$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/3_oBZyu_JlaTECpoTWHLGRgHA7s.roa File: 3_oBZyu_JlaTECpoTWHLGRgHA7s.roa (raw, json) Hash identifier: sa0vn+FZ548d949Pu7IeJLrY4kwHTPPnAj3XsmfzZnQ= Subject key identifier: DF:FA:01:67:2B:BF:26:56:93:10:2A:68:4D:61:CB:19:18:07:03:BB Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1CAF Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/3_oBZyu_JlaTECpoTWHLGRgHA7s.roa Signing time: Thu 17 Jul 2025 03:51:37 +0000 ROA not before: Thu 17 Jul 2025 03:51:37 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 394881 IP address blocks: 103.221.16.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Jul 2025 18:41:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7343 (0x1caf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Jul 17 03:51:37 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=DFFA01672BBF265693102A684D61CB19180703BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:1d:0b:2d:fb:df:07:21:f6:25:58:47:72:6e: 27:1c:39:b7:ce:8d:99:ae:38:d2:e6:bb:57:ff:1d: 9f:d7:98:ca:a0:14:55:a5:89:ba:33:e3:9a:0a:94: 04:be:ff:bf:da:cd:56:4b:29:1e:bf:f6:42:4e:91: 3f:68:4a:4d:a4:08:bb:83:c7:bc:1c:34:ca:d7:1d: 1e:f0:44:e9:e4:ff:a9:35:86:7d:e4:89:7f:fc:24: da:5b:b8:07:65:dc:41:36:55:d4:73:70:ad:b0:e0: 3b:4e:5c:aa:d5:1e:16:cb:be:a3:a0:61:1b:00:bd: 4a:30:3f:58:bf:b0:2c:4a:4a:cb:28:cf:2e:ad:0b: 75:07:fa:44:e2:93:91:08:f2:c1:5a:61:4d:00:69: 72:79:3e:cd:de:c1:69:59:4f:18:1a:f9:ae:f5:07: 95:22:f8:2f:d9:55:a6:8a:5e:f5:2c:ac:a1:c7:e8: b5:99:74:2e:c3:15:fc:c7:90:fb:36:74:25:96:49: 6b:72:7c:c9:f3:5b:6c:5b:93:8a:2c:35:0c:8d:04: d5:d3:da:9b:ee:82:da:84:92:e3:fd:92:f9:e9:03: 6e:e3:c7:e0:94:ff:a3:5e:07:5f:2a:4e:7d:5e:30: bf:a1:c6:2b:da:73:0f:e9:5f:37:65:15:ef:6c:e9: af:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:FA:01:67:2B:BF:26:56:93:10:2A:68:4D:61:CB:19:18:07:03:BB X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/3_oBZyu_JlaTECpoTWHLGRgHA7s.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.16.0/22 Signature Algorithm: sha256WithRSAEncryption 79:12:c0:bb:fc:ad:42:61:73:fc:bf:06:fb:01:60:d1:8b:1d: 96:13:c2:67:cc:6a:cf:ad:69:b0:51:ca:97:8b:be:9d:05:37: 67:92:0c:6b:c9:70:cf:7b:51:44:7e:b3:7a:b1:0f:1e:bd:99: f2:79:35:01:58:1d:53:d3:fa:3c:6b:fd:4e:0c:56:16:20:74: 99:9e:1c:c4:c4:9b:a4:ee:83:1f:12:73:8a:1f:a7:a4:07:6e: 4f:93:6b:c3:ec:b3:68:ae:76:e5:b9:43:93:be:a4:93:10:c1: 0d:a9:f5:2b:02:fa:6b:3e:19:e6:26:9a:81:a3:81:ba:c5:8f: d1:33:c4:44:e8:56:b2:fd:b8:b9:42:b7:98:89:5b:00:70:51: 38:20:74:9e:ab:2e:62:b2:4a:2a:df:a0:a8:d2:07:f4:a8:81: 48:c5:9d:ca:91:3c:97:0c:12:b4:18:ed:d6:19:77:c2:ef:4c: b3:50:19:ae:6a:cf:72:0c:60:7d:af:aa:11:c7:e0:aa:69:15: a6:f6:02:9b:57:81:e0:dc:a9:27:12:fc:f0:52:87:8c:34:ba: 80:1c:3b:82:c1:b7:f5:da:e8:f8:8c:32:d0:04:3f:96:33:e6: 66:27:6c:d3:dc:f8:39:c2:a8:f3:36:6e:ad:32:32:5c:ac:2b: 34:ba:1c:de -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHK8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA3MTcw MzUxMzdaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKERGRkEwMTY3MkJCRjI2 NTY5MzEwMkE2ODRENjFDQjE5MTgwNzAzQkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpHQst+98HIfYlWEdybiccObfOjZmuONLmu1f/HZ/XmMqgFFWl iboz45oKlAS+/7/azVZLKR6/9kJOkT9oSk2kCLuDx7wcNMrXHR7wROnk/6k1hn3k iX/8JNpbuAdl3EE2VdRzcK2w4DtOXKrVHhbLvqOgYRsAvUowP1i/sCxKSssozy6t C3UH+kTik5EI8sFaYU0AaXJ5Ps3ewWlZTxga+a71B5Ui+C/ZVaaKXvUsrKHH6LWZ dC7DFfzHkPs2dCWWSWtyfMnzW2xbk4osNQyNBNXT2pvugtqEkuP9kvnpA27jx+CU /6NeB18qTn1eML+hxivacw/pXzdlFe9s6a+DAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQU3/oBZyu/JlaTECpoTWHLGRgHA7swHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3LzNfb0JaeXVfSmxhVEVD cG9UV0hMR1JnSEE3cy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJn3RAwDQYJKoZIhvcNAQELBQADggEBAHkSwLv8rUJhc/y/BvsBYNGLHZYTwmfM as+tabBRypeLvp0FN2eSDGvJcM97UUR+s3qxDx69mfJ5NQFYHVPT+jxr/U4MVhYg dJmeHMTEm6Tugx8Sc4ofp6QHbk+Ta8Pss2iuduW5Q5O+pJMQwQ2p9SsC+ms+GeYm moGjgbrFj9EzxEToVrL9uLlCt5iJWwBwUTggdJ6rLmKySirfoKjSB/SogUjFncqR PJcMErQY7dYZd8LvTLNQGa5qz3IMYH2vqhHH4KppFab2AptXgeDcqScS/PBSh4w0 uoAcO4LBt/Xa6PiMMtAEP5Yz5mYnbNPc+DnCqPM2bq0yMlysKzS6HN4= -----END CERTIFICATE-----Generated at Sun Jul 20 14:40:11 2025 by rpki-client