$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/pEDDsdERV-EInR9CntUwtAlkPZ0.roa File: pEDDsdERV-EInR9CntUwtAlkPZ0.roa (raw, json) Hash identifier: OVliYY2lAP5ZgfU4LUvJQRUZoAKOl0DRiWjxznrh2tM= Subject key identifier: A4:40:C3:B1:D1:11:57:E1:08:9D:1F:42:9E:D5:30:B4:09:64:3D:9D Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1E3A Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/pEDDsdERV-EInR9CntUwtAlkPZ0.roa Signing time: Sat 13 Sep 2025 03:04:56 +0000 ROA not before: Sat 13 Sep 2025 03:04:56 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 13444 IP address blocks: 103.221.44.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7738 (0x1e3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:04:56 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=A440C3B1D11157E1089D1F429ED530B409643D9D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:7a:0a:f9:85:59:57:ff:ed:0b:80:55:ce:51: 24:a3:ea:da:26:ac:2a:bf:c5:4b:b6:c1:8b:bf:42: f8:0e:07:b1:d8:39:e9:89:8f:8e:98:7f:b2:24:96: 33:97:2d:e8:b4:9f:38:61:33:7b:0a:6e:18:0e:d0: 2b:b5:08:6d:4e:04:28:92:6e:9d:52:50:e6:22:07: 89:e1:a1:40:e6:db:1c:de:78:ff:10:c2:49:ce:38: 1e:7e:7c:b2:85:b7:c1:a2:e3:4c:95:dd:f5:d5:8b: 22:0c:ba:30:4d:01:b3:2f:28:43:71:40:7f:65:78: a2:a4:3e:fe:c2:e8:38:3e:bb:72:76:f0:9a:52:eb: 89:83:06:26:57:0b:d0:a7:dd:5d:7b:d8:66:fb:65: 7d:e6:c4:3f:75:2a:b9:d0:93:ab:44:c5:d5:e4:b2: 17:19:39:3d:f9:79:17:d9:67:d6:44:49:94:7b:b5: e6:1e:0d:19:4b:da:b4:11:5a:86:9b:a6:b2:b3:e7: d0:e4:87:2d:75:86:84:60:d1:f4:1c:1c:48:60:00: 51:34:df:4e:7f:98:28:50:c6:d0:a1:2a:6e:88:f6: 59:8d:d4:61:3a:cd:52:de:17:73:e0:7f:58:9d:1d: ca:69:57:f9:f1:c1:44:c1:97:be:fd:96:46:82:3c: 4d:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:40:C3:B1:D1:11:57:E1:08:9D:1F:42:9E:D5:30:B4:09:64:3D:9D X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/pEDDsdERV-EInR9CntUwtAlkPZ0.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.44.0/24 Signature Algorithm: sha256WithRSAEncryption ad:bd:ae:05:2a:dc:46:9d:87:82:bf:a3:88:9c:91:c1:4f:e0: b0:67:97:4c:ea:9f:eb:52:b0:11:c3:d1:15:09:6b:39:28:a4: ad:8f:f9:56:d8:e8:9b:a7:1b:86:1f:8c:c2:2b:6b:3e:2e:fd: 9c:7d:91:a7:7b:17:c3:34:c6:1c:5d:54:4d:40:36:cb:08:ee: 08:51:1e:f5:56:70:fb:6b:99:b7:dc:b7:bd:5c:83:25:80:d4: cb:e9:2b:95:c1:6e:db:d8:ee:30:e8:55:e2:be:2e:81:ec:5b: 8f:d6:47:a0:cd:93:2f:e6:d5:21:36:8d:a8:80:88:9f:63:00: 84:b5:a5:ff:10:3e:3c:29:f2:99:0c:50:f6:f0:67:8b:fa:5d: c3:09:fc:d3:f1:48:dc:fe:54:bb:1a:45:c1:42:0a:ab:13:43: b7:c6:b6:ed:a3:78:b4:d7:b7:25:ff:63:56:9e:a6:02:16:c2: ee:34:91:9c:d5:1d:35:7a:f3:26:9c:10:59:99:ea:29:05:66: 89:03:ac:9f:54:22:f1:5e:07:f7:7a:8e:c4:d9:5d:cc:59:0e: 29:ce:e9:8d:65:20:b0:50:87:05:85:86:eb:b8:77:ed:a7:33: 4c:a3:4c:96:a3:62:90:92:cb:0a:11:89:a9:88:77:4e:de:2d: 58:29:ca:5d -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHjowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA0NTZaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEE0NDBDM0IxRDExMTU3 RTEwODlEMUY0MjlFRDUzMEI0MDk2NDNEOUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8egr5hVlX/+0LgFXOUSSj6tomrCq/xUu2wYu/QvgOB7HYOemJ j46Yf7IkljOXLei0nzhhM3sKbhgO0Cu1CG1OBCiSbp1SUOYiB4nhoUDm2xzeeP8Q wknOOB5+fLKFt8Gi40yV3fXViyIMujBNAbMvKENxQH9leKKkPv7C6Dg+u3J28JpS 64mDBiZXC9Cn3V172Gb7ZX3mxD91KrnQk6tExdXkshcZOT35eRfZZ9ZESZR7teYe DRlL2rQRWoabprKz59Dkhy11hoRg0fQcHEhgAFE0305/mChQxtChKm6I9lmN1GE6 zVLeF3Pgf1idHcppV/nxwUTBl779lkaCPE0TAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUpEDDsdERV+EInR9CntUwtAlkPZ0wHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L3BFRERzZEVSVi1FSW5S OUNudFV3dEFsa1BaMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn3SwwDQYJKoZIhvcNAQELBQADggEBAK29rgUq3Eadh4K/o4ickcFP4LBnl0zq n+tSsBHD0RUJazkopK2P+VbY6JunG4YfjMIraz4u/Zx9kad7F8M0xhxdVE1ANssI 7ghRHvVWcPtrmbfct71cgyWA1MvpK5XBbtvY7jDoVeK+LoHsW4/WR6DNky/m1SE2 jaiAiJ9jAIS1pf8QPjwp8pkMUPbwZ4v6XcMJ/NPxSNz+VLsaRcFCCqsTQ7fGtu2j eLTXtyX/Y1aepgIWwu40kZzVHTV68yacEFmZ6ikFZokDrJ9UIvFeB/d6jsTZXcxZ DinO6Y1lILBQhwWFhuu4d+2nM0yjTJajYpCSywoRiamId07eLVgpyl0= -----END CERTIFICATE-----Generated at Mon Oct 20 12:50:52 2025 by rpki-client