$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/rC79Kx82ax0cq7UE6h6rQmL-SQg.roa File: rC79Kx82ax0cq7UE6h6rQmL-SQg.roa (raw, json) Hash identifier: 0GKKzrd/WGZ2MOyvzO1UrXkijYndh8LJ/jNdvF5ZLn4= Subject key identifier: AC:2E:FD:2B:1F:36:6B:1D:1C:AB:B5:04:EA:1E:AB:42:62:FE:49:08 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1C9C Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/rC79Kx82ax0cq7UE6h6rQmL-SQg.roa Signing time: Thu 17 Jul 2025 03:48:05 +0000 ROA not before: Thu 17 Jul 2025 03:48:05 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 394881 IP address blocks: 45.252.144.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Jul 2025 18:41:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7324 (0x1c9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Jul 17 03:48:05 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=AC2EFD2B1F366B1D1CABB504EA1EAB4262FE4908 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:fc:d6:2d:b9:f6:97:13:2a:3d:fb:11:c6:ae: 13:2f:4f:81:67:47:c6:80:4a:f7:66:ac:7f:dc:bc: c8:e0:ac:32:45:e7:07:82:3b:a2:11:10:cf:a3:53: c0:d9:32:1c:c2:f8:58:f5:4a:8f:81:92:d2:98:2a: e4:ab:dd:d2:35:df:3e:99:85:a8:28:c1:83:12:33: eb:c1:71:0d:28:03:95:26:c1:a1:6a:fe:23:9a:05: f8:42:4c:58:e8:b7:7a:22:ed:d6:66:7f:63:68:42: 31:c3:4a:6c:45:26:7e:87:9e:bc:d3:f6:5b:0a:34: 1f:0c:4f:67:98:c1:8c:93:60:db:2e:8e:a9:83:2b: 30:38:0e:89:f3:df:ef:5b:38:97:d6:d3:dd:9c:ef: fc:b4:23:11:fa:5f:e3:95:7c:14:a8:e0:64:ae:7d: 8f:f5:67:27:0a:29:70:19:d8:3a:05:a9:45:af:ba: 87:c0:c6:c8:19:03:76:9d:33:6a:92:15:59:64:54: b4:1e:cd:67:63:b9:d0:5f:de:c4:a7:d0:1d:0c:8e: df:2a:57:dc:02:4f:06:ba:d4:10:df:e8:f9:7a:df: 92:f4:4d:b3:d0:dd:8b:80:ac:1a:d8:d1:c9:9c:43: 3c:b0:0b:a4:59:9b:40:c0:0b:3c:76:63:a7:6e:d3: e0:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:2E:FD:2B:1F:36:6B:1D:1C:AB:B5:04:EA:1E:AB:42:62:FE:49:08 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/rC79Kx82ax0cq7UE6h6rQmL-SQg.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 45.252.144.0/22 Signature Algorithm: sha256WithRSAEncryption 92:87:57:5a:df:2b:2a:c7:c5:c8:1c:f5:48:25:24:ad:5c:06: f5:2e:bf:c7:05:29:d3:5f:1c:67:00:0e:d5:5b:81:61:ba:e1: 1f:36:e6:d4:72:32:aa:a0:80:a7:75:75:7a:60:d3:ec:23:d3: c1:1d:51:ab:06:a4:32:eb:5d:c8:e8:d1:6a:1c:c8:f4:ad:14: 3c:d2:64:93:7c:a5:48:20:8b:b8:0e:b3:51:00:fd:51:fe:d4: 3a:bc:31:72:57:0a:bf:be:06:cc:60:a0:4b:0e:fa:15:09:4d: aa:b0:c7:f8:9b:59:b3:46:7b:b6:33:7d:74:80:50:d6:47:08: 02:3d:70:32:c9:f7:f8:8f:68:75:8b:f5:e9:8d:58:ff:ac:a2: 56:ef:53:b5:03:6a:a9:31:96:a0:05:b9:fc:71:a8:6f:1c:ec: 56:58:23:81:38:51:10:01:e5:9f:a8:d6:dc:d3:20:a2:05:9a: 72:3d:ab:70:3e:59:4f:16:95:28:33:6d:53:c1:2b:b0:ff:16: eb:81:dd:e7:51:bc:12:31:30:ab:b9:fe:6c:ef:69:84:25:01: 7f:a1:22:8e:1f:9d:23:47:c7:a0:81:f0:c6:30:12:20:c2:2d: 2d:70:d6:17:7e:01:7b:9b:a5:9f:ed:80:3c:e8:59:c9:e9:3e: 33:94:35:db -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHJwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA3MTcw MzQ4MDVaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKEFDMkVGRDJCMUYzNjZC MUQxQ0FCQjUwNEVBMUVBQjQyNjJGRTQ5MDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDO/NYtufaXEyo9+xHGrhMvT4FnR8aASvdmrH/cvMjgrDJF5weC O6IREM+jU8DZMhzC+Fj1So+BktKYKuSr3dI13z6ZhagowYMSM+vBcQ0oA5UmwaFq /iOaBfhCTFjot3oi7dZmf2NoQjHDSmxFJn6HnrzT9lsKNB8MT2eYwYyTYNsujqmD KzA4Donz3+9bOJfW092c7/y0IxH6X+OVfBSo4GSufY/1ZycKKXAZ2DoFqUWvuofA xsgZA3adM2qSFVlkVLQezWdjudBf3sSn0B0Mjt8qV9wCTwa61BDf6Pl635L0TbPQ 3YuArBrY0cmcQzywC6RZm0DACzx2Y6du0+AhAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUrC79Kx82ax0cq7UE6h6rQmL+SQgwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L3JDNzlLeDgyYXgwY3E3 VUU2aDZyUW1MLVNRZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAIt/JAwDQYJKoZIhvcNAQELBQADggEBAJKHV1rfKyrHxcgc9UglJK1cBvUuv8cF KdNfHGcADtVbgWG64R825tRyMqqggKd1dXpg0+wj08EdUasGpDLrXcjo0WocyPSt FDzSZJN8pUggi7gOs1EA/VH+1Dq8MXJXCr++BsxgoEsO+hUJTaqwx/ibWbNGe7Yz fXSAUNZHCAI9cDLJ9/iPaHWL9emNWP+solbvU7UDaqkxlqAFufxxqG8c7FZYI4E4 URAB5Z+o1tzTIKIFmnI9q3A+WU8WlSgzbVPBK7D/FuuB3edRvBIxMKu5/mzvaYQl AX+hIo4fnSNHx6CB8MYwEiDCLS1w1hd+AXubpZ/tgDzoWcnpPjOUNds= -----END CERTIFICATE-----Generated at Sun Jul 20 14:38:10 2025 by rpki-client