$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3044/sUJTqxHWCoxWpgbJGEXPgaqww14.roa File: sUJTqxHWCoxWpgbJGEXPgaqww14.roa (raw, json) Hash identifier: 7suq5bE9W2JtdAd8vT0Kjp1OE6kD/UdxyuOrlkP7FZI= Subject key identifier: B1:42:53:AB:11:D6:0A:8C:56:A6:06:C9:18:45:CF:81:AA:B0:C3:5E Certificate issuer: /CN=B08B918D2D45B6371ACB9770743553D1BF224708 Certificate serial: 24A2 Authority key identifier: B0:8B:91:8D:2D:45:B6:37:1A:CB:97:70:74:35:53:D1:BF:22:47:08 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/sIuRjS1Ftjcay5dwdDVT0b8iRwg.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3044/sUJTqxHWCoxWpgbJGEXPgaqww14.roa Signing time: Mon 26 Jan 2026 06:52:36 +0000 ROA not before: Mon 26 Jan 2026 06:52:36 +0000 ROA not after: Fri 23 Oct 2026 03:01:03 +0000 asID: 138421 IP address blocks: 2406:d440:ffff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3044/sIuRjS1Ftjcay5dwdDVT0b8iRwg.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3044/sIuRjS1Ftjcay5dwdDVT0b8iRwg.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/sIuRjS1Ftjcay5dwdDVT0b8iRwg.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Feb 2026 11:59:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9378 (0x24a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B08B918D2D45B6371ACB9770743553D1BF224708 Validity Not Before: Jan 26 06:52:36 2026 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=B14253AB11D60A8C56A606C91845CF81AAB0C35E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:2d:e2:6b:2f:78:33:51:a3:3a:a0:f7:60:40: 72:22:ff:7b:ef:f4:52:be:26:56:71:fb:e8:52:6e: 14:ac:44:09:27:4b:90:e8:45:01:f4:4f:b5:85:93: e8:fb:48:4c:a4:05:8c:3b:7e:d2:95:b5:73:bf:58: 06:5f:48:85:0a:11:91:fb:c9:7d:55:5a:a6:3f:a8: 6e:a8:65:e4:92:35:1b:d3:8b:4f:ae:26:83:48:1a: fa:a0:f4:c2:5f:33:24:f3:80:4b:e2:25:78:dd:5e: 43:62:aa:e5:4e:a5:92:d4:4d:ba:b4:42:2e:c2:59: 22:43:ae:47:bd:1e:a5:88:60:82:29:cb:28:26:69: 7a:2b:da:67:c0:bc:d6:a4:b1:fb:ce:2c:4f:2b:dc: d9:37:b0:d0:29:97:d2:aa:83:f2:ba:61:78:7e:b9: 8c:e6:68:e6:b4:9b:c0:ec:53:d9:c3:6d:a8:04:e8: 3d:60:28:e4:a2:88:da:bd:4b:d0:64:0d:52:52:9e: ef:04:80:0b:5a:7d:7d:9e:4c:36:0a:df:af:c3:22: d8:c0:43:46:0b:5a:36:cf:40:9d:42:d8:cf:62:e9: d3:f3:7d:dd:7f:4a:4f:3d:11:d4:5b:8b:04:d2:4b: 9c:ba:29:e7:5c:0d:a0:a2:91:b6:03:f7:68:2f:6c: 0f:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:42:53:AB:11:D6:0A:8C:56:A6:06:C9:18:45:CF:81:AA:B0:C3:5E X509v3 Authority Key Identifier: keyid:B0:8B:91:8D:2D:45:B6:37:1A:CB:97:70:74:35:53:D1:BF:22:47:08 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3044/sIuRjS1Ftjcay5dwdDVT0b8iRwg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/sIuRjS1Ftjcay5dwdDVT0b8iRwg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3044/sUJTqxHWCoxWpgbJGEXPgaqww14.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2406:d440:ffff::/48 Signature Algorithm: sha256WithRSAEncryption 15:82:f6:61:79:ed:41:5a:51:70:42:f7:20:0d:67:0e:33:f6: 93:f3:e8:ca:3d:47:02:7c:9f:4e:58:fd:1f:9f:d9:30:42:1c: 81:cd:34:e9:6d:1c:9c:dd:52:ca:b4:b0:3d:fa:bd:5a:90:29: cb:49:2c:c7:5e:37:c7:61:c4:cd:45:9f:aa:ac:57:ec:59:45: 89:91:09:21:8a:f1:8e:7f:38:c4:e2:e4:56:39:32:4b:04:04: 81:35:b9:b3:20:61:df:6c:65:dc:45:4d:66:6c:ff:54:25:62: 5f:f7:75:c8:a8:4a:24:0b:87:15:d6:b1:fb:fe:c4:c1:7f:e7: 73:cd:19:b9:a2:e9:71:33:0a:06:a1:e6:b7:d3:bc:24:91:e1: 7c:f8:07:30:54:bb:ab:3c:13:b1:f1:ca:98:06:65:61:c3:0b: cb:21:39:74:41:d2:33:c9:6c:d7:6c:5b:4b:e1:ae:d3:0c:43: 45:ef:b8:82:a8:ca:7f:89:5d:18:de:08:1e:d5:bb:3a:87:b6: e8:bd:62:ca:1a:d5:d2:91:ca:86:47:90:08:c5:a0:39:8c:d8: a6:3c:ca:b6:7a:29:ab:01:91:d7:c2:a2:d0:c9:b6:f2:53:e9: 84:17:b6:f0:9c:13:7b:2c:cd:87:96:db:b8:18:23:12:30:05: ae:f1:21:6e -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICJKIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjA4 QjkxOEQyRDQ1QjYzNzFBQ0I5NzcwNzQzNTUzRDFCRjIyNDcwODAeFw0yNjAxMjYw NjUyMzZaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKEIxNDI1M0FCMTFENjBB OEM1NkE2MDZDOTE4NDVDRjgxQUFCMEMzNUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKLeJrL3gzUaM6oPdgQHIi/3vv9FK+JlZx++hSbhSsRAknS5Do RQH0T7WFk+j7SEykBYw7ftKVtXO/WAZfSIUKEZH7yX1VWqY/qG6oZeSSNRvTi0+u JoNIGvqg9MJfMyTzgEviJXjdXkNiquVOpZLUTbq0Qi7CWSJDrke9HqWIYIIpyygm aXor2mfAvNaksfvOLE8r3Nk3sNApl9Kqg/K6YXh+uYzmaOa0m8DsU9nDbagE6D1g KOSiiNq9S9BkDVJSnu8EgAtafX2eTDYK36/DItjAQ0YLWjbPQJ1C2M9i6dPzfd1/ Sk89EdRbiwTSS5y6KedcDaCikbYD92gvbA9RAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUsUJTqxHWCoxWpgbJGEXPgaqww14wHwYDVR0jBBgwFoAUsIuRjS1Ftjcay5dw dDVT0b8iRwgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzA0 NC9zSXVSalMxRnRqY2F5NWR3ZERWVDBiOGlSd2cuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL3NJdVJqUzFGdGpjYXk1ZHdkRFZUMGI4aVJ3Zy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMwNDQvc1VKVHF4SFdDb3hX cGdiSkdFWFBnYXF3dzE0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIw CQMHACQG1ED//zANBgkqhkiG9w0BAQsFAAOCAQEAFYL2YXntQVpRcEL3IA1nDjP2 k/Poyj1HAnyfTlj9H5/ZMEIcgc006W0cnN1SyrSwPfq9WpApy0ksx143x2HEzUWf qqxX7FlFiZEJIYrxjn84xOLkVjkySwQEgTW5syBh32xl3EVNZmz/VCViX/d1yKhK JAuHFdax+/7EwX/nc80ZuaLpcTMKBqHmt9O8JJHhfPgHMFS7qzwTsfHKmAZlYcML yyE5dEHSM8ls12xbS+Gu0wxDRe+4gqjKf4ldGN4IHtW7Ooe26L1iyhrV0pHKhkeQ CMWgOYzYpjzKtnopqwGR18Ki0Mm28lPphBe28JwTeyzNh5bbuBgjEjAFrvEhbg== -----END CERTIFICATE-----Generated at Mon Feb 23 08:47:47 2026 by rpki-client