$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2716/eN0gqHVL7w1o70nV-sf25FJXF38.roa File: eN0gqHVL7w1o70nV-sf25FJXF38.roa (raw, json) Hash identifier: elty/wnmvfx61AajNicGvvw+KEUDZEaiJrx/sdWN9g0= Subject key identifier: 78:DD:20:A8:75:4B:EF:0D:68:EF:49:D5:FA:C7:F6:E4:52:57:17:7F Certificate issuer: /CN=39EE852FE138CDEDC5B42D11A34295D109AD4925 Certificate serial: 0629 Authority key identifier: 39:EE:85:2F:E1:38:CD:ED:C5:B4:2D:11:A3:42:95:D1:09:AD:49:25 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/eN0gqHVL7w1o70nV-sf25FJXF38.roa Signing time: Mon 26 Jan 2026 06:38:01 +0000 ROA not before: Mon 26 Jan 2026 06:38:01 +0000 ROA not after: Sat 09 Jan 2027 08:23:18 +0000 asID: 136826 IP address blocks: 103.118.216.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Mar 2026 10:59:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1577 (0x629) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=39EE852FE138CDEDC5B42D11A34295D109AD4925 Validity Not Before: Jan 26 06:38:01 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=78DD20A8754BEF0D68EF49D5FAC7F6E45257177F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:e4:c7:84:1d:5a:05:68:b4:ae:c1:71:3a:bc: cf:64:22:de:14:d2:0f:d2:f7:0e:c2:a0:52:58:02: 6d:47:3d:6e:0e:f6:42:fe:76:3b:d7:c8:4c:82:91: bf:82:c3:ab:27:ed:7f:9f:69:b3:89:57:18:92:be: 87:ed:58:b2:23:f6:9f:b0:28:30:fe:f2:ba:07:32: 98:4c:41:10:9b:84:7e:e5:e7:ba:44:a7:1d:c3:85: 7d:72:cb:b0:74:2d:d8:1e:28:ef:ea:8a:3e:cb:ac: 46:72:8d:e7:61:4b:40:ae:cd:17:86:60:52:13:e9: e3:33:b3:f1:59:97:62:6e:f4:e4:10:da:bc:ed:50: ac:60:82:e3:5c:d0:16:37:8f:ce:8f:a1:1c:42:4b: fd:49:13:4f:0d:ef:45:87:cd:b9:11:d8:5d:66:bc: 09:0e:1c:93:e7:d7:69:67:9f:61:17:9e:4f:ea:81: cc:a1:b5:f2:f5:f3:17:96:ec:19:21:9b:a8:04:5c: c0:96:b8:35:24:37:ec:f8:59:13:e5:d3:55:48:04: fd:bb:22:01:b1:70:8c:ee:6b:fc:f2:ce:16:6a:72: 7d:14:3a:46:83:1c:9c:3e:a7:00:c7:91:44:d2:ce: aa:88:e9:85:84:ba:2a:c3:c1:9b:66:16:35:88:cd: 72:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:DD:20:A8:75:4B:EF:0D:68:EF:49:D5:FA:C7:F6:E4:52:57:17:7F X509v3 Authority Key Identifier: keyid:39:EE:85:2F:E1:38:CD:ED:C5:B4:2D:11:A3:42:95:D1:09:AD:49:25 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/eN0gqHVL7w1o70nV-sf25FJXF38.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.118.216.0/22 Signature Algorithm: sha256WithRSAEncryption 08:14:59:ea:42:ec:54:65:13:c9:5f:95:58:e3:f6:84:29:c1: 65:16:ca:86:32:1f:04:33:d5:bb:83:0b:49:6b:12:2a:c4:02: 97:92:e8:45:94:59:15:6a:dd:0d:8e:3e:92:d4:92:a0:fe:28: af:97:f5:ed:8e:0a:4c:55:64:15:56:9d:81:d2:89:d7:6c:74: 94:54:a9:ef:98:f6:dd:a7:61:06:5b:c1:0c:81:31:a2:9b:97: 61:de:5e:01:6d:06:f6:28:ff:ee:d4:e7:7c:1b:5c:a9:3e:4f: a4:0d:97:25:b6:5c:6a:aa:f3:27:63:23:ca:2e:d4:b1:01:ab: ad:87:37:f7:6c:4c:ce:42:e2:a7:82:a4:1e:b8:68:ee:87:c8: 05:65:0c:c8:73:1f:2a:47:33:33:72:fb:56:71:31:9c:cc:70: ae:5b:56:bb:68:43:26:03:30:78:48:ce:18:89:2d:df:a0:68: 1b:b0:ba:ed:aa:6c:72:66:da:88:77:e6:63:34:af:41:43:77: e1:ef:4b:23:76:28:53:cb:4b:97:ce:fa:d2:13:61:a8:80:76: 15:c6:73:26:d3:9d:62:f4:8e:30:d8:b3:d5:6c:10:b6:bb:d5: 15:28:c1:e1:b4:8b:5a:a3:73:d2:18:d2:49:f5:d4:4b:9b:88: 60:74:54:6f -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICBikwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzlF RTg1MkZFMTM4Q0RFREM1QjQyRDExQTM0Mjk1RDEwOUFENDkyNTAeFw0yNjAxMjYw NjM4MDFaFw0yNzAxMDkwODIzMThaMDMxMTAvBgNVBAMTKDc4REQyMEE4NzU0QkVG MEQ2OEVGNDlENUZBQzdGNkU0NTI1NzE3N0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+5MeEHVoFaLSuwXE6vM9kIt4U0g/S9w7CoFJYAm1HPW4O9kL+ djvXyEyCkb+Cw6sn7X+fabOJVxiSvoftWLIj9p+wKDD+8roHMphMQRCbhH7l57pE px3DhX1yy7B0LdgeKO/qij7LrEZyjedhS0CuzReGYFIT6eMzs/FZl2Ju9OQQ2rzt UKxgguNc0BY3j86PoRxCS/1JE08N70WHzbkR2F1mvAkOHJPn12lnn2EXnk/qgcyh tfL18xeW7Bkhm6gEXMCWuDUkN+z4WRPl01VIBP27IgGxcIzua/zyzhZqcn0UOkaD HJw+pwDHkUTSzqqI6YWEuirDwZtmFjWIzXK9AgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUeN0gqHVL7w1o70nV+sf25FJXF38wHwYDVR0jBBgwFoAUOe6FL+E4ze3FtC0R o0KV0QmtSSUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjcx Ni9PZTZGTC1FNHplM0Z0QzBSbzBLVjBRbXRTU1UuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL09lNkZMLUU0emUzRnRDMFJvMEtWMFFtdFNTVS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI3MTYvZU4wZ3FIVkw3dzFv NzBuVi1zZjI1RkpYRjM4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAmd22DANBgkqhkiG9w0BAQsFAAOCAQEACBRZ6kLsVGUTyV+VWOP2hCnBZRbK hjIfBDPVu4MLSWsSKsQCl5LoRZRZFWrdDY4+ktSSoP4or5f17Y4KTFVkFVadgdKJ 12x0lFSp75j23adhBlvBDIExopuXYd5eAW0G9ij/7tTnfBtcqT5PpA2XJbZcaqrz J2Mjyi7UsQGrrYc392xMzkLip4KkHrho7ofIBWUMyHMfKkczM3L7VnExnMxwrltW u2hDJgMweEjOGIkt36BoG7C67apscmbaiHfmYzSvQUN34e9LI3YoU8tLl8760hNh qIB2FcZzJtOdYvSOMNiz1WwQtrvVFSjB4bSLWqNz0hjSSfXUS5uIYHRUbw== -----END CERTIFICATE-----Generated at Mon Mar 2 07:35:03 2026 by rpki-client