$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/656/0E6YaX_ZkTmxIXxwXk9sk4XYcyc.roa File: 0E6YaX_ZkTmxIXxwXk9sk4XYcyc.roa (raw, json) Hash identifier: 0pwk7GmuIrzOhoExjRaHCjzlQqHhy6sVyXdbKEPnOXU= Subject key identifier: D0:4E:98:69:7F:D9:91:39:B1:21:7C:70:5E:4F:6C:93:85:D8:73:27 Certificate issuer: /CN=64DC20D9612C5B77499A6D223A652B2E38B11647 Certificate serial: 1EBC Authority key identifier: 64:DC:20:D9:61:2C:5B:77:49:9A:6D:22:3A:65:2B:2E:38:B1:16:47 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ZNwg2WEsW3dJmm0iOmUrLjixFkc.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/656/0E6YaX_ZkTmxIXxwXk9sk4XYcyc.roa Signing time: Mon 26 Jan 2026 06:55:36 +0000 ROA not before: Mon 26 Jan 2026 06:55:36 +0000 ROA not after: Fri 23 Oct 2026 03:01:03 +0000 asID: 132203 IP address blocks: 119.28.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/656/ZNwg2WEsW3dJmm0iOmUrLjixFkc.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/656/ZNwg2WEsW3dJmm0iOmUrLjixFkc.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ZNwg2WEsW3dJmm0iOmUrLjixFkc.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Feb 2026 05:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7868 (0x1ebc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=64DC20D9612C5B77499A6D223A652B2E38B11647 Validity Not Before: Jan 26 06:55:36 2026 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=D04E98697FD99139B1217C705E4F6C9385D87327 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f8:9c:23:5a:f3:f8:73:76:5b:ed:89:35:70: db:41:b0:0c:ab:b0:4c:f9:61:79:3a:3d:55:f8:d0: cf:45:9f:fc:f9:d0:ee:d6:29:00:dd:cd:95:65:d5: 9e:c8:9a:e6:1f:24:2d:56:f7:3e:00:e8:bf:17:3f: 02:7b:a3:15:95:09:ff:aa:8e:b4:15:7f:97:c5:08: 71:38:2f:6c:dd:29:3d:1f:25:15:9b:b0:cb:f5:dd: 68:55:1c:18:cf:36:f0:9b:b8:d7:a8:ef:88:d4:27: 81:1a:3c:f2:fb:1b:6d:5d:5f:a7:0d:69:fe:84:81: 61:bc:c8:ff:6b:b9:f4:07:e7:f2:c6:79:eb:ae:b1: 5a:3f:8f:ac:bc:74:bc:c7:e3:f8:04:aa:db:ec:19: d4:4f:b4:6d:b8:8e:63:e3:cd:d4:21:e1:2d:32:41: ae:bf:f3:19:eb:f4:13:db:49:bf:47:6c:e7:10:a4: d8:e5:7d:20:68:e4:dc:21:3f:37:c0:cc:25:60:e3: f8:f0:da:fd:29:c5:6b:e8:80:fe:2b:ff:eb:d2:98: 3a:a6:f7:9d:59:57:69:2f:d8:24:d1:2d:5b:74:e6: 83:32:88:6c:b4:e3:05:31:3b:6b:c6:95:bf:e9:5d: 86:e6:ac:cb:de:cc:3f:84:ff:16:9d:47:02:44:c5: 48:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:4E:98:69:7F:D9:91:39:B1:21:7C:70:5E:4F:6C:93:85:D8:73:27 X509v3 Authority Key Identifier: keyid:64:DC:20:D9:61:2C:5B:77:49:9A:6D:22:3A:65:2B:2E:38:B1:16:47 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/656/ZNwg2WEsW3dJmm0iOmUrLjixFkc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ZNwg2WEsW3dJmm0iOmUrLjixFkc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/656/0E6YaX_ZkTmxIXxwXk9sk4XYcyc.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 119.28.165.0/24 Signature Algorithm: sha256WithRSAEncryption a0:4a:29:99:c2:70:54:46:ba:61:21:71:9d:24:21:30:72:8b: 82:9d:e0:eb:a9:35:98:17:b6:05:dd:ef:96:0a:9a:05:7c:d8: 80:1e:33:b5:5c:b6:88:73:ac:36:6c:8a:ad:00:5f:a5:36:5e: 30:63:e2:34:cb:07:ec:b6:f6:4c:7e:c5:e0:2d:9f:d2:47:33: 43:27:79:99:3d:42:d5:e7:24:39:db:f6:11:4b:63:29:67:83: e2:7a:01:89:69:32:92:62:72:a2:f9:18:8e:15:38:96:1a:64: 42:06:45:53:35:f3:46:0e:52:6f:a5:32:7f:6f:51:21:91:c6: a5:3c:e2:82:63:a2:a8:ab:e1:49:3e:ad:e2:99:d8:bb:dc:60: 25:9e:d6:12:4a:3f:e0:95:33:7b:a0:de:b6:1c:88:d5:f0:07: 78:d9:75:a5:c0:d5:9a:c0:f7:b2:71:8b:6d:82:6a:80:5d:81: f8:cc:cc:7c:10:f6:c4:6b:1c:75:42:7c:5d:90:4a:5d:8b:eb: fb:95:8b:69:89:6b:02:ff:29:75:89:63:81:8e:96:7b:99:d1: e8:63:61:2c:e0:eb:de:90:f8:77:1a:b1:e1:b6:57:2d:a0:52: db:00:4f:a4:a6:2a:8b:45:e6:51:ed:3f:78:d7:64:f8:ed:75: a7:4a:20:3a -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHrwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjRE QzIwRDk2MTJDNUI3NzQ5OUE2RDIyM0E2NTJCMkUzOEIxMTY0NzAeFw0yNjAxMjYw NjU1MzZaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKEQwNEU5ODY5N0ZEOTkx MzlCMTIxN0M3MDVFNEY2QzkzODVEODczMjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7+JwjWvP4c3Zb7Yk1cNtBsAyrsEz5YXk6PVX40M9Fn/z50O7W KQDdzZVl1Z7ImuYfJC1W9z4A6L8XPwJ7oxWVCf+qjrQVf5fFCHE4L2zdKT0fJRWb sMv13WhVHBjPNvCbuNeo74jUJ4EaPPL7G21dX6cNaf6EgWG8yP9rufQH5/LGeeuu sVo/j6y8dLzH4/gEqtvsGdRPtG24jmPjzdQh4S0yQa6/8xnr9BPbSb9HbOcQpNjl fSBo5NwhPzfAzCVg4/jw2v0pxWvogP4r/+vSmDqm951ZV2kv2CTRLVt05oMyiGy0 4wUxO2vGlb/pXYbmrMvezD+E/xadRwJExUjBAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQU0E6YaX/ZkTmxIXxwXk9sk4XYcycwHwYDVR0jBBgwFoAUZNwg2WEsW3dJmm0i OmUrLjixFkcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjU2 L1pOd2cyV0VzVzNkSm1tMGlPbVVyTGppeEZrYy5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvWk53ZzJXRXNXM2RKbW0waU9tVXJMaml4RmtjLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjU2LzBFNllhWF9aa1RteElY eHdYazlzazRYWWN5Yy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAB3HKUwDQYJKoZIhvcNAQELBQADggEBAKBKKZnCcFRGumEhcZ0kITByi4Kd4Oup NZgXtgXd75YKmgV82IAeM7VctohzrDZsiq0AX6U2XjBj4jTLB+y29kx+xeAtn9JH M0MneZk9QtXnJDnb9hFLYylng+J6AYlpMpJicqL5GI4VOJYaZEIGRVM180YOUm+l Mn9vUSGRxqU84oJjoqir4Uk+reKZ2LvcYCWe1hJKP+CVM3ug3rYciNXwB3jZdaXA 1ZrA97Jxi22CaoBdgfjMzHwQ9sRrHHVCfF2QSl2L6/uVi2mJawL/KXWJY4GOlnuZ 0ehjYSzg696Q+HcaseG2Vy2gUtsAT6SmKotF5lHtP3jXZPjtdadKIDo= -----END CERTIFICATE-----Generated at Fri Feb 20 03:48:23 2026 by rpki-client