$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/RuabQ3d4tWDjRh47P--LxAj-tOQ.roa File: RuabQ3d4tWDjRh47P--LxAj-tOQ.roa (raw, json) Hash identifier: KySEiT6Mm7rbaXtaFN0+tDRu4x/DfXPX3JBlcqOsvLQ= Subject key identifier: 46:E6:9B:43:77:78:B5:60:E3:46:1E:3B:3F:EF:8B:C4:08:FE:B4:E4 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1CB5 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/RuabQ3d4tWDjRh47P--LxAj-tOQ.roa Signing time: Thu 17 Jul 2025 03:55:30 +0000 ROA not before: Thu 17 Jul 2025 03:55:30 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 25734 IP address blocks: 103.221.50.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 21 Jul 2025 09:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7349 (0x1cb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Jul 17 03:55:30 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=46E69B437778B560E3461E3B3FEF8BC408FEB4E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e1:41:43:4e:72:f4:51:54:50:60:2e:41:e3: a3:a9:93:61:35:ac:d9:89:78:02:bb:85:e3:59:2a: a3:77:37:95:e8:d3:f9:11:e1:d1:05:27:93:98:75: 7c:7a:45:7a:55:f7:5e:ba:b2:cf:9e:12:76:25:0c: a5:a6:49:15:46:51:5b:2a:31:89:87:c8:ac:62:4e: f6:2f:b8:3b:1c:52:ed:48:66:80:2e:22:b8:ee:ab: 6c:24:e5:ee:89:79:f1:9d:2f:e6:f6:23:ce:7b:99: 41:90:96:55:e1:92:a2:63:f5:a4:57:43:e7:8a:b7: 35:dd:6e:5c:b7:d8:f2:00:c9:c8:cc:5d:97:51:55: 8c:e9:1c:2a:e3:20:ef:10:6a:51:8e:f4:29:b4:69: 43:88:52:fe:99:a4:66:27:5c:bd:8e:f6:7d:78:af: bf:9f:74:fa:0c:ac:ee:2f:12:eb:47:31:af:26:64: 98:25:52:7c:18:0a:fa:db:85:17:83:ce:37:53:68: 07:59:ec:7f:e2:e9:6f:8c:ad:31:5e:6c:f4:9a:98: 09:87:f1:4d:16:f3:56:72:d5:19:25:a7:89:27:aa: 72:bc:a9:23:d7:02:bb:81:1c:6b:91:33:bb:26:0a: ad:54:9b:80:07:88:af:19:7e:68:12:fe:85:48:59: b3:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:E6:9B:43:77:78:B5:60:E3:46:1E:3B:3F:EF:8B:C4:08:FE:B4:E4 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/RuabQ3d4tWDjRh47P--LxAj-tOQ.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.50.0/23 Signature Algorithm: sha256WithRSAEncryption cd:da:72:bb:c4:02:e0:ce:0a:0c:ea:b0:25:9f:38:1c:fe:a0: a9:a5:a3:b6:c3:91:e4:88:32:d0:9e:df:a9:62:68:71:b8:46: 9f:48:ed:d8:93:28:75:2a:86:43:94:7d:c2:c1:22:7e:39:04: 30:ae:76:48:fa:70:17:a3:40:4a:0f:31:26:7e:b8:f5:91:da: 05:23:6f:fc:7b:62:f6:54:e1:f1:72:46:da:cc:12:36:c2:d6: 77:dd:5a:89:2e:47:9a:80:ef:c3:25:de:83:f5:3c:db:5c:5a: fb:52:eb:0e:f4:9c:1b:29:59:10:62:a9:36:97:27:ac:5d:97: b5:47:cc:e8:e9:8c:54:4a:df:90:00:fe:96:93:1e:ef:1c:01: a1:ed:cf:61:a3:e0:7f:0e:09:4b:a1:5e:c4:7e:09:73:5f:2c: 64:c4:7e:d8:3f:bc:6e:0a:06:16:72:a5:14:d8:02:35:ec:c7: 00:39:07:0a:91:2b:bf:65:6b:02:9d:db:02:8f:7d:d6:b1:8c: 86:bf:d7:44:1c:ff:7b:27:fb:47:c1:0e:d2:43:e1:4b:53:69: dc:47:b4:f7:7c:cd:85:c6:86:9c:02:fb:5c:1b:60:f1:f8:8e: a2:97:3c:0a:34:f5:b5:28:e3:ac:6e:f3:44:ff:d1:b8:3f:69: 0e:b6:a4:13 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHLUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA3MTcw MzU1MzBaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDQ2RTY5QjQzNzc3OEI1 NjBFMzQ2MUUzQjNGRUY4QkM0MDhGRUI0RTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDC4UFDTnL0UVRQYC5B46Opk2E1rNmJeAK7heNZKqN3N5Xo0/kR 4dEFJ5OYdXx6RXpV9166ss+eEnYlDKWmSRVGUVsqMYmHyKxiTvYvuDscUu1IZoAu Irjuq2wk5e6JefGdL+b2I857mUGQllXhkqJj9aRXQ+eKtzXdbly32PIAycjMXZdR VYzpHCrjIO8QalGO9Cm0aUOIUv6ZpGYnXL2O9n14r7+fdPoMrO4vEutHMa8mZJgl UnwYCvrbhReDzjdTaAdZ7H/i6W+MrTFebPSamAmH8U0W81Zy1Rklp4knqnK8qSPX AruBHGuRM7smCq1Um4AHiK8ZfmgS/oVIWbONAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQURuabQ3d4tWDjRh47P++LxAj+tOQwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L1J1YWJRM2Q0dFdEalJo NDdQLS1MeEFqLXRPUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFn3TIwDQYJKoZIhvcNAQELBQADggEBAM3acrvEAuDOCgzqsCWfOBz+oKmlo7bD keSIMtCe36liaHG4Rp9I7diTKHUqhkOUfcLBIn45BDCudkj6cBejQEoPMSZ+uPWR 2gUjb/x7YvZU4fFyRtrMEjbC1nfdWokuR5qA78Ml3oP1PNtcWvtS6w70nBspWRBi qTaXJ6xdl7VHzOjpjFRK35AA/paTHu8cAaHtz2Gj4H8OCUuhXsR+CXNfLGTEftg/ vG4KBhZypRTYAjXsxwA5BwqRK79lawKd2wKPfdaxjIa/10Qc/3sn+0fBDtJD4UtT adxHtPd8zYXGhpwC+1wbYPH4jqKXPAo09bUo46xu80T/0bg/aQ62pBM= -----END CERTIFICATE-----Generated at Mon Jul 21 07:57:04 2025 by rpki-client