWA DTC6PxvR2tivkJqpWNtTBIe3spILFOxXoDJCrSZ2KbBTeckgztNmqb1oxj0kPfdx /NZVv7k4bMIBVc0+LzlxEfu5TCoYS4tNTPJaUpXA/REzt8wcQxPX3VIAFLfU4KOf GEqxUtZWoFgf/fcrtv5dk2K9yIdaYj8PyK0FAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUezuBe4WgTdChektz/xqO5fp4Ag8wHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L2V6dUJlNFdnVGRDaGVr dHpfeHFPNWZwNEFnOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJn3PwwDQYJKoZIhvcNAQELBQADggEBAFxdPod1IBMto8tN1UNIJSXkxyWIvvCS Jc5bucrR9ybDGQi43HBpH7yIRSiM3IctBqnjM6+3Tz2K0Kw8nDAYqgq9Pwr1tcY2 y4hUKu7Rdga5+V7SLrHlyYvgYkk88w7txMOPZg9VGH+tmKVFfSVzdna7mngzw4bw 69MAxiby6Rbpoesi5KFnFzRFS0aKR3dDC95MoS/9Tr822A3Qn2WArS5bTUoteA9t 5OJpAthlFah48w+qWVy3rSQiCryh1JZLOAYxHfpJJF8ZJhyM0TocBT/1bgvpMBpL mb8/iYTLYXQWXfZFqCx7ElBYYuqrRtMvZ6eHFyGvT/gIdBiRrIfNTXo= -----END CERTIFICATE-----Generated at Mon Oct 20 13:30:59 2025 by rpki-client