$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/njne7cnKF06AD_KE8UJ3JIj1Kxw.roa File: njne7cnKF06AD_KE8UJ3JIj1Kxw.roa (raw, json) Hash identifier: Fy8EaRwJuP25xbuJwxnt6L4bIqseHt0W5ChNucCJspM= Subject key identifier: 9E:39:DE:ED:C9:CA:17:4E:80:0F:F2:84:F1:42:77:24:88:F5:2B:1C Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1CBC Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/njne7cnKF06AD_KE8UJ3JIj1Kxw.roa Signing time: Thu 17 Jul 2025 03:55:32 +0000 ROA not before: Thu 17 Jul 2025 03:55:32 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 139259 IP address blocks: 103.221.49.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 21 Jul 2025 09:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7356 (0x1cbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Jul 17 03:55:32 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=9E39DEEDC9CA174E800FF284F142772488F52B1C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ba:3e:9a:d7:cb:18:b5:9d:ad:11:0e:29:28: 95:ad:cf:7e:03:79:75:df:07:76:2b:25:41:22:6c: 16:d7:e5:91:c4:d8:de:0e:02:37:de:33:2d:26:e3: fb:9a:38:d2:71:59:78:59:05:3d:fd:54:ec:f3:cc: e0:41:41:61:ee:59:d0:c8:74:ca:ee:79:eb:39:7f: a2:d8:e6:21:77:3c:98:60:9f:e9:18:8f:9e:78:0d: d4:69:88:42:04:97:09:ba:fb:94:64:2b:23:70:03: 6e:87:b1:66:5f:b3:6f:44:60:14:0a:75:ba:94:d4: 88:49:1e:d3:f9:e6:63:e2:e3:6b:4e:36:fd:65:46: 44:d6:1c:20:b8:f9:69:d6:0d:b3:9d:95:e6:05:41: 1f:66:c6:7e:b9:14:9a:93:e1:1c:87:60:1e:5e:c6: cc:f4:b4:08:b1:af:ab:d6:85:89:f0:a8:36:00:71: a9:b8:ab:14:b6:ea:ea:2a:64:d4:b8:8c:5c:de:b5: a2:9d:29:30:53:23:ac:9b:7c:f6:70:4c:30:c7:8a: 89:51:56:80:90:3c:80:35:51:07:75:a8:f8:60:de: 60:c8:54:73:db:bc:bf:29:0e:ff:9f:9a:7b:62:b5: 1d:34:bd:92:6b:46:9e:d5:bd:aa:9a:40:78:f7:e2: 9a:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:39:DE:ED:C9:CA:17:4E:80:0F:F2:84:F1:42:77:24:88:F5:2B:1C X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/njne7cnKF06AD_KE8UJ3JIj1Kxw.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.49.0/24 Signature Algorithm: sha256WithRSAEncryption 51:cb:2c:46:68:8d:e1:a2:23:f7:d2:18:14:1c:55:11:94:43: 15:94:15:96:e9:3b:97:77:40:36:99:eb:ec:e8:27:8d:70:12: bb:17:88:c4:7a:cf:92:7a:87:ec:e9:8a:05:ee:ee:12:ed:9d: 0b:20:4f:fb:9d:61:71:a5:3e:1b:2a:c7:35:c8:09:14:df:23: f4:36:dd:62:1c:dd:51:ca:fd:cc:8d:e4:4b:2c:46:5b:04:f1: f3:88:78:d1:87:45:db:6c:43:3e:6d:b9:d9:b0:9c:e7:0a:45: 2f:d2:e8:08:14:a4:2e:96:dc:d7:a5:da:e3:18:34:f5:f1:66: 17:22:9b:85:d0:64:01:52:56:d0:c0:14:4d:0a:31:84:44:ae: 2f:f1:96:95:28:d8:4e:37:d5:70:ee:35:71:cd:c7:53:0a:a2: be:1d:79:7f:3d:ca:c5:41:c4:bc:4d:6e:35:cb:17:42:2f:ca: d7:60:81:ce:57:92:ec:9d:a7:ae:43:08:23:d1:b2:d9:4a:28: 3e:a9:a7:e8:2a:33:2c:c3:f4:0d:8f:5e:c0:9d:d3:00:a5:a8: df:1b:ab:03:ac:12:da:93:5e:bd:6d:e6:e3:97:98:ed:71:a4: c2:0f:80:18:48:92:fd:01:83:f2:ab:e3:db:7a:61:f1:21:24: fc:7e:a0:52 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHLwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA3MTcw MzU1MzJaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDlFMzlERUVEQzlDQTE3 NEU4MDBGRjI4NEYxNDI3NzI0ODhGNTJCMUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDTuj6a18sYtZ2tEQ4pKJWtz34DeXXfB3YrJUEibBbX5ZHE2N4O AjfeMy0m4/uaONJxWXhZBT39VOzzzOBBQWHuWdDIdMruees5f6LY5iF3PJhgn+kY j554DdRpiEIElwm6+5RkKyNwA26HsWZfs29EYBQKdbqU1IhJHtP55mPi42tONv1l RkTWHCC4+WnWDbOdleYFQR9mxn65FJqT4RyHYB5exsz0tAixr6vWhYnwqDYAcam4 qxS26uoqZNS4jFzetaKdKTBTI6ybfPZwTDDHiolRVoCQPIA1UQd1qPhg3mDIVHPb vL8pDv+fmntitR00vZJrRp7VvaqaQHj34prDAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUnjne7cnKF06AD/KE8UJ3JIj1KxwwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L25qbmU3Y25LRjA2QURf S0U4VUozSklqMUt4dy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn3TEwDQYJKoZIhvcNAQELBQADggEBAFHLLEZojeGiI/fSGBQcVRGUQxWUFZbp O5d3QDaZ6+zoJ41wErsXiMR6z5J6h+zpigXu7hLtnQsgT/udYXGlPhsqxzXICRTf I/Q23WIc3VHK/cyN5EssRlsE8fOIeNGHRdtsQz5tudmwnOcKRS/S6AgUpC6W3Nel 2uMYNPXxZhcim4XQZAFSVtDAFE0KMYREri/xlpUo2E431XDuNXHNx1MKor4deX89 ysVBxLxNbjXLF0Ivytdggc5Xkuydp65DCCPRstlKKD6pp+gqMyzD9A2PXsCd0wCl qN8bqwOsEtqTXr1t5uOXmO1xpMIPgBhIkv0Bg/Kr49t6YfEhJPx+oFI= -----END CERTIFICATE-----Generated at Mon Jul 21 08:16:24 2025 by rpki-client