$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/myZCjq7lJbryA05kf0-tEAHEDdY.roa File: myZCjq7lJbryA05kf0-tEAHEDdY.roa (raw, json) Hash identifier: fCXMzeam7wtQ8laAP6UHsOIPPTsv02rfPl/77h8g0dY= Subject key identifier: 9B:26:42:8E:AE:E5:25:BA:F2:03:4E:64:7F:4F:AD:10:01:C4:0D:D6 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1E4F Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/myZCjq7lJbryA05kf0-tEAHEDdY.roa Signing time: Sat 13 Sep 2025 03:05:01 +0000 ROA not before: Sat 13 Sep 2025 03:05:01 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 139259 IP address blocks: 45.252.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7759 (0x1e4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:05:01 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=9B26428EAEE525BAF2034E647F4FAD1001C40DD6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:51:f9:f1:1e:0e:65:29:89:d9:e1:e7:b8:5c: e2:0b:46:db:f6:15:ac:9e:4c:11:83:ac:ee:32:8b: 53:29:a5:f7:21:8a:05:f5:f8:e4:5c:84:60:81:bc: 90:ad:8d:59:8f:b0:ed:13:87:ed:a6:62:d4:e1:99: 2a:d5:85:85:16:3b:26:e6:12:13:6d:7c:36:f0:58: 8f:e3:e8:50:74:3f:f4:90:49:57:22:f2:d7:03:1d: 9c:a5:07:3c:50:ee:4a:4e:10:b8:fc:09:92:ce:65: e4:b9:5b:2e:39:df:fb:4f:a9:39:99:54:1f:3c:1c: d4:64:c0:dd:33:10:d5:82:f4:54:ec:0d:bf:0a:28: 14:c7:6c:e7:16:ec:25:05:9b:0a:ff:63:f5:9a:d6: 2a:3d:8b:45:d9:8a:fe:bf:13:8a:2b:88:8c:43:a1: a4:66:a9:f7:5b:34:0b:1f:11:e3:38:18:8f:ea:f9: ad:87:73:d5:38:8f:65:97:62:45:86:db:95:5a:80: 43:07:c7:04:40:78:ba:2d:c3:d2:31:6d:a7:e8:64: 49:81:7e:c3:38:db:6d:ea:52:8c:95:8e:fe:fd:c7: 2c:29:71:14:3f:70:43:33:a1:b7:b6:2e:75:96:85: a7:41:b1:07:a3:5b:08:12:0c:ee:47:2d:36:2b:3b: 39:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:26:42:8E:AE:E5:25:BA:F2:03:4E:64:7F:4F:AD:10:01:C4:0D:D6 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/myZCjq7lJbryA05kf0-tEAHEDdY.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 45.252.145.0/24 Signature Algorithm: sha256WithRSAEncryption 61:17:be:64:a4:78:6a:ba:45:3b:8a:8e:61:e4:bb:1e:ca:6a: 63:f1:ec:83:2b:a8:f9:75:17:b9:b5:43:cf:34:ce:82:36:20: 14:27:81:ff:8c:72:f0:24:94:68:a8:4c:73:2c:10:a2:78:b3: 93:c2:87:3c:00:9b:87:0f:c9:12:1f:f0:b1:30:be:a2:c2:05: e1:29:25:8d:aa:1b:3b:27:b5:17:cc:74:ff:85:2b:47:19:d4: aa:f7:67:5c:6a:37:d5:47:43:76:c0:9f:35:56:20:03:22:1f: 08:00:ee:66:18:7f:a3:f6:7e:23:a7:81:d6:d3:ea:7d:c6:3b: 8a:b7:ef:56:c8:ea:54:d9:23:b8:66:6b:6c:ee:49:09:b7:bb: 92:dd:5a:18:41:db:c4:d4:61:8a:f1:c8:9f:2a:d7:e4:f2:57: 3f:36:14:6b:40:c4:f7:0b:6a:56:c9:e2:ea:28:73:e5:d4:17: 12:6b:51:a6:0b:56:b0:99:58:da:3c:b9:92:ce:c7:0d:be:11: 87:01:a2:98:be:27:64:d3:fa:77:10:66:b6:f7:f4:9e:a1:f9: ce:8c:9e:94:39:ad:2f:94:24:85:15:b0:09:c8:ef:ec:02:b8: 1f:38:7e:55:83:8d:f6:28:0d:ed:67:5f:2f:fe:3c:b3:e7:b6: cb:91:f9:5b -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHk8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA1MDFaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDlCMjY0MjhFQUVFNTI1 QkFGMjAzNEU2NDdGNEZBRDEwMDFDNDBERDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBUfnxHg5lKYnZ4ee4XOILRtv2FayeTBGDrO4yi1MppfchigX1 +ORchGCBvJCtjVmPsO0Th+2mYtThmSrVhYUWOybmEhNtfDbwWI/j6FB0P/SQSVci 8tcDHZylBzxQ7kpOELj8CZLOZeS5Wy453/tPqTmZVB88HNRkwN0zENWC9FTsDb8K KBTHbOcW7CUFmwr/Y/Wa1io9i0XZiv6/E4oriIxDoaRmqfdbNAsfEeM4GI/q+a2H c9U4j2WXYkWG25VagEMHxwRAeLotw9IxbafoZEmBfsM4223qUoyVjv79xywpcRQ/ cEMzobe2LnWWhadBsQejWwgSDO5HLTYrOzmlAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUmyZCjq7lJbryA05kf0+tEAHEDdYwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L215WkNqcTdsSmJyeUEw NWtmMC10RUFIRURkWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAAt/JEwDQYJKoZIhvcNAQELBQADggEBAGEXvmSkeGq6RTuKjmHkux7KamPx7IMr qPl1F7m1Q880zoI2IBQngf+McvAklGioTHMsEKJ4s5PChzwAm4cPyRIf8LEwvqLC BeEpJY2qGzsntRfMdP+FK0cZ1Kr3Z1xqN9VHQ3bAnzVWIAMiHwgA7mYYf6P2fiOn gdbT6n3GO4q371bI6lTZI7hma2zuSQm3u5LdWhhB28TUYYrxyJ8q1+TyVz82FGtA xPcLalbJ4uooc+XUFxJrUaYLVrCZWNo8uZLOxw2+EYcBopi+J2TT+ncQZrb39J6h +c6MnpQ5rS+UJIUVsAnI7+wCuB84flWDjfYoDe1nXy/+PLPntsuR+Vs= -----END CERTIFICATE-----Generated at Mon Oct 20 13:30:59 2025 by rpki-client