$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/mUsodWAosodfdtXSDRlYB6YxrTA.roa File: mUsodWAosodfdtXSDRlYB6YxrTA.roa (raw, json) Hash identifier: ddr0GZmtQLb2C4wCFunjUWPySjteCJ4F09AauMKPR1Q= Subject key identifier: 99:4B:28:75:60:28:B2:87:5F:76:D5:D2:0D:19:58:07:A6:31:AD:30 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1E3D Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/mUsodWAosodfdtXSDRlYB6YxrTA.roa Signing time: Sat 13 Sep 2025 03:04:57 +0000 ROA not before: Sat 13 Sep 2025 03:04:57 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 139259 IP address blocks: 103.220.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7741 (0x1e3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:04:57 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=994B28756028B2875F76D5D20D195807A631AD30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:3b:58:e5:e0:87:53:bb:d6:46:f9:4f:b5:b3: e9:39:15:a4:f6:02:1a:61:5f:9a:e9:06:94:9b:4f: 49:19:b1:f8:31:f9:61:8c:39:36:98:3c:fa:c3:5b: 26:28:42:79:b7:c7:95:21:04:bd:d8:b7:ee:27:22: e5:69:5a:c6:26:08:5a:f9:e2:68:2b:12:f0:af:2f: c6:4d:4b:6a:ef:16:c8:d1:9c:5b:63:69:ed:39:6a: 0f:67:1b:a6:e5:fa:46:b4:f8:58:ed:64:71:21:72: 0d:49:c2:f0:18:ea:0a:af:3c:46:30:83:10:1e:42: af:21:d8:ab:e7:69:5a:d2:8d:e3:81:d3:ae:e4:79: 23:06:f2:6c:6b:18:7a:c2:3a:d4:86:c9:5d:19:1d: bf:3e:ee:b8:b7:cc:56:df:a4:7a:2f:05:d3:ae:de: f9:38:d5:21:f8:52:16:64:ba:47:d4:85:87:c7:27: 59:8f:ba:07:11:d1:24:87:2f:00:ab:b5:3c:71:88: 5a:ae:09:d3:5d:8c:ae:c5:51:e3:e9:c3:02:76:c2: 15:9f:25:07:4c:97:c2:18:6f:e6:fb:6b:88:93:f1: 40:a7:bb:62:05:a0:2c:8c:e0:30:67:ae:26:6a:2d: e6:bd:32:af:7f:c8:84:e1:7e:70:9b:1c:7f:2d:2e: d8:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:4B:28:75:60:28:B2:87:5F:76:D5:D2:0D:19:58:07:A6:31:AD:30 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/mUsodWAosodfdtXSDRlYB6YxrTA.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.220.255.0/24 Signature Algorithm: sha256WithRSAEncryption ad:91:bd:d7:f9:cf:74:86:49:ac:73:c0:05:89:05:00:3c:8d: 78:67:5c:b9:80:eb:e0:d2:aa:5f:39:10:ca:68:a4:06:9a:65: 53:e5:d6:05:57:ca:33:be:0b:99:2c:54:0e:f0:19:c9:cf:c6: 5d:20:4b:90:f2:e2:f5:9e:ef:5a:6a:10:cd:fa:bc:43:98:4a: 62:e6:e3:a0:70:c2:ed:ae:be:ae:15:d6:af:5d:76:f4:9c:e2: ca:77:0a:73:48:6c:ec:5a:40:0f:bb:17:a6:da:c3:11:32:01: 84:56:a9:5a:47:4c:ab:22:64:a1:a4:7a:3f:a5:e4:ab:fa:21: 16:4a:32:72:d6:37:9a:28:72:36:7b:bd:1b:31:5f:4b:27:26: 95:61:83:54:dc:22:90:b7:4b:9a:39:f0:68:59:da:0c:fb:8e: 86:1d:44:2f:fa:0a:12:59:1b:27:9f:32:ac:39:dd:d7:44:4e: 49:e7:32:2e:ed:4a:98:93:c0:bb:b0:94:3e:47:37:37:6a:e2: e8:ce:da:b9:7f:08:4d:69:fa:ba:de:4a:b4:cd:b9:fc:54:84: ab:4a:ad:36:f3:37:95:78:df:24:c4:d2:cb:92:07:92:91:8d: 70:15:cd:ec:9e:f3:39:40:54:a7:f6:0e:fd:49:f9:ba:5e:10: 7a:3b:c2:d8 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHj0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA0NTdaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDk5NEIyODc1NjAyOEIy ODc1Rjc2RDVEMjBEMTk1ODA3QTYzMUFEMzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQO1jl4IdTu9ZG+U+1s+k5FaT2AhphX5rpBpSbT0kZsfgx+WGM OTaYPPrDWyYoQnm3x5UhBL3Yt+4nIuVpWsYmCFr54mgrEvCvL8ZNS2rvFsjRnFtj ae05ag9nG6bl+ka0+FjtZHEhcg1JwvAY6gqvPEYwgxAeQq8h2KvnaVrSjeOB067k eSMG8mxrGHrCOtSGyV0ZHb8+7ri3zFbfpHovBdOu3vk41SH4UhZkukfUhYfHJ1mP ugcR0SSHLwCrtTxxiFquCdNdjK7FUePpwwJ2whWfJQdMl8IYb+b7a4iT8UCnu2IF oCyM4DBnriZqLea9Mq9/yIThfnCbHH8tLth5AgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUmUsodWAosodfdtXSDRlYB6YxrTAwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L21Vc29kV0Fvc29kZmR0 WFNEUmxZQjZZeHJUQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn3P8wDQYJKoZIhvcNAQELBQADggEBAK2Rvdf5z3SGSaxzwAWJBQA8jXhnXLmA 6+DSql85EMpopAaaZVPl1gVXyjO+C5ksVA7wGcnPxl0gS5Dy4vWe71pqEM36vEOY SmLm46Bwwu2uvq4V1q9ddvSc4sp3CnNIbOxaQA+7F6bawxEyAYRWqVpHTKsiZKGk ej+l5Kv6IRZKMnLWN5oocjZ7vRsxX0snJpVhg1TcIpC3S5o58GhZ2gz7joYdRC/6 ChJZGyefMqw53ddETknnMi7tSpiTwLuwlD5HNzdq4ujO2rl/CE1p+rreSrTNufxU hKtKrTbzN5V43yTE0suSB5KRjXAVzeye8zlAVKf2Dv1J+bpeEHo7wtg= -----END CERTIFICATE-----Generated at Mon Oct 20 13:13:43 2025 by rpki-client