$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/wMKueRHn6QdBdqJifU3uDytIVQo.roa File: wMKueRHn6QdBdqJifU3uDytIVQo.roa (raw, json) Hash identifier: Q586XAKOdCsZh1G2Ufnud+SWzbPOuJxjfyTfAqK9d30= Subject key identifier: C0:C2:AE:79:11:E7:E9:07:41:76:A2:62:7D:4D:EE:0F:2B:48:55:0A Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1E85 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/wMKueRHn6QdBdqJifU3uDytIVQo.roa Signing time: Sat 13 Sep 2025 03:05:13 +0000 ROA not before: Sat 13 Sep 2025 03:05:13 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 139259 IP address blocks: 103.221.92.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7813 (0x1e85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:05:13 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=C0C2AE7911E7E9074176A2627D4DEE0F2B48550A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:ae:3f:12:ae:da:04:32:52:4c:4e:d9:fd:2e: 76:56:ea:6c:52:cf:b7:5f:54:e7:c8:5e:2f:82:c9: 8e:af:2b:e8:b1:a8:40:0f:06:f2:c4:3b:e2:17:2c: b2:a3:65:83:44:af:ef:ff:5f:8f:a9:94:0d:95:d7: 83:62:d6:4e:f0:00:9c:6e:84:71:17:ff:b8:2b:7c: f4:49:c9:61:8c:57:67:5e:5e:3e:c4:6b:a7:0b:14: d8:ee:b2:42:9d:eb:91:2d:6f:d9:31:58:7d:f2:07: 64:e0:1e:17:2d:91:62:dd:7c:bc:5d:35:d9:dd:71: cc:94:53:d1:24:0b:f4:b7:2a:9a:b1:67:be:75:8e: 82:ec:57:3b:cc:d8:11:22:8d:35:c1:c9:fc:0b:d3: dd:df:7e:14:c1:66:04:f9:ed:55:04:c7:7a:2a:49: 4e:20:59:ca:fc:0b:3a:30:98:1b:9d:cd:dd:c0:57: b9:65:9b:79:e6:e9:4d:17:37:53:d8:e6:d7:b3:4e: 11:d2:26:1a:4e:76:eb:3c:fd:c9:56:50:39:08:30: 17:43:0b:89:00:c7:09:08:b2:b8:ea:b4:fc:f8:ef: a7:90:d6:f1:4a:48:93:cb:87:4f:08:1e:b5:2c:e4: 8e:d1:1a:3b:8e:2d:84:e8:a9:27:33:f4:a4:ae:f7: b6:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:C2:AE:79:11:E7:E9:07:41:76:A2:62:7D:4D:EE:0F:2B:48:55:0A X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/wMKueRHn6QdBdqJifU3uDytIVQo.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.92.0/24 Signature Algorithm: sha256WithRSAEncryption d3:25:b1:28:d3:4e:41:a4:f1:28:e9:26:83:14:be:87:43:32: 7f:a2:fb:c1:7a:5f:e4:58:53:8e:93:3c:26:9b:57:70:13:a3: de:c5:aa:2b:ee:9d:31:d1:57:fe:b7:42:38:c0:ee:68:c5:40: 05:10:65:8c:d8:98:64:17:e6:6f:4c:78:d0:89:02:52:fe:e6: 26:d7:eb:c4:cc:b9:f3:2e:7e:45:90:ef:f2:3f:e8:74:13:39: e5:65:12:8c:0e:9f:eb:f3:2e:1c:6f:8e:e3:21:a4:94:28:de: 38:d7:b3:de:1a:d0:4e:8f:e5:36:52:73:3d:35:28:f0:b2:37: 1d:c3:65:64:87:cd:36:f0:2b:a2:15:38:87:d1:e1:4a:47:73: ea:b7:3f:af:ac:1a:32:6c:cf:fd:01:cc:dc:83:be:b2:af:a6: be:63:04:57:a3:9e:dc:aa:7b:d6:f8:17:80:b4:d0:2a:75:39: 6d:cc:f5:b5:72:e6:b3:b2:17:ec:32:e3:4c:e2:50:4a:0e:f8: d9:89:94:b4:11:5c:53:14:dc:42:a0:5a:87:64:4e:47:65:c8: 1c:4c:97:ce:38:d6:0f:32:e7:a9:32:aa:bc:b6:91:f2:2b:69: b5:70:6a:58:38:0a:46:2a:2d:27:67:7f:33:cb:0e:a6:8c:83: 8f:43:8e:59 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHoUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA1MTNaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEMwQzJBRTc5MTFFN0U5 MDc0MTc2QTI2MjdENERFRTBGMkI0ODU1MEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDnrj8SrtoEMlJMTtn9LnZW6mxSz7dfVOfIXi+CyY6vK+ixqEAP BvLEO+IXLLKjZYNEr+//X4+plA2V14Ni1k7wAJxuhHEX/7grfPRJyWGMV2deXj7E a6cLFNjuskKd65Etb9kxWH3yB2TgHhctkWLdfLxdNdndccyUU9EkC/S3KpqxZ751 joLsVzvM2BEijTXByfwL093ffhTBZgT57VUEx3oqSU4gWcr8CzowmBudzd3AV7ll m3nm6U0XN1PY5tezThHSJhpOdus8/clWUDkIMBdDC4kAxwkIsrjqtPz476eQ1vFK SJPLh08IHrUs5I7RGjuOLYToqScz9KSu97bRAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUwMKueRHn6QdBdqJifU3uDytIVQowHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L3dNS3VlUkhuNlFkQmRx SmlmVTN1RHl0SVZRby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn3VwwDQYJKoZIhvcNAQELBQADggEBANMlsSjTTkGk8SjpJoMUvodDMn+i+8F6 X+RYU46TPCabV3ATo97FqivunTHRV/63QjjA7mjFQAUQZYzYmGQX5m9MeNCJAlL+ 5ibX68TMufMufkWQ7/I/6HQTOeVlEowOn+vzLhxvjuMhpJQo3jjXs94a0E6P5TZS cz01KPCyNx3DZWSHzTbwK6IVOIfR4UpHc+q3P6+sGjJsz/0BzNyDvrKvpr5jBFej ntyqe9b4F4C00Cp1OW3M9bVy5rOyF+wy40ziUEoO+NmJlLQRXFMU3EKgWodkTkdl yBxMl8441g8y56kyqry2kfIrabVwalg4CkYqLSdnfzPLDqaMg49Djlk= -----END CERTIFICATE-----Generated at Mon Oct 20 13:30:51 2025 by rpki-client