$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/xc5YLydn3_N15fPXDHnU1TNYjRA.roa File: xc5YLydn3_N15fPXDHnU1TNYjRA.roa (raw, json) Hash identifier: /nCJOHjbZ4hQ35xrShomPSVf6gUfS1bLDGH/skFFvns= Subject key identifier: C5:CE:58:2F:27:67:DF:F3:75:E5:F3:D7:0C:79:D4:D5:33:58:8D:10 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1FCB Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/xc5YLydn3_N15fPXDHnU1TNYjRA.roa Signing time: Thu 16 Oct 2025 03:30:08 +0000 ROA not before: Thu 16 Oct 2025 03:30:08 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 25743 IP address blocks: 103.6.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8139 (0x1fcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Oct 16 03:30:08 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=C5CE582F2767DFF375E5F3D70C79D4D533588D10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:8b:9b:fa:45:d4:35:16:15:a7:9d:f9:3f:b4: 28:c3:1e:06:05:6e:27:09:81:b3:38:dc:e3:f3:e7: aa:6a:97:cf:15:78:b4:36:25:93:fa:14:45:77:48: be:f6:11:39:fe:b8:39:f4:ae:de:ac:dd:0c:c4:b7: fd:be:6b:3e:d0:13:1f:b0:9e:63:5f:84:17:b3:93: 90:a8:15:cc:0c:85:e9:84:76:e6:f9:2b:3e:04:32: ac:96:1f:15:60:d4:f5:ee:7c:12:04:88:62:ab:b2: 4b:2b:a2:93:8a:9e:71:c8:ed:34:c1:aa:c2:5a:63: f1:9e:fd:8f:6d:b9:c8:e8:50:57:1f:e0:1f:81:e5: f2:20:4a:8c:2d:76:7c:9c:0b:b9:c9:ed:d2:e8:95: 5d:fa:67:d5:d3:db:0f:e6:bf:31:65:53:7d:9f:10: f4:41:f5:b9:cb:4d:d1:30:3c:23:ff:72:28:2a:68: d6:c8:a7:9a:48:31:eb:f7:9d:d8:b5:5c:16:00:18: 01:b1:19:fb:8d:8d:dc:02:db:9a:49:ad:21:a7:6d: 7d:82:a1:93:41:c6:9a:6c:62:e2:5e:97:4e:14:69: 30:57:a6:70:c2:ee:7e:16:75:7a:6f:76:51:1f:d3: e8:e1:83:74:d7:82:d9:21:45:2e:9e:f1:fa:fe:93: 27:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:CE:58:2F:27:67:DF:F3:75:E5:F3:D7:0C:79:D4:D5:33:58:8D:10 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/xc5YLydn3_N15fPXDHnU1TNYjRA.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.6.228.0/24 Signature Algorithm: sha256WithRSAEncryption 37:76:0a:d1:48:00:c0:fe:cb:ce:f5:3e:50:4e:b1:e1:88:24: dd:e4:0c:ee:26:0b:1e:39:53:60:c4:ed:0e:bf:7a:b4:d9:8c: b3:67:fb:71:82:90:92:90:fe:c2:c5:9a:cf:31:46:83:81:ab: ec:42:77:69:37:ee:77:1c:25:20:19:fd:50:18:26:8a:9d:23: d0:37:07:50:88:f0:e2:e4:49:fe:4c:53:9d:cb:05:76:b3:75: 88:5d:ca:94:96:3c:aa:14:c3:ba:8b:03:b7:fa:16:dd:87:97: d2:91:7b:7b:5d:0c:f9:96:20:db:61:14:2d:a1:bf:af:ad:5b: 0a:1f:eb:30:fb:27:66:04:02:66:cf:4f:f9:4a:a2:6d:4e:be: 4d:f1:81:56:2f:bd:51:20:38:2b:5f:84:b2:45:66:41:63:bf: 21:09:5b:41:1c:81:cc:8f:4c:f4:de:48:e9:0f:3f:ff:99:4e: 2c:fb:78:47:b3:2e:aa:1d:9c:d8:78:b2:70:4d:ab:22:42:37: 54:0e:55:8b:b4:c3:57:a0:9d:f0:49:62:0a:b9:83:a9:30:c4: c7:03:a0:7b:0e:b4:f4:12:78:0c:51:d5:16:80:55:ab:be:7d: 82:82:48:22:ab:74:3e:c8:7a:07:80:c5:30:32:e7:e4:8b:e2: c3:5b:e3:2b -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICH8swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTEwMTYw MzMwMDhaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEM1Q0U1ODJGMjc2N0RG RjM3NUU1RjNENzBDNzlENEQ1MzM1ODhEMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7i5v6RdQ1FhWnnfk/tCjDHgYFbicJgbM43OPz56pql88VeLQ2 JZP6FEV3SL72ETn+uDn0rt6s3QzEt/2+az7QEx+wnmNfhBezk5CoFcwMhemEdub5 Kz4EMqyWHxVg1PXufBIEiGKrsksropOKnnHI7TTBqsJaY/Ge/Y9tucjoUFcf4B+B 5fIgSowtdnycC7nJ7dLolV36Z9XT2w/mvzFlU32fEPRB9bnLTdEwPCP/cigqaNbI p5pIMev3ndi1XBYAGAGxGfuNjdwC25pJrSGnbX2CoZNBxppsYuJel04UaTBXpnDC 7n4WdXpvdlEf0+jhg3TXgtkhRS6e8fr+kyebAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUxc5YLydn3/N15fPXDHnU1TNYjRAwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L3hjNVlMeWRuM19OMTVm UFhESG5VMVROWWpSQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnBuQwDQYJKoZIhvcNAQELBQADggEBADd2CtFIAMD+y871PlBOseGIJN3kDO4m Cx45U2DE7Q6/erTZjLNn+3GCkJKQ/sLFms8xRoOBq+xCd2k37nccJSAZ/VAYJoqd I9A3B1CI8OLkSf5MU53LBXazdYhdypSWPKoUw7qLA7f6Ft2Hl9KRe3tdDPmWINth FC2hv6+tWwof6zD7J2YEAmbPT/lKom1Ovk3xgVYvvVEgOCtfhLJFZkFjvyEJW0Ec gcyPTPTeSOkPP/+ZTiz7eEezLqodnNh4snBNqyJCN1QOVYu0w1egnfBJYgq5g6kw xMcDoHsOtPQSeAxR1RaAVau+fYKCSCKrdD7IegeAxTAy5+SL4sNb4ys= -----END CERTIFICATE-----Generated at Mon Oct 20 13:30:48 2025 by rpki-client