$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/r9w4E1GPa3ZlWNn8TD4Re6vRQU0.roa File: r9w4E1GPa3ZlWNn8TD4Re6vRQU0.roa (raw, json) Hash identifier: gQdReiBKb7y02DpPObufqaS+76DjQ6ICx6u7AYNYjnk= Subject key identifier: AF:DC:38:13:51:8F:6B:76:65:58:D9:FC:4C:3E:11:7B:AB:D1:41:4D Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1E3F Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/r9w4E1GPa3ZlWNn8TD4Re6vRQU0.roa Signing time: Sat 13 Sep 2025 03:04:57 +0000 ROA not before: Sat 13 Sep 2025 03:04:57 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 139259 IP address blocks: 103.221.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 00:35:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7743 (0x1e3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:04:57 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=AFDC3813518F6B766558D9FC4C3E117BABD1414D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:a6:c9:32:62:59:8c:ec:93:5f:55:d4:49:3d: 80:0c:9f:1a:b5:92:fb:b8:5e:f3:4c:f8:8f:2c:b1: 25:66:12:2e:86:97:3b:9a:21:90:64:7f:a8:f3:50: df:3c:4a:46:0e:77:ea:d5:9e:24:50:30:72:78:16: 06:d6:07:6b:7b:7d:38:67:69:c7:be:3a:2e:46:91: fa:a7:bc:a7:db:bf:51:33:69:25:3d:6c:a7:42:72: 44:b5:03:57:82:31:f4:63:a0:29:86:e1:87:4d:69: 57:fc:63:78:69:dc:97:de:aa:bd:a8:99:7a:8a:72: 7e:65:d6:40:e4:82:b8:bd:40:d9:fe:e4:9f:f4:f4: 83:76:3b:9d:fc:9a:b1:67:83:d8:23:52:52:1f:2c: 02:b5:55:1e:15:df:b6:15:d8:81:71:25:10:fb:80: a5:ab:2d:b1:72:6e:2d:d2:d0:95:0d:40:5f:61:53: 03:66:61:d7:fd:51:ea:52:92:91:1b:67:16:d4:f8: 60:22:da:e7:5f:1d:77:0d:86:fb:e2:8d:4b:17:b7: 3d:25:93:63:bf:0b:59:bb:82:ff:33:4a:0e:e2:99: ba:6e:84:db:38:34:2b:8b:17:e6:57:11:2a:5a:1f: e4:0c:cf:51:7b:24:01:d8:f7:fe:e1:b3:4d:6b:42: 4e:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:DC:38:13:51:8F:6B:76:65:58:D9:FC:4C:3E:11:7B:AB:D1:41:4D X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/r9w4E1GPa3ZlWNn8TD4Re6vRQU0.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.36.0/24 Signature Algorithm: sha256WithRSAEncryption 61:0a:ab:82:7a:b3:0e:ae:a6:46:4d:92:61:8d:7b:16:01:0c: 83:92:7d:7e:be:72:3b:d6:68:2d:dc:5f:a7:52:df:57:f3:68: b1:e8:14:6b:10:f4:a4:c1:1a:9e:54:4a:58:64:52:c2:61:a0: 24:37:b6:90:01:52:2c:a2:f3:05:81:c1:7e:c4:fe:df:16:ca: 17:df:96:5c:87:41:88:b3:17:81:c5:91:07:7b:42:be:14:d2: ce:d1:7f:2b:d1:82:c3:a0:50:03:93:d5:e3:f6:b3:9d:3d:44: 71:c5:41:a1:8f:8f:8d:bb:67:a4:4b:ed:c0:a3:28:99:f2:40: e9:83:25:42:46:fa:86:e8:ac:26:ba:38:d1:d9:ec:a1:53:3d: cb:b8:10:4e:01:d3:f9:4d:06:fe:42:73:68:10:6a:c3:79:7b: 5a:f9:68:7f:93:f5:9e:90:11:d8:60:aa:a7:b2:80:38:db:85: 03:42:53:22:e3:cc:06:a1:99:7b:14:f1:41:95:57:4d:bf:e7: 80:45:b5:8c:3a:01:95:32:06:71:3f:9e:9d:fe:9d:cc:1d:f1: 4c:e5:8b:ea:b3:33:03:74:a5:d0:4f:a6:2f:c0:60:84:f5:28: a0:ce:81:47:a2:60:49:07:6d:a3:26:a2:75:43:25:e9:77:95: 87:1b:56:a8 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHj8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA0NTdaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEFGREMzODEzNTE4RjZC NzY2NTU4RDlGQzRDM0UxMTdCQUJEMTQxNEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3pskyYlmM7JNfVdRJPYAMnxq1kvu4XvNM+I8ssSVmEi6Glzua IZBkf6jzUN88SkYOd+rVniRQMHJ4FgbWB2t7fThnace+Oi5GkfqnvKfbv1EzaSU9 bKdCckS1A1eCMfRjoCmG4YdNaVf8Y3hp3Jfeqr2omXqKcn5l1kDkgri9QNn+5J/0 9IN2O538mrFng9gjUlIfLAK1VR4V37YV2IFxJRD7gKWrLbFybi3S0JUNQF9hUwNm Ydf9UepSkpEbZxbU+GAi2udfHXcNhvvijUsXtz0lk2O/C1m7gv8zSg7imbpuhNs4 NCuLF+ZXESpaH+QMz1F7JAHY9/7hs01rQk73AgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUr9w4E1GPa3ZlWNn8TD4Re6vRQU0wHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L3I5dzRFMUdQYTNabFdO bjhURDRSZTZ2UlFVMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn3SQwDQYJKoZIhvcNAQELBQADggEBAGEKq4J6sw6upkZNkmGNexYBDIOSfX6+ cjvWaC3cX6dS31fzaLHoFGsQ9KTBGp5USlhkUsJhoCQ3tpABUiyi8wWBwX7E/t8W yhffllyHQYizF4HFkQd7Qr4U0s7RfyvRgsOgUAOT1eP2s509RHHFQaGPj427Z6RL 7cCjKJnyQOmDJUJG+oborCa6ONHZ7KFTPcu4EE4B0/lNBv5Cc2gQasN5e1r5aH+T 9Z6QEdhgqqeygDjbhQNCUyLjzAahmXsU8UGVV02/54BFtYw6AZUyBnE/np3+ncwd 8Uzli+qzMwN0pdBPpi/AYIT1KKDOgUeiYEkHbaMmonVDJel3lYcbVqg= -----END CERTIFICATE-----Generated at Mon Oct 20 23:27:46 2025 by rpki-client