$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2716/5Jqm8DbVx2Jk6Wajij_8ewAK2M4.roa File: 5Jqm8DbVx2Jk6Wajij_8ewAK2M4.roa (raw, json) Hash identifier: H1UOSJLMTa4jKPDkW6s7kGOPNR2H0HTS53mb7sgeAMs= Subject key identifier: E4:9A:A6:F0:36:D5:C7:62:64:E9:66:A3:8A:3F:FC:7B:00:0A:D8:CE Certificate issuer: /CN=39EE852FE138CDEDC5B42D11A34295D109AD4925 Certificate serial: 0676 Authority key identifier: 39:EE:85:2F:E1:38:CD:ED:C5:B4:2D:11:A3:42:95:D1:09:AD:49:25 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/5Jqm8DbVx2Jk6Wajij_8ewAK2M4.roa Signing time: Tue 10 Feb 2026 04:59:45 +0000 ROA not before: Tue 10 Feb 2026 04:59:45 +0000 ROA not after: Sat 09 Jan 2027 08:23:18 +0000 asID: 140869 IP address blocks: 103.118.216.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Mar 2026 05:59:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1654 (0x676) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=39EE852FE138CDEDC5B42D11A34295D109AD4925 Validity Not Before: Feb 10 04:59:45 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=E49AA6F036D5C76264E966A38A3FFC7B000AD8CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:0b:8f:2d:19:e0:c2:fa:0f:6b:3a:a7:32:5f: 88:44:fb:1d:29:3b:b6:b7:18:b5:16:ac:c3:04:1a: 24:bf:ac:5d:c7:0c:2f:4a:07:3c:66:c1:f5:c8:35: 76:e4:4a:38:20:30:48:b4:7b:f7:61:f4:90:8e:1c: 27:85:bb:f0:1d:ba:2d:fd:46:a2:da:cc:27:63:d0: e7:f9:18:33:49:60:94:9d:57:2b:3e:57:96:b5:e0: b5:c5:b4:df:30:a5:f1:13:10:30:78:82:06:43:07: 1d:ab:62:c1:2c:97:3a:b2:96:ad:db:cd:08:b8:bd: 7e:19:38:b7:6a:0b:5a:33:1a:07:fe:b8:17:84:7f: a1:9f:94:27:04:2c:a7:92:a0:04:7b:91:88:a7:41: 62:3c:3d:82:ac:7d:e4:21:39:fe:7a:55:03:c6:ff: 6b:29:e1:38:4e:2a:97:24:0e:b8:a7:86:61:7b:eb: 90:35:67:0f:9d:78:ab:46:46:ca:14:c6:56:ed:bf: a3:4d:fd:26:ba:38:a2:51:70:25:1a:49:48:d7:49: 21:48:36:98:0d:ab:51:cc:fa:7a:80:f0:3f:22:82: 8f:5c:18:9a:84:6f:8c:b7:f8:80:83:95:b7:16:fb: c3:11:40:3b:e1:23:89:0f:df:19:b3:ee:08:d3:40: 95:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:9A:A6:F0:36:D5:C7:62:64:E9:66:A3:8A:3F:FC:7B:00:0A:D8:CE X509v3 Authority Key Identifier: keyid:39:EE:85:2F:E1:38:CD:ED:C5:B4:2D:11:A3:42:95:D1:09:AD:49:25 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/5Jqm8DbVx2Jk6Wajij_8ewAK2M4.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.118.216.0/22 Signature Algorithm: sha256WithRSAEncryption 28:e6:2d:06:36:df:68:53:81:f0:03:96:72:d5:aa:45:2e:9c: 1d:9a:bb:b0:fd:0c:0e:92:6f:66:b7:f5:cf:ae:09:89:4c:93: dc:3a:83:db:9f:0b:4c:b2:82:a5:e2:4a:98:47:7b:c1:c2:7b: a3:e6:a1:34:78:1e:d0:c2:52:bd:75:d7:c9:88:5e:56:ee:80: 9a:2a:99:8a:3a:ac:ca:51:ea:c2:df:98:f5:b5:e2:a2:fb:11: 63:db:9e:b3:b8:e6:86:62:dc:9a:65:72:d4:2d:fe:eb:3c:f5: 1f:1f:92:64:2f:4c:3a:c0:72:d0:7d:46:06:c5:ca:99:56:b1: f7:85:25:ef:cb:c5:c3:f1:c9:e6:88:b3:77:ae:cc:5f:d3:cd: a5:ba:93:af:fa:d9:aa:19:82:13:bd:53:ff:93:9d:71:b0:21: b9:1b:d0:9e:91:b4:14:3d:57:23:e6:97:77:db:65:64:ab:f7: 6c:1b:bc:f3:21:98:51:75:d4:b4:fa:38:4a:af:e9:fc:44:5d: 42:55:65:ee:51:7d:f5:b4:4f:e8:aa:1d:0c:b0:66:0e:21:35: a4:fe:e5:0b:03:70:36:14:b2:a5:e4:b9:0b:7e:7a:1a:69:3a: 10:b9:70:54:84:ba:b0:88:fc:9d:5e:68:ae:1a:7e:6f:05:82: 26:4c:57:70 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICBnYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzlF RTg1MkZFMTM4Q0RFREM1QjQyRDExQTM0Mjk1RDEwOUFENDkyNTAeFw0yNjAyMTAw NDU5NDVaFw0yNzAxMDkwODIzMThaMDMxMTAvBgNVBAMTKEU0OUFBNkYwMzZENUM3 NjI2NEU5NjZBMzhBM0ZGQzdCMDAwQUQ4Q0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNC48tGeDC+g9rOqcyX4hE+x0pO7a3GLUWrMMEGiS/rF3HDC9K BzxmwfXINXbkSjggMEi0e/dh9JCOHCeFu/Adui39RqLazCdj0Of5GDNJYJSdVys+ V5a14LXFtN8wpfETEDB4ggZDBx2rYsEslzqylq3bzQi4vX4ZOLdqC1ozGgf+uBeE f6GflCcELKeSoAR7kYinQWI8PYKsfeQhOf56VQPG/2sp4ThOKpckDrinhmF765A1 Zw+deKtGRsoUxlbtv6NN/Sa6OKJRcCUaSUjXSSFINpgNq1HM+nqA8D8igo9cGJqE b4y3+ICDlbcW+8MRQDvhI4kP3xmz7gjTQJVtAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQU5Jqm8DbVx2Jk6Wajij/8ewAK2M4wHwYDVR0jBBgwFoAUOe6FL+E4ze3FtC0R o0KV0QmtSSUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjcx Ni9PZTZGTC1FNHplM0Z0QzBSbzBLVjBRbXRTU1UuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL09lNkZMLUU0emUzRnRDMFJvMEtWMFFtdFNTVS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI3MTYvNUpxbThEYlZ4Mkpr NldhamlqXzhld0FLMk00LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAmd22DANBgkqhkiG9w0BAQsFAAOCAQEAKOYtBjbfaFOB8AOWctWqRS6cHZq7 sP0MDpJvZrf1z64JiUyT3DqD258LTLKCpeJKmEd7wcJ7o+ahNHge0MJSvXXXyYhe Vu6AmiqZijqsylHqwt+Y9bXiovsRY9ues7jmhmLcmmVy1C3+6zz1Hx+SZC9MOsBy 0H1GBsXKmVax94Ul78vFw/HJ5oizd67MX9PNpbqTr/rZqhmCE71T/5OdcbAhuRvQ npG0FD1XI+aXd9tlZKv3bBu88yGYUXXUtPo4Sq/p/ERdQlVl7lF99bRP6KodDLBm DiE1pP7lCwNwNhSypeS5C356Gmk6ELlwVIS6sIj8nV5orhp+bwWCJkxXcA== -----END CERTIFICATE-----Generated at Mon Mar 2 04:23:05 2026 by rpki-client