$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/i4gGhPnHcWqK3zs2YUONHZjCBM8.roa File: i4gGhPnHcWqK3zs2YUONHZjCBM8.roa (raw, json) Hash identifier: jbGz/tjfUJO+nEberyUkl7Xe33jPZO150mfulX7EXmw= Subject key identifier: 8B:88:06:84:F9:C7:71:6A:8A:DF:3B:36:61:43:8D:1D:98:C2:04:CF Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1E89 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/i4gGhPnHcWqK3zs2YUONHZjCBM8.roa Signing time: Sat 13 Sep 2025 03:05:14 +0000 ROA not before: Sat 13 Sep 2025 03:05:14 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 13444 IP address blocks: 103.221.12.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7817 (0x1e89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:05:14 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=8B880684F9C7716A8ADF3B3661438D1D98C204CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:db:67:81:27:84:1b:d0:c0:c3:7a:58:56:9b: 7c:d4:6f:dc:3e:c1:0e:39:75:70:9a:33:f0:67:15: 1a:9c:0d:1d:ee:05:8d:6e:34:e1:12:8a:4f:24:ca: cb:af:41:4a:c9:e7:7a:90:27:db:10:fe:4c:55:87: 9e:68:9e:aa:07:54:b3:05:15:a6:2a:99:16:ce:c5: c2:ab:79:00:d8:07:7b:b2:84:9f:ef:98:e6:4e:1b: d6:15:b6:a4:b1:5c:a5:bf:0e:0a:17:1f:0d:63:9d: fd:e8:82:95:9c:df:c0:54:d8:6e:3c:de:13:36:27: 0e:94:4f:0d:12:c3:c9:66:b4:33:9c:0a:63:07:eb: 27:05:bd:8a:53:a6:00:1e:22:05:1d:a7:ad:88:af: 35:df:b8:d4:02:09:13:98:07:e4:6e:f8:ed:0c:95: f8:ba:75:0a:32:32:dd:77:bd:dc:47:86:90:04:77: 89:71:99:a2:fb:03:e3:cf:e8:8c:1e:0c:d2:aa:6b: a0:7e:2a:66:3c:5c:46:5b:80:ca:b1:dd:4a:ef:ac: 74:91:b1:8d:c3:98:48:80:09:9b:d0:93:e6:a6:23: ef:c4:66:97:18:1f:8a:93:17:cf:e3:d5:ac:10:fb: 5a:90:ec:bd:94:5a:bd:54:2e:00:76:fa:05:05:0b: 2d:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:88:06:84:F9:C7:71:6A:8A:DF:3B:36:61:43:8D:1D:98:C2:04:CF X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/i4gGhPnHcWqK3zs2YUONHZjCBM8.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.12.0/24 Signature Algorithm: sha256WithRSAEncryption 06:d9:f5:d4:7f:62:ca:0d:9a:93:88:74:93:5f:a2:72:90:fd: 70:61:b9:0c:57:00:ae:f3:9f:eb:fa:07:d7:b4:a0:26:06:6a: 1b:40:bb:a6:f2:8e:f7:6b:0b:ac:06:53:3b:31:95:2e:e9:2d: f5:99:41:ee:62:d5:de:5a:28:0d:37:3d:39:78:a4:55:c5:76: 68:7d:a2:da:b4:61:1e:eb:f7:9f:54:91:30:34:dc:d4:1d:50: 5c:4b:c8:11:36:9e:fa:a1:aa:29:54:20:86:d7:b9:20:b7:6f: f8:c6:c4:e0:b4:06:00:63:98:04:5b:cf:91:cb:a7:c4:9c:73: 1e:58:2a:ec:21:b0:37:d0:e1:68:d9:70:26:dd:bd:03:23:ed: 4c:45:85:2f:54:cd:46:a0:14:c6:a0:5a:1d:01:9f:3d:7a:26: e8:0e:41:cd:22:dd:31:24:5d:25:16:5b:60:45:62:72:f2:4c: 58:03:5a:e0:78:09:53:de:88:81:18:ab:54:c4:14:fa:d0:1c: c3:eb:25:4a:32:ab:b0:e9:81:2d:01:24:20:68:f4:1d:81:04: bb:91:79:46:34:2c:98:75:5d:5f:b7:40:69:2a:d9:91:3c:e2: 18:5c:29:af:80:ce:0d:73:a2:16:55:e7:2c:db:35:c8:2d:a2: 73:e5:11:ec -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHokwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA1MTRaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDhCODgwNjg0RjlDNzcx NkE4QURGM0IzNjYxNDM4RDFEOThDMjA0Q0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCz22eBJ4Qb0MDDelhWm3zUb9w+wQ45dXCaM/BnFRqcDR3uBY1u NOESik8kysuvQUrJ53qQJ9sQ/kxVh55onqoHVLMFFaYqmRbOxcKreQDYB3uyhJ/v mOZOG9YVtqSxXKW/DgoXHw1jnf3ogpWc38BU2G483hM2Jw6UTw0Sw8lmtDOcCmMH 6ycFvYpTpgAeIgUdp62IrzXfuNQCCROYB+Ru+O0Mlfi6dQoyMt13vdxHhpAEd4lx maL7A+PP6IweDNKqa6B+KmY8XEZbgMqx3UrvrHSRsY3DmEiACZvQk+amI+/EZpcY H4qTF8/j1awQ+1qQ7L2UWr1ULgB2+gUFCy09AgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUi4gGhPnHcWqK3zs2YUONHZjCBM8wHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L2k0Z0doUG5IY1dxSzN6 czJZVU9OSFpqQ0JNOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn3QwwDQYJKoZIhvcNAQELBQADggEBAAbZ9dR/YsoNmpOIdJNfonKQ/XBhuQxX AK7zn+v6B9e0oCYGahtAu6byjvdrC6wGUzsxlS7pLfWZQe5i1d5aKA03PTl4pFXF dmh9otq0YR7r959UkTA03NQdUFxLyBE2nvqhqilUIIbXuSC3b/jGxOC0BgBjmARb z5HLp8Sccx5YKuwhsDfQ4WjZcCbdvQMj7UxFhS9UzUagFMagWh0Bnz16JugOQc0i 3TEkXSUWW2BFYnLyTFgDWuB4CVPeiIEYq1TEFPrQHMPrJUoyq7DpgS0BJCBo9B2B BLuReUY0LJh1XV+3QGkq2ZE84hhcKa+Azg1zohZV5yzbNcgtonPlEew= -----END CERTIFICATE-----Generated at Mon Oct 20 13:30:43 2025 by rpki-client