$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/cU_Ur5XguIVf4L5nluTdOYGDSdE.roa File: cU_Ur5XguIVf4L5nluTdOYGDSdE.roa (raw, json) Hash identifier: xBwBK0BqlB3quOIyPcovG43LjStSbbslKF/4eh85kdw= Subject key identifier: 71:4F:D4:AF:95:E0:B8:85:5F:E0:BE:67:96:E4:DD:39:81:83:49:D1 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1C98 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/cU_Ur5XguIVf4L5nluTdOYGDSdE.roa Signing time: Thu 17 Jul 2025 03:48:04 +0000 ROA not before: Thu 17 Jul 2025 03:48:04 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 25734 IP address blocks: 103.6.108.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Jul 2025 04:41:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7320 (0x1c98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Jul 17 03:48:04 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=714FD4AF95E0B8855FE0BE6796E4DD39818349D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:30:88:3a:e2:b1:da:03:3e:3b:8f:51:76:db: 88:3d:29:d9:c8:5f:0b:27:9a:96:39:3d:1d:80:89: ef:f4:a7:fb:73:fc:3a:e1:d1:93:c7:a3:9d:98:09: b0:8f:f7:a1:00:1a:04:df:31:c4:62:aa:17:80:4a: 0e:ff:ea:7d:e0:44:7a:8d:be:83:70:5a:1b:ba:f9: ba:2e:43:f1:ab:b4:ea:5c:46:e0:f3:69:f5:16:18: 00:f6:07:7f:b7:29:a0:2b:9a:d4:76:0b:22:ec:5a: 2c:9d:02:09:85:7c:e0:c2:b8:df:2f:c5:d6:af:6f: c1:23:3f:b3:a3:e4:49:9a:6c:7e:04:0f:2e:3f:5e: 90:02:13:53:7e:cd:6d:ff:fc:35:f2:fd:c4:26:e3: 72:9e:8e:e5:a7:36:bf:3e:1a:44:32:38:15:78:1d: 0e:84:cd:8a:79:aa:53:71:a2:75:23:c1:55:6c:5e: 9b:e1:c3:61:fa:c1:68:e7:a4:2a:50:55:b4:cc:f7: cd:cc:b1:83:59:89:e8:d5:e1:5e:13:ac:29:53:a7: c3:1d:9b:d3:b0:b1:2b:2b:30:da:1b:35:5c:ad:61: 93:2a:e5:22:dc:71:9b:38:51:2c:8d:3a:89:a4:d8: b8:64:e6:65:7c:2e:16:54:ab:ce:05:f8:bb:37:62: f5:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:4F:D4:AF:95:E0:B8:85:5F:E0:BE:67:96:E4:DD:39:81:83:49:D1 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/cU_Ur5XguIVf4L5nluTdOYGDSdE.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.6.108.0/22 Signature Algorithm: sha256WithRSAEncryption 97:f9:95:3a:1a:d7:b4:22:11:75:7f:45:c2:80:47:28:86:62: c2:13:75:fb:d4:df:17:45:87:0f:fc:72:28:dd:1f:5d:6f:53: 9c:d7:dd:57:38:50:fa:f6:b7:e1:08:8c:d4:35:7e:96:75:7c: 7e:63:06:3d:2c:85:51:44:f8:58:51:f1:db:57:5e:99:0e:56: 1f:75:63:36:ca:b7:df:3d:d7:a6:9f:c7:cc:15:fa:67:eb:46: 9e:f1:a1:a8:59:da:5c:94:23:15:d0:82:21:94:81:0f:fb:cc: 86:47:1d:6c:a7:52:05:1f:65:6f:8c:cc:d1:87:e2:a9:ee:0b: 17:af:1a:6b:4e:76:fd:67:cb:3d:0e:04:03:28:50:78:eb:ea: 14:a2:94:9c:4c:76:9a:e0:3c:32:dd:7b:c3:2d:00:e2:44:10: 38:50:c9:44:e8:23:4b:58:0f:87:f0:23:e2:11:93:1c:cf:ba: 2b:45:8f:6f:47:32:95:b0:7a:7f:84:4c:64:1c:74:c0:c0:07: 17:e9:49:9e:61:ad:03:c9:06:fa:bb:2a:28:62:06:54:68:71: 6a:e7:36:9f:5a:73:21:9e:e5:42:c2:84:4f:b1:b2:94:e5:cf: 29:61:28:15:65:ff:12:54:15:8b:73:64:aa:a4:da:4a:9f:ee: 26:68:11:1f -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHJgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA3MTcw MzQ4MDRaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDcxNEZENEFGOTVFMEI4 ODU1RkUwQkU2Nzk2RTRERDM5ODE4MzQ5RDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1MIg64rHaAz47j1F224g9KdnIXwsnmpY5PR2Aie/0p/tz/Drh 0ZPHo52YCbCP96EAGgTfMcRiqheASg7/6n3gRHqNvoNwWhu6+bouQ/GrtOpcRuDz afUWGAD2B3+3KaArmtR2CyLsWiydAgmFfODCuN8vxdavb8EjP7Oj5EmabH4EDy4/ XpACE1N+zW3//DXy/cQm43KejuWnNr8+GkQyOBV4HQ6EzYp5qlNxonUjwVVsXpvh w2H6wWjnpCpQVbTM983MsYNZiejV4V4TrClTp8Mdm9OwsSsrMNobNVytYZMq5SLc cZs4USyNOomk2Lhk5mV8LhZUq84F+Ls3YvUvAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUcU/Ur5XguIVf4L5nluTdOYGDSdEwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L2NVX1VyNVhndUlWZjRM NW5sdVRkT1lHRFNkRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJnBmwwDQYJKoZIhvcNAQELBQADggEBAJf5lToa17QiEXV/RcKARyiGYsITdfvU 3xdFhw/8cijdH11vU5zX3Vc4UPr2t+EIjNQ1fpZ1fH5jBj0shVFE+FhR8dtXXpkO Vh91YzbKt98916afx8wV+mfrRp7xoahZ2lyUIxXQgiGUgQ/7zIZHHWynUgUfZW+M zNGH4qnuCxevGmtOdv1nyz0OBAMoUHjr6hSilJxMdprgPDLde8MtAOJEEDhQyUTo I0tYD4fwI+IRkxzPuitFj29HMpWwen+ETGQcdMDABxfpSZ5hrQPJBvq7KihiBlRo cWrnNp9acyGe5ULChE+xspTlzylhKBVl/xJUFYtzZKqk2kqf7iZoER8= -----END CERTIFICATE-----Generated at Tue Jul 22 00:08:08 2025 by rpki-client