$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/7DDNs8kmbKMMDAUuEBi_rw0xNVs.roa File: 7DDNs8kmbKMMDAUuEBi_rw0xNVs.roa (raw, json) Hash identifier: l9WZOVU7jnAjcl9pbS+8Hxq6tVqsyf0sNUx7sx8p/0g= Subject key identifier: EC:30:CD:B3:C9:26:6C:A3:0C:0C:05:2E:10:18:BF:AF:0D:31:35:5B Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1CA9 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/7DDNs8kmbKMMDAUuEBi_rw0xNVs.roa Signing time: Thu 17 Jul 2025 03:51:35 +0000 ROA not before: Thu 17 Jul 2025 03:51:35 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 25734 IP address blocks: 103.221.24.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 21 Jul 2025 18:41:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7337 (0x1ca9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Jul 17 03:51:35 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=EC30CDB3C9266CA30C0C052E1018BFAF0D31355B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:a6:41:3d:fe:e9:13:0d:f7:ae:d4:7e:10:b8: 7d:53:e9:6e:4a:42:35:55:87:55:06:f5:af:e0:b5: b3:d8:a6:88:c0:e4:6a:cb:a2:97:83:ed:44:6f:ed: 6a:9d:62:6e:f7:ac:b8:4f:5e:96:6a:8b:13:bc:0c: 85:bc:e3:d7:ce:92:bb:ab:1e:22:ae:a4:ce:86:75: 55:80:b4:53:76:f0:50:9e:ae:2e:a4:c6:77:5f:9d: 0e:8c:aa:e2:56:cc:4f:ab:6b:0e:ee:81:14:66:16: e0:7c:cf:38:eb:51:13:1b:0d:8b:9c:81:82:f7:ff: 51:ab:e9:0a:db:25:76:ab:a3:21:a7:46:64:04:56: 16:b9:fc:11:23:f9:da:3d:1d:74:a0:5e:a6:df:e9: b9:82:b4:93:3f:5c:7d:06:1e:8e:d0:87:2e:87:33: d1:30:36:40:2a:f0:c0:18:a0:45:37:1e:71:67:31: 75:a5:a9:95:af:19:e8:04:c0:d1:8f:94:0e:48:7b: 40:22:90:2a:ef:b0:b7:65:00:37:0f:2f:a0:5f:e8: 13:c0:40:6e:90:e7:ac:1b:7f:c0:0f:02:9c:5b:2f: 62:7e:61:25:9a:eb:d1:ed:39:9f:11:b1:1a:93:6a: b7:e1:c3:87:6b:fd:6f:b8:92:12:3c:37:e2:9b:3e: 20:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:30:CD:B3:C9:26:6C:A3:0C:0C:05:2E:10:18:BF:AF:0D:31:35:5B X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/7DDNs8kmbKMMDAUuEBi_rw0xNVs.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.24.0/22 Signature Algorithm: sha256WithRSAEncryption 6a:04:2d:49:46:25:ad:76:a8:54:3a:7f:79:0c:bf:0f:aa:b5: 39:5a:97:ea:18:b8:bf:b7:9a:21:07:4b:bc:76:4f:c8:e3:81: a2:80:2e:78:ad:02:04:ef:5e:1d:40:89:c4:24:c0:36:1e:70: 86:63:c6:72:db:fc:9f:46:06:96:38:b8:a8:e7:42:bb:c2:66: 94:c8:58:53:51:02:2a:e3:23:b1:6c:36:59:53:0d:a1:88:70: 82:94:8c:9f:d5:f1:ef:93:d4:dd:89:2c:ce:10:e2:e2:3b:17: a3:f4:fe:80:c7:e3:55:79:f6:11:4f:6f:23:e2:fb:3f:bf:74: b1:18:fb:d9:e2:9f:27:bb:c5:06:b2:d3:76:58:aa:58:c6:d6: c8:2d:c7:f3:18:fb:0c:64:64:d1:aa:b1:6a:df:af:c7:c7:67: 3b:f4:c6:9d:21:e3:08:76:2e:c9:d2:a7:c5:24:85:5f:77:72: 87:e4:37:b8:4a:52:4c:d0:f9:2d:dc:dc:71:d1:38:b3:c0:ec: 53:f8:54:90:cc:d3:59:ff:9c:f1:75:17:fa:12:58:e0:9a:6e: 9d:29:c9:b8:f2:ae:52:c4:92:cc:04:37:90:ad:7f:f5:4e:57: c6:e6:4f:11:d0:cb:22:f3:9e:a6:3e:d4:76:98:3b:19:24:d9: 34:5e:3c:48 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHKkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA3MTcw MzUxMzVaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKEVDMzBDREIzQzkyNjZD QTMwQzBDMDUyRTEwMThCRkFGMEQzMTM1NUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLpkE9/ukTDfeu1H4QuH1T6W5KQjVVh1UG9a/gtbPYpojA5GrL opeD7URv7WqdYm73rLhPXpZqixO8DIW849fOkrurHiKupM6GdVWAtFN28FCeri6k xndfnQ6MquJWzE+raw7ugRRmFuB8zzjrURMbDYucgYL3/1Gr6QrbJXaroyGnRmQE Vha5/BEj+do9HXSgXqbf6bmCtJM/XH0GHo7Qhy6HM9EwNkAq8MAYoEU3HnFnMXWl qZWvGegEwNGPlA5Ie0AikCrvsLdlADcPL6Bf6BPAQG6Q56wbf8APApxbL2J+YSWa 69HtOZ8RsRqTarfhw4dr/W+4khI8N+KbPiCxAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQU7DDNs8kmbKMMDAUuEBi/rw0xNVswHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3LzdERE5zOGttYktNTURB VXVFQmlfcncweE5Wcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJn3RgwDQYJKoZIhvcNAQELBQADggEBAGoELUlGJa12qFQ6f3kMvw+qtTlal+oY uL+3miEHS7x2T8jjgaKALnitAgTvXh1AicQkwDYecIZjxnLb/J9GBpY4uKjnQrvC ZpTIWFNRAirjI7FsNllTDaGIcIKUjJ/V8e+T1N2JLM4Q4uI7F6P0/oDH41V59hFP byPi+z+/dLEY+9ninye7xQay03ZYqljG1sgtx/MY+wxkZNGqsWrfr8fHZzv0xp0h 4wh2LsnSp8UkhV93cofkN7hKUkzQ+S3c3HHROLPA7FP4VJDM01n/nPF1F/oSWOCa bp0pybjyrlLEkswEN5Ctf/VOV8bmTxHQyyLznqY+1HaYOxkk2TRePEg= -----END CERTIFICATE-----Generated at Mon Jul 21 13:48:34 2025 by rpki-client