$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/656/L3xVvqbp8qrdaKJa1Ao7L3kD-X8.roa File: L3xVvqbp8qrdaKJa1Ao7L3kD-X8.roa (raw, json) Hash identifier: wfD3oXUcbB1mCNSSuVuArK+5sRdLnl367eN5RJXt0ag= Subject key identifier: 2F:7C:55:BE:A6:E9:F2:AA:DD:68:A2:5A:D4:0A:3B:2F:79:03:F9:7F Certificate issuer: /CN=64DC20D9612C5B77499A6D223A652B2E38B11647 Certificate serial: 1EC2 Authority key identifier: 64:DC:20:D9:61:2C:5B:77:49:9A:6D:22:3A:65:2B:2E:38:B1:16:47 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ZNwg2WEsW3dJmm0iOmUrLjixFkc.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/656/L3xVvqbp8qrdaKJa1Ao7L3kD-X8.roa Signing time: Mon 26 Jan 2026 06:55:37 +0000 ROA not before: Mon 26 Jan 2026 06:55:37 +0000 ROA not after: Fri 23 Oct 2026 03:01:03 +0000 asID: 45090 IP address blocks: 175.178.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/656/ZNwg2WEsW3dJmm0iOmUrLjixFkc.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/656/ZNwg2WEsW3dJmm0iOmUrLjixFkc.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ZNwg2WEsW3dJmm0iOmUrLjixFkc.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Feb 2026 05:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7874 (0x1ec2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=64DC20D9612C5B77499A6D223A652B2E38B11647 Validity Not Before: Jan 26 06:55:37 2026 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=2F7C55BEA6E9F2AADD68A25AD40A3B2F7903F97F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:da:1a:10:29:25:09:41:8a:56:d9:b8:62:41: 97:48:a5:79:e4:f8:61:6a:39:44:05:fa:01:eb:f5: e7:2f:36:c4:11:76:0f:5d:0a:c1:9f:0e:4c:a0:25: 0b:db:e5:15:b8:34:cc:aa:a2:d4:bd:59:b5:f6:c6: 28:62:fb:0a:cf:d4:93:66:41:5c:c8:29:02:1c:99: dd:2f:81:88:ca:6c:ad:f3:c3:bc:f4:6d:a8:74:e6: 0a:67:18:13:06:c7:ee:cd:3b:e6:36:a0:5a:66:ea: 02:13:fc:d0:02:59:28:ce:5f:fd:fb:f2:24:e6:e1: af:0e:21:58:e4:59:05:30:91:e4:09:cc:c1:8b:b8: 3d:8b:4a:69:d4:d7:a9:c0:96:4d:d1:9e:71:b6:45: 03:b1:df:f7:90:d1:85:38:f2:a2:fa:64:2a:fe:da: d7:7c:17:89:5a:75:dc:2b:a5:f8:d5:22:50:d2:9c: 12:5d:20:b1:59:a5:49:43:11:6e:7d:7d:7e:d6:74: 1e:81:65:dc:d2:53:c7:b4:50:1a:ba:ca:50:f1:52: 6f:98:eb:3f:12:40:fc:4b:6b:a1:a7:03:06:55:55: e1:f7:ff:86:44:bd:b7:d1:2f:3f:82:91:51:22:2f: 67:6b:59:6b:d7:c5:4a:96:64:8e:2a:25:7d:76:8d: 47:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:7C:55:BE:A6:E9:F2:AA:DD:68:A2:5A:D4:0A:3B:2F:79:03:F9:7F X509v3 Authority Key Identifier: keyid:64:DC:20:D9:61:2C:5B:77:49:9A:6D:22:3A:65:2B:2E:38:B1:16:47 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/656/ZNwg2WEsW3dJmm0iOmUrLjixFkc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ZNwg2WEsW3dJmm0iOmUrLjixFkc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/656/L3xVvqbp8qrdaKJa1Ao7L3kD-X8.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 175.178.0.0/16 Signature Algorithm: sha256WithRSAEncryption 94:eb:9b:14:db:8f:69:6d:21:7c:1b:2c:28:ac:b6:e3:c2:80: 08:c0:96:70:b5:b0:09:a9:d5:16:dc:0d:be:8e:96:4b:05:4e: da:c0:99:1a:f5:c5:e9:e6:b5:58:38:63:64:88:92:5e:07:93: 86:3e:79:d2:21:63:63:07:f2:9b:41:c0:27:3a:3d:07:65:1e: 36:95:8c:9c:52:1b:ed:0a:77:15:f7:2f:eb:ad:f5:54:a7:13: 4b:55:48:62:98:db:37:90:2c:64:f7:07:da:bc:ad:2f:56:a0: 2e:97:2d:06:f0:cf:bd:28:b2:f2:1e:72:60:c2:0e:21:0d:a3: 95:7d:29:f2:8d:7c:43:08:ea:cc:1b:f3:85:b4:75:40:04:85: 7b:df:4a:34:9f:82:2b:ad:bb:20:27:c6:78:29:1d:13:8c:92: 9f:25:0f:d9:87:4f:09:b7:26:38:57:c9:af:1e:07:89:bb:fe: cc:a0:a8:37:7a:0e:24:a5:ae:21:8b:c7:13:ce:09:aa:b8:7f: e4:ce:c4:ea:e5:a4:e0:00:2c:21:f6:e9:79:21:03:2a:28:92: 87:ba:12:54:f3:1a:07:ec:c3:6f:76:ea:7e:c1:ec:3d:4f:a3: 15:01:72:25:f9:c1:34:5b:e4:f5:f9:c2:f0:94:5a:96:ad:a5: b0:51:ac:a4 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICHsIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjRE QzIwRDk2MTJDNUI3NzQ5OUE2RDIyM0E2NTJCMkUzOEIxMTY0NzAeFw0yNjAxMjYw NjU1MzdaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDJGN0M1NUJFQTZFOUYy QUFERDY4QTI1QUQ0MEEzQjJGNzkwM0Y5N0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDi2hoQKSUJQYpW2bhiQZdIpXnk+GFqOUQF+gHr9ecvNsQRdg9d CsGfDkygJQvb5RW4NMyqotS9WbX2xihi+wrP1JNmQVzIKQIcmd0vgYjKbK3zw7z0 bah05gpnGBMGx+7NO+Y2oFpm6gIT/NACWSjOX/378iTm4a8OIVjkWQUwkeQJzMGL uD2LSmnU16nAlk3RnnG2RQOx3/eQ0YU48qL6ZCr+2td8F4laddwrpfjVIlDSnBJd ILFZpUlDEW59fX7WdB6BZdzSU8e0UBq6ylDxUm+Y6z8SQPxLa6GnAwZVVeH3/4ZE vbfRLz+CkVEiL2drWWvXxUqWZI4qJX12jUfBAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUL3xVvqbp8qrdaKJa1Ao7L3kD+X8wHwYDVR0jBBgwFoAUZNwg2WEsW3dJmm0i OmUrLjixFkcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjU2 L1pOd2cyV0VzVzNkSm1tMGlPbVVyTGppeEZrYy5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvWk53ZzJXRXNXM2RKbW0waU9tVXJMaml4RmtjLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjU2L0wzeFZ2cWJwOHFyZGFL SmExQW83TDNrRC1YOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD AwCvsjANBgkqhkiG9w0BAQsFAAOCAQEAlOubFNuPaW0hfBssKKy248KACMCWcLWw CanVFtwNvo6WSwVO2sCZGvXF6ea1WDhjZIiSXgeThj550iFjYwfym0HAJzo9B2Ue NpWMnFIb7Qp3Ffcv6631VKcTS1VIYpjbN5AsZPcH2rytL1agLpctBvDPvSiy8h5y YMIOIQ2jlX0p8o18QwjqzBvzhbR1QASFe99KNJ+CK627ICfGeCkdE4ySnyUP2YdP CbcmOFfJrx4Hibv+zKCoN3oOJKWuIYvHE84Jqrh/5M7E6uWk4AAsIfbpeSEDKiiS h7oSVPMaB+zDb3bqfsHsPU+jFQFyJfnBNFvk9fnC8JRalq2lsFGspA== -----END CERTIFICATE-----Generated at Fri Feb 20 01:33:19 2026 by rpki-client