$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/656/Li1GXlVR7-1WtyizCkq10XCmBxk.roa File: Li1GXlVR7-1WtyizCkq10XCmBxk.roa (raw, json) Hash identifier: hChzpDRcCbmmCClO6Yuwe2IizHjT2Rh8SWFUC+QrzEc= Subject key identifier: 2E:2D:46:5E:55:51:EF:ED:56:B7:28:B3:0A:4A:B5:D1:70:A6:07:19 Certificate issuer: /CN=64DC20D9612C5B77499A6D223A652B2E38B11647 Certificate serial: 1EC1 Authority key identifier: 64:DC:20:D9:61:2C:5B:77:49:9A:6D:22:3A:65:2B:2E:38:B1:16:47 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ZNwg2WEsW3dJmm0iOmUrLjixFkc.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/656/Li1GXlVR7-1WtyizCkq10XCmBxk.roa Signing time: Mon 26 Jan 2026 06:55:37 +0000 ROA not before: Mon 26 Jan 2026 06:55:37 +0000 ROA not after: Fri 23 Oct 2026 03:01:03 +0000 asID: 132203 IP address blocks: 49.51.160.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/656/ZNwg2WEsW3dJmm0iOmUrLjixFkc.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/656/ZNwg2WEsW3dJmm0iOmUrLjixFkc.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ZNwg2WEsW3dJmm0iOmUrLjixFkc.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Feb 2026 05:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7873 (0x1ec1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=64DC20D9612C5B77499A6D223A652B2E38B11647 Validity Not Before: Jan 26 06:55:37 2026 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=2E2D465E5551EFED56B728B30A4AB5D170A60719 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:6c:1b:f5:61:08:09:bf:86:64:fc:16:7f:40: e7:b2:fd:ff:d4:da:12:c4:b7:84:ca:7f:2d:6f:a8: c1:05:f5:14:d5:68:fa:37:a3:77:63:e4:dc:94:15: e6:60:ac:08:b1:8f:6c:23:8d:66:cf:dc:bd:47:bb: d9:69:32:1c:30:2e:ba:97:1e:38:c2:a4:bd:76:4e: a8:dc:1c:1a:c9:06:92:03:24:c5:22:73:59:94:27: 04:e1:fa:a2:6c:e6:c9:a1:97:08:6b:cf:c7:8e:99: 3b:ef:23:3f:9e:78:77:f6:2a:2b:35:1d:23:e3:eb: ae:ce:f2:7d:a4:a0:7a:fa:be:7a:4d:e7:82:81:29: 1d:b0:ac:14:b9:57:4f:20:50:77:c7:54:80:ce:27: 7f:3a:bf:37:d9:a4:69:f9:e8:32:c1:3d:c3:cd:41: 22:b2:af:22:86:8a:da:3b:d1:b8:db:df:3f:30:a4: 26:08:11:39:36:81:7c:9f:60:9d:8b:c9:2e:42:dc: 7a:a6:75:41:29:f7:a1:a4:3f:5a:53:1c:f9:5a:58: 80:65:f6:b9:c7:57:26:b0:a4:57:72:94:48:c2:1a: 6e:d3:09:7c:8c:16:c0:b2:90:ac:e8:a2:60:8c:c9: 0e:e9:fc:aa:fd:11:4d:28:25:ab:bb:56:05:45:f8: 05:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:2D:46:5E:55:51:EF:ED:56:B7:28:B3:0A:4A:B5:D1:70:A6:07:19 X509v3 Authority Key Identifier: keyid:64:DC:20:D9:61:2C:5B:77:49:9A:6D:22:3A:65:2B:2E:38:B1:16:47 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/656/ZNwg2WEsW3dJmm0iOmUrLjixFkc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ZNwg2WEsW3dJmm0iOmUrLjixFkc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/656/Li1GXlVR7-1WtyizCkq10XCmBxk.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.51.160.0/20 Signature Algorithm: sha256WithRSAEncryption 28:01:01:d4:1c:4b:81:30:10:1b:37:59:54:d6:83:e8:e0:ee: 9a:8c:39:2a:b2:3a:2f:6b:0c:0b:fa:30:8f:7c:b9:79:e3:93: 30:20:32:74:d2:35:79:f6:d7:ad:64:af:3a:f0:89:b2:dd:22: bd:8d:45:d7:3c:1e:e4:de:16:6d:2a:36:41:f2:ef:cb:fe:9a: e8:81:00:22:cb:2f:c3:bc:2c:b8:ad:4e:00:9f:58:85:5c:89: 71:39:2f:13:a7:55:34:38:f8:18:83:ee:86:f0:50:12:eb:d2: 46:b3:b7:cf:22:fa:eb:90:c3:94:e6:ab:4d:bb:ae:74:b9:87: 77:51:b9:84:55:c1:74:34:ea:69:55:af:f4:39:3f:ce:76:c6: 9c:90:9a:27:f9:f5:c9:ff:ab:d1:60:6d:13:65:8a:cb:b1:a8: bb:20:d6:3e:b7:d4:4b:62:b7:4a:40:0f:ca:58:ee:9b:3b:f2: ec:70:b7:b9:49:b9:12:2e:ac:69:12:07:82:41:a9:aa:bf:74: 1f:62:d1:b9:1b:ef:aa:6b:13:09:5f:a7:d9:0f:54:43:bb:10: 2b:f5:24:c1:71:8a:95:8a:af:90:b9:3d:41:54:e7:a3:92:15: 15:76:ef:4a:d3:cb:5f:66:06:8e:41:0b:ed:67:37:15:f5:23: 0b:be:1d:90 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHsEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjRE QzIwRDk2MTJDNUI3NzQ5OUE2RDIyM0E2NTJCMkUzOEIxMTY0NzAeFw0yNjAxMjYw NjU1MzdaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDJFMkQ0NjVFNTU1MUVG RUQ1NkI3MjhCMzBBNEFCNUQxNzBBNjA3MTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHbBv1YQgJv4Zk/BZ/QOey/f/U2hLEt4TKfy1vqMEF9RTVaPo3 o3dj5NyUFeZgrAixj2wjjWbP3L1Hu9lpMhwwLrqXHjjCpL12TqjcHBrJBpIDJMUi c1mUJwTh+qJs5smhlwhrz8eOmTvvIz+eeHf2Kis1HSPj667O8n2koHr6vnpN54KB KR2wrBS5V08gUHfHVIDOJ386vzfZpGn56DLBPcPNQSKyryKGito70bjb3z8wpCYI ETk2gXyfYJ2LyS5C3HqmdUEp96GkP1pTHPlaWIBl9rnHVyawpFdylEjCGm7TCXyM FsCykKzoomCMyQ7p/Kr9EU0oJau7VgVF+AVHAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQULi1GXlVR7+1WtyizCkq10XCmBxkwHwYDVR0jBBgwFoAUZNwg2WEsW3dJmm0i OmUrLjixFkcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjU2 L1pOd2cyV0VzVzNkSm1tMGlPbVVyTGppeEZrYy5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvWk53ZzJXRXNXM2RKbW0waU9tVXJMaml4RmtjLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjU2L0xpMUdYbFZSNy0xV3R5 aXpDa3ExMFhDbUJ4ay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAQxM6AwDQYJKoZIhvcNAQELBQADggEBACgBAdQcS4EwEBs3WVTWg+jg7pqMOSqy Oi9rDAv6MI98uXnjkzAgMnTSNXn2161krzrwibLdIr2NRdc8HuTeFm0qNkHy78v+ muiBACLLL8O8LLitTgCfWIVciXE5LxOnVTQ4+BiD7obwUBLr0kazt88i+uuQw5Tm q027rnS5h3dRuYRVwXQ06mlVr/Q5P852xpyQmif59cn/q9FgbRNlisuxqLsg1j63 1Etit0pAD8pY7ps78uxwt7lJuRIurGkSB4JBqaq/dB9i0bkb76prEwlfp9kPVEO7 ECv1JMFxipWKr5C5PUFU56OSFRV270rTy19mBo5BC+1nNxX1Iwu+HZA= -----END CERTIFICATE-----Generated at Fri Feb 20 03:48:23 2026 by rpki-client