$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/frht_k1Qw7_d8R_-c43MHDgnWZo.roa File: frht_k1Qw7_d8R_-c43MHDgnWZo.roa (raw, json) Hash identifier: r72fIoXFRym7giF+NVhQ/L9VvpbSEeCP3zfZXD+ekT4= Subject key identifier: 7E:B8:6D:FE:4D:50:C3:BF:DD:F1:1F:FE:73:8D:CC:1C:38:27:59:9A Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1E17 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/frht_k1Qw7_d8R_-c43MHDgnWZo.roa Signing time: Sat 13 Sep 2025 03:04:50 +0000 ROA not before: Sat 13 Sep 2025 03:04:50 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 24373 IP address blocks: 103.221.20.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 15:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7703 (0x1e17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:04:50 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=7EB86DFE4D50C3BFDDF11FFE738DCC1C3827599A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:9a:84:f5:0e:a9:e2:59:70:f7:12:69:f8:fc: 8e:be:05:c3:61:77:59:83:cf:b1:4a:90:71:71:c3: 38:94:4a:e6:c2:ff:e3:40:36:f6:77:d1:0f:e2:0a: 2c:10:a8:73:47:18:76:e4:ae:b5:9b:63:80:e7:c2: ab:45:b9:aa:76:0c:1d:bc:a3:7a:e2:12:f6:3f:f0: db:e8:d4:bc:fd:7a:cc:16:35:ab:59:89:64:40:dc: 81:f2:0f:92:db:73:5a:5b:43:a5:96:4e:ca:e1:59: 5d:2d:4e:84:7e:4a:af:1a:9a:a6:f3:3e:bb:9c:24: b0:3e:d7:96:7a:9f:e3:5f:88:6a:74:e3:1f:9a:1d: 77:75:b0:81:cd:dc:f8:75:02:21:51:f7:49:f8:62: 0c:7b:34:5c:c9:d8:56:df:f2:34:f8:d2:26:79:9d: 5a:40:99:aa:be:14:b2:36:6b:5c:de:dd:82:63:a7: 74:92:de:bb:38:94:5f:44:57:b6:3e:90:7d:45:a0: 9d:5a:34:3d:7c:02:9a:f0:e7:24:3c:54:18:8f:ea: e9:fa:29:ee:94:72:32:6a:b4:01:7e:5d:5e:cc:ec: 13:99:14:18:7d:6f:38:76:dc:c6:66:5a:c0:95:ce: 49:7b:63:04:95:17:c5:98:bb:e5:01:d1:c9:31:f1: ad:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:B8:6D:FE:4D:50:C3:BF:DD:F1:1F:FE:73:8D:CC:1C:38:27:59:9A X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/frht_k1Qw7_d8R_-c43MHDgnWZo.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.20.0/22 Signature Algorithm: sha256WithRSAEncryption 2b:fd:13:bb:8b:67:a0:1a:2f:a1:9f:41:5f:a0:e3:44:74:b3: 07:a0:90:b3:00:81:93:aa:1c:cc:5e:63:01:ac:8d:17:9c:fa: 74:69:11:70:d7:b8:13:6f:f0:c4:c1:72:b1:91:4e:1c:36:12: 99:bc:a8:a0:92:62:8c:51:f9:59:fe:45:21:95:d3:31:c8:8c: 5f:79:09:b1:32:ec:e2:0e:95:80:ab:4f:ae:c9:1d:1f:b5:55: 81:a1:ab:80:fe:60:bc:23:08:a3:49:8f:f2:e2:56:0a:cb:3a: dd:95:2c:f8:60:23:e8:ef:19:ef:35:70:5a:7f:9e:0a:40:bd: 04:43:42:d0:61:48:f2:ed:c4:b8:58:94:58:4a:c0:54:13:b4: 50:ef:c6:3c:40:4a:fd:ef:58:88:f2:3d:84:17:bf:08:29:fa: 81:eb:81:a3:bb:bf:e9:07:5a:d9:0a:40:c4:b2:8f:c2:f9:95: c1:c3:dd:02:58:e0:30:f1:f5:6f:9d:8d:b5:b7:13:83:c8:e9: 9d:bf:fd:c6:04:a4:d5:68:05:4b:d7:f5:ff:9e:71:65:dd:de: a5:87:a3:58:46:7b:40:20:44:91:11:98:a9:c6:39:a5:5f:2b: 22:51:90:85:3e:db:33:f2:0d:7a:6b:bf:45:26:59:d8:91:5b: b5:fb:61:3f -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHhcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA0NTBaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDdFQjg2REZFNEQ1MEMz QkZEREYxMUZGRTczOERDQzFDMzgyNzU5OUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRmoT1DqniWXD3Emn4/I6+BcNhd1mDz7FKkHFxwziUSubC/+NA NvZ30Q/iCiwQqHNHGHbkrrWbY4DnwqtFuap2DB28o3riEvY/8Nvo1Lz9eswWNatZ iWRA3IHyD5Lbc1pbQ6WWTsrhWV0tToR+Sq8amqbzPrucJLA+15Z6n+NfiGp04x+a HXd1sIHN3Ph1AiFR90n4Ygx7NFzJ2Fbf8jT40iZ5nVpAmaq+FLI2a1ze3YJjp3SS 3rs4lF9EV7Y+kH1FoJ1aND18Aprw5yQ8VBiP6un6Ke6UcjJqtAF+XV7M7BOZFBh9 bzh23MZmWsCVzkl7YwSVF8WYu+UB0ckx8a27AgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUfrht/k1Qw7/d8R/+c43MHDgnWZowHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L2ZyaHRfazFRdzdfZDhS Xy1jNDNNSERnbldaby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJn3RQwDQYJKoZIhvcNAQELBQADggEBACv9E7uLZ6AaL6GfQV+g40R0swegkLMA gZOqHMxeYwGsjRec+nRpEXDXuBNv8MTBcrGRThw2Epm8qKCSYoxR+Vn+RSGV0zHI jF95CbEy7OIOlYCrT67JHR+1VYGhq4D+YLwjCKNJj/LiVgrLOt2VLPhgI+jvGe81 cFp/ngpAvQRDQtBhSPLtxLhYlFhKwFQTtFDvxjxASv3vWIjyPYQXvwgp+oHrgaO7 v+kHWtkKQMSyj8L5lcHD3QJY4DDx9W+djbW3E4PI6Z2//cYEpNVoBUvX9f+ecWXd 3qWHo1hGe0AgRJERmKnGOaVfKyJRkIU+2zPyDXprv0UmWdiRW7X7YT8= -----END CERTIFICATE-----Generated at Mon Oct 20 14:31:50 2025 by rpki-client