$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2537/ZRUMq2XKB7l7ycDZxJnpbGaBp5U.roa File: ZRUMq2XKB7l7ycDZxJnpbGaBp5U.roa (raw, json) Hash identifier: f6CucrNgeu6+CB+Eesntki3GVQ2c4rgaIWV7h+kv8Uo= Subject key identifier: 65:15:0C:AB:65:CA:07:B9:7B:C9:C0:D9:C4:99:E9:6C:66:81:A7:95 Certificate issuer: /CN=FB653B26775041687D362D4CEF768E58F99EC075 Certificate serial: 0EDF Authority key identifier: FB:65:3B:26:77:50:41:68:7D:36:2D:4C:EF:76:8E:58:F9:9E:C0:75 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/-2U7JndQQWh9Ni1M73aOWPmewHU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2537/ZRUMq2XKB7l7ycDZxJnpbGaBp5U.roa Signing time: Mon 26 Jan 2026 06:53:47 +0000 ROA not before: Mon 26 Jan 2026 06:53:47 +0000 ROA not after: Fri 23 Oct 2026 03:01:03 +0000 asID: 152092 IP address blocks: 103.97.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2537/-2U7JndQQWh9Ni1M73aOWPmewHU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2537/-2U7JndQQWh9Ni1M73aOWPmewHU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/-2U7JndQQWh9Ni1M73aOWPmewHU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Feb 2026 05:58:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3807 (0xedf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB653B26775041687D362D4CEF768E58F99EC075 Validity Not Before: Jan 26 06:53:47 2026 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=65150CAB65CA07B97BC9C0D9C499E96C6681A795 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:d5:9a:75:3c:d4:04:47:31:ab:cc:2e:b7:d4: 02:aa:13:15:f8:64:1b:27:78:46:16:4e:2e:67:0c: cc:5d:bb:14:da:1e:99:72:da:ec:33:ba:b0:f7:f5: 08:45:09:33:48:5d:18:0d:92:87:34:a2:63:81:c4: 03:d7:97:ef:f0:19:ec:97:9a:fa:4f:8a:0b:8e:3a: 8c:d6:39:2a:f8:83:8b:6e:dc:18:d7:5a:99:b6:58: 0c:65:ee:47:08:f7:8e:f3:4b:91:28:35:6c:d1:5c: 28:38:94:3e:6d:6f:56:16:ec:30:b7:5a:de:e8:1f: e8:fc:66:50:1f:be:d8:b8:b0:f1:3e:eb:a1:9c:07: a8:4d:5c:37:29:d8:06:d7:f5:bd:0c:a6:50:8a:21: a2:5b:ed:ba:32:d4:f3:3d:8d:8c:40:3f:34:b5:57: c1:09:2c:4e:4a:88:2f:2f:d6:94:8d:99:14:cb:e4: c7:ad:b4:8f:56:8a:54:54:6d:b8:9d:b2:1f:a5:29: 80:2e:9a:e7:46:38:16:92:06:67:09:30:fc:79:ed: b4:41:2b:d0:7a:39:e2:6c:93:41:8b:78:90:94:17: 50:75:a6:f7:49:c2:7f:5b:eb:e1:2a:6c:ee:ad:d6: e4:54:06:19:24:69:fc:13:2b:0c:88:bf:08:bc:8f: ad:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:15:0C:AB:65:CA:07:B9:7B:C9:C0:D9:C4:99:E9:6C:66:81:A7:95 X509v3 Authority Key Identifier: keyid:FB:65:3B:26:77:50:41:68:7D:36:2D:4C:EF:76:8E:58:F9:9E:C0:75 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2537/-2U7JndQQWh9Ni1M73aOWPmewHU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/-2U7JndQQWh9Ni1M73aOWPmewHU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2537/ZRUMq2XKB7l7ycDZxJnpbGaBp5U.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.97.57.0/24 Signature Algorithm: sha256WithRSAEncryption 97:ef:50:bb:22:89:94:a0:46:92:12:53:1e:b1:a5:99:19:c0: a4:df:53:56:3c:83:5e:1e:aa:ce:8e:3c:46:7d:d7:2a:b1:54: af:2a:12:24:64:76:9d:8d:e0:6f:a7:cb:16:dd:09:af:48:91: fc:57:90:89:cb:cd:23:19:73:fa:6f:da:5e:11:43:eb:34:96: 90:e5:db:de:b5:00:a3:12:70:8d:dc:ad:fc:f1:32:37:c8:be: 1d:33:36:ee:9d:21:74:b8:3b:e3:fb:fe:f7:44:3c:44:79:34: 05:e6:cb:7a:a9:c1:22:40:94:9e:1a:62:e5:cd:68:26:e7:75: 1f:db:21:a8:25:f8:1d:d6:d0:74:14:76:8c:5e:84:08:a0:6c: 15:38:6b:b4:2c:55:04:e9:a1:d2:e5:04:da:70:d5:c2:a8:c5: d6:d1:a1:ed:66:64:31:bc:a5:3b:e7:70:0e:da:82:68:24:ca: 59:9a:2d:6d:ef:55:ac:03:63:1a:93:47:58:cb:78:1c:de:66: 27:8e:65:03:fc:91:34:73:c1:3c:48:c8:51:f0:03:06:28:80: c3:4d:ed:6e:81:85:e4:3a:42:13:0e:36:38:73:ee:5e:7d:7d: 71:45:84:1d:5f:d2:9c:fe:7e:de:de:0a:2b:d4:5d:9c:8f:b7: 7d:4b:5d:3d -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICDt8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkI2 NTNCMjY3NzUwNDE2ODdEMzYyRDRDRUY3NjhFNThGOTlFQzA3NTAeFw0yNjAxMjYw NjUzNDdaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDY1MTUwQ0FCNjVDQTA3 Qjk3QkM5QzBEOUM0OTlFOTZDNjY4MUE3OTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD61Zp1PNQERzGrzC631AKqExX4ZBsneEYWTi5nDMxduxTaHply 2uwzurD39QhFCTNIXRgNkoc0omOBxAPXl+/wGeyXmvpPiguOOozWOSr4g4tu3BjX Wpm2WAxl7kcI947zS5EoNWzRXCg4lD5tb1YW7DC3Wt7oH+j8ZlAfvti4sPE+66Gc B6hNXDcp2AbX9b0MplCKIaJb7boy1PM9jYxAPzS1V8EJLE5KiC8v1pSNmRTL5Met tI9WilRUbbidsh+lKYAumudGOBaSBmcJMPx57bRBK9B6OeJsk0GLeJCUF1B1pvdJ wn9b6+EqbO6t1uRUBhkkafwTKwyIvwi8j60LAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUZRUMq2XKB7l7ycDZxJnpbGaBp5UwHwYDVR0jBBgwFoAU+2U7JndQQWh9Ni1M 73aOWPmewHUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjUz Ny8tMlU3Sm5kUVFXaDlOaTFNNzNhT1dQbWV3SFUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLy0yVTdKbmRRUVdoOU5pMU03M2FPV1BtZXdIVS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI1MzcvWlJVTXEyWEtCN2w3 eWNEWnhKbnBiR2FCcDVVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAGdhOTANBgkqhkiG9w0BAQsFAAOCAQEAl+9QuyKJlKBGkhJTHrGlmRnApN9T VjyDXh6qzo48Rn3XKrFUryoSJGR2nY3gb6fLFt0Jr0iR/FeQicvNIxlz+m/aXhFD 6zSWkOXb3rUAoxJwjdyt/PEyN8i+HTM27p0hdLg74/v+90Q8RHk0BebLeqnBIkCU nhpi5c1oJud1H9shqCX4HdbQdBR2jF6ECKBsFThrtCxVBOmh0uUE2nDVwqjF1tGh 7WZkMbylO+dwDtqCaCTKWZotbe9VrANjGpNHWMt4HN5mJ45lA/yRNHPBPEjIUfAD BiiAw03tboGF5DpCEw42OHPuXn19cUWEHV/SnP5+3t4KK9RdnI+3fUtdPQ== -----END CERTIFICATE-----Generated at Fri Feb 20 03:48:24 2026 by rpki-client