$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/mlouVFr77eteE1V26lfk-COg-Aw.roa File: mlouVFr77eteE1V26lfk-COg-Aw.roa (raw, json) Hash identifier: 5rlK2Jrhj87nykqrknICXbyF3ZVkuO7x2H29gF1lNu0= Subject key identifier: 9A:5A:2E:54:5A:FB:ED:EB:5E:13:55:76:EA:57:E4:F8:23:A0:F8:0C Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1F2B Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/mlouVFr77eteE1V26lfk-COg-Aw.roa Signing time: Tue 16 Sep 2025 05:50:57 +0000 ROA not before: Tue 16 Sep 2025 05:50:57 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 25743 IP address blocks: 103.221.12.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7979 (0x1f2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 16 05:50:57 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=9A5A2E545AFBEDEB5E135576EA57E4F823A0F80C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:eb:60:71:1b:d1:2d:9f:3b:d0:db:80:17:68: cd:df:76:22:7e:d5:db:20:9f:09:e9:32:6b:3f:46: 53:12:72:91:26:06:20:7e:a1:8b:78:8f:3a:e7:a7: 0e:8f:31:06:c8:7d:91:2c:2a:d0:2d:66:85:66:bd: 50:f9:b8:c1:59:7e:f0:5a:03:26:6a:5d:0d:ba:53: df:d7:24:c4:db:a3:81:0b:ea:88:5c:20:a8:47:f3: 03:19:26:46:5c:ba:52:05:04:4e:62:1b:d7:5c:ae: af:a2:27:47:4d:23:81:2d:82:33:f2:90:04:36:23: 9e:8a:1d:f1:fa:68:83:5c:ee:86:84:87:1d:a5:a8: ef:6a:a9:75:30:2f:ff:1b:3d:eb:df:bd:86:3c:98: 51:8d:77:6e:14:77:15:6c:4f:a8:3b:8c:aa:f1:78: 2d:fa:fb:b2:7d:cb:2b:7b:95:26:32:58:16:26:d1: 9c:df:b0:19:e6:7a:dd:45:66:ea:c9:44:b8:ab:15: 6c:af:d3:08:98:88:6c:93:1d:23:59:17:61:89:d1: 3f:df:2e:98:56:39:3b:b9:cb:a8:17:1a:e0:40:4f: be:8d:69:f6:b3:c6:9c:70:58:e3:d2:29:bd:e2:bf: 97:72:7d:ef:8f:19:ce:56:01:59:6f:7d:04:51:7b: 9d:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:5A:2E:54:5A:FB:ED:EB:5E:13:55:76:EA:57:E4:F8:23:A0:F8:0C X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/mlouVFr77eteE1V26lfk-COg-Aw.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.12.0/22 Signature Algorithm: sha256WithRSAEncryption 0c:4b:d9:58:aa:f7:93:b5:52:7e:82:b3:e1:a1:01:83:c2:77: d5:62:58:70:89:22:91:e4:09:d5:f1:81:1b:1c:cb:21:cb:79: ca:bf:c2:81:55:17:f4:a0:b9:9a:0d:58:e5:b6:fd:ed:b0:3b: c0:87:68:4f:5d:4c:cf:0d:a2:c8:4c:b3:8b:70:20:f4:d6:39: 15:c5:7d:4c:9a:45:f5:a2:6a:9e:90:5a:dd:1b:72:1f:dc:82: 18:89:47:9c:eb:ec:9f:fd:47:c7:c8:fa:e6:de:37:47:5c:1c: 2b:2e:a6:19:19:78:d8:e4:92:3a:61:a0:83:43:61:e2:4c:f9: 34:5a:70:b4:1a:47:c5:4b:17:dc:87:fe:56:d4:61:d0:ae:82: b5:65:7f:1e:ad:91:24:f1:87:c0:60:cd:04:fa:45:53:fc:31: e0:ac:5b:af:da:25:7f:7a:c5:ae:76:d1:aa:92:6f:7c:eb:88: eb:71:60:df:90:24:bb:df:96:03:2a:33:0c:b6:a1:21:75:82: 3b:f3:74:6a:90:24:e8:b1:55:7f:c7:34:9d:d8:95:6b:46:b8: 37:ce:c8:76:49:85:92:ff:71:ee:db:c9:6d:f7:01:26:5d:3b: 82:e9:1b:f2:3a:b4:9e:72:7f:0d:57:d8:0d:7d:23:59:86:af: f3:1a:7e:35 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHyswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTYw NTUwNTdaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDlBNUEyRTU0NUFGQkVE RUI1RTEzNTU3NkVBNTdFNEY4MjNBMEY4MEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDB62BxG9EtnzvQ24AXaM3fdiJ+1dsgnwnpMms/RlMScpEmBiB+ oYt4jzrnpw6PMQbIfZEsKtAtZoVmvVD5uMFZfvBaAyZqXQ26U9/XJMTbo4EL6ohc IKhH8wMZJkZculIFBE5iG9dcrq+iJ0dNI4EtgjPykAQ2I56KHfH6aINc7oaEhx2l qO9qqXUwL/8bPevfvYY8mFGNd24UdxVsT6g7jKrxeC36+7J9yyt7lSYyWBYm0Zzf sBnmet1FZurJRLirFWyv0wiYiGyTHSNZF2GJ0T/fLphWOTu5y6gXGuBAT76Nafaz xpxwWOPSKb3iv5dyfe+PGc5WAVlvfQRRe52VAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUmlouVFr77eteE1V26lfk+COg+AwwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L21sb3VWRnI3N2V0ZUUx VjI2bGZrLUNPZy1Bdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJn3QwwDQYJKoZIhvcNAQELBQADggEBAAxL2Viq95O1Un6Cs+GhAYPCd9ViWHCJ IpHkCdXxgRscyyHLecq/woFVF/SguZoNWOW2/e2wO8CHaE9dTM8NoshMs4twIPTW ORXFfUyaRfWiap6QWt0bch/cghiJR5zr7J/9R8fI+ubeN0dcHCsuphkZeNjkkjph oINDYeJM+TRacLQaR8VLF9yH/lbUYdCugrVlfx6tkSTxh8BgzQT6RVP8MeCsW6/a JX96xa520aqSb3zriOtxYN+QJLvflgMqMwy2oSF1gjvzdGqQJOixVX/HNJ3YlWtG uDfOyHZJhZL/ce7byW33ASZdO4LpG/I6tJ5yfw1X2A19I1mGr/MafjU= -----END CERTIFICATE-----Generated at Mon Oct 20 13:30:48 2025 by rpki-client