$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/vHx7KUX_qdYk4EKLzHJgN3xgswQ.roa File: vHx7KUX_qdYk4EKLzHJgN3xgswQ.roa (raw, json) Hash identifier: KfSWWC4+jStCdSd6hL8+ByyNvGo3hpy9W3uXEcR5LbI= Subject key identifier: BC:7C:7B:29:45:FF:A9:D6:24:E0:42:8B:CC:72:60:37:7C:60:B3:04 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1E6F Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/vHx7KUX_qdYk4EKLzHJgN3xgswQ.roa Signing time: Sat 13 Sep 2025 03:05:09 +0000 ROA not before: Sat 13 Sep 2025 03:05:09 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 139259 IP address blocks: 103.221.48.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7791 (0x1e6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:05:09 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=BC7C7B2945FFA9D624E0428BCC7260377C60B304 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d6:61:2b:8d:7b:8f:33:94:ff:2e:07:c2:78: 31:a6:15:04:44:70:63:3c:9b:47:b5:be:c2:da:67: f7:7c:7c:10:f1:d5:20:c4:34:1c:76:eb:85:ed:59: 91:22:ab:29:a8:0b:6d:13:91:b2:08:d6:da:3a:58: 35:c8:09:26:8c:a6:d0:e9:3e:0d:2b:cd:04:8f:b6: 33:f1:a8:cf:26:7b:2e:7f:5f:a4:aa:42:7b:87:fc: 1f:59:a3:a2:56:b7:50:55:3a:68:34:1d:38:fb:08: da:ad:5c:25:7a:1e:ad:6a:8a:60:f1:d9:f9:5b:8a: ca:5e:32:fd:0e:a7:6f:40:95:b7:49:c2:e2:d6:4e: 13:3a:ea:73:6d:ca:10:5b:a8:03:70:6e:a8:48:9f: d4:43:da:ce:19:af:49:a4:a1:28:4c:81:df:0c:b5: bc:7e:34:55:ac:2b:be:c2:9d:8f:a3:38:4f:3f:23: dc:29:c4:47:ad:8f:87:bf:dd:43:5d:34:6e:f5:cc: 2d:77:72:b4:13:85:de:fd:2b:34:99:ae:a0:46:63: 0c:62:5d:b8:39:27:4c:43:e0:eb:e4:94:69:11:de: 26:bd:b3:6e:9f:e4:9d:97:1c:84:35:32:07:fe:31: 7f:d3:ef:06:c9:c7:f1:04:8a:65:76:fe:20:a3:5d: 4d:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:7C:7B:29:45:FF:A9:D6:24:E0:42:8B:CC:72:60:37:7C:60:B3:04 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/vHx7KUX_qdYk4EKLzHJgN3xgswQ.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.48.0/22 Signature Algorithm: sha256WithRSAEncryption a3:26:55:56:5e:11:fa:38:f8:d1:7f:f3:55:09:b1:9c:11:ed: 19:68:93:c2:66:40:8e:5f:78:b4:9e:ac:e2:b6:d3:67:dc:b0: 1a:13:ca:08:b6:35:d6:9c:f8:d9:62:90:96:2b:49:96:1f:31: 06:46:64:e5:83:d7:8a:fb:84:ff:25:d8:17:67:7e:08:9e:ea: 20:47:36:69:b4:22:0b:86:57:36:68:77:37:22:8c:41:ee:6d: 31:5f:21:48:72:16:41:88:6b:40:b6:c5:bb:57:78:62:4f:b7: 93:6c:47:58:77:ec:c2:c5:6d:a6:e3:b4:dc:70:e3:74:5a:24: 1e:f4:4f:dd:a6:7d:c6:e7:48:59:61:ba:bf:dd:4f:15:f1:b0: 7d:8c:00:a9:76:e8:30:02:2a:89:d1:db:9e:f7:22:af:f3:54: 6c:2e:f7:93:ad:9a:40:6a:6f:e7:99:a4:1c:55:2b:0a:1a:ca: 39:b4:f3:18:f0:87:1c:9b:1b:0d:09:1f:9b:53:d6:e1:9c:ed: 10:08:a8:94:33:b7:18:61:08:f0:88:ae:17:63:f3:85:83:ba: 1c:af:23:26:90:22:30:17:7f:80:f0:f3:72:a2:1d:c5:8c:8c: 35:96:67:a6:97:cb:a3:0d:a2:a8:be:2b:66:a7:41:f8:c8:79: 9f:ff:aa:ec -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHm8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA1MDlaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEJDN0M3QjI5NDVGRkE5 RDYyNEUwNDI4QkNDNzI2MDM3N0M2MEIzMDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC21mErjXuPM5T/LgfCeDGmFQREcGM8m0e1vsLaZ/d8fBDx1SDE NBx264XtWZEiqymoC20TkbII1to6WDXICSaMptDpPg0rzQSPtjPxqM8mey5/X6Sq QnuH/B9Zo6JWt1BVOmg0HTj7CNqtXCV6Hq1qimDx2flbispeMv0Op29AlbdJwuLW ThM66nNtyhBbqANwbqhIn9RD2s4Zr0mkoShMgd8Mtbx+NFWsK77CnY+jOE8/I9wp xEetj4e/3UNdNG71zC13crQThd79KzSZrqBGYwxiXbg5J0xD4OvklGkR3ia9s26f 5J2XHIQ1Mgf+MX/T7wbJx/EEimV2/iCjXU03AgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUvHx7KUX/qdYk4EKLzHJgN3xgswQwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L3ZIeDdLVVhfcWRZazRF S0x6SEpnTjN4Z3N3US5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJn3TAwDQYJKoZIhvcNAQELBQADggEBAKMmVVZeEfo4+NF/81UJsZwR7Rlok8Jm QI5feLSerOK202fcsBoTygi2Ndac+NlikJYrSZYfMQZGZOWD14r7hP8l2Bdnfgie 6iBHNmm0IguGVzZodzcijEHubTFfIUhyFkGIa0C2xbtXeGJPt5NsR1h37MLFbabj tNxw43RaJB70T92mfcbnSFlhur/dTxXxsH2MAKl26DACKonR2573Iq/zVGwu95Ot mkBqb+eZpBxVKwoayjm08xjwhxybGw0JH5tT1uGc7RAIqJQztxhhCPCIrhdj84WD uhyvIyaQIjAXf4Dw83KiHcWMjDWWZ6aXy6MNoqi+K2anQfjIeZ//quw= -----END CERTIFICATE-----Generated at Mon Oct 20 13:18:00 2025 by rpki-client