$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2889/lUwqF2RNonoOAHSe2aXPq5--wKI.roa File: lUwqF2RNonoOAHSe2aXPq5--wKI.roa (raw, json) Hash identifier: epnHvBLwILdL66Sw1EsD9BIB0tPp0TvbrcV5gSlCG64= Subject key identifier: 95:4C:2A:17:64:4D:A2:7A:0E:00:74:9E:D9:A5:CF:AB:9F:BE:C0:A2 Certificate issuer: /CN=A93A86712684A72E5DF41F00AFA04C5F01A97735 Certificate serial: 2315 Authority key identifier: A9:3A:86:71:26:84:A7:2E:5D:F4:1F:00:AF:A0:4C:5F:01:A9:77:35 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/qTqGcSaEpy5d9B8Ar6BMXwGpdzU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2889/lUwqF2RNonoOAHSe2aXPq5--wKI.roa Signing time: Mon 26 Jan 2026 06:54:27 +0000 ROA not before: Mon 26 Jan 2026 06:54:27 +0000 ROA not after: Sat 09 Jan 2027 08:23:18 +0000 asID: 139021 IP address blocks: 103.139.0.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2889/qTqGcSaEpy5d9B8Ar6BMXwGpdzU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2889/qTqGcSaEpy5d9B8Ar6BMXwGpdzU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/qTqGcSaEpy5d9B8Ar6BMXwGpdzU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Feb 2026 05:59:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8981 (0x2315) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A93A86712684A72E5DF41F00AFA04C5F01A97735 Validity Not Before: Jan 26 06:54:27 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=954C2A17644DA27A0E00749ED9A5CFAB9FBEC0A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:91:3e:de:b2:0c:ac:3c:5c:fb:a5:68:bf:12: 26:9f:5a:99:1a:f4:36:f3:61:bf:af:3d:7d:a3:0b: d1:7c:e4:38:e0:b4:32:30:57:b1:d1:04:d5:7f:bc: 8d:75:ea:6d:54:b5:36:60:20:fc:8f:70:bf:f5:69: 7a:ae:d5:a6:95:9a:c7:f6:34:45:79:7e:7b:9e:17: 20:4d:fe:54:c5:75:0f:ed:b1:1d:e5:5e:d8:16:e0: 86:56:df:58:f1:9e:84:f2:4c:77:4e:b0:17:e9:b4: 5a:80:73:fe:9f:5e:e1:1d:6c:0b:04:22:ae:67:ea: 1b:f5:5f:b9:ec:ec:30:2c:fd:0b:56:37:71:35:c7: 85:99:5a:44:68:86:67:0f:6a:ea:97:57:5a:98:6a: 24:26:bc:93:68:68:c4:fa:e8:00:91:67:ab:9e:51: 1f:d1:1b:8b:e8:71:3d:df:fc:c7:84:3f:3a:32:4a: dc:f7:88:88:48:fc:37:3c:c1:2a:4e:cd:33:5e:dc: fa:7b:49:cb:15:4a:fa:12:3d:71:65:af:81:6a:6d: 25:59:8e:a7:88:ae:1a:2a:40:f5:f7:83:2f:dc:bd: aa:8a:4b:9a:26:76:72:cd:e8:ee:e6:bb:1d:f8:ac: c3:ad:cf:e8:14:68:50:1a:6e:4d:23:be:1c:7a:cc: a4:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:4C:2A:17:64:4D:A2:7A:0E:00:74:9E:D9:A5:CF:AB:9F:BE:C0:A2 X509v3 Authority Key Identifier: keyid:A9:3A:86:71:26:84:A7:2E:5D:F4:1F:00:AF:A0:4C:5F:01:A9:77:35 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2889/qTqGcSaEpy5d9B8Ar6BMXwGpdzU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/qTqGcSaEpy5d9B8Ar6BMXwGpdzU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2889/lUwqF2RNonoOAHSe2aXPq5--wKI.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.139.0.0/23 Signature Algorithm: sha256WithRSAEncryption 3c:94:16:0d:87:61:ec:14:d4:d8:06:a4:bd:e9:81:58:3f:7d: 28:7a:c1:2a:a7:d1:16:b9:ad:91:00:99:38:8e:06:90:03:a0: fc:37:d6:5c:cb:1d:60:af:da:c4:ac:47:dd:43:00:f1:44:31: e8:24:7a:46:d9:f4:1b:0c:d5:3e:44:63:06:14:52:49:8f:73: 83:92:82:c6:4d:2c:09:59:72:c3:4a:6e:d9:30:53:cc:bf:b9: e8:0b:c8:ea:21:c1:f9:02:24:1e:ed:a2:cc:11:e3:13:b2:49: ee:c0:2c:fb:ca:da:4a:67:49:66:79:c0:c0:27:74:b6:20:63: 19:3b:3f:bb:36:ec:e1:9a:65:7d:23:71:3b:86:d4:4b:64:9b: b6:10:a2:79:f0:6f:e6:5f:cb:2d:f5:5c:f6:f4:5f:07:27:86: ca:f2:e5:cd:22:a2:38:27:a7:71:10:7b:a2:98:9f:94:77:b2: 71:3d:d9:c6:f5:1b:87:ff:c9:09:d3:8b:64:d1:a1:51:f4:3e: 80:f3:7c:5b:c4:d6:65:45:65:62:50:0e:43:84:5c:11:e0:20: 44:96:7f:44:57:bc:67:a6:cf:fe:5c:41:ce:42:ac:89:ae:41: b5:9c:dc:a5:19:23:da:39:78:0f:7a:d6:0a:a0:70:d8:24:ed: 87:99:3e:2f -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICIxUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTkz QTg2NzEyNjg0QTcyRTVERjQxRjAwQUZBMDRDNUYwMUE5NzczNTAeFw0yNjAxMjYw NjU0MjdaFw0yNzAxMDkwODIzMThaMDMxMTAvBgNVBAMTKDk1NEMyQTE3NjQ0REEy N0EwRTAwNzQ5RUQ5QTVDRkFCOUZCRUMwQTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHkT7esgysPFz7pWi/EiafWpka9DbzYb+vPX2jC9F85DjgtDIw V7HRBNV/vI116m1UtTZgIPyPcL/1aXqu1aaVmsf2NEV5fnueFyBN/lTFdQ/tsR3l XtgW4IZW31jxnoTyTHdOsBfptFqAc/6fXuEdbAsEIq5n6hv1X7ns7DAs/QtWN3E1 x4WZWkRohmcPauqXV1qYaiQmvJNoaMT66ACRZ6ueUR/RG4vocT3f/MeEPzoyStz3 iIhI/Dc8wSpOzTNe3Pp7ScsVSvoSPXFlr4FqbSVZjqeIrhoqQPX3gy/cvaqKS5om dnLN6O7mux34rMOtz+gUaFAabk0jvhx6zKR5AgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUlUwqF2RNonoOAHSe2aXPq5++wKIwHwYDVR0jBBgwFoAUqTqGcSaEpy5d9B8A r6BMXwGpdzUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjg4 OS9xVHFHY1NhRXB5NWQ5QjhBcjZCTVh3R3BkelUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL3FUcUdjU2FFcHk1ZDlCOEFyNkJNWHdHcGR6VS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI4ODkvbFV3cUYyUk5vbm9P QUhTZTJhWFBxNS0td0tJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAWeLADANBgkqhkiG9w0BAQsFAAOCAQEAPJQWDYdh7BTU2AakvemBWD99KHrB KqfRFrmtkQCZOI4GkAOg/DfWXMsdYK/axKxH3UMA8UQx6CR6Rtn0GwzVPkRjBhRS SY9zg5KCxk0sCVlyw0pu2TBTzL+56AvI6iHB+QIkHu2izBHjE7JJ7sAs+8raSmdJ ZnnAwCd0tiBjGTs/uzbs4ZplfSNxO4bUS2SbthCiefBv5l/LLfVc9vRfByeGyvLl zSKiOCencRB7opiflHeycT3ZxvUbh//JCdOLZNGhUfQ+gPN8W8TWZUVlYlAOQ4Rc EeAgRJZ/RFe8Z6bP/lxBzkKsia5BtZzcpRkj2jl4D3rWCqBw2CTth5k+Lw== -----END CERTIFICATE-----Generated at Fri Feb 20 01:49:19 2026 by rpki-client