$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/grjSaMsvzfKLAlaLNt3abYkBzCY.roa File: grjSaMsvzfKLAlaLNt3abYkBzCY.roa (raw, json) Hash identifier: c3895cpGxgTaIFBezJR8Uyud9NBVR/sVJFC2s2kkzJw= Subject key identifier: 82:B8:D2:68:CB:2F:CD:F2:8B:02:56:8B:36:DD:DA:6D:89:01:CC:26 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1DE5 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/grjSaMsvzfKLAlaLNt3abYkBzCY.roa Signing time: Sat 13 Sep 2025 03:04:41 +0000 ROA not before: Sat 13 Sep 2025 03:04:41 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 139259 IP address blocks: 103.221.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7653 (0x1de5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:04:41 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=82B8D268CB2FCDF28B02568B36DDDA6D8901CC26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:48:bf:1b:00:62:17:09:64:d3:a9:60:f3:21: 6e:e2:bb:a7:57:4c:d2:d9:b0:84:89:40:f6:bc:63: 08:82:39:f8:cf:c6:f7:4e:80:5a:fd:29:ce:56:cd: 51:df:c0:60:6f:23:56:14:ce:56:52:cf:40:5f:bf: b5:04:df:c4:6c:f8:3d:c4:3e:ef:53:d3:fa:70:57: 6a:2d:17:b3:d3:36:36:1f:5d:48:81:c4:64:4a:7c: 6f:87:e1:0e:16:f1:17:0d:89:25:57:06:3a:5e:fa: fa:0a:ed:cd:76:9a:6e:d2:07:0a:bd:3f:f9:af:56: 18:de:40:5f:c7:4b:18:b4:cc:2e:5f:c8:7c:d7:8d: 64:92:95:a5:e7:eb:b7:92:37:a8:73:b9:2f:d6:c6: 8f:bb:2c:ce:b5:9c:1e:09:11:22:5a:df:6e:85:2b: 43:50:ce:ae:28:72:8d:47:fd:61:0c:6d:6b:80:e2: d3:42:80:39:4d:de:3f:19:0b:9c:db:5b:a6:30:e6: c0:c2:53:52:10:53:c2:fe:0d:c1:e3:53:22:fb:3d: 76:96:99:c8:44:72:6a:86:6d:5f:5c:f4:65:65:55: 13:46:97:c2:53:07:aa:45:b2:75:f6:c2:97:02:02: 38:ca:32:87:6a:57:a5:22:9b:a2:cc:44:11:84:48: 53:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:B8:D2:68:CB:2F:CD:F2:8B:02:56:8B:36:DD:DA:6D:89:01:CC:26 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/grjSaMsvzfKLAlaLNt3abYkBzCY.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.4.0/24 Signature Algorithm: sha256WithRSAEncryption 05:14:71:b4:21:dc:c9:5a:98:e4:3e:7d:4e:b3:f9:c6:50:98: 72:b7:8e:26:53:16:4b:ed:aa:d2:65:07:a1:c9:2e:83:3b:84: 6c:ac:a3:34:d9:9f:49:cc:fc:09:05:6c:b3:7d:f2:3e:86:19: bc:c3:6a:69:f9:8c:73:e8:99:f2:30:ba:d5:8d:99:9a:c6:00: d8:f2:27:e9:6e:ee:80:3c:1c:14:fa:dc:2f:ff:61:3e:3f:f7: e5:26:5f:52:a0:ff:2d:d3:88:d7:6b:f0:8c:2e:99:f0:9a:0e: 74:5b:34:56:48:70:7d:d6:92:f6:60:ba:44:e2:5e:c2:68:cc: 6b:32:cb:ff:c1:a8:23:c1:92:6d:99:bd:46:2e:3b:0c:fb:95: 10:07:50:15:93:81:bb:ac:5c:76:b7:eb:82:0b:e2:36:0a:d6: 71:50:f8:fa:52:a6:b4:1b:0e:b7:83:97:8b:86:2c:6e:a0:34: ca:89:cc:72:ad:46:b7:3f:92:8f:35:8c:a7:d8:2b:af:79:78: 4a:c8:45:e5:27:21:a1:3a:17:de:0c:0d:21:76:7b:bc:53:7b: 66:3b:43:40:1a:65:9e:f2:99:6d:7b:ff:b3:15:d3:b6:2b:d5: 18:6d:1c:78:35:fe:26:91:ea:23:67:28:ff:49:61:40:d1:05: ff:48:b9:82 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHeUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA0NDFaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDgyQjhEMjY4Q0IyRkNE RjI4QjAyNTY4QjM2REREQTZEODkwMUNDMjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBSL8bAGIXCWTTqWDzIW7iu6dXTNLZsISJQPa8YwiCOfjPxvdO gFr9Kc5WzVHfwGBvI1YUzlZSz0Bfv7UE38Rs+D3EPu9T0/pwV2otF7PTNjYfXUiB xGRKfG+H4Q4W8RcNiSVXBjpe+voK7c12mm7SBwq9P/mvVhjeQF/HSxi0zC5fyHzX jWSSlaXn67eSN6hzuS/Wxo+7LM61nB4JESJa326FK0NQzq4oco1H/WEMbWuA4tNC gDlN3j8ZC5zbW6Yw5sDCU1IQU8L+DcHjUyL7PXaWmchEcmqGbV9c9GVlVRNGl8JT B6pFsnX2wpcCAjjKModqV6Uim6LMRBGESFN3AgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUgrjSaMsvzfKLAlaLNt3abYkBzCYwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L2dyalNhTXN2emZLTEFs YUxOdDNhYllrQnpDWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn3QQwDQYJKoZIhvcNAQELBQADggEBAAUUcbQh3MlamOQ+fU6z+cZQmHK3jiZT FkvtqtJlB6HJLoM7hGysozTZn0nM/AkFbLN98j6GGbzDamn5jHPomfIwutWNmZrG ANjyJ+lu7oA8HBT63C//YT4/9+UmX1Kg/y3TiNdr8IwumfCaDnRbNFZIcH3WkvZg ukTiXsJozGsyy//BqCPBkm2ZvUYuOwz7lRAHUBWTgbusXHa364IL4jYK1nFQ+PpS prQbDreDl4uGLG6gNMqJzHKtRrc/ko81jKfYK695eErIReUnIaE6F94MDSF2e7xT e2Y7Q0AaZZ7ymW17/7MV07Yr1RhtHHg1/iaR6iNnKP9JYUDRBf9IuYI= -----END CERTIFICATE-----Generated at Mon Oct 20 13:18:01 2025 by rpki-client