$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/tL9ttIpEb3kEp_Wzhil0_kIA-NQ.roa File: tL9ttIpEb3kEp_Wzhil0_kIA-NQ.roa (raw, json) Hash identifier: D0FUgdAmdfrgHVy5qLUmd+1B4qkkNK/exyc32aeEV1c= Subject key identifier: B4:BF:6D:B4:8A:44:6F:79:04:A7:F5:B3:86:29:74:FE:42:00:F8:D4 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1EA7 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/tL9ttIpEb3kEp_Wzhil0_kIA-NQ.roa Signing time: Sat 13 Sep 2025 03:05:20 +0000 ROA not before: Sat 13 Sep 2025 03:05:20 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 59083 IP address blocks: 103.5.192.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 00:35:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7847 (0x1ea7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:05:20 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=B4BF6DB48A446F7904A7F5B3862974FE4200F8D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:32:d6:07:1d:37:3b:1d:16:a4:c6:74:39:2e: 46:72:27:f7:41:39:97:4e:7a:c0:ea:20:cd:b1:59: de:6e:2c:84:cd:81:84:a6:f9:c7:4c:18:8a:1c:3c: 05:93:92:ae:57:27:43:c1:21:4e:6d:a7:27:19:1f: 11:03:68:3e:a4:88:42:ba:75:17:6e:53:88:50:be: 0c:f6:53:a0:a2:b5:58:ce:6b:6e:68:92:41:3c:1d: 3f:b2:6b:e6:6e:51:eb:31:9b:04:60:29:e8:88:05: 4b:df:a0:ef:f7:3a:79:e1:07:67:60:80:b8:ff:92: 5e:ef:b4:6a:be:2d:67:74:f4:23:72:a8:77:f6:63: 3a:30:7d:ed:f6:57:6d:79:41:43:66:bb:2e:96:1d: 01:e6:2c:ce:5d:cc:95:c1:41:ff:63:21:cb:1c:9a: b9:43:97:b5:5d:b1:1d:60:65:17:67:f4:d4:7a:ba: bf:2a:bc:0e:51:41:3a:0a:b4:17:1c:53:e3:11:24: 8f:43:77:e7:ee:fc:5f:7e:bd:13:5e:f2:87:57:6d: 37:6c:7e:b5:2e:0c:01:52:ee:a9:37:39:62:46:da: 61:43:7b:50:10:77:53:10:31:0f:91:8b:3f:15:29: f4:ba:05:4a:00:4f:11:48:bf:52:b5:85:45:97:2d: 09:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:BF:6D:B4:8A:44:6F:79:04:A7:F5:B3:86:29:74:FE:42:00:F8:D4 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/tL9ttIpEb3kEp_Wzhil0_kIA-NQ.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.5.192.0/22 Signature Algorithm: sha256WithRSAEncryption db:84:da:6f:e6:2e:63:57:fc:82:0c:32:0a:14:0f:38:70:97: a6:23:89:7c:eb:ad:46:85:e5:72:da:ec:e9:a3:82:bd:ab:ee: b8:d4:57:e3:10:65:41:4a:cf:d4:73:b5:18:98:b5:72:4a:07: 51:ca:a7:30:fe:18:2b:84:74:bb:8e:8d:47:f1:be:78:99:11: ce:4c:6d:ce:43:4c:4d:3a:db:78:86:35:61:f7:c1:0c:83:88: 06:4c:f1:9c:a5:fa:83:a8:45:d3:0e:43:02:59:85:80:3e:ee: 67:10:27:17:70:32:22:d2:7a:d7:76:38:22:2c:a0:ab:df:ca: 2d:62:a3:94:d4:4d:04:e8:70:b7:5f:a9:e2:cf:f6:8e:77:65: f1:1a:55:9b:20:2c:f5:32:eb:5a:c8:a7:d6:0c:c9:48:7e:25: f9:f2:09:f9:5b:ed:6c:e6:94:5a:3b:e4:b9:4e:a0:5c:9b:10: ce:8c:80:db:22:07:f7:c1:25:64:af:6b:37:17:f2:af:5d:1d: a4:f0:4b:9f:dd:46:36:40:8f:ba:c4:73:5c:b5:d7:15:ba:92: 6b:29:b0:3a:df:38:fc:79:70:9e:0b:e9:7a:a0:00:65:0a:0a: e5:46:30:2a:56:4a:41:76:ad:03:3f:7d:01:bb:36:e3:d5:f1: b9:81:5d:14 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHqcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA1MjBaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEI0QkY2REI0OEE0NDZG NzkwNEE3RjVCMzg2Mjk3NEZFNDIwMEY4RDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNMtYHHTc7HRakxnQ5LkZyJ/dBOZdOesDqIM2xWd5uLITNgYSm +cdMGIocPAWTkq5XJ0PBIU5tpycZHxEDaD6kiEK6dRduU4hQvgz2U6CitVjOa25o kkE8HT+ya+ZuUesxmwRgKeiIBUvfoO/3OnnhB2dggLj/kl7vtGq+LWd09CNyqHf2 Yzowfe32V215QUNmuy6WHQHmLM5dzJXBQf9jIcscmrlDl7VdsR1gZRdn9NR6ur8q vA5RQToKtBccU+MRJI9Dd+fu/F9+vRNe8odXbTdsfrUuDAFS7qk3OWJG2mFDe1AQ d1MQMQ+Riz8VKfS6BUoATxFIv1K1hUWXLQlhAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUtL9ttIpEb3kEp/Wzhil0/kIA+NQwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L3RMOXR0SXBFYjNrRXBf V3poaWwwX2tJQS1OUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJnBcAwDQYJKoZIhvcNAQELBQADggEBANuE2m/mLmNX/IIMMgoUDzhwl6YjiXzr rUaF5XLa7Omjgr2r7rjUV+MQZUFKz9RztRiYtXJKB1HKpzD+GCuEdLuOjUfxvniZ Ec5Mbc5DTE0623iGNWH3wQyDiAZM8Zyl+oOoRdMOQwJZhYA+7mcQJxdwMiLSetd2 OCIsoKvfyi1io5TUTQTocLdfqeLP9o53ZfEaVZsgLPUy61rIp9YMyUh+JfnyCflb 7WzmlFo75LlOoFybEM6MgNsiB/fBJWSvazcX8q9dHaTwS5/dRjZAj7rEc1y11xW6 kmspsDrfOPx5cJ4L6XqgAGUKCuVGMCpWSkF2rQM/fQG7NuPV8bmBXRQ= -----END CERTIFICATE-----Generated at Mon Oct 20 23:27:19 2025 by rpki-client