$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/lmpg04jm68pVVfv7uey5A9gmoUo.roa File: lmpg04jm68pVVfv7uey5A9gmoUo.roa (raw, json) Hash identifier: J9GhS2iYA/ES4B8cfrvoBH/d5nQ9z7M6IIEyDrhF4Ac= Subject key identifier: 96:6A:60:D3:88:E6:EB:CA:55:55:FB:FB:B9:EC:B9:03:D8:26:A1:4A Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1ECA Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/lmpg04jm68pVVfv7uey5A9gmoUo.roa Signing time: Sat 13 Sep 2025 03:05:29 +0000 ROA not before: Sat 13 Sep 2025 03:05:29 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 24373 IP address blocks: 103.221.48.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 23:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7882 (0x1eca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:05:29 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=966A60D388E6EBCA5555FBFBB9ECB903D826A14A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:bd:33:5d:66:e3:aa:46:46:4c:5f:98:47:30: b5:2c:db:09:f6:96:0f:56:6b:be:07:7f:7f:23:60: 5e:a2:bc:86:73:a9:23:6f:d1:2b:ee:73:e0:b7:6e: 51:46:3f:b6:43:fc:46:16:ec:bd:35:17:3c:fe:01: 8b:c5:61:f1:fc:ea:ac:56:09:82:47:8a:79:22:a3: 44:b4:dd:40:c1:18:65:07:bd:2c:ec:e8:3b:a9:62: 50:0e:d5:56:0e:99:9a:a9:b3:c9:80:ee:a3:f0:98: d5:52:5e:95:62:c8:25:9a:97:24:88:1f:96:40:29: db:50:30:6b:d2:19:c8:52:65:80:3e:b0:19:e7:63: 6c:2b:0c:c6:d5:5e:b2:b1:af:70:49:41:38:01:21: 28:e3:cf:32:86:7a:cf:72:c5:a1:76:ea:7e:cb:ea: 01:2b:c1:4a:51:6c:13:4b:f9:44:ad:cb:15:79:9a: a8:e4:11:49:ed:c2:8f:db:24:25:bb:45:c6:e1:85: b3:55:07:8c:a2:65:3b:c3:be:ba:19:72:f2:75:44: 28:f7:82:cf:09:72:62:4d:71:3f:79:5c:79:d9:91: 0f:26:e7:a7:97:df:29:48:c9:73:80:4f:85:2d:25: c3:d2:55:95:15:9c:24:d4:71:e6:97:ab:57:58:d7: a9:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:6A:60:D3:88:E6:EB:CA:55:55:FB:FB:B9:EC:B9:03:D8:26:A1:4A X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/lmpg04jm68pVVfv7uey5A9gmoUo.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.48.0/22 Signature Algorithm: sha256WithRSAEncryption 99:b6:3d:16:8e:85:93:45:30:47:ae:49:fd:08:4a:ca:e5:a6: bc:46:ea:16:37:26:f7:ff:eb:56:df:3e:10:06:97:68:2a:fd: 81:83:df:ee:54:c3:f7:fc:4e:52:8a:61:96:dc:50:26:cf:ff: 78:b9:97:75:3d:cf:3e:5a:0d:52:5c:ac:2b:4a:79:4f:e5:a1: 04:2d:9c:47:fb:14:a6:25:84:e2:6c:e1:73:b4:67:ec:61:15: b9:44:cf:98:a6:7d:17:95:26:93:1c:a4:e4:a0:9b:2c:c8:13: f7:74:25:fd:13:f5:ac:0a:2b:ec:70:37:bf:36:03:6c:ee:bd: 2b:86:ff:f0:1c:a1:af:dd:53:1f:90:3b:db:cd:61:37:80:62: 11:63:21:0f:b2:e0:21:d6:64:d1:58:07:0e:e9:c8:ed:1e:1f: 5b:6c:3c:75:78:1c:fe:a3:93:80:8e:32:fe:77:af:e3:95:d5: 67:72:98:b4:27:0d:53:4e:dd:c2:8e:a2:9c:e8:17:3a:87:51: d0:80:06:14:c0:f0:65:ca:9b:3c:5f:fb:e6:c7:86:c6:66:3e: 3e:22:c9:45:3a:7e:90:b5:e5:4b:d7:fa:8a:c4:5b:41:c3:e7: 53:eb:c9:15:8c:f6:32:70:da:ba:5c:1e:38:96:23:3f:d8:05: 6a:4e:1b:09 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHsowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA1MjlaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDk2NkE2MEQzODhFNkVC Q0E1NTU1RkJGQkI5RUNCOTAzRDgyNkExNEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8vTNdZuOqRkZMX5hHMLUs2wn2lg9Wa74Hf38jYF6ivIZzqSNv 0Svuc+C3blFGP7ZD/EYW7L01Fzz+AYvFYfH86qxWCYJHinkio0S03UDBGGUHvSzs 6DupYlAO1VYOmZqps8mA7qPwmNVSXpViyCWalySIH5ZAKdtQMGvSGchSZYA+sBnn Y2wrDMbVXrKxr3BJQTgBISjjzzKGes9yxaF26n7L6gErwUpRbBNL+UStyxV5mqjk EUntwo/bJCW7RcbhhbNVB4yiZTvDvroZcvJ1RCj3gs8JcmJNcT95XHnZkQ8m56eX 3ylIyXOAT4UtJcPSVZUVnCTUceaXq1dY16lJAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUlmpg04jm68pVVfv7uey5A9gmoUowHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L2xtcGcwNGptNjhwVlZm djd1ZXk1QTlnbW9Vby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJn3TAwDQYJKoZIhvcNAQELBQADggEBAJm2PRaOhZNFMEeuSf0ISsrlprxG6hY3 Jvf/61bfPhAGl2gq/YGD3+5Uw/f8TlKKYZbcUCbP/3i5l3U9zz5aDVJcrCtKeU/l oQQtnEf7FKYlhOJs4XO0Z+xhFblEz5imfReVJpMcpOSgmyzIE/d0Jf0T9awKK+xw N782A2zuvSuG//Acoa/dUx+QO9vNYTeAYhFjIQ+y4CHWZNFYBw7pyO0eH1tsPHV4 HP6jk4COMv53r+OV1WdymLQnDVNO3cKOopzoFzqHUdCABhTA8GXKmzxf++bHhsZm Pj4iyUU6fpC15UvX+orEW0HD51PryRWM9jJw2rpcHjiWIz/YBWpOGwk= -----END CERTIFICATE-----Generated at Mon Oct 20 22:20:03 2025 by rpki-client