$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/vMr-zOdvq9Qp2KzGxE4bGaLGr6s.roa File: vMr-zOdvq9Qp2KzGxE4bGaLGr6s.roa (raw, json) Hash identifier: CKnk82eiyfV+oxI2GJbUALXG/6ArTeA0j49ge72xylk= Subject key identifier: BC:CA:FE:CC:E7:6F:AB:D4:29:D8:AC:C6:C4:4E:1B:19:A2:C6:AF:AB Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1E15 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/vMr-zOdvq9Qp2KzGxE4bGaLGr6s.roa Signing time: Sat 13 Sep 2025 03:04:50 +0000 ROA not before: Sat 13 Sep 2025 03:04:50 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 13444 IP address blocks: 103.220.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7701 (0x1e15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:04:50 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=BCCAFECCE76FABD429D8ACC6C44E1B19A2C6AFAB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:65:f1:9e:00:65:bd:5f:12:5f:fa:c7:05:3a: a9:1e:80:11:b2:80:40:6d:49:41:54:6f:ff:7b:19: 3c:dd:da:1d:1e:3b:b2:b5:9b:ca:e8:c2:d4:2b:25: b3:77:a3:a3:dd:b6:f8:98:94:8f:86:03:ab:16:98: 15:f9:5d:98:1f:7b:c5:74:93:3c:22:87:14:8a:7a: e9:e9:13:7c:6c:2b:5b:03:3d:b1:86:c5:38:67:6d: b5:a7:48:32:3c:08:8d:2f:26:0f:32:5c:29:08:1b: 1e:80:24:08:0e:e1:39:65:c1:9d:87:a8:6a:82:eb: cd:aa:b3:ba:f9:b5:fe:50:36:13:33:c6:99:34:66: 88:68:6a:8d:ee:cd:b9:1a:23:a6:8e:bf:60:3c:6f: 26:9d:13:ab:cb:be:fd:25:4a:28:d1:e2:c7:c4:39: c1:41:0c:92:88:b0:24:d0:25:06:5b:4d:a3:f6:ec: a3:de:ac:36:cd:41:fe:f2:f6:19:95:16:26:09:80: 8c:e9:3f:69:45:1f:89:18:2f:b5:ca:f1:e5:21:7a: 37:23:d5:df:d5:c4:a4:59:dc:f8:77:f4:ea:d8:42: 65:46:ba:5c:7c:45:a5:be:ef:48:4d:80:4c:ee:fe: 45:7a:39:fd:8b:4a:47:ff:bc:7a:c2:b8:60:74:e9: a7:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:CA:FE:CC:E7:6F:AB:D4:29:D8:AC:C6:C4:4E:1B:19:A2:C6:AF:AB X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/vMr-zOdvq9Qp2KzGxE4bGaLGr6s.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.220.255.0/24 Signature Algorithm: sha256WithRSAEncryption 59:ce:c2:2a:9f:bb:ad:83:ca:2f:93:b2:0a:f8:39:23:28:93: fd:65:9e:58:17:b5:b6:f0:c4:21:8b:3c:df:e8:f4:95:fc:de: 4c:24:d1:6e:e6:ec:03:11:da:88:a2:be:2e:ea:3f:92:f5:4d: c0:ed:97:8d:99:6f:ac:4d:15:de:85:cd:d4:20:87:33:2a:4f: 89:da:92:3f:79:0e:a0:69:ac:e6:b1:92:50:5f:34:0c:d4:59: a3:88:fa:24:82:ed:3e:07:9b:b3:08:80:5f:99:8e:7a:1c:7c: 06:fa:75:9e:68:8e:b5:01:04:a6:3e:78:6d:96:f8:93:9a:e8: 12:40:ae:8d:1b:41:b4:64:d3:36:1b:44:de:57:1b:27:99:2d: a3:ef:6b:22:0c:da:ec:d5:00:be:d7:d2:b8:0d:8b:bd:e3:f2: e1:6d:43:d7:e8:ad:3c:bf:ed:59:ed:53:72:1b:0a:76:7f:8f: 4d:a5:4e:e7:25:43:6d:af:aa:c3:e1:e3:50:7f:aa:d2:82:0a: 73:fd:e1:b3:5a:9f:a8:f7:50:9a:dc:22:cd:fe:95:9d:7f:f6: 9e:5f:dd:4a:b3:bd:c4:c4:db:5b:2c:aa:a2:91:f6:c6:fc:bf: 1e:0f:a2:6a:8f:68:52:99:a1:12:c0:5b:de:f3:d7:6d:7e:a9: 74:f4:04:d3 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHhUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA0NTBaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEJDQ0FGRUNDRTc2RkFC RDQyOUQ4QUNDNkM0NEUxQjE5QTJDNkFGQUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPZfGeAGW9XxJf+scFOqkegBGygEBtSUFUb/97GTzd2h0eO7K1 m8rowtQrJbN3o6PdtviYlI+GA6sWmBX5XZgfe8V0kzwihxSKeunpE3xsK1sDPbGG xThnbbWnSDI8CI0vJg8yXCkIGx6AJAgO4TllwZ2HqGqC682qs7r5tf5QNhMzxpk0 Zohoao3uzbkaI6aOv2A8byadE6vLvv0lSijR4sfEOcFBDJKIsCTQJQZbTaP27KPe rDbNQf7y9hmVFiYJgIzpP2lFH4kYL7XK8eUhejcj1d/VxKRZ3Ph39OrYQmVGulx8 RaW+70hNgEzu/kV6Of2LSkf/vHrCuGB06aeFAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUvMr+zOdvq9Qp2KzGxE4bGaLGr6swHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L3ZNci16T2R2cTlRcDJL ekd4RTRiR2FMR3I2cy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn3P8wDQYJKoZIhvcNAQELBQADggEBAFnOwiqfu62Dyi+Tsgr4OSMok/1lnlgX tbbwxCGLPN/o9JX83kwk0W7m7AMR2oiivi7qP5L1TcDtl42Zb6xNFd6FzdQghzMq T4nakj95DqBprOaxklBfNAzUWaOI+iSC7T4Hm7MIgF+ZjnocfAb6dZ5ojrUBBKY+ eG2W+JOa6BJAro0bQbRk0zYbRN5XGyeZLaPvayIM2uzVAL7X0rgNi73j8uFtQ9fo rTy/7VntU3IbCnZ/j02lTuclQ22vqsPh41B/qtKCCnP94bNan6j3UJrcIs3+lZ1/ 9p5f3UqzvcTE21ssqqKR9sb8vx4PomqPaFKZoRLAW97z121+qXT0BNM= -----END CERTIFICATE-----Generated at Mon Oct 20 13:13:50 2025 by rpki-client