$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2048/9auDNIZCbjl_dR6fOh7bMwHRIxI.roa File: 9auDNIZCbjl_dR6fOh7bMwHRIxI.roa (raw, json) Hash identifier: 48huSmnJ70AKHAUL57h7oRKzP1wxQyh5B4+QfWDCA5g= Subject key identifier: F5:AB:83:34:86:42:6E:39:7F:75:1E:9F:3A:1E:DB:33:01:D1:23:12 Certificate issuer: /CN=4E25934FE8D89959425D1018EB121981DA250985 Certificate serial: 0D82 Authority key identifier: 4E:25:93:4F:E8:D8:99:59:42:5D:10:18:EB:12:19:81:DA:25:09:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/TiWTT-jYmVlCXRAY6xIZgdolCYU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2048/9auDNIZCbjl_dR6fOh7bMwHRIxI.roa Signing time: Mon 26 Jan 2026 06:54:13 +0000 ROA not before: Mon 26 Jan 2026 06:54:13 +0000 ROA not after: Fri 23 Oct 2026 03:01:03 +0000 asID: 151296 IP address blocks: 180.210.212.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2048/TiWTT-jYmVlCXRAY6xIZgdolCYU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2048/TiWTT-jYmVlCXRAY6xIZgdolCYU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/TiWTT-jYmVlCXRAY6xIZgdolCYU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Feb 2026 07:28:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3458 (0xd82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4E25934FE8D89959425D1018EB121981DA250985 Validity Not Before: Jan 26 06:54:13 2026 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=F5AB833486426E397F751E9F3A1EDB3301D12312 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:08:f2:1d:74:b6:c2:23:89:35:2f:83:51:95: 1f:17:3d:75:6d:cc:2c:7c:ba:21:a9:48:45:aa:50: 2b:66:7a:ee:b8:d1:99:f9:9e:69:84:32:7a:4b:66: 08:c7:55:66:fb:00:61:47:86:a3:fa:67:64:1e:3e: bf:74:a6:51:6d:f9:c9:96:b9:53:f0:d0:6b:0d:29: b5:85:fd:09:6f:f2:33:f1:bd:d4:d0:d9:79:b1:fd: 0a:af:34:5c:d5:f9:b7:07:d0:cf:df:5d:35:7d:03: 70:f5:ba:ae:cf:35:da:ce:36:ac:e4:73:0c:2d:79: a6:d3:db:67:8e:5e:9f:23:0c:5e:da:dc:63:84:a9: 2a:2b:03:63:29:cf:c6:fb:b7:4b:81:58:2a:fb:58: 29:17:84:d4:f5:d7:cf:f2:c4:56:b3:d1:0e:e7:56: 51:f0:c3:91:06:ba:e2:c3:2d:75:31:d5:3f:ed:32: 20:c8:ba:6e:a7:f9:76:7d:c9:c6:18:10:9d:41:fb: 44:69:0f:50:45:3e:44:c7:1d:67:e7:24:00:50:61: 1c:e2:96:9f:06:a9:df:ca:41:02:64:41:ad:30:a0: fd:88:79:1f:a1:97:b0:d5:5f:d9:9a:88:90:31:3d: d9:47:79:5d:15:88:fe:a3:4c:0f:9c:32:db:cc:d9: 69:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:AB:83:34:86:42:6E:39:7F:75:1E:9F:3A:1E:DB:33:01:D1:23:12 X509v3 Authority Key Identifier: keyid:4E:25:93:4F:E8:D8:99:59:42:5D:10:18:EB:12:19:81:DA:25:09:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2048/TiWTT-jYmVlCXRAY6xIZgdolCYU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/TiWTT-jYmVlCXRAY6xIZgdolCYU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2048/9auDNIZCbjl_dR6fOh7bMwHRIxI.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.210.212.0/22 Signature Algorithm: sha256WithRSAEncryption 06:68:f8:fe:4d:45:b8:56:58:ea:ed:aa:9d:79:6d:64:95:a1: 38:f7:0f:2a:45:33:9b:e5:22:68:a3:7b:68:4f:49:97:1b:0f: 10:05:55:bf:86:2b:ad:23:e0:29:a7:80:3b:d4:73:28:cb:d0: 8f:46:20:be:0c:76:6f:10:79:23:13:70:7a:b0:97:90:38:5a: 6a:73:d5:f5:4f:7a:91:36:9f:4f:ca:96:4c:a7:92:0c:4f:89: f5:a8:9c:11:4c:28:a6:0d:f7:6f:96:c8:9c:85:a1:d7:f8:f5: 93:45:04:f7:34:90:7b:6f:9e:c5:0e:f9:0b:09:ce:8a:f5:a4: bb:e0:66:03:b3:38:2d:b2:99:24:04:90:dd:d9:6f:1b:4a:74: b2:e1:4b:13:31:f7:a6:89:a8:4e:38:24:dd:8a:87:60:7f:01: 00:47:13:a4:82:09:98:68:f2:2c:c0:52:bb:6c:5c:6f:02:32: f5:32:e4:42:99:dc:8e:6b:da:a3:20:01:74:82:b2:66:48:fd: 13:85:da:8a:b8:34:6e:84:75:b1:f7:75:11:e3:56:ec:49:83: f3:f5:78:d7:8b:1e:cd:da:7a:8f:32:3e:61:c5:82:e6:29:ba: 3a:f3:90:86:3a:c0:48:1a:c9:91:0e:31:de:6c:e1:c1:de:dc: 98:03:99:e1 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICDYIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEUy NTkzNEZFOEQ4OTk1OTQyNUQxMDE4RUIxMjE5ODFEQTI1MDk4NTAeFw0yNjAxMjYw NjU0MTNaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKEY1QUI4MzM0ODY0MjZF Mzk3Rjc1MUU5RjNBMUVEQjMzMDFEMTIzMTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDZCPIddLbCI4k1L4NRlR8XPXVtzCx8uiGpSEWqUCtmeu640Zn5 nmmEMnpLZgjHVWb7AGFHhqP6Z2QePr90plFt+cmWuVPw0GsNKbWF/Qlv8jPxvdTQ 2Xmx/QqvNFzV+bcH0M/fXTV9A3D1uq7PNdrONqzkcwwteabT22eOXp8jDF7a3GOE qSorA2Mpz8b7t0uBWCr7WCkXhNT118/yxFaz0Q7nVlHww5EGuuLDLXUx1T/tMiDI um6n+XZ9ycYYEJ1B+0RpD1BFPkTHHWfnJABQYRzilp8Gqd/KQQJkQa0woP2IeR+h l7DVX9maiJAxPdlHeV0ViP6jTA+cMtvM2WnhAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQU9auDNIZCbjl/dR6fOh7bMwHRIxIwHwYDVR0jBBgwFoAUTiWTT+jYmVlCXRAY 6xIZgdolCYUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjA0 OC9UaVdUVC1qWW1WbENYUkFZNnhJWmdkb2xDWVUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1RpV1RULWpZbVZsQ1hSQVk2eElaZ2RvbENZVS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzIwNDgvOWF1RE5JWkNiamxf ZFI2Zk9oN2JNd0hSSXhJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEArTS1DANBgkqhkiG9w0BAQsFAAOCAQEABmj4/k1FuFZY6u2qnXltZJWhOPcP KkUzm+UiaKN7aE9JlxsPEAVVv4YrrSPgKaeAO9RzKMvQj0Ygvgx2bxB5IxNwerCX kDhaanPV9U96kTafT8qWTKeSDE+J9aicEUwopg33b5bInIWh1/j1k0UE9zSQe2+e xQ75CwnOivWku+BmA7M4LbKZJASQ3dlvG0p0suFLEzH3pomoTjgk3YqHYH8BAEcT pIIJmGjyLMBSu2xcbwIy9TLkQpncjmvaoyABdIKyZkj9E4Xairg0boR1sfd1EeNW 7EmD8/V414sezdp6jzI+YcWC5im6OvOQhjrASBrJkQ4x3mzhwd7cmAOZ4Q== -----END CERTIFICATE-----Generated at Mon Feb 23 06:24:15 2026 by rpki-client