$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/mjg0DneLyUHPFxFXK3e_0MWoax8.roa File: mjg0DneLyUHPFxFXK3e_0MWoax8.roa (raw, json) Hash identifier: Rt1Ury+iZ4ktumeEPMu3+u3QGbTUYjqBIWnea01hLUo= Subject key identifier: 9A:38:34:0E:77:8B:C9:41:CF:17:11:57:2B:77:BF:D0:C5:A8:6B:1F Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1F20 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/mjg0DneLyUHPFxFXK3e_0MWoax8.roa Signing time: Tue 16 Sep 2025 05:50:55 +0000 ROA not before: Tue 16 Sep 2025 05:50:55 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 25743 IP address blocks: 103.221.32.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7968 (0x1f20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 16 05:50:55 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=9A38340E778BC941CF1711572B77BFD0C5A86B1F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:89:4f:f8:f9:68:04:bc:41:54:21:82:91:2c: ba:6d:84:3c:45:0d:f5:aa:c9:0f:3d:e8:c3:62:94: dd:25:61:5e:e5:62:37:0a:f9:8b:70:76:27:cb:29: 71:6f:80:7f:04:d9:8c:de:4f:46:b8:cc:4f:93:96: 55:17:7d:ea:66:a2:a3:ef:4e:37:40:0f:c6:02:29: e2:c3:73:cb:c5:f7:0c:73:94:30:cc:89:a3:2f:02: a8:44:b1:93:2a:98:3b:48:1c:36:86:7c:3e:b7:b8: 2c:b9:98:1b:53:91:f4:c0:92:86:ce:08:a4:f1:c3: 0f:50:7f:95:df:bd:a8:5e:a9:a0:ab:01:3f:38:b3: 9c:6e:ea:d7:22:74:23:03:eb:c9:00:46:bc:2f:5c: 7d:37:fc:87:0c:4e:1a:ea:26:17:da:f4:6b:c5:93: ea:55:fb:6c:69:5a:59:50:b9:65:89:6e:59:0c:1e: 00:b1:aa:8a:13:46:d6:5a:b6:8f:5b:2f:d9:d7:02: 1a:c0:3f:6a:13:8d:05:7a:7e:c6:d1:87:9c:43:3c: c5:55:cd:f4:0a:8c:46:2d:81:9a:0e:67:40:18:c0: 28:93:a1:cb:05:30:53:a2:a7:a9:0a:5a:d6:66:a9: cc:3d:bc:f7:61:23:e6:94:a9:7e:28:5a:39:d6:1d: ff:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:38:34:0E:77:8B:C9:41:CF:17:11:57:2B:77:BF:D0:C5:A8:6B:1F X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/mjg0DneLyUHPFxFXK3e_0MWoax8.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.32.0/22 Signature Algorithm: sha256WithRSAEncryption 2f:01:fb:7a:d7:f6:d8:5d:b8:4d:67:4a:dd:15:89:5f:26:10: 5d:94:9d:11:e0:56:e1:f6:03:be:3b:f4:29:90:c6:f5:10:d8: 7a:47:69:53:33:c0:30:56:44:10:03:33:39:bf:82:97:45:95: 92:40:ae:de:3c:29:6f:35:67:2f:c1:cb:b0:8e:b6:89:c8:e6: 1b:84:86:35:76:2c:89:b6:7d:a3:86:75:7d:8e:0a:55:78:54: b8:28:d8:85:ea:89:09:84:c4:50:ce:1b:ac:71:fc:59:78:82: ff:c3:91:f2:ec:e8:2c:dd:92:e5:92:f4:60:cb:c4:d4:18:2f: e8:dd:4e:f9:af:c3:35:11:9a:90:b0:47:9f:f8:3d:54:3c:0a: 18:f4:c0:2c:90:2b:88:87:d8:fe:13:41:32:22:44:c4:0e:c2: 61:30:c8:39:86:40:36:1f:41:dc:51:3f:67:ce:58:23:c3:f6: 34:5a:ef:bc:82:ee:6c:cb:07:e2:d6:ff:e6:5b:37:76:66:08: f2:95:d6:c6:b6:9b:79:f3:49:86:4a:30:9c:04:31:1f:a3:04: 6d:39:d6:82:d3:ad:4f:fc:94:d7:dc:39:73:42:d6:64:e8:9f: 89:f7:2e:ca:6d:85:b5:80:d4:7f:6b:1f:d8:4e:bd:85:6f:da: fa:bd:89:a1 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHyAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTYw NTUwNTVaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDlBMzgzNDBFNzc4QkM5 NDFDRjE3MTE1NzJCNzdCRkQwQzVBODZCMUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/iU/4+WgEvEFUIYKRLLpthDxFDfWqyQ896MNilN0lYV7lYjcK +YtwdifLKXFvgH8E2YzeT0a4zE+TllUXfepmoqPvTjdAD8YCKeLDc8vF9wxzlDDM iaMvAqhEsZMqmDtIHDaGfD63uCy5mBtTkfTAkobOCKTxww9Qf5XfvaheqaCrAT84 s5xu6tcidCMD68kARrwvXH03/IcMThrqJhfa9GvFk+pV+2xpWllQuWWJblkMHgCx qooTRtZato9bL9nXAhrAP2oTjQV6fsbRh5xDPMVVzfQKjEYtgZoOZ0AYwCiTocsF MFOip6kKWtZmqcw9vPdhI+aUqX4oWjnWHf8VAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUmjg0DneLyUHPFxFXK3e/0MWoax8wHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L21qZzBEbmVMeVVIUEZ4 RlhLM2VfME1Xb2F4OC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJn3SAwDQYJKoZIhvcNAQELBQADggEBAC8B+3rX9thduE1nSt0ViV8mEF2UnRHg VuH2A7479CmQxvUQ2HpHaVMzwDBWRBADMzm/gpdFlZJArt48KW81Zy/By7COtonI 5huEhjV2LIm2faOGdX2OClV4VLgo2IXqiQmExFDOG6xx/Fl4gv/DkfLs6CzdkuWS 9GDLxNQYL+jdTvmvwzURmpCwR5/4PVQ8Chj0wCyQK4iH2P4TQTIiRMQOwmEwyDmG QDYfQdxRP2fOWCPD9jRa77yC7mzLB+LW/+ZbN3ZmCPKV1sa2m3nzSYZKMJwEMR+j BG051oLTrU/8lNfcOXNC1mTon4n3LspthbWA1H9rH9hOvYVv2vq9iaE= -----END CERTIFICATE-----Generated at Mon Oct 20 13:31:00 2025 by rpki-client