$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2988/t1LLR_-XYrjVKRkJHwWKmzv5vM8.roa File: t1LLR_-XYrjVKRkJHwWKmzv5vM8.roa (raw, json) Hash identifier: 7nQf2ITpmzHKe2QQyX0zPlhN6/0hAToZxQzHdoLwcLs= Subject key identifier: B7:52:CB:47:FF:97:62:B8:D5:29:19:09:1F:05:8A:9B:3B:F9:BC:CF Certificate issuer: /CN=012D4317BCA1660F88066F890F8C04AF557000CB Certificate serial: 2927 Authority key identifier: 01:2D:43:17:BC:A1:66:0F:88:06:6F:89:0F:8C:04:AF:55:70:00:CB Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/AS1DF7yhZg-IBm-JD4wEr1VwAMs.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2988/t1LLR_-XYrjVKRkJHwWKmzv5vM8.roa Signing time: Mon 26 Jan 2026 06:52:24 +0000 ROA not before: Mon 26 Jan 2026 06:52:24 +0000 ROA not after: Sat 09 Jan 2027 08:23:18 +0000 asID: 139139 IP address blocks: 2406:3340:2000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2988/AS1DF7yhZg-IBm-JD4wEr1VwAMs.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2988/AS1DF7yhZg-IBm-JD4wEr1VwAMs.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/AS1DF7yhZg-IBm-JD4wEr1VwAMs.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Feb 2026 05:58:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10535 (0x2927) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=012D4317BCA1660F88066F890F8C04AF557000CB Validity Not Before: Jan 26 06:52:24 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=B752CB47FF9762B8D52919091F058A9B3BF9BCCF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:56:cf:5e:06:ba:8d:5d:d4:e4:0d:13:b7:dc: ef:28:2a:b0:76:6c:6b:d9:e0:99:a0:de:2f:6d:31: 4d:a4:da:81:97:10:ff:7f:f6:2d:56:30:61:83:dd: 98:76:2a:4d:71:7e:72:58:11:e8:d6:01:7d:e0:c6: 04:3a:85:52:11:45:fc:dd:e3:3c:d0:6b:49:48:25: 58:33:b6:f2:e7:ac:8e:91:72:9e:97:cf:ff:25:96: d2:6d:22:d9:a8:a6:91:85:97:da:27:7f:3d:7b:63: 4a:08:79:b5:16:c7:9f:e9:b1:cc:c3:54:2d:d3:af: cc:c5:d9:d4:ec:3b:87:46:27:99:cc:4b:9d:83:26: ca:b7:c1:d4:75:81:1c:12:9c:02:d6:45:74:19:3b: 18:fc:9d:86:67:e5:43:c7:0c:4d:d5:57:fb:d9:b3: f3:d0:9e:c6:4f:0d:15:51:53:83:dd:b3:ca:a0:61: fb:54:87:ca:c7:1b:0e:ae:cd:e1:59:c0:bb:1c:75: 02:bc:f8:ad:17:42:b7:9a:be:9b:bd:31:dc:da:9d: a2:70:a3:fd:aa:a6:79:c7:85:25:c2:3f:70:e7:88: 70:e9:b5:f1:d6:c9:47:25:37:fd:2f:15:6d:a1:72: 15:1d:4c:ed:a9:dd:16:6b:8b:20:eb:99:26:c4:3a: 28:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:52:CB:47:FF:97:62:B8:D5:29:19:09:1F:05:8A:9B:3B:F9:BC:CF X509v3 Authority Key Identifier: keyid:01:2D:43:17:BC:A1:66:0F:88:06:6F:89:0F:8C:04:AF:55:70:00:CB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2988/AS1DF7yhZg-IBm-JD4wEr1VwAMs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/AS1DF7yhZg-IBm-JD4wEr1VwAMs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2988/t1LLR_-XYrjVKRkJHwWKmzv5vM8.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2406:3340:2000::/36 Signature Algorithm: sha256WithRSAEncryption 78:2c:2c:81:b3:74:ea:9d:15:53:03:d9:8a:a3:08:ff:1e:09: 98:56:e0:8b:11:19:de:7b:48:9b:d4:3e:d4:ce:d3:5a:ec:96: 17:47:62:8c:9f:3e:7b:e8:8a:fb:38:2e:0f:fa:33:b4:86:d5: ed:e4:59:8f:3e:b6:4f:41:94:11:cc:01:8b:b2:2b:07:c4:b5: a8:50:84:c1:db:85:b8:33:81:49:61:9a:8f:54:96:9b:f0:64: d9:fe:42:3f:99:67:26:72:55:84:dd:49:3d:f2:67:c7:b7:13: c1:aa:06:72:56:dd:95:13:aa:95:02:e9:e4:95:72:f5:21:7c: c3:a8:27:df:44:dd:10:c5:c9:0e:39:a4:cd:ad:c3:fb:da:14: 88:90:58:88:df:c2:62:58:47:e2:6e:66:41:ad:19:4f:0a:e0: 5d:3f:c8:23:03:89:88:c9:50:1d:5f:76:7a:c3:c5:be:6e:43: 31:3b:cb:09:75:cc:3d:3f:91:71:c2:e2:1d:13:c6:1e:d7:18: 25:82:9a:fc:97:d9:91:e4:1a:e4:2f:21:b9:2d:ff:ed:a6:51: 4a:86:3c:0f:fc:bf:15:33:f7:c3:05:4f:0b:41:43:f9:ed:1d: 04:e4:d0:a6:01:f8:8f:2c:cd:53:79:15:1a:82:0b:55:7c:be: 97:30:91:d8 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgICKScwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDEy RDQzMTdCQ0ExNjYwRjg4MDY2Rjg5MEY4QzA0QUY1NTcwMDBDQjAeFw0yNjAxMjYw NjUyMjRaFw0yNzAxMDkwODIzMThaMDMxMTAvBgNVBAMTKEI3NTJDQjQ3RkY5NzYy QjhENTI5MTkwOTFGMDU4QTlCM0JGOUJDQ0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDhVs9eBrqNXdTkDRO33O8oKrB2bGvZ4Jmg3i9tMU2k2oGXEP9/ 9i1WMGGD3Zh2Kk1xfnJYEejWAX3gxgQ6hVIRRfzd4zzQa0lIJVgztvLnrI6Rcp6X z/8lltJtItmoppGFl9onfz17Y0oIebUWx5/psczDVC3Tr8zF2dTsO4dGJ5nMS52D Jsq3wdR1gRwSnALWRXQZOxj8nYZn5UPHDE3VV/vZs/PQnsZPDRVRU4Pds8qgYftU h8rHGw6uzeFZwLscdQK8+K0XQreavpu9MdzanaJwo/2qpnnHhSXCP3DniHDptfHW yUclN/0vFW2hchUdTO2p3RZriyDrmSbEOihJAgMBAAGjggH1MIIB8TAdBgNVHQ4E FgQUt1LLR/+XYrjVKRkJHwWKmzv5vM8wHwYDVR0jBBgwFoAUAS1DF7yhZg+IBm+J D4wEr1VwAMswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjk4 OC9BUzFERjd5aFpnLUlCbS1KRDR3RXIxVndBTXMuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0FTMURGN3loWmctSUJtLUpENHdFcjFWd0FNcy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI5ODgvdDFMTFJfLVhZcmpW S1JrSkh3V0ttenY1dk04LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIw CAMGBCQGM0AgMA0GCSqGSIb3DQEBCwUAA4IBAQB4LCyBs3TqnRVTA9mKowj/HgmY VuCLERnee0ib1D7UztNa7JYXR2KMnz576Ir7OC4P+jO0htXt5FmPPrZPQZQRzAGL sisHxLWoUITB24W4M4FJYZqPVJab8GTZ/kI/mWcmclWE3Uk98mfHtxPBqgZyVt2V E6qVAunklXL1IXzDqCffRN0QxckOOaTNrcP72hSIkFiI38JiWEfibmZBrRlPCuBd P8gjA4mIyVAdX3Z6w8W+bkMxO8sJdcw9P5FxwuIdE8Ye1xglgpr8l9mR5BrkLyG5 Lf/tplFKhjwP/L8VM/fDBU8LQUP57R0E5NCmAfiPLM1TeRUaggtVfL6XMJHY -----END CERTIFICATE-----Generated at Fri Feb 20 05:35:07 2026 by rpki-client