$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/vg9AdAmgzUNmRnJDHoEuyvryrbA.roa File: vg9AdAmgzUNmRnJDHoEuyvryrbA.roa (raw, json) Hash identifier: 3JpdsbOG3iwjg4NYHucbKOvu3nSs0qufYBjrf/+veR0= Subject key identifier: BE:0F:40:74:09:A0:CD:43:66:46:72:43:1E:81:2E:CA:FA:F2:AD:B0 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1C1F Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/vg9AdAmgzUNmRnJDHoEuyvryrbA.roa Signing time: Tue 24 Jun 2025 05:54:56 +0000 ROA not before: Tue 24 Jun 2025 05:54:56 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 21859 IP address blocks: 103.6.228.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 20:44:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7199 (0x1c1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Jun 24 05:54:56 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=BE0F407409A0CD43664672431E812ECAFAF2ADB0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f7:1d:e9:e8:75:b2:77:c6:11:01:05:71:d1: 4b:a2:05:23:f1:b0:bf:6e:aa:fa:2f:45:1f:c9:c9: 68:94:c4:89:aa:cf:d3:7f:bc:e6:da:c9:90:42:06: 83:6e:e9:b7:28:8f:54:6b:b4:19:b3:4d:06:8c:f9: de:7b:18:17:1f:84:3f:e9:20:44:19:d9:44:b0:f5: 7c:bf:7d:8f:ab:17:5d:f0:10:a6:6a:53:ec:bc:11: b9:46:ce:f5:c6:4e:c1:58:09:10:b2:28:f0:b3:8e: b1:b4:40:f5:30:3a:d7:5b:41:a0:96:57:3c:3d:6d: 28:ed:18:8a:88:63:9b:79:33:21:f3:46:f5:1d:c5: fb:46:3a:c8:1a:28:c9:f2:c9:f5:8e:db:ea:3d:ab: bf:2e:71:62:65:ae:fe:88:03:45:a9:ea:5f:39:d3: e8:50:b5:21:a7:83:6d:c9:f0:9e:4a:c5:e1:e1:03: 1e:12:50:a3:ae:87:a9:16:b3:3a:0f:e5:dc:e6:58: 66:2e:8e:76:1f:ff:21:c2:df:0c:01:38:a2:c3:7e: f4:aa:72:0c:5f:a2:30:6c:f2:06:0c:42:a1:40:9c: d7:55:1c:80:cb:92:97:bd:49:ce:58:18:cc:1d:90: a3:2e:4f:a0:b7:a2:b6:db:61:e3:2d:81:2a:07:a5: f9:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:0F:40:74:09:A0:CD:43:66:46:72:43:1E:81:2E:CA:FA:F2:AD:B0 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/vg9AdAmgzUNmRnJDHoEuyvryrbA.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.6.228.0/22 Signature Algorithm: sha256WithRSAEncryption 1c:7c:1c:7b:dd:f3:bf:5e:60:bb:06:55:e1:f4:86:ed:b2:e1: 53:f6:dc:7d:92:5f:3d:58:27:42:9e:36:1f:36:47:12:73:ba: 8b:b9:2c:47:52:6f:f7:74:2c:62:54:28:99:35:d0:02:c3:52: 62:f1:51:f6:21:81:9b:8a:bb:33:87:7d:c0:7d:33:93:6d:51: de:2e:40:b1:7e:ba:9f:2d:5d:7c:6b:ab:95:d8:c5:6e:5d:a2: 62:cc:d4:10:e7:3f:da:48:5a:48:58:11:eb:bc:33:36:80:cb: e3:0e:14:90:ca:22:93:ec:4a:f7:13:0f:4f:22:bf:69:4e:85: 36:28:4d:a7:1e:2c:03:63:81:89:71:69:fe:5f:97:8e:7d:bd: 9d:ff:4f:3c:e1:7f:af:75:ad:c0:e6:3a:15:0f:bd:ac:96:71: 46:6d:eb:f4:1f:63:39:17:85:41:9c:54:00:b2:15:66:e9:60: cd:c1:c9:e7:26:ff:c6:e9:fe:96:a1:ca:64:3d:49:f8:cc:7a: 56:bf:7d:8b:cd:c3:b6:2a:d1:ee:23:a5:0f:b1:e7:a1:2a:b3: 3c:fc:f1:e6:3e:7a:54:76:ac:d8:4d:bd:f1:cf:f8:a3:d5:85: 0e:ed:dc:57:be:95:b0:b6:76:06:5d:98:2e:6b:cc:bd:b6:78: 33:57:77:b6 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHB8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA2MjQw NTU0NTZaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKEJFMEY0MDc0MDlBMENE NDM2NjQ2NzI0MzFFODEyRUNBRkFGMkFEQjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC99x3p6HWyd8YRAQVx0UuiBSPxsL9uqvovRR/JyWiUxImqz9N/ vObayZBCBoNu6bcoj1RrtBmzTQaM+d57GBcfhD/pIEQZ2USw9Xy/fY+rF13wEKZq U+y8EblGzvXGTsFYCRCyKPCzjrG0QPUwOtdbQaCWVzw9bSjtGIqIY5t5MyHzRvUd xftGOsgaKMnyyfWO2+o9q78ucWJlrv6IA0Wp6l850+hQtSGng23J8J5KxeHhAx4S UKOuh6kWszoP5dzmWGYujnYf/yHC3wwBOKLDfvSqcgxfojBs8gYMQqFAnNdVHIDL kpe9Sc5YGMwdkKMuT6C3orbbYeMtgSoHpfnRAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUvg9AdAmgzUNmRnJDHoEuyvryrbAwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L3ZnOUFkQW1nelVObVJu SkRIb0V1eXZyeXJiQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJnBuQwDQYJKoZIhvcNAQELBQADggEBABx8HHvd879eYLsGVeH0hu2y4VP23H2S Xz1YJ0KeNh82RxJzuou5LEdSb/d0LGJUKJk10ALDUmLxUfYhgZuKuzOHfcB9M5Nt Ud4uQLF+up8tXXxrq5XYxW5domLM1BDnP9pIWkhYEeu8MzaAy+MOFJDKIpPsSvcT D08iv2lOhTYoTaceLANjgYlxaf5fl459vZ3/Tzzhf691rcDmOhUPvayWcUZt6/Qf YzkXhUGcVACyFWbpYM3Byecm/8bp/pahymQ9SfjMela/fYvNw7Yq0e4jpQ+x56Eq szz88eY+elR2rNhNvfHP+KPVhQ7t3Fe+lbC2dgZdmC5rzL22eDNXd7Y= -----END CERTIFICATE-----Generated at Thu Jul 3 19:11:30 2025 by rpki-client