$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2988/C6ag7U5RmZ0EYqCxc2v4ET9rKsc.roa File: C6ag7U5RmZ0EYqCxc2v4ET9rKsc.roa (raw, json) Hash identifier: OQBn+27/GulF2o2k19vSK4xICKuvpEdVs6DwC29ENJo= Subject key identifier: 0B:A6:A0:ED:4E:51:99:9D:04:62:A0:B1:73:6B:F8:11:3F:6B:2A:C7 Certificate issuer: /CN=012D4317BCA1660F88066F890F8C04AF557000CB Certificate serial: 2926 Authority key identifier: 01:2D:43:17:BC:A1:66:0F:88:06:6F:89:0F:8C:04:AF:55:70:00:CB Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/AS1DF7yhZg-IBm-JD4wEr1VwAMs.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2988/C6ag7U5RmZ0EYqCxc2v4ET9rKsc.roa Signing time: Mon 26 Jan 2026 06:52:24 +0000 ROA not before: Mon 26 Jan 2026 06:52:24 +0000 ROA not after: Sat 09 Jan 2027 08:23:18 +0000 asID: 4538 IP address blocks: 103.152.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2988/AS1DF7yhZg-IBm-JD4wEr1VwAMs.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2988/AS1DF7yhZg-IBm-JD4wEr1VwAMs.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/AS1DF7yhZg-IBm-JD4wEr1VwAMs.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Feb 2026 05:58:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10534 (0x2926) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=012D4317BCA1660F88066F890F8C04AF557000CB Validity Not Before: Jan 26 06:52:24 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=0BA6A0ED4E51999D0462A0B1736BF8113F6B2AC7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:ed:e9:61:7c:f0:ea:2e:a1:6d:35:55:13:7c: 58:dc:56:0b:09:92:dd:39:e4:df:d4:a5:83:b2:6a: 0f:0b:35:b6:af:73:e4:f2:a0:da:9d:f1:c9:67:63: bc:ad:4f:e0:ed:44:0c:3d:23:05:b1:0b:61:32:57: ad:1c:42:71:d7:78:97:32:96:9b:71:4b:e8:f1:54: 2a:94:31:59:90:70:02:a6:ae:ab:5f:c5:3c:45:bb: 3d:0e:6c:4b:13:3f:b0:12:23:28:01:db:f0:76:45: 2c:15:00:67:85:eb:25:3b:9e:d3:63:a7:03:b4:08: 50:86:69:77:96:f6:ae:d3:a7:07:cd:ac:7e:33:5e: d5:b0:98:e8:1d:bb:a0:70:53:32:4a:1a:4d:bd:fd: 6f:10:2a:3e:59:53:7e:9f:4c:d8:39:72:0d:20:01: 9c:e3:b4:fb:ce:eb:82:f0:f4:14:a4:bc:4f:3c:e0: e4:08:f5:9a:6e:07:eb:a5:03:88:dc:2a:1e:1d:0a: dd:b0:61:9d:10:55:ce:75:6b:31:f3:87:51:4e:bf: 04:e2:84:43:1f:bd:84:e9:91:78:01:05:13:32:9b: c6:07:e7:bc:4c:99:7c:9a:3f:90:1c:f3:c0:e1:3f: 57:13:bd:61:ff:b8:c5:09:08:8d:82:0f:47:83:36: 4c:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:A6:A0:ED:4E:51:99:9D:04:62:A0:B1:73:6B:F8:11:3F:6B:2A:C7 X509v3 Authority Key Identifier: keyid:01:2D:43:17:BC:A1:66:0F:88:06:6F:89:0F:8C:04:AF:55:70:00:CB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2988/AS1DF7yhZg-IBm-JD4wEr1VwAMs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/AS1DF7yhZg-IBm-JD4wEr1VwAMs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2988/C6ag7U5RmZ0EYqCxc2v4ET9rKsc.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.152.187.0/24 Signature Algorithm: sha256WithRSAEncryption 03:c9:06:0c:34:73:f8:21:b2:59:40:d7:47:88:fe:04:7e:ed: 5b:40:72:17:5c:36:2d:79:fc:95:50:c6:1a:85:fd:3e:13:c8: 13:19:27:32:74:07:ae:51:21:76:97:61:81:2f:27:92:ba:7f: a0:43:f8:54:4b:64:54:cc:57:e7:d0:8c:7c:8b:49:bf:a6:55: bb:c1:bf:de:55:81:f6:de:4e:a5:1b:ca:13:ba:3f:22:98:46: 22:6e:be:57:03:9a:59:d5:52:46:44:74:bb:4b:c8:2e:e6:3f: 74:11:58:69:05:30:31:16:87:7a:59:9d:f0:03:27:86:17:1c: 32:dc:47:fa:0a:ad:00:2c:4d:6f:ee:d6:d9:f2:86:94:2d:1f: 30:c3:b9:34:0b:63:b1:58:02:2e:2c:ea:1c:ae:35:35:8c:8b: 7b:9b:44:0e:12:c8:b1:62:88:35:7c:5c:a4:22:40:ba:ec:00: d8:85:5c:12:e6:ca:c9:ec:74:b5:26:4f:fd:b8:3d:24:50:b8: 80:97:8e:de:89:f6:44:27:98:2a:85:0a:02:a9:d9:72:2b:07: a6:ed:13:38:51:ad:ea:37:48:e2:90:fe:dd:f1:56:7a:31:3d: 69:ca:86:90:92:73:23:52:c0:b2:30:48:af:cf:b3:1f:79:35: 68:0c:33:44 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICKSYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDEy RDQzMTdCQ0ExNjYwRjg4MDY2Rjg5MEY4QzA0QUY1NTcwMDBDQjAeFw0yNjAxMjYw NjUyMjRaFw0yNzAxMDkwODIzMThaMDMxMTAvBgNVBAMTKDBCQTZBMEVENEU1MTk5 OUQwNDYyQTBCMTczNkJGODExM0Y2QjJBQzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDW7elhfPDqLqFtNVUTfFjcVgsJkt055N/UpYOyag8LNbavc+Ty oNqd8clnY7ytT+DtRAw9IwWxC2EyV60cQnHXeJcylptxS+jxVCqUMVmQcAKmrqtf xTxFuz0ObEsTP7ASIygB2/B2RSwVAGeF6yU7ntNjpwO0CFCGaXeW9q7TpwfNrH4z XtWwmOgdu6BwUzJKGk29/W8QKj5ZU36fTNg5cg0gAZzjtPvO64Lw9BSkvE884OQI 9ZpuB+ulA4jcKh4dCt2wYZ0QVc51azHzh1FOvwTihEMfvYTpkXgBBRMym8YH57xM mXyaP5Ac88DhP1cTvWH/uMUJCI2CD0eDNkzTAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUC6ag7U5RmZ0EYqCxc2v4ET9rKscwHwYDVR0jBBgwFoAUAS1DF7yhZg+IBm+J D4wEr1VwAMswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjk4 OC9BUzFERjd5aFpnLUlCbS1KRDR3RXIxVndBTXMuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0FTMURGN3loWmctSUJtLUpENHdFcjFWd0FNcy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI5ODgvQzZhZzdVNVJtWjBF WXFDeGMydjRFVDlyS3NjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAGeYuzANBgkqhkiG9w0BAQsFAAOCAQEAA8kGDDRz+CGyWUDXR4j+BH7tW0By F1w2LXn8lVDGGoX9PhPIExknMnQHrlEhdpdhgS8nkrp/oEP4VEtkVMxX59CMfItJ v6ZVu8G/3lWB9t5OpRvKE7o/IphGIm6+VwOaWdVSRkR0u0vILuY/dBFYaQUwMRaH elmd8AMnhhccMtxH+gqtACxNb+7W2fKGlC0fMMO5NAtjsVgCLizqHK41NYyLe5tE DhLIsWKINXxcpCJAuuwA2IVcEubKyex0tSZP/bg9JFC4gJeO3on2RCeYKoUKAqnZ cisHpu0TOFGt6jdI4pD+3fFWejE9acqGkJJzI1LAsjBIr8+zH3k1aAwzRA== -----END CERTIFICATE-----Generated at Fri Feb 20 03:29:32 2026 by rpki-client