$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/v3sF6RFpDYQTeeiy4sScaQXuzXs.roa File: v3sF6RFpDYQTeeiy4sScaQXuzXs.roa (raw, json) Hash identifier: cv8u7ILdctu4id1Su1zFQjAqGxENBSGWQuy4E/AAAwk= Subject key identifier: BF:7B:05:E9:11:69:0D:84:13:79:E8:B2:E2:C4:9C:69:05:EE:CD:7B Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1E63 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/v3sF6RFpDYQTeeiy4sScaQXuzXs.roa Signing time: Sat 13 Sep 2025 03:05:06 +0000 ROA not before: Sat 13 Sep 2025 03:05:06 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 139259 IP address blocks: 103.221.12.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7779 (0x1e63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:05:06 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=BF7B05E911690D841379E8B2E2C49C6905EECD7B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:74:96:21:84:0d:41:ea:59:2e:46:ff:1a:75: d3:69:68:23:cb:b0:73:24:28:8e:87:f7:83:4d:bb: 89:24:28:b8:6b:80:e9:8e:38:2c:2c:06:62:d7:af: b3:26:08:48:4e:e3:7c:38:6d:f8:0e:e2:d5:d7:51: 07:fb:84:e8:6b:47:fb:d2:ae:02:2a:68:40:27:0c: 90:63:a6:a8:cf:0b:15:b7:2e:54:47:90:0f:e3:d3: a7:a0:d2:e6:09:ed:fc:e8:07:6e:78:f5:e1:7c:04: 19:e3:a8:3e:b9:1f:e4:77:a0:4c:b2:0c:d2:e7:82: 78:cf:03:ea:26:7e:4b:25:6a:a4:56:61:be:40:69: 50:cb:47:c3:dc:4b:5c:75:00:5d:88:a7:ff:fc:74: 60:0e:61:0b:38:b2:ea:26:26:53:59:b6:c5:76:c2: af:1d:6a:9f:ae:f2:a7:5d:6e:ae:4f:a4:35:14:3e: 12:36:ad:47:98:ce:ee:9d:06:27:61:46:1a:96:d8: 5b:86:28:cb:00:48:f5:e9:f0:87:2f:35:1d:c8:86: cd:c8:fa:9f:83:47:76:54:ed:d2:b1:37:7d:bd:ff: 8d:f7:e5:3a:eb:a9:99:17:46:df:7c:ff:ab:d3:d8: 49:d7:8e:90:dc:30:ea:5b:19:b4:49:4f:0d:29:de: af:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:7B:05:E9:11:69:0D:84:13:79:E8:B2:E2:C4:9C:69:05:EE:CD:7B X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/v3sF6RFpDYQTeeiy4sScaQXuzXs.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.12.0/22 Signature Algorithm: sha256WithRSAEncryption 5a:fa:31:9f:ad:96:dc:6c:c2:05:e6:5b:ad:7b:10:ca:c7:98: e9:73:b7:22:7c:78:ee:3d:a6:01:ef:6f:cc:9f:e7:6f:59:6c: 9e:c9:5c:83:cb:01:af:e5:c8:12:f3:88:43:7b:ad:f9:01:b7: 29:76:b1:8b:1b:df:34:79:78:97:77:e8:82:1f:45:bb:c8:1a: 11:f4:ba:ef:1c:b3:49:84:5c:3c:bc:11:90:e2:ca:cb:b4:83: 0b:f1:db:f1:64:23:df:e8:8e:3d:c3:a4:09:01:cb:12:0f:01: 01:30:d3:18:3a:ef:36:1b:2d:13:6b:3e:fb:6c:96:a6:bb:89: 68:a5:82:ee:c5:4c:f7:c9:ac:2a:b7:49:9f:9c:0c:b8:04:ec: dc:78:60:bd:23:3a:04:98:3d:02:08:30:1f:f8:bf:40:06:84: 45:48:98:5d:6a:4a:a6:be:6a:0e:2d:94:35:28:81:55:a3:bb: 8d:f7:b1:da:c3:3d:b0:e4:da:b8:26:ca:b8:96:0d:ee:bd:bb: f8:17:3f:43:37:48:c4:7f:cf:9b:d8:10:65:f9:af:43:61:80: 09:7a:24:ea:56:00:c5:4a:95:af:05:ff:9d:ec:38:24:d4:69: ab:3a:d6:2a:dc:dd:3c:28:59:26:cf:d5:fb:da:d7:53:a1:df: ad:d9:55:4d -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHmMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA1MDZaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEJGN0IwNUU5MTE2OTBE ODQxMzc5RThCMkUyQzQ5QzY5MDVFRUNEN0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7dJYhhA1B6lkuRv8addNpaCPLsHMkKI6H94NNu4kkKLhrgOmO OCwsBmLXr7MmCEhO43w4bfgO4tXXUQf7hOhrR/vSrgIqaEAnDJBjpqjPCxW3LlRH kA/j06eg0uYJ7fzoB2549eF8BBnjqD65H+R3oEyyDNLngnjPA+omfkslaqRWYb5A aVDLR8PcS1x1AF2Ip//8dGAOYQs4suomJlNZtsV2wq8dap+u8qddbq5PpDUUPhI2 rUeYzu6dBidhRhqW2FuGKMsASPXp8IcvNR3Ihs3I+p+DR3ZU7dKxN329/4335Trr qZkXRt98/6vT2EnXjpDcMOpbGbRJTw0p3q9XAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUv3sF6RFpDYQTeeiy4sScaQXuzXswHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L3Yzc0Y2UkZwRFlRVGVl aXk0c1NjYVFYdXpYcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJn3QwwDQYJKoZIhvcNAQELBQADggEBAFr6MZ+tltxswgXmW617EMrHmOlztyJ8 eO49pgHvb8yf529ZbJ7JXIPLAa/lyBLziEN7rfkBtyl2sYsb3zR5eJd36IIfRbvI GhH0uu8cs0mEXDy8EZDiysu0gwvx2/FkI9/ojj3DpAkByxIPAQEw0xg67zYbLRNr Pvtslqa7iWilgu7FTPfJrCq3SZ+cDLgE7Nx4YL0jOgSYPQIIMB/4v0AGhEVImF1q Sqa+ag4tlDUogVWju433sdrDPbDk2rgmyriWDe69u/gXP0M3SMR/z5vYEGX5r0Nh gAl6JOpWAMVKla8F/53sOCTUaas61irc3TwoWSbP1fva11Oh363ZVU0= -----END CERTIFICATE-----Generated at Mon Oct 20 13:30:59 2025 by rpki-client