$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/pW7j9jK-P0b1byT8mj1aH8pj5hE.roa File: pW7j9jK-P0b1byT8mj1aH8pj5hE.roa (raw, json) Hash identifier: gYGTl66P07RZsvWMGNMq21Ty1HyJEjIZlsnGxw8FHyQ= Subject key identifier: A5:6E:E3:F6:32:BE:3F:46:F5:6F:24:FC:9A:3D:5A:1F:CA:63:E6:11 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1E4B Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/pW7j9jK-P0b1byT8mj1aH8pj5hE.roa Signing time: Sat 13 Sep 2025 03:05:00 +0000 ROA not before: Sat 13 Sep 2025 03:05:00 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 139259 IP address blocks: 103.221.12.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7755 (0x1e4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:05:00 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=A56EE3F632BE3F46F56F24FC9A3D5A1FCA63E611 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:4d:47:c8:99:f0:9a:6d:5d:ea:a5:29:c3:28: 71:2f:38:c2:a7:31:b6:8a:c3:16:75:f4:ef:ef:18: 03:84:4f:b2:44:57:de:62:a2:31:56:94:0d:c5:73: 8e:9a:9a:68:47:1f:96:c6:b4:b7:91:2e:0d:88:f5: 71:aa:1e:4e:fa:1a:eb:ef:fb:9d:02:71:82:88:e2: 24:46:fd:47:de:bc:53:b8:e8:50:d1:32:4c:e6:16: c0:db:7d:e3:6a:08:fa:9a:38:3e:69:c2:d3:b2:50: 2d:e6:71:1c:49:40:9b:a4:5c:c9:64:a0:7c:63:3a: ee:07:92:a6:9b:fa:98:39:40:27:43:29:d4:7e:a3: ee:cf:d6:f3:8d:1f:17:a1:1b:3b:2f:30:65:ac:38: ee:e0:97:35:32:af:0e:a5:b6:41:4f:02:34:09:cf: f6:ab:5a:fe:b9:1b:26:8e:55:d8:b5:53:78:77:7b: 3a:34:8e:a8:b0:6b:3a:fe:c4:c1:07:39:98:e9:e7: 5c:a2:1e:0a:9a:a1:2f:80:1b:50:bf:27:74:7f:5e: c2:56:f5:a4:c0:b9:67:57:e2:e8:b4:19:0e:0f:89: e8:84:da:40:41:2e:1b:a1:be:d9:69:d0:20:bb:ff: b6:a5:50:50:4d:56:8d:85:36:af:75:6f:cd:2b:f3: f4:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:6E:E3:F6:32:BE:3F:46:F5:6F:24:FC:9A:3D:5A:1F:CA:63:E6:11 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/pW7j9jK-P0b1byT8mj1aH8pj5hE.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.12.0/24 Signature Algorithm: sha256WithRSAEncryption d4:7a:75:ef:91:72:a4:f3:8f:c2:cb:d1:97:5a:12:d3:26:d0: d8:11:3c:e4:16:ff:8a:16:57:ed:92:06:42:39:1c:79:76:33: 44:5e:d7:94:ca:cd:75:3b:21:b1:41:b2:a3:3d:82:2d:5e:6c: 33:88:95:9c:6a:61:82:32:27:3d:56:e9:f3:6c:c5:6a:be:f2: 9e:db:23:a7:9f:17:65:54:1d:82:be:49:d8:34:3b:dd:bc:01: de:bb:94:75:c6:81:54:31:70:17:80:b4:10:0e:1e:82:e9:7d: 86:c2:4f:12:7d:b2:fc:67:83:07:f2:bb:d5:8b:b0:02:ef:40: e6:2c:49:d6:86:37:39:ed:29:65:3b:3d:f7:db:92:23:83:9d: 79:1e:ce:6e:36:0c:f9:98:f9:aa:9f:ba:c3:eb:59:38:b7:29: 3b:e1:4c:22:6c:ae:89:46:8c:6d:3b:bf:b4:70:4d:4b:71:f0: c3:82:f8:fa:38:db:25:8a:27:45:d6:a7:21:85:53:39:32:a6: 9a:68:59:ab:9c:ab:3b:63:eb:b2:b4:11:e4:b1:9d:95:df:1c: ba:94:37:36:fb:e0:68:ae:9c:f8:9c:c2:8c:ab:2f:e5:04:fb: 32:0d:a8:75:38:07:5e:45:65:35:c0:a9:9c:aa:4a:c8:43:ec: 49:0b:64:64 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHkswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA1MDBaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEE1NkVFM0Y2MzJCRTNG NDZGNTZGMjRGQzlBM0Q1QTFGQ0E2M0U2MTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFTUfImfCabV3qpSnDKHEvOMKnMbaKwxZ19O/vGAOET7JEV95i ojFWlA3Fc46ammhHH5bGtLeRLg2I9XGqHk76Guvv+50CcYKI4iRG/UfevFO46FDR MkzmFsDbfeNqCPqaOD5pwtOyUC3mcRxJQJukXMlkoHxjOu4Hkqab+pg5QCdDKdR+ o+7P1vONHxehGzsvMGWsOO7glzUyrw6ltkFPAjQJz/arWv65GyaOVdi1U3h3ezo0 jqiwazr+xMEHOZjp51yiHgqaoS+AG1C/J3R/XsJW9aTAuWdX4ui0GQ4PieiE2kBB Lhuhvtlp0CC7/7alUFBNVo2FNq91b80r8/QdAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUpW7j9jK+P0b1byT8mj1aH8pj5hEwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L3BXN2o5akstUDBiMWJ5 VDhtajFhSDhwajVoRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn3QwwDQYJKoZIhvcNAQELBQADggEBANR6de+RcqTzj8LL0ZdaEtMm0NgRPOQW /4oWV+2SBkI5HHl2M0Re15TKzXU7IbFBsqM9gi1ebDOIlZxqYYIyJz1W6fNsxWq+ 8p7bI6efF2VUHYK+Sdg0O928Ad67lHXGgVQxcBeAtBAOHoLpfYbCTxJ9svxngwfy u9WLsALvQOYsSdaGNzntKWU7PffbkiODnXkezm42DPmY+aqfusPrWTi3KTvhTCJs rolGjG07v7RwTUtx8MOC+Po42yWKJ0XWpyGFUzkypppoWaucqztj67K0EeSxnZXf HLqUNzb74GiunPicwoyrL+UE+zINqHU4B15FZTXAqZyqSshD7EkLZGQ= -----END CERTIFICATE-----Generated at Mon Oct 20 13:30:59 2025 by rpki-client