$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/N_s0kyyFGebaX3_OXPWlxJ8Z__8.roa File: N_s0kyyFGebaX3_OXPWlxJ8Z__8.roa (raw, json) Hash identifier: iR5dFpcxji1G8c0P1MV1Pb3464rTvxBpmNwliVEo/50= Subject key identifier: 37:FB:34:93:2C:85:19:E6:DA:5F:7F:CE:5C:F5:A5:C4:9F:19:FF:FF Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1CAC Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/N_s0kyyFGebaX3_OXPWlxJ8Z__8.roa Signing time: Thu 17 Jul 2025 03:51:36 +0000 ROA not before: Thu 17 Jul 2025 03:51:36 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 394881 IP address blocks: 103.221.24.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 21 Jul 2025 04:11:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7340 (0x1cac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Jul 17 03:51:36 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=37FB34932C8519E6DA5F7FCE5CF5A5C49F19FFFF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:fe:d5:3f:e9:79:8a:3e:d4:81:f2:f1:e3:ea: f9:06:f0:5d:31:ea:4b:6f:07:81:d1:3c:ae:72:09: 00:b8:bc:ff:d7:ae:bb:dc:f1:d0:d1:d0:57:a5:2d: e7:eb:86:d4:02:79:6d:e4:f4:1d:b7:a8:f0:6e:15: 48:0e:97:eb:9c:5b:20:ab:de:f3:1f:62:f0:97:f9: f6:72:ba:21:7c:2e:2c:8f:39:5d:b0:68:d6:38:f8: 78:26:a3:d4:fe:44:13:e1:96:ef:7f:cc:15:25:ec: 45:68:2d:df:51:89:19:cd:01:c2:94:7c:c2:f0:f5: 51:6a:3e:b8:7c:fa:54:bf:e5:cd:9a:49:0c:bc:64: d9:5e:12:b8:00:d1:c2:59:c5:30:43:c4:6c:bf:b1: f6:a7:bb:94:cc:ce:f1:6e:3a:4e:0d:60:7b:a2:b3: d4:00:f1:ae:3f:61:83:77:0c:c4:3b:c3:74:50:7e: 81:c9:0b:69:7b:ef:b3:67:a8:34:4c:6c:98:8b:1d: 47:29:3f:1a:4d:8e:56:9d:c3:9c:24:2e:b4:04:48: cc:9c:da:d9:e1:5e:2f:00:d7:38:42:eb:f7:c8:c4: 7a:2f:91:4f:9d:b6:72:09:54:bc:c8:11:3c:24:1e: 62:c9:0f:d2:b2:df:97:c0:4a:64:ff:52:02:ad:c5: 53:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:FB:34:93:2C:85:19:E6:DA:5F:7F:CE:5C:F5:A5:C4:9F:19:FF:FF X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/N_s0kyyFGebaX3_OXPWlxJ8Z__8.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.24.0/22 Signature Algorithm: sha256WithRSAEncryption 52:3e:92:0d:a0:20:b9:88:35:04:36:5b:53:e4:c7:71:fd:ed: fb:93:5a:d5:2b:7a:c0:5d:de:0b:83:74:03:4e:f6:55:db:47: 1d:ed:f4:52:db:73:04:7e:45:9a:69:61:d4:61:66:2b:68:df: 29:0e:d2:a8:d9:76:f6:2a:52:4f:00:d5:47:e3:e4:c8:21:ae: c9:db:a8:f5:02:82:55:99:20:05:45:d6:96:66:04:98:d5:62: 9b:2a:95:ab:0f:b2:f9:ee:e3:58:82:93:c5:8b:4e:a4:73:1a: 1e:d6:92:7d:40:bd:85:ea:75:77:4b:43:bb:f2:5d:c4:0a:34: cd:12:e0:2c:e3:48:42:59:57:7d:0f:e7:d2:58:f1:df:05:df: 1c:0a:fc:ea:76:31:e7:97:27:34:af:d9:ea:a5:3b:9d:d5:62: 8a:f4:9a:83:50:ad:55:39:26:c0:17:cf:57:e0:15:37:4c:1d: 25:b5:af:0f:2f:69:e8:c9:eb:ff:eb:d9:d7:cb:6b:18:71:da: a6:ca:7c:5e:ef:ba:42:65:55:82:d3:ca:a4:0f:e2:33:e0:ef: cb:5d:eb:af:83:7d:54:c8:c3:7a:21:17:c2:ce:61:f8:d7:4d: 32:c2:2b:da:b4:47:cd:c4:d7:6b:fe:a9:3f:02:ce:21:14:3c: 7d:24:d9:92 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHKwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA3MTcw MzUxMzZaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDM3RkIzNDkzMkM4NTE5 RTZEQTVGN0ZDRTVDRjVBNUM0OUYxOUZGRkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDF/tU/6XmKPtSB8vHj6vkG8F0x6ktvB4HRPK5yCQC4vP/Xrrvc 8dDR0FelLefrhtQCeW3k9B23qPBuFUgOl+ucWyCr3vMfYvCX+fZyuiF8LiyPOV2w aNY4+Hgmo9T+RBPhlu9/zBUl7EVoLd9RiRnNAcKUfMLw9VFqPrh8+lS/5c2aSQy8 ZNleErgA0cJZxTBDxGy/sfanu5TMzvFuOk4NYHuis9QA8a4/YYN3DMQ7w3RQfoHJ C2l777NnqDRMbJiLHUcpPxpNjladw5wkLrQESMyc2tnhXi8A1zhC6/fIxHovkU+d tnIJVLzIETwkHmLJD9Ky35fASmT/UgKtxVMNAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUN/s0kyyFGebaX3/OXPWlxJ8Z//8wHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L05fczBreXlGR2ViYVgz X09YUFdseEo4Wl9fOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJn3RgwDQYJKoZIhvcNAQELBQADggEBAFI+kg2gILmINQQ2W1Pkx3H97fuTWtUr esBd3guDdANO9lXbRx3t9FLbcwR+RZppYdRhZito3ykO0qjZdvYqUk8A1Ufj5Mgh rsnbqPUCglWZIAVF1pZmBJjVYpsqlasPsvnu41iCk8WLTqRzGh7Wkn1AvYXqdXdL Q7vyXcQKNM0S4CzjSEJZV30P59JY8d8F3xwK/Op2MeeXJzSv2eqlO53VYor0moNQ rVU5JsAXz1fgFTdMHSW1rw8vaejJ6//r2dfLaxhx2qbKfF7vukJlVYLTyqQP4jPg 78td66+DfVTIw3ohF8LOYfjXTTLCK9q0R83E12v+qT8CziEUPH0k2ZI= -----END CERTIFICATE-----Generated at Sun Jul 20 23:10:48 2025 by rpki-client