$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/povjaPxzzdCmDz7rzDgF4iy3Qd0.roa File: povjaPxzzdCmDz7rzDgF4iy3Qd0.roa (raw, json) Hash identifier: me6xgE8YWlTZiH+cT4E5NjVuhiFJwMJ4V1vl5nxN6a8= Subject key identifier: A6:8B:E3:68:FC:73:CD:D0:A6:0F:3E:EB:CC:38:05:E2:2C:B7:41:DD Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1DE7 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/povjaPxzzdCmDz7rzDgF4iy3Qd0.roa Signing time: Sat 13 Sep 2025 03:04:41 +0000 ROA not before: Sat 13 Sep 2025 03:04:41 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 139259 IP address blocks: 45.252.36.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7655 (0x1de7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:04:41 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=A68BE368FC73CDD0A60F3EEBCC3805E22CB741DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:0a:f1:e8:2f:8d:8c:a9:88:89:14:29:53:81: ac:61:6a:d2:62:83:2b:c6:c8:ea:cc:43:9c:d7:ab: 89:ae:6f:ba:4e:ff:b3:c5:e2:c9:5a:1f:48:29:04: 7a:31:6a:ec:38:c8:69:c1:76:13:8c:94:9d:fc:d8: ee:4a:64:f7:d5:75:bc:43:bf:42:9f:59:f8:ba:06: 18:2f:ef:4d:ab:90:f4:60:a2:59:34:5c:58:92:ea: ab:80:52:b0:9d:7e:1f:c8:98:47:1a:42:86:c2:3f: c9:15:52:42:cd:f6:33:7e:9b:fe:01:ce:65:cb:65: 81:e4:80:fc:6f:ea:24:3c:2f:68:3b:f1:89:db:ce: 43:c6:f4:a1:f7:e4:18:71:d9:98:2e:2d:40:e5:94: 6e:04:d6:ff:50:57:5d:db:32:00:be:f7:a2:c1:d1: 32:b0:25:de:7e:b2:0a:55:72:b2:e1:e7:f4:70:d2: c6:68:49:45:d6:36:6b:4d:c6:59:b7:cb:bf:6e:01: fc:34:c9:62:4d:95:e9:45:50:27:0f:83:71:8e:ba: 78:38:c1:7c:c4:30:e3:08:91:a7:fb:d1:9b:73:30: dc:9e:d5:1a:b7:c4:85:0c:c3:21:52:87:0c:a5:d7: d2:f2:ce:ee:b1:bd:5d:ba:ad:17:89:c4:58:11:22: 31:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:8B:E3:68:FC:73:CD:D0:A6:0F:3E:EB:CC:38:05:E2:2C:B7:41:DD X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/povjaPxzzdCmDz7rzDgF4iy3Qd0.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 45.252.36.0/22 Signature Algorithm: sha256WithRSAEncryption 63:fd:f0:b9:5e:78:73:de:5a:8d:c6:a5:eb:2b:69:7b:08:c3: b1:d5:66:d1:d7:c7:c5:44:0d:bb:7b:3f:4a:c8:b8:40:6b:ae: c5:92:48:06:3a:b7:d7:a2:11:a1:78:18:8d:2c:59:e1:df:e8: 1a:ca:f2:56:c5:cc:71:c7:50:9a:49:af:57:9c:c7:e1:d8:ec: 9e:89:8c:92:bf:a9:4d:7e:08:d7:e5:9d:37:f8:5b:4f:19:6e: 30:4e:f5:29:14:b3:6f:09:2a:33:2b:ac:68:42:48:db:2b:6f: 99:c0:c1:a2:5d:bc:0a:cc:d9:6a:8f:68:b5:a0:64:81:08:dd: 34:57:86:8c:07:63:4c:d4:51:d5:20:1f:d6:0f:85:d3:b9:94: 9a:9a:92:bf:65:2d:5b:2a:ea:6d:c0:6e:0b:f9:ec:17:35:0b: 63:f4:e8:52:f8:1a:ec:21:cf:47:ca:d5:69:3f:43:58:6a:e2: 07:36:ad:51:6d:e6:43:27:e5:1f:55:d2:a0:c1:b2:45:81:b7: b6:60:9d:65:fb:8c:9c:b1:21:f2:82:8f:38:27:38:8b:9a:ed: 9e:04:c7:90:44:fb:61:0b:4d:94:8e:dc:75:86:2e:aa:50:c2: 9a:99:32:cc:16:41:76:75:b1:74:f5:ac:cc:37:db:0d:bc:63: d7:6b:c3:db -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHecwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA0NDFaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEE2OEJFMzY4RkM3M0NE RDBBNjBGM0VFQkNDMzgwNUUyMkNCNzQxREQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCdCvHoL42MqYiJFClTgaxhatJigyvGyOrMQ5zXq4mub7pO/7PF 4slaH0gpBHoxauw4yGnBdhOMlJ382O5KZPfVdbxDv0KfWfi6Bhgv702rkPRgolk0 XFiS6quAUrCdfh/ImEcaQobCP8kVUkLN9jN+m/4BzmXLZYHkgPxv6iQ8L2g78Ynb zkPG9KH35Bhx2ZguLUDllG4E1v9QV13bMgC+96LB0TKwJd5+sgpVcrLh5/Rw0sZo SUXWNmtNxlm3y79uAfw0yWJNlelFUCcPg3GOung4wXzEMOMIkaf70ZtzMNye1Rq3 xIUMwyFShwyl19Lyzu6xvV26rReJxFgRIjG7AgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUpovjaPxzzdCmDz7rzDgF4iy3Qd0wHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L3BvdmphUHh6emRDbUR6 N3J6RGdGNGl5M1FkMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAIt/CQwDQYJKoZIhvcNAQELBQADggEBAGP98LleeHPeWo3GpesraXsIw7HVZtHX x8VEDbt7P0rIuEBrrsWSSAY6t9eiEaF4GI0sWeHf6BrK8lbFzHHHUJpJr1ecx+HY 7J6JjJK/qU1+CNflnTf4W08ZbjBO9SkUs28JKjMrrGhCSNsrb5nAwaJdvArM2WqP aLWgZIEI3TRXhowHY0zUUdUgH9YPhdO5lJqakr9lLVsq6m3Abgv57Bc1C2P06FL4 Guwhz0fK1Wk/Q1hq4gc2rVFt5kMn5R9V0qDBskWBt7ZgnWX7jJyxIfKCjzgnOIua 7Z4Ex5BE+2ELTZSO3HWGLqpQwpqZMswWQXZ1sXT1rMw32w28Y9drw9s= -----END CERTIFICATE-----Generated at Mon Oct 20 13:13:37 2025 by rpki-client