$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/wdi1bgAlwWTY09fHxuWhrvTnvQs.roa File: wdi1bgAlwWTY09fHxuWhrvTnvQs.roa (raw, json) Hash identifier: u9Dsox1hU4hzHq6dEp6LjpfZvHIA7l+WYUOQq4zsY9c= Subject key identifier: C1:D8:B5:6E:00:25:C1:64:D8:D3:D7:C7:C6:E5:A1:AE:F4:E7:BD:0B Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1CBD Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/wdi1bgAlwWTY09fHxuWhrvTnvQs.roa Signing time: Thu 17 Jul 2025 03:55:32 +0000 ROA not before: Thu 17 Jul 2025 03:55:32 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 394881 IP address blocks: 103.221.92.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Jul 2025 18:41:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7357 (0x1cbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Jul 17 03:55:32 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=C1D8B56E0025C164D8D3D7C7C6E5A1AEF4E7BD0B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:b3:84:3c:df:62:38:53:67:88:52:66:8c:b5: 9c:17:f7:d9:9c:4c:e6:c5:d3:7c:d0:0e:90:43:63: c3:6e:15:88:55:f8:29:03:d0:f9:54:98:c6:bc:28: b7:e1:a6:b0:11:eb:d9:01:62:43:c4:06:fd:bc:d6: f2:7c:e2:87:34:ed:30:7a:95:68:a7:f6:21:96:c7: 77:3f:b7:20:ed:f2:18:9a:60:b8:c0:37:60:c1:b0: ed:ef:00:cb:45:fe:5e:b6:2b:be:35:f1:51:5b:bc: 28:b2:23:8a:04:78:da:2d:2c:94:e4:05:f9:9a:92: fa:a8:8b:03:a4:2b:dd:14:a1:47:49:f0:e5:39:a2: fa:7d:8c:5b:0b:27:0c:48:df:25:2a:69:d6:b3:f7: 4d:ac:cc:41:44:2b:f1:8e:bc:12:da:b3:d2:ab:29: 65:d5:bf:f4:eb:db:5c:88:6b:16:6c:f9:1d:41:b7: 90:db:98:7b:3e:a0:c8:b2:ce:53:2b:dc:6f:44:31: d7:81:53:82:8e:2c:b3:c3:64:e9:c4:b7:6e:80:5c: 24:ae:55:ab:ef:cf:f9:5f:d1:27:9e:68:6b:86:28: 5d:d2:e1:75:04:00:ff:91:5f:43:f7:61:b8:b3:17: 40:88:ce:57:59:da:66:34:54:15:57:19:bf:61:2b: 1f:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:D8:B5:6E:00:25:C1:64:D8:D3:D7:C7:C6:E5:A1:AE:F4:E7:BD:0B X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/wdi1bgAlwWTY09fHxuWhrvTnvQs.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.92.0/22 Signature Algorithm: sha256WithRSAEncryption 15:da:ce:96:c0:c0:32:58:e1:51:81:b2:b1:84:d5:0d:d2:01: fc:0d:78:76:e1:31:3a:04:08:39:06:81:28:6c:b2:d4:69:c1: 8e:0a:ca:dc:c5:62:b5:33:71:87:94:68:28:e5:d2:66:5d:77: 31:56:22:b2:54:c7:ed:be:b6:f3:ae:05:5f:1c:45:66:18:45: e7:df:ca:5b:7e:40:5f:e1:db:78:7d:3d:4a:16:e2:a7:f3:cc: aa:5d:41:1e:9b:62:72:e0:49:e2:48:c0:f1:59:59:c9:46:4d: 5b:6b:7a:cc:f2:16:4d:49:44:2c:0f:95:a9:e6:ce:6f:67:84: 45:14:b4:28:99:19:07:6d:7d:a1:38:47:36:fe:eb:fc:c2:8e: b6:75:b9:82:65:ad:f4:d6:c2:25:73:51:a8:ef:60:a3:79:14: 63:7d:23:b0:a2:7c:91:bf:6e:44:d5:7c:e8:69:25:08:56:c4: 51:2e:f2:79:b5:cc:a4:7e:a1:25:95:67:2e:b1:30:bb:6a:0f: 43:a2:ed:7e:72:01:f1:da:ce:0b:e9:a9:92:2f:4a:c1:ae:7e: 62:fc:33:9f:1b:92:96:cd:f9:25:fd:bc:3b:c5:e9:dd:45:6e: 0d:ca:a4:98:14:d0:c2:84:df:a7:e5:ba:33:6a:16:13:63:12: 27:e7:5b:df -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHL0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA3MTcw MzU1MzJaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKEMxRDhCNTZFMDAyNUMx NjREOEQzRDdDN0M2RTVBMUFFRjRFN0JEMEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCTs4Q832I4U2eIUmaMtZwX99mcTObF03zQDpBDY8NuFYhV+CkD 0PlUmMa8KLfhprAR69kBYkPEBv281vJ84oc07TB6lWin9iGWx3c/tyDt8hiaYLjA N2DBsO3vAMtF/l62K7418VFbvCiyI4oEeNotLJTkBfmakvqoiwOkK90UoUdJ8OU5 ovp9jFsLJwxI3yUqadaz902szEFEK/GOvBLas9KrKWXVv/Tr21yIaxZs+R1Bt5Db mHs+oMiyzlMr3G9EMdeBU4KOLLPDZOnEt26AXCSuVavvz/lf0SeeaGuGKF3S4XUE AP+RX0P3YbizF0CIzldZ2mY0VBVXGb9hKx8rAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUwdi1bgAlwWTY09fHxuWhrvTnvQswHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L3dkaTFiZ0Fsd1dUWTA5 Zkh4dVdocnZUbnZRcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJn3VwwDQYJKoZIhvcNAQELBQADggEBABXazpbAwDJY4VGBsrGE1Q3SAfwNeHbh MToECDkGgShsstRpwY4KytzFYrUzcYeUaCjl0mZddzFWIrJUx+2+tvOuBV8cRWYY Reffylt+QF/h23h9PUoW4qfzzKpdQR6bYnLgSeJIwPFZWclGTVtreszyFk1JRCwP lanmzm9nhEUUtCiZGQdtfaE4Rzb+6/zCjrZ1uYJlrfTWwiVzUajvYKN5FGN9I7Ci fJG/bkTVfOhpJQhWxFEu8nm1zKR+oSWVZy6xMLtqD0Oi7X5yAfHazgvpqZIvSsGu fmL8M58bkpbN+SX9vDvF6d1Fbg3KpJgU0MKE36flujNqFhNjEifnW98= -----END CERTIFICATE-----Generated at Sun Jul 20 14:35:37 2025 by rpki-client