$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/uajiwp_CP4Ai1r9onHl-pGGaKCk.roa File: uajiwp_CP4Ai1r9onHl-pGGaKCk.roa (raw, json) Hash identifier: n16z60aDdSbnLY3g9Xk5lNGw3QwEdhztoNvvXSwVVM4= Subject key identifier: B9:A8:E2:C2:9F:C2:3F:80:22:D6:BF:68:9C:79:7E:A4:61:9A:28:29 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1DE6 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/uajiwp_CP4Ai1r9onHl-pGGaKCk.roa Signing time: Sat 13 Sep 2025 03:04:41 +0000 ROA not before: Sat 13 Sep 2025 03:04:41 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 139259 IP address blocks: 103.221.0.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7654 (0x1de6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:04:41 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=B9A8E2C29FC23F8022D6BF689C797EA4619A2829 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:81:f9:92:10:0d:6e:62:bd:98:be:16:b0:7c: 18:c7:c1:5f:9a:f2:4f:de:9f:69:f0:9f:95:a1:46: e6:39:ca:41:86:79:6c:3e:42:0d:2b:fb:80:20:05: 0a:6c:d7:c0:d8:55:55:55:0a:8b:2b:c9:ee:5c:b5: 9c:0b:bb:74:66:a7:e8:fd:dc:d4:ce:97:60:07:be: 97:d1:9b:b6:67:bc:fc:1a:48:76:0e:64:eb:8a:97: c8:9e:36:72:f3:fb:ef:8c:a3:e0:fb:7f:24:17:fd: 02:3c:4f:9d:df:97:28:4f:e4:58:3d:14:1b:c3:0b: 11:57:67:51:08:44:84:2f:e3:13:6d:e5:d6:d8:9d: 9e:2b:87:2b:30:10:f6:7b:65:d1:06:18:72:ec:09: 06:14:10:e8:f8:71:6a:43:72:88:4b:c5:bd:f7:c0: b5:35:68:56:9b:1e:9a:05:ad:54:8b:7b:28:e8:1c: fd:f9:15:64:01:38:64:dd:53:3b:34:0a:86:8d:cb: 76:97:42:52:ce:92:f6:d9:b9:b5:db:a1:1a:07:96: 9c:fb:22:c7:e4:36:a1:52:6e:b7:b8:6e:a6:b3:8f: ee:40:73:1a:f8:d7:41:56:7f:52:c7:11:5f:ca:ab: 05:db:46:00:f9:c9:ff:c6:48:11:5a:8f:48:f3:67: 0f:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:A8:E2:C2:9F:C2:3F:80:22:D6:BF:68:9C:79:7E:A4:61:9A:28:29 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/uajiwp_CP4Ai1r9onHl-pGGaKCk.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.0.0/22 Signature Algorithm: sha256WithRSAEncryption 31:19:16:b1:d7:4b:af:10:a8:5d:ef:52:3f:70:f8:ff:a6:da: 3f:61:50:49:52:03:63:cc:4b:89:47:86:e2:76:e1:79:fc:0e: 29:d5:d2:3a:7a:29:ed:52:19:d7:c9:f9:66:f5:f1:3a:5b:b3: 8d:9f:00:52:b4:cf:f8:51:1f:14:5c:b2:90:22:7c:f6:80:00: 89:6c:5e:f3:5c:01:58:b1:9e:21:a2:cd:db:11:5b:bd:aa:98: ef:11:3c:5f:b6:66:9d:26:69:b5:95:8a:54:bd:4e:b8:61:9d: 75:10:e7:3c:42:b4:33:6c:b3:0b:2a:68:86:f7:94:3e:c7:3b: fb:1b:42:69:5a:0d:75:bc:e8:02:30:cf:af:e1:e1:98:6e:d5: 3b:de:f4:4d:47:da:f6:6c:05:88:a4:26:c7:50:c5:71:4d:fd: 77:0a:81:47:94:6c:c2:82:8d:d2:34:81:b9:ef:55:7e:42:de: b7:c5:48:e4:7f:92:4f:4f:ad:df:1e:1f:11:c9:91:bb:cc:14: bf:a8:a5:24:82:10:2e:89:57:fe:52:c1:bf:a5:53:8f:cf:dd: d9:c2:23:c3:9e:c8:d3:36:55:1f:bd:57:a4:92:90:84:ce:22: f1:b8:e2:ee:f4:03:43:65:20:2e:1a:c1:e0:4e:c8:77:d5:c2: 03:30:72:6a -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHeYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA0NDFaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEI5QThFMkMyOUZDMjNG ODAyMkQ2QkY2ODlDNzk3RUE0NjE5QTI4MjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDtgfmSEA1uYr2YvhawfBjHwV+a8k/en2nwn5WhRuY5ykGGeWw+ Qg0r+4AgBQps18DYVVVVCosrye5ctZwLu3Rmp+j93NTOl2AHvpfRm7ZnvPwaSHYO ZOuKl8ieNnLz+++Mo+D7fyQX/QI8T53flyhP5Fg9FBvDCxFXZ1EIRIQv4xNt5dbY nZ4rhyswEPZ7ZdEGGHLsCQYUEOj4cWpDcohLxb33wLU1aFabHpoFrVSLeyjoHP35 FWQBOGTdUzs0CoaNy3aXQlLOkvbZubXboRoHlpz7IsfkNqFSbre4bqazj+5Acxr4 10FWf1LHEV/KqwXbRgD5yf/GSBFaj0jzZw8nAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUuajiwp/CP4Ai1r9onHl+pGGaKCkwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L3Vhaml3cF9DUDRBaTFy OW9uSGwtcEdHYUtDay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJn3QAwDQYJKoZIhvcNAQELBQADggEBADEZFrHXS68QqF3vUj9w+P+m2j9hUElS A2PMS4lHhuJ24Xn8DinV0jp6Ke1SGdfJ+Wb18Tpbs42fAFK0z/hRHxRcspAifPaA AIlsXvNcAVixniGizdsRW72qmO8RPF+2Zp0mabWVilS9TrhhnXUQ5zxCtDNsswsq aIb3lD7HO/sbQmlaDXW86AIwz6/h4Zhu1Tve9E1H2vZsBYikJsdQxXFN/XcKgUeU bMKCjdI0gbnvVX5C3rfFSOR/kk9Prd8eHxHJkbvMFL+opSSCEC6JV/5Swb+lU4/P 3dnCI8OeyNM2VR+9V6SSkITOIvG44u70A0NlIC4aweBOyHfVwgMwcmo= -----END CERTIFICATE-----Generated at Mon Oct 20 13:13:52 2025 by rpki-client