$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/656/0dJuQ0720iCZ7J7kK0Nn7RYa_aQ.roa File: 0dJuQ0720iCZ7J7kK0Nn7RYa_aQ.roa (raw, json) Hash identifier: 38fMSWbprrZRki9ZcLsACTU/WQBQnbHHgKHheoQ0WAA= Subject key identifier: D1:D2:6E:43:4E:F6:D2:20:99:EC:9E:E4:2B:43:67:ED:16:1A:FD:A4 Certificate issuer: /CN=64DC20D9612C5B77499A6D223A652B2E38B11647 Certificate serial: 1EC0 Authority key identifier: 64:DC:20:D9:61:2C:5B:77:49:9A:6D:22:3A:65:2B:2E:38:B1:16:47 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ZNwg2WEsW3dJmm0iOmUrLjixFkc.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/656/0dJuQ0720iCZ7J7kK0Nn7RYa_aQ.roa Signing time: Mon 26 Jan 2026 06:55:36 +0000 ROA not before: Mon 26 Jan 2026 06:55:36 +0000 ROA not after: Fri 23 Oct 2026 03:01:03 +0000 asID: 132203 IP address blocks: 49.51.146.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/656/ZNwg2WEsW3dJmm0iOmUrLjixFkc.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/656/ZNwg2WEsW3dJmm0iOmUrLjixFkc.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ZNwg2WEsW3dJmm0iOmUrLjixFkc.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Feb 2026 05:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7872 (0x1ec0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=64DC20D9612C5B77499A6D223A652B2E38B11647 Validity Not Before: Jan 26 06:55:36 2026 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=D1D26E434EF6D22099EC9EE42B4367ED161AFDA4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:38:b6:b2:fd:d9:d2:50:80:73:fa:4f:f1:0a: a4:f3:91:36:af:40:30:3e:7b:97:6d:3c:70:95:2a: b8:68:ae:f6:36:ea:d9:8e:f7:0e:4f:f3:f2:b0:03: de:c2:17:7c:b0:98:8d:c0:bb:72:ee:9d:12:af:73: f9:cf:3e:b9:73:63:95:bd:fb:8d:17:11:9d:f7:f0: 78:d8:6a:4b:ea:c6:1e:f8:af:1a:89:1a:f3:eb:4d: cd:d9:be:a3:22:d5:7b:2c:7c:63:b4:9d:07:75:f6: 4d:5b:ff:5e:af:d4:db:d1:59:51:63:4b:87:23:0f: 4c:0a:27:df:bd:42:ce:55:83:69:73:6a:87:1f:23: 13:af:92:07:bd:cc:76:21:ae:0f:2a:0f:2f:96:25: 01:57:87:18:99:6b:65:ce:45:03:8f:7e:f6:f3:41: 61:9d:b2:66:23:d8:d1:d9:33:4b:74:a2:b7:21:fe: fe:08:4f:94:45:c2:89:8d:d9:3a:72:0a:97:9a:76: 09:df:8a:5f:0b:ea:cd:cd:a9:3a:80:2f:5c:68:39: 4f:b5:f4:24:4e:89:eb:94:66:c7:a0:ee:49:b7:9e: 30:f8:7d:8c:fe:ed:9d:ed:91:6a:17:e3:09:82:e1: 91:cd:56:a4:14:94:4b:0c:07:50:fe:a6:c2:d1:28: ff:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:D2:6E:43:4E:F6:D2:20:99:EC:9E:E4:2B:43:67:ED:16:1A:FD:A4 X509v3 Authority Key Identifier: keyid:64:DC:20:D9:61:2C:5B:77:49:9A:6D:22:3A:65:2B:2E:38:B1:16:47 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/656/ZNwg2WEsW3dJmm0iOmUrLjixFkc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ZNwg2WEsW3dJmm0iOmUrLjixFkc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/656/0dJuQ0720iCZ7J7kK0Nn7RYa_aQ.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.51.146.0/23 Signature Algorithm: sha256WithRSAEncryption 68:e0:37:73:9e:d8:9b:fe:0f:6e:e1:6a:f7:33:b8:18:11:74: 49:e8:c7:ca:b3:ed:21:a6:71:54:24:df:0f:68:bc:0a:0a:4e: 92:63:6c:fd:d7:01:2f:84:66:f4:40:8b:2d:e4:0e:16:fa:8e: dc:76:de:27:7b:cf:4f:3e:22:99:e9:61:9d:79:06:3a:73:b5: bb:9b:9c:2d:65:44:1e:8f:32:bb:d9:e9:b6:26:20:be:59:49: 81:b5:8f:79:7e:9d:cf:9a:ad:d7:29:9c:54:73:51:e2:ce:cd: 04:04:f4:47:88:53:63:8e:3b:72:a9:cd:8d:07:0b:2e:c5:0e: a4:cd:d3:f3:84:d0:3c:54:44:6b:5c:fe:ab:4c:77:22:19:f7: 01:79:3b:15:9b:e5:5e:46:5c:37:69:8b:d4:76:56:29:50:a0: fe:5e:e2:d5:fb:ec:c9:e8:ea:73:b7:7f:c3:8c:e7:be:5b:35: c9:d2:18:23:a7:de:4d:ba:11:76:76:7b:f6:de:e2:ed:a6:29: 23:47:58:5e:38:e4:f1:8d:c2:92:12:30:2b:11:df:3f:e1:fc: 1a:c9:4e:15:61:e7:91:68:07:4a:c3:c8:80:a2:37:99:eb:94: ac:f0:9e:7b:a3:37:73:fc:1b:23:a6:f1:8b:c8:a7:59:d7:b3: ef:51:74:1b -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHsAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjRE QzIwRDk2MTJDNUI3NzQ5OUE2RDIyM0E2NTJCMkUzOEIxMTY0NzAeFw0yNjAxMjYw NjU1MzZaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKEQxRDI2RTQzNEVGNkQy MjA5OUVDOUVFNDJCNDM2N0VEMTYxQUZEQTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKOLay/dnSUIBz+k/xCqTzkTavQDA+e5dtPHCVKrhorvY26tmO 9w5P8/KwA97CF3ywmI3Au3LunRKvc/nPPrlzY5W9+40XEZ338HjYakvqxh74rxqJ GvPrTc3ZvqMi1XssfGO0nQd19k1b/16v1NvRWVFjS4cjD0wKJ9+9Qs5Vg2lzaocf IxOvkge9zHYhrg8qDy+WJQFXhxiZa2XORQOPfvbzQWGdsmYj2NHZM0t0orch/v4I T5RFwomN2TpyCpeadgnfil8L6s3NqTqAL1xoOU+19CROieuUZseg7km3njD4fYz+ 7Z3tkWoX4wmC4ZHNVqQUlEsMB1D+psLRKP8TAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQU0dJuQ0720iCZ7J7kK0Nn7RYa/aQwHwYDVR0jBBgwFoAUZNwg2WEsW3dJmm0i OmUrLjixFkcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjU2 L1pOd2cyV0VzVzNkSm1tMGlPbVVyTGppeEZrYy5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvWk53ZzJXRXNXM2RKbW0waU9tVXJMaml4RmtjLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjU2LzBkSnVRMDcyMGlDWjdK N2tLME5uN1JZYV9hUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAExM5IwDQYJKoZIhvcNAQELBQADggEBAGjgN3Oe2Jv+D27havczuBgRdEnox8qz 7SGmcVQk3w9ovAoKTpJjbP3XAS+EZvRAiy3kDhb6jtx23id7z08+IpnpYZ15Bjpz tbubnC1lRB6PMrvZ6bYmIL5ZSYG1j3l+nc+ardcpnFRzUeLOzQQE9EeIU2OOO3Kp zY0HCy7FDqTN0/OE0DxURGtc/qtMdyIZ9wF5OxWb5V5GXDdpi9R2VilQoP5e4tX7 7Mno6nO3f8OM575bNcnSGCOn3k26EXZ2e/be4u2mKSNHWF445PGNwpISMCsR3z/h /BrJThVh55FoB0rDyICiN5nrlKzwnnujN3P8GyOm8YvIp1nXs+9RdBs= -----END CERTIFICATE-----Generated at Fri Feb 20 03:48:24 2026 by rpki-client