$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2889/du9-idjLhmtNt_WZGjHodsNhjEY.roa File: du9-idjLhmtNt_WZGjHodsNhjEY.roa (raw, json) Hash identifier: AFHHViraLULCCoUufLllkUnnYJFSfAD6sMCSyYmKGsk= Subject key identifier: 76:EF:7E:89:D8:CB:86:6B:4D:B7:F5:99:1A:31:E8:76:C3:61:8C:46 Certificate issuer: /CN=A93A86712684A72E5DF41F00AFA04C5F01A97735 Certificate serial: 2316 Authority key identifier: A9:3A:86:71:26:84:A7:2E:5D:F4:1F:00:AF:A0:4C:5F:01:A9:77:35 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/qTqGcSaEpy5d9B8Ar6BMXwGpdzU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2889/du9-idjLhmtNt_WZGjHodsNhjEY.roa Signing time: Mon 26 Jan 2026 06:54:27 +0000 ROA not before: Mon 26 Jan 2026 06:54:27 +0000 ROA not after: Sat 09 Jan 2027 08:23:18 +0000 asID: 139021 IP address blocks: 103.235.184.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2889/qTqGcSaEpy5d9B8Ar6BMXwGpdzU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2889/qTqGcSaEpy5d9B8Ar6BMXwGpdzU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/qTqGcSaEpy5d9B8Ar6BMXwGpdzU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Feb 2026 05:59:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8982 (0x2316) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A93A86712684A72E5DF41F00AFA04C5F01A97735 Validity Not Before: Jan 26 06:54:27 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=76EF7E89D8CB866B4DB7F5991A31E876C3618C46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:d3:da:53:4e:f8:b4:89:ba:a4:8a:b0:51:e7: 8f:b8:06:96:b5:16:fd:06:54:06:22:6b:79:22:fe: a1:13:a7:83:e3:8b:b6:7f:95:f4:0b:af:62:0c:ca: bd:eb:44:26:31:16:5e:d5:e3:6a:a2:0b:5c:e5:8a: 5e:4f:38:d5:ea:d1:46:e8:2f:38:50:68:42:ba:a3: 6b:b9:bf:db:15:00:42:4b:3a:1b:23:3e:71:47:73: 57:7f:de:ad:71:55:ac:8c:ec:e5:00:1c:88:ff:d0: 1b:2b:e5:71:43:bd:c8:c0:43:f1:a5:ae:42:d3:d9: a4:72:45:42:84:59:42:45:b2:a8:3c:a7:f6:aa:c3: 4a:9f:4a:b3:03:60:8f:f1:97:2c:cd:8b:ef:b7:52: cf:e9:e9:c0:e4:80:05:9f:60:87:08:98:59:86:03: 56:59:e6:7d:55:a0:d9:d2:19:64:23:33:5a:51:6b: a9:34:79:f4:6b:e4:34:e9:22:2b:4d:a2:9b:2a:5e: 99:45:f4:29:b5:29:2c:fa:96:fb:8b:6e:f1:55:3f: 62:fa:4b:a6:c5:b1:4f:42:8c:77:f3:88:4d:1a:32: 5d:fd:84:10:0d:54:c9:08:0e:f5:89:85:4c:e3:34: 1c:78:9e:09:e3:a3:c5:4d:2a:cd:ec:28:4e:37:04: 7f:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:EF:7E:89:D8:CB:86:6B:4D:B7:F5:99:1A:31:E8:76:C3:61:8C:46 X509v3 Authority Key Identifier: keyid:A9:3A:86:71:26:84:A7:2E:5D:F4:1F:00:AF:A0:4C:5F:01:A9:77:35 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2889/qTqGcSaEpy5d9B8Ar6BMXwGpdzU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/qTqGcSaEpy5d9B8Ar6BMXwGpdzU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2889/du9-idjLhmtNt_WZGjHodsNhjEY.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.235.184.0/22 Signature Algorithm: sha256WithRSAEncryption de:bb:5c:82:97:3a:57:0e:9c:cc:ac:d4:c5:14:41:78:d2:e9: d7:81:22:02:d1:fa:1f:3f:1b:19:6c:77:c7:5a:17:29:16:ce: 03:ff:bd:46:18:d1:31:89:4a:46:1b:fa:55:86:a8:72:38:37: 63:64:6e:52:58:80:85:53:3c:d5:3a:d8:ee:a8:bb:e2:2b:2f: a4:3b:c9:3d:44:79:e9:3a:91:f7:fc:86:d3:ff:62:a6:2e:60: b9:66:76:ef:9c:84:fd:3d:bc:cd:e5:74:5c:9b:44:35:82:90: 86:98:be:55:4d:ce:c5:52:53:7f:66:44:a4:7a:d8:51:ee:ae: d8:bc:8a:ff:83:5a:ca:03:cb:e4:59:2c:ad:cb:9a:fd:ac:0d: 87:19:58:64:64:f1:d6:40:f8:e6:e5:99:fc:8c:d6:64:d6:21: 32:5e:ad:87:c9:80:d4:67:90:5b:72:06:31:0d:36:02:7e:cc: 8f:e7:7e:a4:32:6a:48:61:54:9a:33:d3:81:2f:ef:2e:27:59: f7:a8:a0:5f:4d:91:59:16:c2:fe:d5:80:aa:c5:94:c9:f8:04: 6e:ca:db:a2:e4:01:d1:2a:44:db:86:03:df:64:73:ca:c9:67: 3c:17:12:18:ba:ea:bb:69:5a:ff:a1:ca:83:a3:7a:fd:20:fe: b7:b4:23:66 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICIxYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTkz QTg2NzEyNjg0QTcyRTVERjQxRjAwQUZBMDRDNUYwMUE5NzczNTAeFw0yNjAxMjYw NjU0MjdaFw0yNzAxMDkwODIzMThaMDMxMTAvBgNVBAMTKDc2RUY3RTg5RDhDQjg2 NkI0REI3RjU5OTFBMzFFODc2QzM2MThDNDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDe09pTTvi0ibqkirBR54+4Bpa1Fv0GVAYia3ki/qETp4Pji7Z/ lfQLr2IMyr3rRCYxFl7V42qiC1zlil5PONXq0UboLzhQaEK6o2u5v9sVAEJLOhsj PnFHc1d/3q1xVayM7OUAHIj/0Bsr5XFDvcjAQ/GlrkLT2aRyRUKEWUJFsqg8p/aq w0qfSrMDYI/xlyzNi++3Us/p6cDkgAWfYIcImFmGA1ZZ5n1VoNnSGWQjM1pRa6k0 efRr5DTpIitNopsqXplF9Cm1KSz6lvuLbvFVP2L6S6bFsU9CjHfziE0aMl39hBAN VMkIDvWJhUzjNBx4ngnjo8VNKs3sKE43BH9pAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUdu9+idjLhmtNt/WZGjHodsNhjEYwHwYDVR0jBBgwFoAUqTqGcSaEpy5d9B8A r6BMXwGpdzUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjg4 OS9xVHFHY1NhRXB5NWQ5QjhBcjZCTVh3R3BkelUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL3FUcUdjU2FFcHk1ZDlCOEFyNkJNWHdHcGR6VS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI4ODkvZHU5LWlkakxobXRO dF9XWkdqSG9kc05oakVZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAmfruDANBgkqhkiG9w0BAQsFAAOCAQEA3rtcgpc6Vw6czKzUxRRBeNLp14Ei AtH6Hz8bGWx3x1oXKRbOA/+9RhjRMYlKRhv6VYaocjg3Y2RuUliAhVM81TrY7qi7 4isvpDvJPUR56TqR9/yG0/9ipi5guWZ275yE/T28zeV0XJtENYKQhpi+VU3OxVJT f2ZEpHrYUe6u2LyK/4NaygPL5Fksrcua/awNhxlYZGTx1kD45uWZ/IzWZNYhMl6t h8mA1GeQW3IGMQ02An7Mj+d+pDJqSGFUmjPTgS/vLidZ96igX02RWRbC/tWAqsWU yfgEbsrbouQB0SpE24YD32RzyslnPBcSGLrqu2la/6HKg6N6/SD+t7QjZg== -----END CERTIFICATE-----Generated at Fri Feb 20 01:49:15 2026 by rpki-client