$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2988/Uu2yjNfB95SbG7-fDjsCIwA9T6g.roa File: Uu2yjNfB95SbG7-fDjsCIwA9T6g.roa (raw, json) Hash identifier: fN3aXFAbD+RtnMBPuinDNOhG9QamHfd+luJc5OPGm5c= Subject key identifier: 52:ED:B2:8C:D7:C1:F7:94:9B:1B:BF:9F:0E:3B:02:23:00:3D:4F:A8 Certificate issuer: /CN=012D4317BCA1660F88066F890F8C04AF557000CB Certificate serial: 2922 Authority key identifier: 01:2D:43:17:BC:A1:66:0F:88:06:6F:89:0F:8C:04:AF:55:70:00:CB Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/AS1DF7yhZg-IBm-JD4wEr1VwAMs.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2988/Uu2yjNfB95SbG7-fDjsCIwA9T6g.roa Signing time: Mon 26 Jan 2026 06:52:23 +0000 ROA not before: Mon 26 Jan 2026 06:52:23 +0000 ROA not after: Sat 09 Jan 2027 08:23:18 +0000 asID: 4538 IP address blocks: 2406:3340:1000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2988/AS1DF7yhZg-IBm-JD4wEr1VwAMs.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2988/AS1DF7yhZg-IBm-JD4wEr1VwAMs.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/AS1DF7yhZg-IBm-JD4wEr1VwAMs.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Feb 2026 05:58:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10530 (0x2922) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=012D4317BCA1660F88066F890F8C04AF557000CB Validity Not Before: Jan 26 06:52:23 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=52EDB28CD7C1F7949B1BBF9F0E3B0223003D4FA8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:09:7a:e4:56:c6:54:35:f2:4c:9a:b5:42:af: 49:e9:56:b8:2e:a1:d9:39:06:b0:59:13:a7:f8:40: 06:14:ce:04:88:d3:ee:b8:68:b8:56:75:f7:7a:dc: 19:87:3b:55:fc:5f:84:1a:9c:4f:f2:7f:59:3f:e3: 5f:2e:7e:9b:17:98:50:2d:25:08:cd:b3:66:8c:06: ab:80:ad:c9:0d:ae:10:0f:f2:b6:55:be:41:cf:89: 2c:5c:7c:c8:2d:72:3a:e8:58:d9:b8:09:fc:98:23: ee:b1:bb:16:76:14:41:cc:f1:f8:3e:12:d6:76:68: 94:a9:ea:8a:eb:7a:de:48:ef:67:4f:c8:0e:55:45: 8f:0e:9f:73:04:71:15:91:bd:fb:6d:8d:19:2a:f4: 65:72:7f:ca:70:ba:bc:79:6b:cd:ef:04:a7:3d:e0: cb:97:f1:13:26:9d:dc:c2:ec:06:eb:6e:8c:b0:e8: b2:0c:9d:01:b4:c9:06:f5:fb:79:dd:14:27:d9:9b: 00:c6:ef:17:fc:d1:9b:ff:4b:df:e9:45:d1:aa:3f: 1b:ba:fd:53:68:e5:0f:d3:21:97:3f:bb:91:4a:d1: 08:3e:e4:bf:b1:94:7f:db:32:df:14:d8:fa:a7:80: f9:ac:1e:0c:1e:a3:d7:ed:3f:02:dc:55:5d:93:ad: 33:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:ED:B2:8C:D7:C1:F7:94:9B:1B:BF:9F:0E:3B:02:23:00:3D:4F:A8 X509v3 Authority Key Identifier: keyid:01:2D:43:17:BC:A1:66:0F:88:06:6F:89:0F:8C:04:AF:55:70:00:CB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2988/AS1DF7yhZg-IBm-JD4wEr1VwAMs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/AS1DF7yhZg-IBm-JD4wEr1VwAMs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2988/Uu2yjNfB95SbG7-fDjsCIwA9T6g.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2406:3340:1000::/36 Signature Algorithm: sha256WithRSAEncryption 45:f3:2a:20:f3:71:7e:45:2d:b2:db:fe:9d:c5:02:4f:74:88: 61:ac:3f:61:07:65:ac:18:6d:1d:07:e4:33:a4:d9:18:4a:81: 84:b5:a9:c3:4d:c2:09:47:a5:ee:07:5e:9c:93:9a:69:e9:3b: c1:95:d1:18:e5:a7:9f:21:a7:48:01:ae:3e:82:00:03:8d:b1: 15:77:27:c4:5b:06:3e:da:c3:55:f8:13:71:dc:ab:fd:b2:20: c2:e9:fb:7c:01:cc:1c:cf:50:39:0e:9e:29:0e:34:76:fb:57: b7:0d:51:df:af:09:c3:81:39:36:74:fb:f0:7a:9e:a4:01:a6: f8:11:c8:57:f7:e2:18:bc:51:01:7d:2c:ee:f9:ad:23:ec:ed: 0d:e2:1d:e0:13:3c:d2:d9:2a:3b:c9:8e:e3:d3:64:5f:84:45: cf:8b:38:7e:8f:0e:0c:63:24:16:b4:fa:cd:a7:c6:f4:d5:29: 57:32:56:32:ac:5b:19:e7:84:88:99:f6:70:7f:b6:6c:57:5b: e4:02:8b:c4:65:e2:c8:92:2f:aa:cd:e6:81:65:31:22:24:b1: 8d:8e:86:1e:19:95:6a:e8:9d:4d:2e:78:35:10:8a:77:98:23: c3:ea:2f:c1:12:09:32:10:19:60:1c:3e:35:01:1d:22:ed:7a: 9f:d1:47:d4 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgICKSIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDEy RDQzMTdCQ0ExNjYwRjg4MDY2Rjg5MEY4QzA0QUY1NTcwMDBDQjAeFw0yNjAxMjYw NjUyMjNaFw0yNzAxMDkwODIzMThaMDMxMTAvBgNVBAMTKDUyRURCMjhDRDdDMUY3 OTQ5QjFCQkY5RjBFM0IwMjIzMDAzRDRGQTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDkCXrkVsZUNfJMmrVCr0npVrguodk5BrBZE6f4QAYUzgSI0+64 aLhWdfd63BmHO1X8X4QanE/yf1k/418ufpsXmFAtJQjNs2aMBquArckNrhAP8rZV vkHPiSxcfMgtcjroWNm4CfyYI+6xuxZ2FEHM8fg+EtZ2aJSp6orret5I72dPyA5V RY8On3MEcRWRvfttjRkq9GVyf8pwurx5a83vBKc94MuX8RMmndzC7Abrboyw6LIM nQG0yQb1+3ndFCfZmwDG7xf80Zv/S9/pRdGqPxu6/VNo5Q/TIZc/u5FK0Qg+5L+x lH/bMt8U2PqngPmsHgweo9ftPwLcVV2TrTMtAgMBAAGjggH1MIIB8TAdBgNVHQ4E FgQUUu2yjNfB95SbG7+fDjsCIwA9T6gwHwYDVR0jBBgwFoAUAS1DF7yhZg+IBm+J D4wEr1VwAMswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjk4 OC9BUzFERjd5aFpnLUlCbS1KRDR3RXIxVndBTXMuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0FTMURGN3loWmctSUJtLUpENHdFcjFWd0FNcy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI5ODgvVXUyeWpOZkI5NVNi RzctZkRqc0NJd0E5VDZnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIw CAMGBCQGM0AQMA0GCSqGSIb3DQEBCwUAA4IBAQBF8yog83F+RS2y2/6dxQJPdIhh rD9hB2WsGG0dB+QzpNkYSoGEtanDTcIJR6XuB16ck5pp6TvBldEY5aefIadIAa4+ ggADjbEVdyfEWwY+2sNV+BNx3Kv9siDC6ft8Acwcz1A5Dp4pDjR2+1e3DVHfrwnD gTk2dPvwep6kAab4EchX9+IYvFEBfSzu+a0j7O0N4h3gEzzS2So7yY7j02RfhEXP izh+jw4MYyQWtPrNp8b01SlXMlYyrFsZ54SImfZwf7ZsV1vkAovEZeLIki+qzeaB ZTEiJLGNjoYeGZVq6J1NLng1EIp3mCPD6i/BEgkyEBlgHD41AR0i7Xqf0UfU -----END CERTIFICATE-----Generated at Fri Feb 20 03:29:41 2026 by rpki-client