$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2537/slSQvZ_vT-7MFK6AEIdarZvldGQ.roa File: slSQvZ_vT-7MFK6AEIdarZvldGQ.roa (raw, json) Hash identifier: xyOMLIVs2Ycxh9N6HTJ12oK0Awee+5TbAbrH/ATVLko= Subject key identifier: B2:54:90:BD:9F:EF:4F:EE:CC:14:AE:80:10:87:5A:AD:9B:E5:74:64 Certificate issuer: /CN=FB653B26775041687D362D4CEF768E58F99EC075 Certificate serial: 0EE5 Authority key identifier: FB:65:3B:26:77:50:41:68:7D:36:2D:4C:EF:76:8E:58:F9:9E:C0:75 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/-2U7JndQQWh9Ni1M73aOWPmewHU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2537/slSQvZ_vT-7MFK6AEIdarZvldGQ.roa Signing time: Mon 26 Jan 2026 06:53:49 +0000 ROA not before: Mon 26 Jan 2026 06:53:49 +0000 ROA not after: Fri 23 Oct 2026 03:01:03 +0000 asID: 152092 IP address blocks: 103.97.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2537/-2U7JndQQWh9Ni1M73aOWPmewHU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2537/-2U7JndQQWh9Ni1M73aOWPmewHU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/-2U7JndQQWh9Ni1M73aOWPmewHU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Feb 2026 05:58:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3813 (0xee5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB653B26775041687D362D4CEF768E58F99EC075 Validity Not Before: Jan 26 06:53:49 2026 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=B25490BD9FEF4FEECC14AE8010875AAD9BE57464 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:66:c8:c6:d9:9a:6b:45:f8:e5:ec:3b:0a:60: be:b2:9d:95:cb:9a:f9:03:5d:6e:59:b9:18:fe:9c: 61:4c:24:9b:5e:c0:ee:12:db:fc:fe:2b:8a:3e:16: 6a:07:50:60:99:1d:e4:78:f0:af:7f:7a:c2:60:d3: 75:df:48:50:ac:5a:c5:9e:6f:1e:49:4d:db:c3:c2: ec:54:e2:a2:6d:3c:e6:ce:08:1a:ff:91:00:8c:68: dd:a7:f3:21:8e:6a:20:b4:99:56:79:7d:03:bc:c8: e6:2b:5d:b3:7b:4e:24:07:03:9c:be:6d:e9:87:81: 54:69:dd:bc:56:dd:88:b2:e8:22:44:1b:e5:9d:9f: 75:96:21:26:c2:5c:5f:64:2d:b2:95:11:f6:ea:72: 04:25:73:ad:33:78:50:19:ac:03:14:76:da:4b:65: 71:55:d0:6d:87:40:1e:23:9d:e9:8d:fa:ea:dd:75: ef:13:84:f5:dd:9d:3e:d2:c3:45:b6:36:74:a7:41: ed:53:61:b2:33:2b:8c:d7:38:9a:37:21:94:64:a2: 51:ed:3e:e6:2e:3e:02:64:2a:e7:7f:e1:cf:48:d9: 1b:dd:d3:5e:ec:ad:45:5d:a0:1a:23:f4:f7:58:b9: e4:e3:3d:04:20:e0:7a:d5:a5:58:6d:5b:68:ce:9b: 4f:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:54:90:BD:9F:EF:4F:EE:CC:14:AE:80:10:87:5A:AD:9B:E5:74:64 X509v3 Authority Key Identifier: keyid:FB:65:3B:26:77:50:41:68:7D:36:2D:4C:EF:76:8E:58:F9:9E:C0:75 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2537/-2U7JndQQWh9Ni1M73aOWPmewHU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/-2U7JndQQWh9Ni1M73aOWPmewHU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2537/slSQvZ_vT-7MFK6AEIdarZvldGQ.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.97.59.0/24 Signature Algorithm: sha256WithRSAEncryption 36:cb:35:8d:25:fe:07:1d:5a:29:5b:e5:b7:97:40:43:89:9e: 13:f0:1b:92:dc:11:5d:ae:54:51:4f:23:5f:c4:84:8d:20:21: 9a:c5:73:7b:03:83:2c:79:65:02:9a:8e:ca:6a:88:1e:41:d3: 20:69:42:7e:07:73:35:ad:31:43:76:98:30:93:35:c8:c2:75: 1e:d3:31:26:44:6f:2c:3b:aa:5e:0e:9a:3e:b9:bb:11:97:de: 12:e9:83:83:38:6f:e7:dc:d4:6c:ad:f9:7b:7a:7d:28:04:9c: 9d:12:18:77:f0:61:49:84:35:d0:35:4e:e3:20:a8:8a:aa:d3: 6f:6a:83:15:f9:94:21:08:01:03:5e:dd:00:ba:82:12:f2:53: 99:16:40:37:08:10:b3:62:6d:fa:59:f8:c3:bf:27:c8:ad:ef: 81:5b:57:b8:2e:7d:17:fa:66:34:3c:98:06:0f:c9:2d:af:13: 18:7b:8d:e1:13:1f:11:cf:59:7b:db:ff:0a:79:e7:c6:d0:31: 67:73:36:91:b7:a7:0e:86:89:22:28:4c:60:ec:dc:e3:ae:a4: ee:06:5f:9f:15:57:87:a9:c2:21:f1:15:04:89:6e:8f:5c:6c: cc:16:db:2b:fd:f5:56:5e:23:47:a0:62:b8:49:9a:1f:70:a2: 07:60:bf:50 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICDuUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkI2 NTNCMjY3NzUwNDE2ODdEMzYyRDRDRUY3NjhFNThGOTlFQzA3NTAeFw0yNjAxMjYw NjUzNDlaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKEIyNTQ5MEJEOUZFRjRG RUVDQzE0QUU4MDEwODc1QUFEOUJFNTc0NjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSZsjG2ZprRfjl7DsKYL6ynZXLmvkDXW5ZuRj+nGFMJJtewO4S 2/z+K4o+FmoHUGCZHeR48K9/esJg03XfSFCsWsWebx5JTdvDwuxU4qJtPObOCBr/ kQCMaN2n8yGOaiC0mVZ5fQO8yOYrXbN7TiQHA5y+bemHgVRp3bxW3Yiy6CJEG+Wd n3WWISbCXF9kLbKVEfbqcgQlc60zeFAZrAMUdtpLZXFV0G2HQB4jnemN+urdde8T hPXdnT7Sw0W2NnSnQe1TYbIzK4zXOJo3IZRkolHtPuYuPgJkKud/4c9I2Rvd017s rUVdoBoj9PdYueTjPQQg4HrVpVhtW2jOm095AgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUslSQvZ/vT+7MFK6AEIdarZvldGQwHwYDVR0jBBgwFoAU+2U7JndQQWh9Ni1M 73aOWPmewHUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjUz Ny8tMlU3Sm5kUVFXaDlOaTFNNzNhT1dQbWV3SFUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLy0yVTdKbmRRUVdoOU5pMU03M2FPV1BtZXdIVS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI1Mzcvc2xTUXZaX3ZULTdN Rks2QUVJZGFyWnZsZEdRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAGdhOzANBgkqhkiG9w0BAQsFAAOCAQEANss1jSX+Bx1aKVvlt5dAQ4meE/Ab ktwRXa5UUU8jX8SEjSAhmsVzewODLHllApqOymqIHkHTIGlCfgdzNa0xQ3aYMJM1 yMJ1HtMxJkRvLDuqXg6aPrm7EZfeEumDgzhv59zUbK35e3p9KAScnRIYd/BhSYQ1 0DVO4yCoiqrTb2qDFfmUIQgBA17dALqCEvJTmRZANwgQs2Jt+ln4w78nyK3vgVtX uC59F/pmNDyYBg/JLa8TGHuN4RMfEc9Ze9v/CnnnxtAxZ3M2kbenDoaJIihMYOzc 466k7gZfnxVXh6nCIfEVBIluj1xszBbbK/31Vl4jR6BiuEmaH3CiB2C/UA== -----END CERTIFICATE-----Generated at Fri Feb 20 03:48:24 2026 by rpki-client