$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/190/OutRVBvc9Wm-pOX8pmDKJRcv9Zc.roa File: OutRVBvc9Wm-pOX8pmDKJRcv9Zc.roa (raw, json) Hash identifier: l2u8dk3COhyxYbd50FYmH+fl9Kx1r630dWHFp5enw3o= Subject key identifier: 3A:EB:51:54:1B:DC:F5:69:BE:A4:E5:FC:A6:60:CA:25:17:2F:F5:97 Certificate issuer: /CN=E48FED76038496AD2AB1972D13468F4D3D403164 Certificate serial: 196B Authority key identifier: E4:8F:ED:76:03:84:96:AD:2A:B1:97:2D:13:46:8F:4D:3D:40:31:64 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5I_tdgOElq0qsZctE0aPTT1AMWQ.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/190/OutRVBvc9Wm-pOX8pmDKJRcv9Zc.roa Signing time: Mon 26 Jan 2026 06:55:02 +0000 ROA not before: Mon 26 Jan 2026 06:55:02 +0000 ROA not after: Fri 23 Oct 2026 03:01:03 +0000 asID: 24427 IP address blocks: 202.170.216.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/190/5I_tdgOElq0qsZctE0aPTT1AMWQ.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/190/5I_tdgOElq0qsZctE0aPTT1AMWQ.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5I_tdgOElq0qsZctE0aPTT1AMWQ.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Mar 2026 10:58:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6507 (0x196b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E48FED76038496AD2AB1972D13468F4D3D403164 Validity Not Before: Jan 26 06:55:02 2026 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=3AEB51541BDCF569BEA4E5FCA660CA25172FF597 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:ee:3a:20:11:88:cb:5a:a0:8a:c7:33:c9:30: 54:13:3e:d0:71:77:6b:4d:42:6d:2b:d4:8d:f3:f3: 9c:2d:99:bf:26:92:ee:18:c5:3a:83:19:a4:f2:fb: 74:56:db:ce:e7:3c:12:c7:a1:27:2d:30:a3:58:00: e8:3c:8a:c5:a5:10:ca:3e:51:91:99:97:5b:f4:26: 4d:57:95:20:75:e7:d9:75:14:87:33:e6:25:84:04: 3b:15:d0:7b:31:61:01:ba:35:29:ff:9f:f5:39:ba: 39:b2:c0:90:9a:80:d7:2d:91:0c:09:aa:dc:c4:8d: fe:42:2f:04:44:36:01:51:eb:4e:01:88:51:dd:47: 3b:1d:2f:24:76:72:ce:27:37:f8:f1:c1:70:b8:0d: 6b:5d:79:89:80:68:4b:4e:b7:1c:8c:72:05:64:a0: 1a:ef:6c:c4:b2:37:96:3a:86:48:29:7e:15:25:54: 78:78:b8:46:50:26:51:7f:65:92:7f:12:c9:a8:d0: 00:bb:99:95:cd:2e:16:43:ec:34:d4:f7:98:6d:f1: 97:04:5c:ae:4f:a7:ef:12:aa:fa:1b:ce:b2:b0:09: b4:ce:6a:f2:70:66:55:d6:a2:c6:a0:99:d3:07:42: a6:71:c1:a5:8b:be:dc:c4:73:f9:86:01:df:dc:97: ef:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:EB:51:54:1B:DC:F5:69:BE:A4:E5:FC:A6:60:CA:25:17:2F:F5:97 X509v3 Authority Key Identifier: keyid:E4:8F:ED:76:03:84:96:AD:2A:B1:97:2D:13:46:8F:4D:3D:40:31:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/190/5I_tdgOElq0qsZctE0aPTT1AMWQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5I_tdgOElq0qsZctE0aPTT1AMWQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/190/OutRVBvc9Wm-pOX8pmDKJRcv9Zc.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 202.170.216.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:89:61:a6:d1:17:3f:ab:c6:36:8e:7c:81:3c:e5:c5:cb:c3: 56:7a:fc:58:f5:a0:1a:b3:d1:c4:74:09:aa:5a:ba:6b:e6:3d: 1b:0d:e9:ae:88:10:5e:df:fe:da:53:be:ca:4d:cb:aa:4f:03: 91:89:bf:d0:1b:1a:c6:76:1d:9e:2f:2c:fe:dc:9f:4f:6d:ca: d5:ac:0b:da:8d:9f:bf:87:dc:b4:08:3c:80:14:2f:45:0a:d9: 79:5c:a1:3a:dc:3c:b1:62:63:f1:88:4d:29:1a:2b:19:d6:4e: a9:9a:d5:8d:b5:0c:53:d4:42:bd:a2:13:db:15:10:fa:2a:ca: 8b:a7:e7:ac:a0:66:f9:65:c7:15:2e:8a:f4:f2:54:06:69:38: f0:8d:2b:fc:ca:a7:38:f2:00:07:66:45:ed:62:7f:3c:7c:32: e1:b7:61:16:e7:e2:12:36:07:58:7d:d6:f3:e2:bc:39:85:89: fb:d9:dc:aa:0a:a1:23:24:8e:b1:54:54:fe:bc:42:72:c0:f7: 10:58:c1:75:bd:db:81:72:5c:ad:a5:24:21:50:cb:c3:83:be: 4a:ca:de:cb:98:76:9e:71:1b:a9:ba:00:7f:fc:3d:32:b0:0d: 6e:74:5d:b9:2a:c1:03:93:e8:d2:cc:57:e9:53:d0:4d:5d:b4: 37:b4:a7:36 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICGWswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTQ4 RkVENzYwMzg0OTZBRDJBQjE5NzJEMTM0NjhGNEQzRDQwMzE2NDAeFw0yNjAxMjYw NjU1MDJaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDNBRUI1MTU0MUJEQ0Y1 NjlCRUE0RTVGQ0E2NjBDQTI1MTcyRkY1OTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDW7jogEYjLWqCKxzPJMFQTPtBxd2tNQm0r1I3z85wtmb8mku4Y xTqDGaTy+3RW287nPBLHoSctMKNYAOg8isWlEMo+UZGZl1v0Jk1XlSB159l1FIcz 5iWEBDsV0HsxYQG6NSn/n/U5ujmywJCagNctkQwJqtzEjf5CLwRENgFR604BiFHd RzsdLyR2cs4nN/jxwXC4DWtdeYmAaEtOtxyMcgVkoBrvbMSyN5Y6hkgpfhUlVHh4 uEZQJlF/ZZJ/Esmo0AC7mZXNLhZD7DTU95ht8ZcEXK5Pp+8SqvobzrKwCbTOavJw ZlXWosagmdMHQqZxwaWLvtzEc/mGAd/cl+9JAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUOutRVBvc9Wm+pOX8pmDKJRcv9ZcwHwYDVR0jBBgwFoAU5I/tdgOElq0qsZct E0aPTT1AMWQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTkw LzVJX3RkZ09FbHEwcXNaY3RFMGFQVFQxQU1XUS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvNUlfdGRnT0VscTBxc1pjdEUwYVBUVDFBTVdRLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTkwL091dFJWQnZjOVdtLXBP WDhwbURLSlJjdjlaYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BADKqtgwDQYJKoZIhvcNAQELBQADggEBADqJYabRFz+rxjaOfIE85cXLw1Z6/Fj1 oBqz0cR0CapaumvmPRsN6a6IEF7f/tpTvspNy6pPA5GJv9AbGsZ2HZ4vLP7cn09t ytWsC9qNn7+H3LQIPIAUL0UK2XlcoTrcPLFiY/GITSkaKxnWTqma1Y21DFPUQr2i E9sVEPoqyoun56ygZvllxxUuivTyVAZpOPCNK/zKpzjyAAdmRe1ifzx8MuG3YRbn 4hI2B1h91vPivDmFifvZ3KoKoSMkjrFUVP68QnLA9xBYwXW924FyXK2lJCFQy8OD vkrK3suYdp5xG6m6AH/8PTKwDW50XbkqwQOT6NLMV+lT0E1dtDe0pzY= -----END CERTIFICATE-----Generated at Mon Mar 2 09:57:47 2026 by rpki-client