$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/u9Xa8-HstTdYxth4iLtcUoRqMGI.roa File: u9Xa8-HstTdYxth4iLtcUoRqMGI.roa (raw, json) Hash identifier: MXopFWMg+lJJaV0cH/CbbsR+3NtwGnxdvk9TVE9ZZFg= Subject key identifier: BB:D5:DA:F3:E1:EC:B5:37:58:C6:D8:78:88:BB:5C:52:84:6A:30:62 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1E10 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/u9Xa8-HstTdYxth4iLtcUoRqMGI.roa Signing time: Sat 13 Sep 2025 03:04:49 +0000 ROA not before: Sat 13 Sep 2025 03:04:49 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 59083 IP address blocks: 103.10.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7696 (0x1e10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:04:49 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=BBD5DAF3E1ECB53758C6D87888BB5C52846A3062 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:d1:6a:90:b7:46:60:2d:08:f8:e9:0e:35:28: b0:10:cc:33:70:ac:8e:a7:be:7f:66:b3:16:bf:0c: 80:32:f4:20:ba:65:5d:c7:19:34:40:31:a2:84:46: 15:8a:74:a4:66:ba:cf:3b:e1:3a:99:a5:e0:e2:4a: fe:da:6e:b1:c9:13:69:f2:fa:ae:0e:61:13:65:3e: 25:45:e0:8d:ff:53:ce:1e:b7:02:64:52:f4:3e:0e: fe:f3:16:9f:7b:59:59:25:45:2d:ea:21:e5:27:eb: ad:9e:0e:a3:15:c3:5d:dd:c7:43:e4:1c:7d:5f:30: 75:8f:db:c5:0a:b2:4f:6d:b5:80:6e:1f:81:f4:92: bb:28:ff:9a:18:f0:93:fb:9a:20:b4:2b:05:fc:28: 91:b0:49:8b:44:96:73:49:fb:6d:ea:ab:97:8e:a5: 8e:15:b6:f1:ff:50:62:a7:f3:b7:d4:1a:f0:a8:ec: 09:6d:b9:c4:fe:2d:79:97:cb:58:75:d5:18:6f:30: be:54:aa:7d:0a:1c:e1:5b:86:75:f2:78:fc:dd:14: ff:20:47:8d:01:f1:f9:6b:a8:9a:73:98:fc:6f:be: 7b:b4:05:68:49:ff:41:c5:81:8c:0c:bd:42:72:7b: 04:3b:4f:2c:a6:5c:ea:89:87:2e:29:e2:83:df:67: 58:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:D5:DA:F3:E1:EC:B5:37:58:C6:D8:78:88:BB:5C:52:84:6A:30:62 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/u9Xa8-HstTdYxth4iLtcUoRqMGI.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.10.2.0/24 Signature Algorithm: sha256WithRSAEncryption 34:ed:a8:6f:e3:f1:8a:53:52:f0:ce:54:4c:0e:19:3d:41:0e: 33:74:38:10:5d:e0:74:5d:0f:99:87:03:c9:f7:44:96:bb:f4: 4e:b7:69:eb:28:bb:77:7b:83:24:6b:34:f2:9d:d8:b7:5c:38: d6:56:87:9b:c8:cc:7a:9b:74:d2:ed:40:69:68:e9:24:d8:8f: 80:1d:f6:88:8d:58:bb:c6:f2:8a:23:ff:c3:bf:3f:61:e8:05: 61:1c:70:5f:8a:ad:4e:e0:27:7b:05:f4:48:41:16:24:d0:54: 18:a1:a3:58:53:32:f8:cd:2f:c8:c9:ff:d4:46:10:f2:74:a5: a7:79:76:5e:70:7c:11:72:c1:87:48:13:52:09:e9:c9:48:d1: f7:de:4a:28:05:8e:cf:a4:e3:47:65:da:f7:6c:30:31:fd:eb: e9:fc:e8:e2:35:ea:07:4e:12:56:26:4e:e7:02:b7:b3:20:8d: 9f:f7:40:c8:28:6b:b0:13:d4:64:42:a0:94:a1:e6:56:43:d5: a7:bc:27:b2:70:02:41:d8:5b:44:4e:f8:de:81:ab:c2:8b:7a: 3a:cd:88:23:0f:72:14:6f:62:89:eb:55:eb:f4:df:40:62:46: fd:c0:76:40:45:b6:48:67:23:f4:d4:2d:90:89:e7:a7:b8:63: 68:63:db:f7 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHhAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA0NDlaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEJCRDVEQUYzRTFFQ0I1 Mzc1OEM2RDg3ODg4QkI1QzUyODQ2QTMwNjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJ0WqQt0ZgLQj46Q41KLAQzDNwrI6nvn9msxa/DIAy9CC6ZV3H GTRAMaKERhWKdKRmus874TqZpeDiSv7abrHJE2ny+q4OYRNlPiVF4I3/U84etwJk UvQ+Dv7zFp97WVklRS3qIeUn662eDqMVw13dx0PkHH1fMHWP28UKsk9ttYBuH4H0 krso/5oY8JP7miC0KwX8KJGwSYtElnNJ+23qq5eOpY4VtvH/UGKn87fUGvCo7Alt ucT+LXmXy1h11RhvML5Uqn0KHOFbhnXyePzdFP8gR40B8flrqJpzmPxvvnu0BWhJ /0HFgYwMvUJyewQ7TyymXOqJhy4p4oPfZ1hRAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUu9Xa8+HstTdYxth4iLtcUoRqMGIwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L3U5WGE4LUhzdFRkWXh0 aDRpTHRjVW9ScU1HSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnCgIwDQYJKoZIhvcNAQELBQADggEBADTtqG/j8YpTUvDOVEwOGT1BDjN0OBBd 4HRdD5mHA8n3RJa79E63aesou3d7gyRrNPKd2LdcONZWh5vIzHqbdNLtQGlo6STY j4Ad9oiNWLvG8ooj/8O/P2HoBWEccF+KrU7gJ3sF9EhBFiTQVBiho1hTMvjNL8jJ /9RGEPJ0pad5dl5wfBFywYdIE1IJ6clI0ffeSigFjs+k40dl2vdsMDH96+n86OI1 6gdOElYmTucCt7MgjZ/3QMgoa7AT1GRCoJSh5lZD1ae8J7JwAkHYW0RO+N6Bq8KL ejrNiCMPchRvYonrVev030BiRv3AdkBFtkhnI/TULZCJ56e4Y2hj2/c= -----END CERTIFICATE-----Generated at Mon Oct 20 13:18:00 2025 by rpki-client