$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2988/uOcIBjmNT5CFe4fLuWdjVUr8WCY.roa File: uOcIBjmNT5CFe4fLuWdjVUr8WCY.roa (raw, json) Hash identifier: mz1JD6lE8OmV/eiKAkFWtQowBvk6JVFFxyyQYyRR8Rs= Subject key identifier: B8:E7:08:06:39:8D:4F:90:85:7B:87:CB:B9:67:63:55:4A:FC:58:26 Certificate issuer: /CN=012D4317BCA1660F88066F890F8C04AF557000CB Certificate serial: 2925 Authority key identifier: 01:2D:43:17:BC:A1:66:0F:88:06:6F:89:0F:8C:04:AF:55:70:00:CB Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/AS1DF7yhZg-IBm-JD4wEr1VwAMs.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2988/uOcIBjmNT5CFe4fLuWdjVUr8WCY.roa Signing time: Mon 26 Jan 2026 06:52:23 +0000 ROA not before: Mon 26 Jan 2026 06:52:23 +0000 ROA not after: Sat 09 Jan 2027 08:23:18 +0000 asID: 139139 IP address blocks: 2406:3340:6000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2988/AS1DF7yhZg-IBm-JD4wEr1VwAMs.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2988/AS1DF7yhZg-IBm-JD4wEr1VwAMs.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/AS1DF7yhZg-IBm-JD4wEr1VwAMs.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Feb 2026 05:58:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10533 (0x2925) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=012D4317BCA1660F88066F890F8C04AF557000CB Validity Not Before: Jan 26 06:52:23 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=B8E70806398D4F90857B87CBB96763554AFC5826 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:46:a8:fe:6b:27:f7:48:f5:23:fe:2c:61:1c: 8a:c0:2d:b2:91:d2:a9:e5:a7:c2:a0:f6:86:4e:19: c5:f6:d3:eb:4b:a1:84:6d:e3:66:d6:d8:87:db:7b: 97:de:d9:09:e2:fd:15:c5:14:52:e7:9e:09:ae:3b: 6d:85:08:4d:e4:92:a0:63:09:6b:85:71:3b:01:1c: ba:49:fe:36:97:42:98:96:db:09:25:10:7b:94:4e: 7b:ed:b8:97:60:5b:63:8e:55:c1:cf:ac:ac:02:8e: cc:08:fe:2d:7a:30:7f:bd:17:46:d2:fd:57:be:35: 39:f9:8e:a8:ef:0f:28:ab:7e:75:b5:9b:fd:c8:3b: 4a:56:72:ce:bd:91:d9:5a:72:53:2d:a1:80:7c:bf: e5:fd:d2:45:bd:8b:3f:49:98:ba:a7:31:0b:d6:a9: b6:96:5b:40:b7:c9:09:58:e6:8d:d3:81:e8:ed:ac: 6f:ff:c6:9c:a7:b0:ba:7c:bf:db:36:88:81:89:59: 06:5a:86:6d:2b:22:c4:6f:4b:c9:03:0a:86:70:60: 2e:c7:6b:d6:8b:99:07:84:58:7b:fc:68:78:bf:1c: bc:85:64:fb:38:1e:4b:54:d3:14:da:21:f5:c4:d2: 94:9c:d0:ef:b3:7c:b5:e0:11:f2:8b:e9:97:a4:1e: c0:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:E7:08:06:39:8D:4F:90:85:7B:87:CB:B9:67:63:55:4A:FC:58:26 X509v3 Authority Key Identifier: keyid:01:2D:43:17:BC:A1:66:0F:88:06:6F:89:0F:8C:04:AF:55:70:00:CB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2988/AS1DF7yhZg-IBm-JD4wEr1VwAMs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/AS1DF7yhZg-IBm-JD4wEr1VwAMs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2988/uOcIBjmNT5CFe4fLuWdjVUr8WCY.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2406:3340:6000::/36 Signature Algorithm: sha256WithRSAEncryption 3c:b3:1b:06:89:10:cb:8d:89:1a:4d:2b:be:9e:3f:37:01:e9: 10:27:b7:8e:8c:31:da:84:42:93:77:82:63:69:a4:67:f7:81: f4:f5:44:18:14:1d:23:9f:85:6f:f7:ee:64:f0:ad:32:fa:e1: 50:cf:f5:4f:e8:11:37:66:a6:3f:80:5d:37:16:18:93:57:f6: ac:64:97:da:99:41:1a:62:75:78:cb:2a:83:63:19:a8:24:96: 2f:1a:a5:4e:f0:9c:fd:1c:29:8c:4c:30:17:6a:2d:9c:e5:97: a3:8e:6f:14:1d:66:ff:f2:0a:7d:a8:05:ae:c7:e1:4e:29:2f: e3:bd:6c:c2:6f:8c:4f:00:ad:f0:88:69:4c:41:79:a7:73:07: ad:6b:67:aa:81:1b:03:08:75:29:01:a4:57:a0:e5:27:d4:97: e7:38:5a:94:90:f9:24:62:c7:04:93:d2:24:46:83:41:9d:d5: d4:6a:b0:3b:6f:5f:88:3e:f1:be:56:13:94:06:11:89:53:b0: e5:62:9c:3a:b5:0e:9b:66:4e:6a:95:74:f1:10:45:79:11:c4: c4:60:71:d2:91:33:c7:d0:a5:08:8d:7a:f0:d5:fc:a5:24:f8: 33:3d:59:d9:79:fb:5f:08:48:cf:42:a2:f1:2b:34:9f:5e:09: 8a:7e:b5:fa -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgICKSUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDEy RDQzMTdCQ0ExNjYwRjg4MDY2Rjg5MEY4QzA0QUY1NTcwMDBDQjAeFw0yNjAxMjYw NjUyMjNaFw0yNzAxMDkwODIzMThaMDMxMTAvBgNVBAMTKEI4RTcwODA2Mzk4RDRG OTA4NTdCODdDQkI5Njc2MzU1NEFGQzU4MjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1Rqj+ayf3SPUj/ixhHIrALbKR0qnlp8Kg9oZOGcX20+tLoYRt 42bW2Ifbe5fe2Qni/RXFFFLnngmuO22FCE3kkqBjCWuFcTsBHLpJ/jaXQpiW2wkl EHuUTnvtuJdgW2OOVcHPrKwCjswI/i16MH+9F0bS/Ve+NTn5jqjvDyirfnW1m/3I O0pWcs69kdlaclMtoYB8v+X90kW9iz9JmLqnMQvWqbaWW0C3yQlY5o3TgejtrG// xpynsLp8v9s2iIGJWQZahm0rIsRvS8kDCoZwYC7Ha9aLmQeEWHv8aHi/HLyFZPs4 HktU0xTaIfXE0pSc0O+zfLXgEfKL6ZekHsBfAgMBAAGjggH1MIIB8TAdBgNVHQ4E FgQUuOcIBjmNT5CFe4fLuWdjVUr8WCYwHwYDVR0jBBgwFoAUAS1DF7yhZg+IBm+J D4wEr1VwAMswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjk4 OC9BUzFERjd5aFpnLUlCbS1KRDR3RXIxVndBTXMuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0FTMURGN3loWmctSUJtLUpENHdFcjFWd0FNcy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI5ODgvdU9jSUJqbU5UNUNG ZTRmTHVXZGpWVXI4V0NZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIw CAMGBCQGM0BgMA0GCSqGSIb3DQEBCwUAA4IBAQA8sxsGiRDLjYkaTSu+nj83AekQ J7eOjDHahEKTd4JjaaRn94H09UQYFB0jn4Vv9+5k8K0y+uFQz/VP6BE3ZqY/gF03 FhiTV/asZJfamUEaYnV4yyqDYxmoJJYvGqVO8Jz9HCmMTDAXai2c5Zejjm8UHWb/ 8gp9qAWux+FOKS/jvWzCb4xPAK3wiGlMQXmncweta2eqgRsDCHUpAaRXoOUn1Jfn OFqUkPkkYscEk9IkRoNBndXUarA7b1+IPvG+VhOUBhGJU7DlYpw6tQ6bZk5qlXTx EEV5EcTEYHHSkTPH0KUIjXrw1fylJPgzPVnZeftfCEjPQqLxKzSfXgmKfrX6 -----END CERTIFICATE-----Generated at Fri Feb 20 05:34:46 2026 by rpki-client