$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3326/nWUiEeNb0oGR9s9FY55-bA6Wq0M.roa File: nWUiEeNb0oGR9s9FY55-bA6Wq0M.roa (raw, json) Hash identifier: 070k/DBpGXR4lUMTIbd0F7G4H6U8Z+VJrEQmVOhvFzo= Subject key identifier: 9D:65:22:11:E3:5B:D2:81:91:F6:CF:45:63:9E:7E:6C:0E:96:AB:43 Certificate issuer: /CN=6A11EE47425D14EBAF2FCD24D2062B0A52BA042C Certificate serial: 09AD Authority key identifier: 6A:11:EE:47:42:5D:14:EB:AF:2F:CD:24:D2:06:2B:0A:52:BA:04:2C Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ahHuR0JdFOuvL80k0gYrClK6BCw.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3326/nWUiEeNb0oGR9s9FY55-bA6Wq0M.roa Signing time: Tue 03 Mar 2026 07:15:05 +0000 ROA not before: Tue 03 Mar 2026 07:15:05 +0000 ROA not after: Sat 09 Jan 2027 08:23:18 +0000 asID: 151270 IP address blocks: 103.236.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3326/ahHuR0JdFOuvL80k0gYrClK6BCw.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3326/ahHuR0JdFOuvL80k0gYrClK6BCw.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ahHuR0JdFOuvL80k0gYrClK6BCw.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Mar 2026 02:28:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2477 (0x9ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6A11EE47425D14EBAF2FCD24D2062B0A52BA042C Validity Not Before: Mar 3 07:15:05 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=9D652211E35BD28191F6CF45639E7E6C0E96AB43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:0a:f2:1d:64:b2:7f:17:12:c1:f9:7d:25:eb: bb:46:fc:f9:31:c0:1b:9c:37:70:2e:51:76:a5:38: dd:78:ac:1a:3d:90:60:56:20:ea:42:5e:5e:9f:e1: 57:6a:c7:7e:04:51:29:97:ef:36:1d:c5:d9:43:a3: d3:df:65:d5:21:ff:47:25:79:92:4a:ee:54:eb:1a: 58:24:5c:08:b1:a6:ec:9e:22:ce:90:4a:35:ef:df: ef:70:64:66:02:89:c1:9f:83:9c:48:58:36:11:73: d6:dc:3f:a9:84:7f:47:d2:16:b6:32:8d:9f:c8:ba: 57:c4:33:49:f2:41:ee:ed:83:5a:3b:6a:a7:6e:78: 9d:fb:1b:ee:d7:6d:46:5b:30:42:2d:63:31:f0:27: b9:ef:e8:e4:1d:b6:53:83:1b:48:e5:7a:c4:6d:aa: 2a:61:c5:5d:84:31:93:3a:f7:95:c9:56:e7:ed:8d: aa:0f:37:71:3d:64:8e:c7:77:dc:3e:f9:6b:d4:9a: 08:b2:3b:a4:65:54:de:c8:75:77:97:f4:84:eb:10: bb:ae:5b:83:e4:66:41:86:0a:bd:a2:b5:e3:da:6a: b7:35:9e:29:96:6d:d0:bf:3e:1b:63:c1:3a:9f:69: e6:36:d7:e5:6b:54:bf:7f:bc:69:a3:8c:e0:a3:d9: c2:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:65:22:11:E3:5B:D2:81:91:F6:CF:45:63:9E:7E:6C:0E:96:AB:43 X509v3 Authority Key Identifier: keyid:6A:11:EE:47:42:5D:14:EB:AF:2F:CD:24:D2:06:2B:0A:52:BA:04:2C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3326/ahHuR0JdFOuvL80k0gYrClK6BCw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ahHuR0JdFOuvL80k0gYrClK6BCw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3326/nWUiEeNb0oGR9s9FY55-bA6Wq0M.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.236.99.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:69:b2:6b:8e:78:be:b2:ce:2b:91:a4:bb:a5:80:0f:86:e3: ee:69:a2:a8:ab:80:22:95:25:e3:d8:2f:b4:65:47:81:4c:77: dc:1d:55:45:b2:d7:01:a5:52:cc:6b:d6:ab:2b:a6:b1:8e:5d: 0a:60:e6:08:01:42:2b:ea:bc:36:80:91:5b:44:c0:e1:41:4f: 7d:79:5a:ee:f8:55:06:ee:9f:60:2f:09:a6:2c:e0:de:57:62: df:1f:bd:3b:91:e7:86:88:b3:75:15:06:20:74:ea:74:ab:c0: db:52:eb:c8:03:45:7e:c8:9b:b8:75:4a:6d:f6:e1:ff:05:1e: c9:f5:53:31:d5:b7:8a:01:2a:3e:dc:9a:e6:f1:f4:76:84:90: bb:d9:eb:8b:e1:5d:8e:34:40:e2:5a:a0:22:38:91:53:6c:ed: 60:49:c1:7c:68:9f:02:3b:44:41:da:e5:bd:29:71:06:93:73: 6f:d4:3c:a9:06:10:e2:0c:4c:18:cf:1f:4b:9c:08:73:23:36: 95:d7:8e:9e:fe:2b:2e:13:82:a7:e8:0a:e7:c2:83:8e:bf:f7: a6:f9:a6:a1:3d:67:b5:54:19:8e:c9:7f:79:41:ba:0c:39:d6: 89:6d:76:cc:56:91:14:13:c0:54:c2:5c:4c:76:fc:a0:f4:c6: 8c:85:8d:5e -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICCa0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkEx MUVFNDc0MjVEMTRFQkFGMkZDRDI0RDIwNjJCMEE1MkJBMDQyQzAeFw0yNjAzMDMw NzE1MDVaFw0yNzAxMDkwODIzMThaMDMxMTAvBgNVBAMTKDlENjUyMjExRTM1QkQy ODE5MUY2Q0Y0NTYzOUU3RTZDMEU5NkFCNDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDhCvIdZLJ/FxLB+X0l67tG/PkxwBucN3AuUXalON14rBo9kGBW IOpCXl6f4Vdqx34EUSmX7zYdxdlDo9PfZdUh/0cleZJK7lTrGlgkXAixpuyeIs6Q SjXv3+9wZGYCicGfg5xIWDYRc9bcP6mEf0fSFrYyjZ/IulfEM0nyQe7tg1o7aqdu eJ37G+7XbUZbMEItYzHwJ7nv6OQdtlODG0jlesRtqiphxV2EMZM695XJVuftjaoP N3E9ZI7Hd9w++WvUmgiyO6RlVN7IdXeX9ITrELuuW4PkZkGGCr2itePaarc1nimW bdC/PhtjwTqfaeY21+VrVL9/vGmjjOCj2cKnAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUnWUiEeNb0oGR9s9FY55+bA6Wq0MwHwYDVR0jBBgwFoAUahHuR0JdFOuvL80k 0gYrClK6BCwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzMy Ni9haEh1UjBKZEZPdXZMODBrMGdZckNsSzZCQ3cuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2FoSHVSMEpkRk91dkw4MGswZ1lyQ2xLNkJDdy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzMjYvbldVaUVlTmIwb0dS OXM5Rlk1NS1iQTZXcTBNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAGfsYzANBgkqhkiG9w0BAQsFAAOCAQEAP2mya454vrLOK5Gku6WAD4bj7mmi qKuAIpUl49gvtGVHgUx33B1VRbLXAaVSzGvWqyumsY5dCmDmCAFCK+q8NoCRW0TA 4UFPfXla7vhVBu6fYC8Jpizg3ldi3x+9O5HnhoizdRUGIHTqdKvA21LryANFfsib uHVKbfbh/wUeyfVTMdW3igEqPtya5vH0doSQu9nri+FdjjRA4lqgIjiRU2ztYEnB fGifAjtEQdrlvSlxBpNzb9Q8qQYQ4gxMGM8fS5wIcyM2ldeOnv4rLhOCp+gK58KD jr/3pvmmoT1ntVQZjsl/eUG6DDnWiW12zFaRFBPAVMJcTHb8oPTGjIWNXg== -----END CERTIFICATE-----Generated at Fri Mar 6 02:17:22 2026 by rpki-client