$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/zcW7KXEyowxYRTBaN4FLwiNGk4M.roa File: zcW7KXEyowxYRTBaN4FLwiNGk4M.roa (raw, json) Hash identifier: cMS1MtKHbVhxBtWDatJxdxUvPIaT0fpbNFE7z9nTovY= Subject key identifier: CD:C5:BB:29:71:32:A3:0C:58:45:30:5A:37:81:4B:C2:23:46:93:83 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1EE0 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/zcW7KXEyowxYRTBaN4FLwiNGk4M.roa Signing time: Sat 13 Sep 2025 03:05:34 +0000 ROA not before: Sat 13 Sep 2025 03:05:34 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 59803 IP address blocks: 2406:1e80::/32 maxlen: 64 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7904 (0x1ee0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:05:34 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=CDC5BB297132A30C5845305A37814BC223469383 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:20:d7:ed:b6:92:e6:e4:b7:55:ae:20:a7:87: 8c:81:c2:78:5e:1d:16:9a:60:af:a1:87:76:b9:fd: 94:a0:94:25:54:a9:d7:3a:db:67:8b:2a:1b:69:aa: b9:5c:8c:13:84:12:13:f3:e0:46:f5:58:a1:d8:fe: 07:7b:19:24:95:34:ac:0d:be:59:66:5c:f0:b7:a5: b1:9d:3b:1f:50:5a:4a:05:e0:ce:a7:7f:2a:82:d2: c1:e3:e0:ee:c3:f1:5e:55:83:20:19:59:32:85:ee: f4:ec:26:70:d1:7f:61:85:42:5c:02:5b:bf:93:d4: 02:b0:d8:74:02:9d:3c:ca:21:e6:38:b0:04:64:2f: 09:5f:a1:e6:c8:93:6a:38:3b:37:d2:dc:60:84:2b: 4d:eb:d7:a8:98:27:82:6a:0e:93:b0:33:91:1e:6d: 97:04:a4:1c:56:2f:92:55:58:f5:d0:a4:b7:bf:f7: 4f:58:b2:42:b1:9e:c1:79:6e:8d:26:27:cf:24:3e: 13:74:53:5e:e3:45:b8:e8:94:c4:58:bd:65:e5:de: 3b:fb:fa:02:6a:d7:43:d4:be:49:7c:90:9e:4d:aa: ce:e9:f9:9f:c7:55:31:52:03:f9:a9:15:95:2b:cb: 7c:02:ea:30:76:3c:5b:e2:50:68:26:a1:bc:14:25: 4e:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:C5:BB:29:71:32:A3:0C:58:45:30:5A:37:81:4B:C2:23:46:93:83 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/zcW7KXEyowxYRTBaN4FLwiNGk4M.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2406:1e80::/32 Signature Algorithm: sha256WithRSAEncryption 7d:bb:19:c7:98:ee:a4:90:25:4e:87:59:c9:c7:e7:23:43:16: e7:6c:9e:c0:6d:13:98:f3:0c:d9:35:08:f0:7f:3a:15:46:97: 5f:fb:e7:6c:f7:99:da:76:a6:1f:5c:ab:ca:74:5b:b7:2d:0c: b6:16:bd:00:44:c9:f6:43:a1:17:be:d9:4f:cf:5a:25:37:14: 1f:cf:8f:73:9b:f7:66:fc:54:0a:01:21:6f:21:41:19:a7:9b: 0b:aa:1b:b1:d0:93:58:4e:e3:80:52:35:5b:7d:5c:86:7c:65: 6d:09:76:37:0a:6b:97:ff:e7:c0:02:15:dd:59:e9:a2:82:56: b6:da:45:5f:c0:b0:37:26:2f:3b:ed:cd:4d:a2:77:db:e4:cc: af:bd:87:f5:b0:65:bc:c2:d0:05:d3:c8:28:ca:58:fc:c3:fe: 3a:3c:b2:3d:d6:9b:24:2e:e7:f8:93:7c:29:78:f5:02:1d:54: 0b:96:4f:ec:32:3e:14:bc:f1:60:44:8f:9b:97:dc:5e:58:98: 83:9f:7e:b6:1e:be:ee:b5:3e:cd:6e:13:dd:70:bd:ca:e8:81: cc:29:72:64:04:24:f4:a7:5b:85:10:d1:32:69:13:c0:37:dc: d2:9d:90:18:8a:c6:70:eb:cf:af:1c:6f:04:b0:fe:55:b6:bc: 6f:b4:cf:d7 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICHuAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA1MzRaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKENEQzVCQjI5NzEzMkEz MEM1ODQ1MzA1QTM3ODE0QkMyMjM0NjkzODMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2INfttpLm5LdVriCnh4yBwnheHRaaYK+hh3a5/ZSglCVUqdc6 22eLKhtpqrlcjBOEEhPz4Eb1WKHY/gd7GSSVNKwNvllmXPC3pbGdOx9QWkoF4M6n fyqC0sHj4O7D8V5VgyAZWTKF7vTsJnDRf2GFQlwCW7+T1AKw2HQCnTzKIeY4sARk LwlfoebIk2o4OzfS3GCEK03r16iYJ4JqDpOwM5EebZcEpBxWL5JVWPXQpLe/909Y skKxnsF5bo0mJ88kPhN0U17jRbjolMRYvWXl3jv7+gJq10PUvkl8kJ5Nqs7p+Z/H VTFSA/mpFZUry3wC6jB2PFviUGgmobwUJU4VAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUzcW7KXEyowxYRTBaN4FLwiNGk4MwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L3pjVzdLWEV5b3d4WVJU QmFONEZMd2lOR2s0TS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcD BQAkBh6AMA0GCSqGSIb3DQEBCwUAA4IBAQB9uxnHmO6kkCVOh1nJx+cjQxbnbJ7A bROY8wzZNQjwfzoVRpdf++ds95nadqYfXKvKdFu3LQy2Fr0ARMn2Q6EXvtlPz1ol NxQfz49zm/dm/FQKASFvIUEZp5sLqhux0JNYTuOAUjVbfVyGfGVtCXY3CmuX/+fA AhXdWemigla22kVfwLA3Ji877c1Nonfb5MyvvYf1sGW8wtAF08goylj8w/46PLI9 1pskLuf4k3wpePUCHVQLlk/sMj4UvPFgRI+bl9xeWJiDn362Hr7utT7NbhPdcL3K 6IHMKXJkBCT0p1uFENEyaRPAN9zSnZAYisZw68+vHG8EsP5VtrxvtM/X -----END CERTIFICATE-----Generated at Mon Oct 20 13:30:57 2025 by rpki-client