$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/721/zJ9YmN7_pZvu0tkeY-0KKlh6Js0.roa File: zJ9YmN7_pZvu0tkeY-0KKlh6Js0.roa (raw, json) Hash identifier: i9RgwHolwZTVdXudlPKeD4KuhudGO2gUAIrLw8GTjnE= Subject key identifier: CC:9F:58:98:DE:FF:A5:9B:EE:D2:D9:1E:63:ED:0A:2A:58:7A:26:CD Certificate issuer: /CN=EE887ACC7CE4B5F66CCF4946F02BFACBDE28B76A Certificate serial: 1E7C Authority key identifier: EE:88:7A:CC:7C:E4:B5:F6:6C:CF:49:46:F0:2B:FA:CB:DE:28:B7:6A Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/7oh6zHzktfZsz0lG8Cv6y94ot2o.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/721/zJ9YmN7_pZvu0tkeY-0KKlh6Js0.roa Signing time: Sat 06 Sep 2025 08:02:56 +0000 ROA not before: Sat 06 Sep 2025 08:02:56 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 63199 IP address blocks: 103.210.160.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/721/7oh6zHzktfZsz0lG8Cv6y94ot2o.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/721/7oh6zHzktfZsz0lG8Cv6y94ot2o.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/7oh6zHzktfZsz0lG8Cv6y94ot2o.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 11:03:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7804 (0x1e7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EE887ACC7CE4B5F66CCF4946F02BFACBDE28B76A Validity Not Before: Sep 6 08:02:56 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=CC9F5898DEFFA59BEED2D91E63ED0A2A587A26CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:1e:f4:bf:51:3e:92:98:35:be:f4:48:d1:a5: a2:df:5f:27:bf:ac:10:ee:c0:fb:94:f3:b0:15:1c: 54:ae:6b:01:14:6d:58:31:f2:0b:e2:f5:51:39:1d: 18:af:f5:57:c2:c5:97:5c:90:2c:2f:61:d8:da:ec: c6:1f:77:29:f5:26:7a:f9:ec:b3:6e:e9:4b:85:9c: cc:a2:af:25:bb:cc:fb:fc:81:2b:1b:d6:91:31:93: 96:54:8b:33:03:93:33:60:b9:f1:eb:ec:30:99:e1: 80:15:3a:45:1b:b2:0a:28:12:ed:43:7e:66:c0:70: b0:41:c7:5c:01:08:ff:82:9c:d5:0b:8e:c5:ef:7b: fb:bf:71:e8:1b:4b:b3:3b:c8:13:f2:e7:02:e2:c8: 56:7d:66:b0:14:cc:0c:34:64:0c:91:1d:71:d5:af: b5:da:ce:5d:23:5a:20:4d:23:31:e3:4e:7e:71:a4: f9:43:d1:d4:53:e1:5c:57:2f:b2:f6:3b:66:9e:4d: 84:97:00:81:9e:1e:25:72:0e:c0:40:48:fb:3f:0d: 58:c3:16:76:7c:90:f1:3d:8f:ae:2f:a3:b4:7a:8f: e6:55:30:90:04:ee:97:de:91:74:93:d5:97:59:04: 5e:80:11:fe:bd:a4:81:93:60:da:f4:08:c3:16:68: 16:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:9F:58:98:DE:FF:A5:9B:EE:D2:D9:1E:63:ED:0A:2A:58:7A:26:CD X509v3 Authority Key Identifier: keyid:EE:88:7A:CC:7C:E4:B5:F6:6C:CF:49:46:F0:2B:FA:CB:DE:28:B7:6A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/721/7oh6zHzktfZsz0lG8Cv6y94ot2o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/7oh6zHzktfZsz0lG8Cv6y94ot2o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/721/zJ9YmN7_pZvu0tkeY-0KKlh6Js0.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.210.160.0/22 Signature Algorithm: sha256WithRSAEncryption 8e:76:f2:1e:a1:d8:29:7c:d5:22:c0:1f:c4:47:ad:ea:67:39: f1:f1:08:d1:ab:93:80:0d:f0:fd:da:db:57:90:d8:43:da:1c: 04:a3:6e:75:40:2b:6b:0b:cc:36:11:0a:4d:aa:05:72:14:f7: e5:37:84:3b:4e:84:0e:ab:b1:cf:fb:63:c5:f9:1f:f9:64:54: 52:da:f7:00:ea:93:46:fa:d3:ce:8a:73:01:a0:8c:db:07:6a: 4a:2a:6d:5c:1b:25:0e:52:cb:3b:0c:19:4b:4c:eb:dd:97:9b: 2b:90:34:ab:c6:cb:07:27:f9:53:2b:12:19:29:c5:25:3d:b0: 78:77:ff:d7:cf:97:6c:9f:52:0c:e4:a4:be:c8:6d:4b:65:78: e0:4d:f6:00:4e:2c:c8:e7:8e:e2:9d:35:9e:df:ef:7e:67:45: 34:e0:1a:b3:24:b3:04:2f:a4:2c:b0:7c:4c:73:18:25:f1:6a: 18:40:b4:b6:df:cc:db:47:f1:8d:67:97:fa:bc:47:21:29:6c: ad:e8:68:f8:3f:1d:86:d9:17:e9:bc:72:05:9f:74:61:ea:30: 45:ed:36:9a:12:54:38:b8:e8:90:36:fc:39:0e:50:fb:82:18: 6a:bd:61:31:42:c9:48:c3:a2:ff:f5:68:25:41:b7:a5:db:67: 79:04:a1:67 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHnwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUU4 ODdBQ0M3Q0U0QjVGNjZDQ0Y0OTQ2RjAyQkZBQ0JERTI4Qjc2QTAeFw0yNTA5MDYw ODAyNTZaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKENDOUY1ODk4REVGRkE1 OUJFRUQyRDkxRTYzRUQwQTJBNTg3QTI2Q0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+HvS/UT6SmDW+9EjRpaLfXye/rBDuwPuU87AVHFSuawEUbVgx 8gvi9VE5HRiv9VfCxZdckCwvYdja7MYfdyn1Jnr57LNu6UuFnMyiryW7zPv8gSsb 1pExk5ZUizMDkzNgufHr7DCZ4YAVOkUbsgooEu1DfmbAcLBBx1wBCP+CnNULjsXv e/u/cegbS7M7yBPy5wLiyFZ9ZrAUzAw0ZAyRHXHVr7Xazl0jWiBNIzHjTn5xpPlD 0dRT4VxXL7L2O2aeTYSXAIGeHiVyDsBASPs/DVjDFnZ8kPE9j64vo7R6j+ZVMJAE 7pfekXST1ZdZBF6AEf69pIGTYNr0CMMWaBZdAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUzJ9YmN7/pZvu0tkeY+0KKlh6Js0wHwYDVR0jBBgwFoAU7oh6zHzktfZsz0lG 8Cv6y94ot2owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNzIx LzdvaDZ6SHprdGZac3owbEc4Q3Y2eTk0b3Qyby5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvN29oNnpIemt0ZlpzejBsRzhDdjZ5OTRvdDJvLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNzIxL3pKOVltTjdfcFp2dTB0 a2VZLTBLS2xoNkpzMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJn0qAwDQYJKoZIhvcNAQELBQADggEBAI528h6h2Cl81SLAH8RHrepnOfHxCNGr k4AN8P3a21eQ2EPaHASjbnVAK2sLzDYRCk2qBXIU9+U3hDtOhA6rsc/7Y8X5H/lk VFLa9wDqk0b6086KcwGgjNsHakoqbVwbJQ5SyzsMGUtM692XmyuQNKvGywcn+VMr EhkpxSU9sHh3/9fPl2yfUgzkpL7IbUtleOBN9gBOLMjnjuKdNZ7f735nRTTgGrMk swQvpCywfExzGCXxahhAtLbfzNtH8Y1nl/q8RyEpbK3oaPg/HYbZF+m8cgWfdGHq MEXtNpoSVDi46JA2/DkOUPuCGGq9YTFCyUjDov/1aCVBt6XbZ3kEoWc= -----END CERTIFICATE-----Generated at Mon Sep 8 09:09:20 2025 by rpki-client