$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2894/t05hAA9APvyFUV5ngGozKE0Qjqw.roa File: t05hAA9APvyFUV5ngGozKE0Qjqw.roa (raw, json) Hash identifier: tWUvZzjRQhw/9pUnBOecSVtgKLbxz3y1LlqMKSuKjTE= Subject key identifier: B7:4E:61:00:0F:40:3E:FC:85:51:5E:67:80:6A:33:28:4D:10:8E:AC Certificate issuer: /CN=839F557B9F9F2F6CDD75AFB4ABA8A2A796C610E8 Certificate serial: 1C11 Authority key identifier: 83:9F:55:7B:9F:9F:2F:6C:DD:75:AF:B4:AB:A8:A2:A7:96:C6:10:E8 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g59Ve5-fL2zdda-0q6iip5bGEOg.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2894/t05hAA9APvyFUV5ngGozKE0Qjqw.roa Signing time: Sun 15 Feb 2026 03:16:48 +0000 ROA not before: Sun 15 Feb 2026 03:16:48 +0000 ROA not after: Sat 09 Jan 2027 08:23:18 +0000 asID: 21859 IP address blocks: 103.156.78.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2894/g59Ve5-fL2zdda-0q6iip5bGEOg.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2894/g59Ve5-fL2zdda-0q6iip5bGEOg.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g59Ve5-fL2zdda-0q6iip5bGEOg.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Feb 2026 23:27:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7185 (0x1c11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=839F557B9F9F2F6CDD75AFB4ABA8A2A796C610E8 Validity Not Before: Feb 15 03:16:48 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=B74E61000F403EFC85515E67806A33284D108EAC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:cd:ee:1b:e7:e8:71:10:c0:7e:68:9b:99:be: 35:ed:c9:f2:5f:ca:41:46:8b:aa:60:70:55:74:49: 32:c4:fb:51:bb:be:c1:8f:da:ea:17:6c:c3:4f:67: 88:4d:7b:0a:4d:b0:97:93:6c:21:25:ba:7a:97:c4: 92:e3:2a:d2:c8:a3:85:2c:b9:02:9a:3a:e6:56:e6: ee:d0:fb:05:c4:fa:bc:5c:42:a8:7d:0a:57:cc:b6: 73:a0:9d:b9:40:30:59:cc:c4:c5:47:f7:6e:98:45: 8f:8b:b1:59:f4:46:c5:bf:5f:ab:d7:60:6f:65:0b: 30:02:44:80:17:b7:40:ac:10:03:78:1e:00:dd:be: da:fa:b9:d7:33:67:9b:aa:d3:2f:93:b5:52:35:9e: d9:33:57:88:40:c6:b8:84:bc:af:b7:a7:02:15:83: 38:ea:39:b1:5b:42:7e:58:e2:44:84:0e:07:be:4a: 00:17:34:7d:17:ef:51:da:4c:07:7a:86:a5:e3:f6: 70:a5:44:6d:ec:bd:96:bc:1f:c4:15:01:79:f0:80: 05:10:a3:45:bd:4c:b1:f2:47:01:37:9a:ab:be:30: 20:e3:9e:42:75:13:42:3c:e0:5c:3c:e5:de:8c:13: 67:5e:72:05:63:89:fe:73:89:1e:28:de:0c:7e:9f: a7:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:4E:61:00:0F:40:3E:FC:85:51:5E:67:80:6A:33:28:4D:10:8E:AC X509v3 Authority Key Identifier: keyid:83:9F:55:7B:9F:9F:2F:6C:DD:75:AF:B4:AB:A8:A2:A7:96:C6:10:E8 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2894/g59Ve5-fL2zdda-0q6iip5bGEOg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g59Ve5-fL2zdda-0q6iip5bGEOg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2894/t05hAA9APvyFUV5ngGozKE0Qjqw.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.156.78.0/23 Signature Algorithm: sha256WithRSAEncryption 56:a7:55:02:ee:a0:6a:95:a2:09:71:17:7e:eb:65:4c:f3:2d: 40:b0:fb:87:e6:76:a4:80:01:81:4d:8e:9f:d3:8b:eb:68:cd: bf:13:61:2f:c2:17:f9:b9:9d:cb:4b:16:2d:1e:cd:9b:8e:34: 65:ab:29:1f:5a:5c:0c:bc:e0:a7:57:ca:42:f2:09:48:87:6e: 08:95:36:a3:1f:6f:35:db:8d:05:60:e2:5d:59:f6:e2:89:83: e3:e9:2b:2a:a7:e0:86:55:d1:44:67:9b:35:23:61:7e:41:9b: b2:af:fa:4b:ca:ac:3d:2a:34:6a:8f:41:fa:33:fb:cc:4a:bb: 91:7e:bd:18:b3:a5:b5:ca:ac:ef:75:63:da:a4:01:94:a0:c1: 20:65:01:e4:19:22:93:1a:60:51:20:7d:a6:da:00:35:b8:4a: 8b:f9:05:7a:ca:13:c9:05:b6:76:fd:e3:ab:70:8d:a6:bf:99: 79:a7:6a:68:98:c7:d7:c6:0e:4f:ce:24:1e:c7:00:38:c0:6a: 53:4b:a9:ae:6b:d8:40:2c:1f:cb:02:72:15:75:74:43:ed:d9: 9a:59:8d:c2:49:2e:cf:42:a0:68:8f:33:ca:ce:70:9b:86:7f: 9d:d9:ac:f6:2d:77:24:72:94:87:53:e9:93:98:7b:f1:7a:a4: 2d:8f:be:b1 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICHBEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODM5 RjU1N0I5RjlGMkY2Q0RENzVBRkI0QUJBOEEyQTc5NkM2MTBFODAeFw0yNjAyMTUw MzE2NDhaFw0yNzAxMDkwODIzMThaMDMxMTAvBgNVBAMTKEI3NEU2MTAwMEY0MDNF RkM4NTUxNUU2NzgwNkEzMzI4NEQxMDhFQUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJze4b5+hxEMB+aJuZvjXtyfJfykFGi6pgcFV0STLE+1G7vsGP 2uoXbMNPZ4hNewpNsJeTbCElunqXxJLjKtLIo4UsuQKaOuZW5u7Q+wXE+rxcQqh9 ClfMtnOgnblAMFnMxMVH926YRY+LsVn0RsW/X6vXYG9lCzACRIAXt0CsEAN4HgDd vtr6udczZ5uq0y+TtVI1ntkzV4hAxriEvK+3pwIVgzjqObFbQn5Y4kSEDge+SgAX NH0X71HaTAd6hqXj9nClRG3svZa8H8QVAXnwgAUQo0W9TLHyRwE3mqu+MCDjnkJ1 E0I84Fw85d6ME2decgVjif5ziR4o3gx+n6dvAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUt05hAA9APvyFUV5ngGozKE0QjqwwHwYDVR0jBBgwFoAUg59Ve5+fL2zdda+0 q6iip5bGEOgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjg5 NC9nNTlWZTUtZkwyemRkYS0wcTZpaXA1YkdFT2cuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2c1OVZlNS1mTDJ6ZGRhLTBxNmlpcDViR0VPZy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI4OTQvdDA1aEFBOUFQdnlG VVY1bmdHb3pLRTBRanF3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAWecTjANBgkqhkiG9w0BAQsFAAOCAQEAVqdVAu6gapWiCXEXfutlTPMtQLD7 h+Z2pIABgU2On9OL62jNvxNhL8IX+bmdy0sWLR7Nm440ZaspH1pcDLzgp1fKQvIJ SIduCJU2ox9vNduNBWDiXVn24omD4+krKqfghlXRRGebNSNhfkGbsq/6S8qsPSo0 ao9B+jP7zEq7kX69GLOltcqs73Vj2qQBlKDBIGUB5BkikxpgUSB9ptoANbhKi/kF esoTyQW2dv3jq3CNpr+ZeadqaJjH18YOT84kHscAOMBqU0uprmvYQCwfywJyFXV0 Q+3ZmlmNwkkuz0KgaI8zys5wm4Z/ndms9i13JHKUh1Ppk5h78XqkLY++sQ== -----END CERTIFICATE-----Generated at Sun Feb 22 22:00:53 2026 by rpki-client