$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2716/jSwRg0yF02aLjnlnkwBWZfg0bng.roa File: jSwRg0yF02aLjnlnkwBWZfg0bng.roa (raw, json) Hash identifier: V0JkHVbBkDs6Kf0ngu17Ktq413IvnB+LQEaYWLV9JHo= Subject key identifier: 8D:2C:11:83:4C:85:D3:66:8B:8E:79:67:93:00:56:65:F8:34:6E:78 Certificate issuer: /CN=39EE852FE138CDEDC5B42D11A34295D109AD4925 Certificate serial: 06AE Authority key identifier: 39:EE:85:2F:E1:38:CD:ED:C5:B4:2D:11:A3:42:95:D1:09:AD:49:25 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/jSwRg0yF02aLjnlnkwBWZfg0bng.roa Signing time: Sat 21 Feb 2026 04:15:03 +0000 ROA not before: Sat 21 Feb 2026 04:15:03 +0000 ROA not after: Sat 09 Jan 2027 08:23:18 +0000 asID: 1054 IP address blocks: 103.132.166.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Mar 2026 10:59:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1710 (0x6ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=39EE852FE138CDEDC5B42D11A34295D109AD4925 Validity Not Before: Feb 21 04:15:03 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=8D2C11834C85D3668B8E796793005665F8346E78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:75:a2:91:b0:52:e3:44:c0:34:2b:8b:4a:20: 6e:f5:a8:91:9b:36:14:e6:21:d6:21:8b:33:1f:ae: a2:c1:4c:8c:3f:53:4e:dc:12:73:45:b5:8c:cf:b5: fa:89:17:3a:a6:1a:65:a5:d2:ca:dd:9c:98:f2:6d: 68:0a:0b:d4:67:a9:48:5b:40:63:d1:41:62:b0:87: e9:5f:c3:40:ba:83:8e:17:dd:03:5f:34:d4:05:3a: 59:c1:dc:99:98:2d:b1:db:db:96:cf:98:03:10:f3: 31:da:ce:85:4e:2d:83:a8:8f:bc:35:ae:a9:c6:13: e6:66:86:22:2c:5f:77:f4:f9:22:91:ad:d7:dc:5c: 17:e0:67:c5:4c:41:25:88:27:4b:29:dc:63:2a:6e: 7c:e5:d6:66:48:dc:6d:ce:65:b1:02:bd:f2:fa:98: 25:9d:bc:b9:4c:09:b0:ee:1b:f5:02:f8:7e:72:5e: de:2d:13:c4:dc:22:f7:33:14:aa:0b:1d:67:93:94: f4:41:5e:38:db:58:00:31:61:1f:52:29:76:7a:10: 29:98:13:3a:88:7d:37:ec:0e:f1:9f:de:f4:18:58: e2:c8:bc:ea:46:e4:d5:f9:3a:9f:9a:0f:54:6a:01: 9e:08:5b:d2:b9:19:03:d0:3e:64:60:de:55:8b:c9: cf:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:2C:11:83:4C:85:D3:66:8B:8E:79:67:93:00:56:65:F8:34:6E:78 X509v3 Authority Key Identifier: keyid:39:EE:85:2F:E1:38:CD:ED:C5:B4:2D:11:A3:42:95:D1:09:AD:49:25 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/jSwRg0yF02aLjnlnkwBWZfg0bng.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.132.166.0/23 Signature Algorithm: sha256WithRSAEncryption 45:20:35:c2:10:a7:95:71:e2:64:c1:20:ac:b2:c3:32:38:e9: 19:f5:28:9a:9a:29:47:40:43:23:cc:67:24:13:72:6b:df:17: 04:08:cc:70:78:b3:97:5a:6c:88:cd:b7:f2:47:8c:fe:12:17: d5:8d:26:8d:69:d9:01:24:5a:df:37:47:ce:d9:48:d4:1e:04: 28:a6:5c:10:dd:4e:0b:1b:6b:a3:ee:ac:57:97:55:fa:be:f9: 8f:0c:7c:53:18:8b:c4:bb:13:99:1a:ed:3e:d6:b3:f6:9e:e8: da:9e:3b:84:24:85:88:7c:5b:34:aa:21:11:ab:e8:13:8e:98: 8a:05:46:a0:8c:0a:87:ac:01:20:4c:4e:80:e7:51:0b:8e:ca: f4:85:fc:97:ad:ed:c8:57:3b:f7:35:45:a3:28:66:fc:c4:cb: ee:b5:0b:d9:e9:87:68:88:70:70:c6:fa:b8:27:95:78:5e:5c: 5c:e0:1e:bf:1a:8e:62:75:c7:32:54:0c:3b:74:b4:66:a5:47: 89:79:e0:12:16:08:81:a1:90:a7:c6:30:82:69:6a:91:d7:3e: 58:b1:0e:80:69:1f:31:bd:7a:12:1f:b5:26:4f:ed:c7:fc:21: 1e:30:99:d3:35:0e:14:37:7f:28:b2:00:06:9a:98:96:61:53: 2c:5d:32:6e -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICBq4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzlF RTg1MkZFMTM4Q0RFREM1QjQyRDExQTM0Mjk1RDEwOUFENDkyNTAeFw0yNjAyMjEw NDE1MDNaFw0yNzAxMDkwODIzMThaMDMxMTAvBgNVBAMTKDhEMkMxMTgzNEM4NUQz NjY4QjhFNzk2NzkzMDA1NjY1RjgzNDZFNzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKdaKRsFLjRMA0K4tKIG71qJGbNhTmIdYhizMfrqLBTIw/U07c EnNFtYzPtfqJFzqmGmWl0srdnJjybWgKC9RnqUhbQGPRQWKwh+lfw0C6g44X3QNf NNQFOlnB3JmYLbHb25bPmAMQ8zHazoVOLYOoj7w1rqnGE+ZmhiIsX3f0+SKRrdfc XBfgZ8VMQSWIJ0sp3GMqbnzl1mZI3G3OZbECvfL6mCWdvLlMCbDuG/UC+H5yXt4t E8TcIvczFKoLHWeTlPRBXjjbWAAxYR9SKXZ6ECmYEzqIfTfsDvGf3vQYWOLIvOpG 5NX5Op+aD1RqAZ4IW9K5GQPQPmRg3lWLyc8RAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUjSwRg0yF02aLjnlnkwBWZfg0bngwHwYDVR0jBBgwFoAUOe6FL+E4ze3FtC0R o0KV0QmtSSUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjcx Ni9PZTZGTC1FNHplM0Z0QzBSbzBLVjBRbXRTU1UuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL09lNkZMLUU0emUzRnRDMFJvMEtWMFFtdFNTVS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI3MTYvalN3UmcweUYwMmFM am5sbmt3QldaZmcwYm5nLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAWeEpjANBgkqhkiG9w0BAQsFAAOCAQEARSA1whCnlXHiZMEgrLLDMjjpGfUo mpopR0BDI8xnJBNya98XBAjMcHizl1psiM238keM/hIX1Y0mjWnZASRa3zdHztlI 1B4EKKZcEN1OCxtro+6sV5dV+r75jwx8UxiLxLsTmRrtPtaz9p7o2p47hCSFiHxb NKohEavoE46YigVGoIwKh6wBIExOgOdRC47K9IX8l63tyFc79zVFoyhm/MTL7rUL 2emHaIhwcMb6uCeVeF5cXOAevxqOYnXHMlQMO3S0ZqVHiXngEhYIgaGQp8Ywgmlq kdc+WLEOgGkfMb16Eh+1Jk/tx/whHjCZ0zUOFDd/KLIABpqYlmFTLF0ybg== -----END CERTIFICATE-----Generated at Mon Mar 2 07:35:33 2026 by rpki-client