$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/q7xWRWICW24gtpxBbqS8DgmZFPo.roa File: q7xWRWICW24gtpxBbqS8DgmZFPo.roa (raw, json) Hash identifier: MN6mXQC7J4T+PXjeT/k4AIdGjSJdHwFGQ/l0yraHYHE= Subject key identifier: AB:BC:56:45:62:02:5B:6E:20:B6:9C:41:6E:A4:BC:0E:09:99:14:FA Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1E54 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/q7xWRWICW24gtpxBbqS8DgmZFPo.roa Signing time: Sat 13 Sep 2025 03:05:03 +0000 ROA not before: Sat 13 Sep 2025 03:05:03 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 139259 IP address blocks: 45.252.16.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7764 (0x1e54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:05:03 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=ABBC564562025B6E20B69C416EA4BC0E099914FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:95:0c:af:b0:cc:19:a8:26:ba:57:c4:31:1b: c3:b6:81:37:da:83:41:ef:84:9c:05:58:b2:d0:29: 49:54:84:f8:1e:b4:ec:b4:36:78:7e:52:c2:9f:75: 80:27:e2:df:94:2d:ae:b8:f5:64:3c:6a:81:e9:07: d3:bf:85:de:5c:89:a7:1e:36:4c:30:32:9a:06:ad: 73:0d:f9:16:55:39:74:65:af:99:19:ba:a8:28:ed: d3:51:8b:bf:66:fd:71:ef:b2:f9:b4:36:c9:bb:a6: aa:c8:d7:56:29:ad:2a:40:02:a0:3f:25:3d:1b:79: 7b:94:bc:61:7f:21:2c:e5:a2:21:26:55:bd:de:d6: e4:33:4e:3a:8b:d2:02:ef:33:e0:72:3c:7d:00:f9: 40:17:51:85:a1:ef:49:bc:c9:b3:1a:dc:88:59:44: 27:86:2b:af:9c:06:60:ff:dc:b6:77:5c:76:14:37: 4e:c5:18:01:18:6b:5f:82:dd:d6:42:cd:85:cc:be: 9d:c7:6e:d6:35:d1:31:43:b1:96:e1:c4:4e:93:29: cf:3e:4a:e9:db:69:3e:c2:1d:74:3e:a6:d9:59:e6: 73:35:a2:e3:01:03:2b:5e:b9:7a:56:f3:4d:2f:6a: 9c:d5:2e:e4:c2:95:ed:04:45:d6:ac:bd:c6:65:51: f0:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:BC:56:45:62:02:5B:6E:20:B6:9C:41:6E:A4:BC:0E:09:99:14:FA X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/q7xWRWICW24gtpxBbqS8DgmZFPo.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 45.252.16.0/22 Signature Algorithm: sha256WithRSAEncryption 2d:0e:19:10:fb:94:ff:40:2d:b2:a8:97:6f:23:d1:61:a7:d3: 27:3d:32:a6:99:91:b3:80:12:47:5e:0b:c7:32:50:7f:a8:39: 8d:b6:87:58:eb:a1:2b:91:e8:ec:c5:ed:a6:72:82:11:05:1e: 73:4f:0a:28:c8:eb:b8:f0:25:8a:68:07:20:f7:18:bd:2a:37: c6:ec:f2:8b:6d:b8:e0:e5:57:32:b7:88:c7:88:f9:80:61:33: 68:89:b9:62:7d:1b:60:ac:fe:d9:ed:2e:64:41:e3:ab:84:35: 58:d7:c1:1d:55:94:35:cd:d1:d0:23:7e:a2:b7:de:aa:50:40: 5a:27:7b:c9:17:0a:64:0c:28:03:a9:33:2d:37:fa:b6:7b:d9: 18:7a:95:66:75:a9:5a:68:09:fe:05:01:84:7d:df:16:84:97: b6:a7:81:bd:81:12:17:c9:4b:8f:cc:0f:d0:02:01:6a:b3:85: f7:69:59:4e:2a:b5:b8:cf:d2:60:e1:bc:af:fe:26:f1:61:22: 07:4b:bc:ed:45:33:92:22:d0:5b:9b:90:b3:e9:a9:48:31:e5: 40:da:73:e6:a0:1a:b4:0d:f5:01:c3:0f:88:67:e6:e0:2d:4b: 6c:1b:d9:2c:c2:1a:95:20:eb:3c:4d:de:20:d5:12:06:43:a6: e3:ef:e4:fc -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHlQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA1MDNaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEFCQkM1NjQ1NjIwMjVC NkUyMEI2OUM0MTZFQTRCQzBFMDk5OTE0RkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5lQyvsMwZqCa6V8QxG8O2gTfag0HvhJwFWLLQKUlUhPgetOy0 Nnh+UsKfdYAn4t+ULa649WQ8aoHpB9O/hd5ciaceNkwwMpoGrXMN+RZVOXRlr5kZ uqgo7dNRi79m/XHvsvm0Nsm7pqrI11YprSpAAqA/JT0beXuUvGF/ISzloiEmVb3e 1uQzTjqL0gLvM+ByPH0A+UAXUYWh70m8ybMa3IhZRCeGK6+cBmD/3LZ3XHYUN07F GAEYa1+C3dZCzYXMvp3HbtY10TFDsZbhxE6TKc8+SunbaT7CHXQ+ptlZ5nM1ouMB AyteuXpW800vapzVLuTCle0ERdasvcZlUfAHAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUq7xWRWICW24gtpxBbqS8DgmZFPowHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L3E3eFdSV0lDVzI0Z3Rw eEJicVM4RGdtWkZQby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAIt/BAwDQYJKoZIhvcNAQELBQADggEBAC0OGRD7lP9ALbKol28j0WGn0yc9MqaZ kbOAEkdeC8cyUH+oOY22h1jroSuR6OzF7aZyghEFHnNPCijI67jwJYpoByD3GL0q N8bs8ottuODlVzK3iMeI+YBhM2iJuWJ9G2Cs/tntLmRB46uENVjXwR1VlDXN0dAj fqK33qpQQFone8kXCmQMKAOpMy03+rZ72Rh6lWZ1qVpoCf4FAYR93xaEl7angb2B EhfJS4/MD9ACAWqzhfdpWU4qtbjP0mDhvK/+JvFhIgdLvO1FM5Ii0FubkLPpqUgx 5UDac+agGrQN9QHDD4hn5uAtS2wb2SzCGpUg6zxN3iDVEgZDpuPv5Pw= -----END CERTIFICATE-----Generated at Mon Oct 20 13:13:35 2025 by rpki-client