$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/190/rkqQR8t9FrB3DjN2qqQ8nEhbcXw.roa File: rkqQR8t9FrB3DjN2qqQ8nEhbcXw.roa (raw, json) Hash identifier: rwfJch4aoCh0wWk4o1JgI1hRPkHLffT/cXlqq17FDs4= Subject key identifier: AE:4A:90:47:CB:7D:16:B0:77:0E:33:76:AA:A4:3C:9C:48:5B:71:7C Certificate issuer: /CN=E48FED76038496AD2AB1972D13468F4D3D403164 Certificate serial: 1969 Authority key identifier: E4:8F:ED:76:03:84:96:AD:2A:B1:97:2D:13:46:8F:4D:3D:40:31:64 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5I_tdgOElq0qsZctE0aPTT1AMWQ.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/190/rkqQR8t9FrB3DjN2qqQ8nEhbcXw.roa Signing time: Mon 26 Jan 2026 06:55:02 +0000 ROA not before: Mon 26 Jan 2026 06:55:02 +0000 ROA not after: Fri 23 Oct 2026 03:01:03 +0000 asID: 24427 IP address blocks: 202.170.223.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/190/5I_tdgOElq0qsZctE0aPTT1AMWQ.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/190/5I_tdgOElq0qsZctE0aPTT1AMWQ.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5I_tdgOElq0qsZctE0aPTT1AMWQ.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Mar 2026 05:58:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6505 (0x1969) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E48FED76038496AD2AB1972D13468F4D3D403164 Validity Not Before: Jan 26 06:55:02 2026 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=AE4A9047CB7D16B0770E3376AAA43C9C485B717C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:d0:5e:00:3c:f8:59:eb:36:8b:77:16:b8:69: 9c:b0:8b:90:03:fc:94:5b:9d:a7:90:b7:a0:3c:43: 2f:f0:33:dc:a6:1a:f6:b4:c8:d3:ee:ff:c0:2a:2e: 7e:6a:51:50:87:27:6a:57:98:d4:7b:22:24:54:aa: a1:e9:34:7d:fc:57:6c:3e:45:7d:89:21:d6:c5:f4: 41:c4:14:58:a7:cb:d5:91:bf:98:b4:70:98:63:04: be:f7:a6:2d:3e:68:c2:16:1e:7b:4a:f0:3e:a8:11: a3:05:54:6a:84:c7:1a:74:30:b8:dd:2b:ad:65:2c: db:31:26:ed:bf:58:da:5d:2b:3c:a1:de:54:b3:eb: 1f:1b:04:26:f8:ee:ab:5d:df:4c:fc:4a:07:1c:51: 16:0b:cd:d7:83:68:e0:20:2c:40:7e:3a:a1:44:c4: c2:f6:7f:9b:5b:e7:6a:49:59:86:54:6c:1c:27:24: 34:e9:a2:5f:90:10:e9:21:76:41:7b:d9:cd:f7:55: a3:33:34:7b:48:1c:0f:8a:ac:74:d1:a3:01:2a:e3: 3d:72:d2:18:e5:45:0d:83:b1:e8:c3:20:3c:17:77: 33:9d:03:dd:85:6a:1f:11:9c:c1:fa:5f:bc:cd:f9: f7:4e:18:be:58:0d:08:04:88:8a:a5:71:21:d1:62: cd:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:4A:90:47:CB:7D:16:B0:77:0E:33:76:AA:A4:3C:9C:48:5B:71:7C X509v3 Authority Key Identifier: keyid:E4:8F:ED:76:03:84:96:AD:2A:B1:97:2D:13:46:8F:4D:3D:40:31:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/190/5I_tdgOElq0qsZctE0aPTT1AMWQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5I_tdgOElq0qsZctE0aPTT1AMWQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/190/rkqQR8t9FrB3DjN2qqQ8nEhbcXw.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 202.170.223.0/24 Signature Algorithm: sha256WithRSAEncryption 91:08:d3:b5:d2:e1:73:46:6a:10:35:98:61:26:70:50:da:7f: dd:49:74:c7:11:41:4c:64:c1:0a:9a:db:17:90:83:52:89:41: 17:62:d3:a5:72:67:5f:6a:97:ff:c5:a7:cd:1a:d3:aa:ee:d0: 5a:89:1a:6e:0a:3c:86:ba:3e:99:b0:27:c6:98:c0:50:56:bf: 29:bd:86:30:d5:1c:91:5e:a4:cc:c9:bd:6c:0c:e3:29:d5:ad: 35:aa:55:70:fb:b7:75:9e:d8:98:fb:1b:a0:77:b5:0e:ef:2d: ae:d6:76:ab:9f:66:ca:22:e3:25:65:bb:59:c7:c8:0f:39:d7: db:48:36:4e:a8:d8:70:7d:ee:99:a7:99:c9:bb:cd:d1:c1:21: 9f:2a:d8:7f:2c:57:91:c7:ea:3b:95:9f:23:6e:c1:18:9b:d8: 56:fe:c0:28:71:32:58:a1:cb:b1:5a:60:d0:b6:e3:02:df:4b: 35:46:eb:b8:51:1f:87:25:9c:ac:6f:64:2d:81:73:d7:3d:95: c9:e7:3f:7a:fd:b0:77:86:19:b8:98:72:94:62:19:1c:ff:2c: c5:6f:ea:b1:53:2d:cc:fe:06:20:01:0f:54:e1:ee:35:b5:d4: d0:63:c7:db:46:2b:45:8d:70:1b:08:fe:fd:80:9f:ed:c4:2f: 21:98:34:62 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICGWkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTQ4 RkVENzYwMzg0OTZBRDJBQjE5NzJEMTM0NjhGNEQzRDQwMzE2NDAeFw0yNjAxMjYw NjU1MDJaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKEFFNEE5MDQ3Q0I3RDE2 QjA3NzBFMzM3NkFBQTQzQzlDNDg1QjcxN0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDN0F4APPhZ6zaLdxa4aZywi5AD/JRbnaeQt6A8Qy/wM9ymGva0 yNPu/8AqLn5qUVCHJ2pXmNR7IiRUqqHpNH38V2w+RX2JIdbF9EHEFFiny9WRv5i0 cJhjBL73pi0+aMIWHntK8D6oEaMFVGqExxp0MLjdK61lLNsxJu2/WNpdKzyh3lSz 6x8bBCb47qtd30z8SgccURYLzdeDaOAgLEB+OqFExML2f5tb52pJWYZUbBwnJDTp ol+QEOkhdkF72c33VaMzNHtIHA+KrHTRowEq4z1y0hjlRQ2DsejDIDwXdzOdA92F ah8RnMH6X7zN+fdOGL5YDQgEiIqlcSHRYs3LAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUrkqQR8t9FrB3DjN2qqQ8nEhbcXwwHwYDVR0jBBgwFoAU5I/tdgOElq0qsZct E0aPTT1AMWQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTkw LzVJX3RkZ09FbHEwcXNaY3RFMGFQVFQxQU1XUS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvNUlfdGRnT0VscTBxc1pjdEUwYVBUVDFBTVdRLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTkwL3JrcVFSOHQ5RnJCM0Rq TjJxcVE4bkVoYmNYdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BADKqt8wDQYJKoZIhvcNAQELBQADggEBAJEI07XS4XNGahA1mGEmcFDaf91JdMcR QUxkwQqa2xeQg1KJQRdi06VyZ19ql//Fp80a06ru0FqJGm4KPIa6PpmwJ8aYwFBW vym9hjDVHJFepMzJvWwM4ynVrTWqVXD7t3We2Jj7G6B3tQ7vLa7WdqufZsoi4yVl u1nHyA8519tINk6o2HB97pmnmcm7zdHBIZ8q2H8sV5HH6juVnyNuwRib2Fb+wChx Mlihy7FaYNC24wLfSzVG67hRH4clnKxvZC2Bc9c9lcnnP3r9sHeGGbiYcpRiGRz/ LMVv6rFTLcz+BiABD1Th7jW11NBjx9tGK0WNcBsI/v2An+3ELyGYNGI= -----END CERTIFICATE-----Generated at Mon Mar 2 05:17:32 2026 by rpki-client