$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/xGGMEjdaiTuR-L1YkOYdizYG1tA.roa File: xGGMEjdaiTuR-L1YkOYdizYG1tA.roa (raw, json) Hash identifier: cIpNvrlgHbhSbMI4GZJ59hYKZqXCFJ+psisf2iLXVsU= Subject key identifier: C4:61:8C:12:37:5A:89:3B:91:F8:BD:58:90:E6:1D:8B:36:06:D6:D0 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1EF1 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/xGGMEjdaiTuR-L1YkOYdizYG1tA.roa Signing time: Sat 13 Sep 2025 03:05:38 +0000 ROA not before: Sat 13 Sep 2025 03:05:38 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 139259 IP address blocks: 103.221.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 00:35:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7921 (0x1ef1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:05:38 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=C4618C12375A893B91F8BD5890E61D8B3606D6D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:13:a4:e0:d0:c0:72:16:35:bc:4b:4f:90:ba: d9:a3:a9:64:af:9e:94:e4:3f:2a:7f:28:64:5d:18: 83:d4:d9:5e:c4:a3:c6:07:05:9b:63:2a:aa:f1:0b: bd:60:57:2c:18:df:d1:f0:a6:b0:3f:35:63:41:7b: 3e:ad:ea:73:c7:09:bb:65:06:71:46:8d:af:11:c2: a9:7d:7f:58:25:1f:8a:8a:80:a8:cd:f7:bf:e9:06: cb:9c:8b:dc:3d:90:9d:32:22:4c:c6:f2:86:6d:76: b4:11:aa:c4:1c:cd:4f:83:31:22:59:59:2f:14:90: 77:4c:aa:c7:c4:62:9f:06:ab:fe:9d:bb:18:75:5e: 93:e0:2c:69:13:e5:d3:ff:fe:a2:99:34:e2:23:ba: f5:82:ea:74:5d:eb:9d:fe:4f:92:3c:93:cb:db:e0: f0:6c:eb:7f:91:77:ac:0b:e0:fc:04:62:dc:73:60: db:34:97:61:e6:46:f1:4d:c9:e7:cf:67:e6:4f:86: 09:c9:0a:b1:6e:9d:fc:b6:a5:a1:16:7e:be:11:64: 66:c6:ee:5c:d3:21:81:b2:f9:ed:c4:29:80:b2:5b: 3a:26:40:c5:e4:3f:76:00:68:df:fc:ef:1a:80:f0: a3:89:51:c6:0c:ec:d5:00:ba:a3:2b:dc:77:36:2e: f9:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:61:8C:12:37:5A:89:3B:91:F8:BD:58:90:E6:1D:8B:36:06:D6:D0 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/xGGMEjdaiTuR-L1YkOYdizYG1tA.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.47.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:9d:77:c5:fe:55:18:c0:bd:8f:f4:c9:0d:c0:43:a1:c9:6c: 59:f6:98:e0:f9:8c:2b:da:f0:52:bb:8f:0d:53:b8:f3:25:ac: b5:f9:a5:92:8f:88:b5:d5:e6:a5:8d:6b:08:18:65:8b:46:6e: 5b:8c:4e:37:b1:5d:91:94:53:d5:10:4d:c9:d8:e3:34:d5:ce: bb:a6:78:55:fb:8a:dc:69:72:db:8d:3a:c7:a6:53:fa:86:a3: c7:2a:34:30:6c:42:36:0f:ec:90:9d:37:b8:88:ca:47:74:5f: ef:e7:f6:cc:74:9c:ec:2e:00:d2:4e:cb:ef:6e:c9:d1:0b:26: b6:01:92:d5:12:6d:8b:83:cf:24:0d:10:f9:af:a3:fb:22:fd: c9:7d:7c:6a:5b:b8:45:53:0c:2f:2f:46:d1:e8:68:2c:0d:12: 05:4b:64:8d:b1:02:4a:f2:57:3c:1e:9f:0f:61:0a:80:4f:58: 12:3e:d4:5d:5c:4b:c5:63:c2:4d:99:be:d9:55:77:22:d5:40: 21:5a:71:b3:18:ff:18:f0:51:83:ad:ae:db:d9:ac:73:ef:0b: ed:eb:17:fa:ad:0e:cb:49:08:a7:63:1d:6c:bb:d9:0e:52:db: 9a:a9:90:5a:86:ee:83:4b:c3:9b:6c:1f:95:41:e9:f1:42:98: ad:7a:33:ad -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHvEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA1MzhaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEM0NjE4QzEyMzc1QTg5 M0I5MUY4QkQ1ODkwRTYxRDhCMzYwNkQ2RDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD1E6Tg0MByFjW8S0+QutmjqWSvnpTkPyp/KGRdGIPU2V7Eo8YH BZtjKqrxC71gVywY39HwprA/NWNBez6t6nPHCbtlBnFGja8Rwql9f1glH4qKgKjN 97/pBsuci9w9kJ0yIkzG8oZtdrQRqsQczU+DMSJZWS8UkHdMqsfEYp8Gq/6duxh1 XpPgLGkT5dP//qKZNOIjuvWC6nRd653+T5I8k8vb4PBs63+Rd6wL4PwEYtxzYNs0 l2HmRvFNyefPZ+ZPhgnJCrFunfy2paEWfr4RZGbG7lzTIYGy+e3EKYCyWzomQMXk P3YAaN/87xqA8KOJUcYM7NUAuqMr3Hc2LvkXAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUxGGMEjdaiTuR+L1YkOYdizYG1tAwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L3hHR01FamRhaVR1Ui1M MVlrT1lkaXpZRzF0QS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn3S8wDQYJKoZIhvcNAQELBQADggEBAFudd8X+VRjAvY/0yQ3AQ6HJbFn2mOD5 jCva8FK7jw1TuPMlrLX5pZKPiLXV5qWNawgYZYtGbluMTjexXZGUU9UQTcnY4zTV zrumeFX7itxpctuNOsemU/qGo8cqNDBsQjYP7JCdN7iIykd0X+/n9sx0nOwuANJO y+9uydELJrYBktUSbYuDzyQNEPmvo/si/cl9fGpbuEVTDC8vRtHoaCwNEgVLZI2x AkryVzwenw9hCoBPWBI+1F1cS8Vjwk2ZvtlVdyLVQCFacbMY/xjwUYOtrtvZrHPv C+3rF/qtDstJCKdjHWy72Q5S25qpkFqG7oNLw5tsH5VB6fFCmK16M60= -----END CERTIFICATE-----Generated at Mon Oct 20 23:27:24 2025 by rpki-client