$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/8ULUUvkzK-ow9sB44rtAEKZ706s.roa File: 8ULUUvkzK-ow9sB44rtAEKZ706s.roa (raw, json) Hash identifier: RAmbny/WkN14OlxB0f76+h/MeD5E3hMSRd6CQkO9unU= Subject key identifier: F1:42:D4:52:F9:33:2B:EA:30:F6:C0:78:E2:BB:40:10:A6:7B:D3:AB Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1CAB Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/8ULUUvkzK-ow9sB44rtAEKZ706s.roa Signing time: Thu 17 Jul 2025 03:51:36 +0000 ROA not before: Thu 17 Jul 2025 03:51:36 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 394881 IP address blocks: 103.221.36.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Jul 2025 18:41:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7339 (0x1cab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Jul 17 03:51:36 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=F142D452F9332BEA30F6C078E2BB4010A67BD3AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:d2:ef:86:77:84:65:48:c8:82:20:91:f6:6c: f1:c8:10:7b:67:55:ac:8c:5e:73:32:e9:75:97:1b: 9d:0c:fc:85:ab:88:77:05:03:ae:66:3a:72:98:3a: eb:95:4b:9b:52:9b:9c:bb:8f:3c:af:a2:10:24:3c: 4f:ca:d3:d9:97:19:e3:fa:d7:bb:2b:2f:98:45:ef: b3:60:cb:bb:ef:1d:aa:e8:86:5a:dc:12:ca:25:be: 84:48:20:3a:98:0c:a1:9b:fb:98:e3:98:83:49:ab: 36:1a:d4:e7:fa:c5:b9:3d:7f:9b:d3:04:b8:5a:55: 60:48:11:cf:88:65:15:4e:db:cb:11:83:c1:c0:70: e3:28:7d:73:b5:77:ef:5d:49:5a:72:30:c8:b7:a9: 58:e3:7d:cb:a2:68:59:2c:90:71:50:e8:6c:cc:44: e1:3f:63:ee:30:2a:d9:73:88:21:1d:b8:b8:a2:02: 40:70:28:68:b9:03:09:1a:fd:ae:ef:15:29:f1:0a: 2a:d4:72:9e:c7:a3:7e:bf:42:e2:eb:9e:e9:4e:ba: 96:17:0c:a6:c2:a4:07:c1:4b:c4:fe:41:91:a9:b2: ac:5f:22:b3:e2:0c:07:2a:84:5a:bd:00:42:40:61: 9c:eb:f0:26:80:0a:47:46:6e:f6:2a:bb:be:5c:c2: f8:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:42:D4:52:F9:33:2B:EA:30:F6:C0:78:E2:BB:40:10:A6:7B:D3:AB X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/8ULUUvkzK-ow9sB44rtAEKZ706s.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.36.0/22 Signature Algorithm: sha256WithRSAEncryption 89:f3:5f:90:3f:7e:2b:16:b0:c6:52:13:8d:fe:27:31:21:47: 6f:2d:6b:73:8b:ce:7b:c7:a9:27:b9:03:3a:ed:e7:22:37:6a: b9:35:75:45:17:61:04:ad:5f:9c:dd:9e:e3:da:bc:2b:d9:7d: d9:b4:c4:3d:a3:23:5c:db:9e:24:71:2b:70:5e:b5:2c:f3:68: 6f:ec:aa:76:49:66:02:f7:e8:7e:3e:bd:5c:3a:2c:55:75:35: 44:3d:4b:f1:4f:7a:4a:10:12:02:e8:f1:89:1f:8c:eb:85:a4: 04:9d:46:61:b2:d0:d5:9f:41:8c:38:c8:58:10:b6:ac:7b:29: ce:99:f5:8c:7b:ad:6e:f2:c2:97:62:9c:c4:8d:45:78:5e:60: 2b:c0:e1:9e:4a:bd:59:b6:80:17:88:ed:a9:bb:00:d0:67:2a: 5e:1f:0a:eb:09:8d:07:bb:01:a5:ab:a1:72:bf:01:1c:0d:0e: ce:a7:9d:a3:76:a2:34:df:8d:03:f9:4a:33:33:62:7b:9e:6e: 77:e1:d0:e0:d3:e5:97:59:be:c6:b2:d4:c3:0e:06:28:30:a1: ae:2f:fd:87:b8:57:07:6c:98:5a:4d:a7:99:5f:b2:52:cf:52: 4f:9d:c3:6b:19:91:5b:96:b2:1a:d7:50:2b:5e:91:aa:26:42: 14:e1:17:65 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHKswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA3MTcw MzUxMzZaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKEYxNDJENDUyRjkzMzJC RUEzMEY2QzA3OEUyQkI0MDEwQTY3QkQzQUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDW0u+Gd4RlSMiCIJH2bPHIEHtnVayMXnMy6XWXG50M/IWriHcF A65mOnKYOuuVS5tSm5y7jzyvohAkPE/K09mXGeP617srL5hF77Ngy7vvHarohlrc EsolvoRIIDqYDKGb+5jjmINJqzYa1Of6xbk9f5vTBLhaVWBIEc+IZRVO28sRg8HA cOMofXO1d+9dSVpyMMi3qVjjfcuiaFkskHFQ6GzMROE/Y+4wKtlziCEduLiiAkBw KGi5Awka/a7vFSnxCirUcp7Ho36/QuLrnulOupYXDKbCpAfBS8T+QZGpsqxfIrPi DAcqhFq9AEJAYZzr8CaACkdGbvYqu75cwvhHAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQU8ULUUvkzK+ow9sB44rtAEKZ706swHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3LzhVTFVVdmt6Sy1vdzlz QjQ0cnRBRUtaNzA2cy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJn3SQwDQYJKoZIhvcNAQELBQADggEBAInzX5A/fisWsMZSE43+JzEhR28ta3OL znvHqSe5Azrt5yI3ark1dUUXYQStX5zdnuPavCvZfdm0xD2jI1zbniRxK3BetSzz aG/sqnZJZgL36H4+vVw6LFV1NUQ9S/FPekoQEgLo8YkfjOuFpASdRmGy0NWfQYw4 yFgQtqx7Kc6Z9Yx7rW7ywpdinMSNRXheYCvA4Z5KvVm2gBeI7am7ANBnKl4fCusJ jQe7AaWroXK/ARwNDs6nnaN2ojTfjQP5SjMzYnuebnfh0ODT5ZdZvsay1MMOBigw oa4v/Ye4VwdsmFpNp5lfslLPUk+dw2sZkVuWshrXUCtekaomQhThF2U= -----END CERTIFICATE-----Generated at Sun Jul 20 14:39:38 2025 by rpki-client