$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3246/RxXX7EeS9X_riwqI5vqWS_wvrBk.roa File: RxXX7EeS9X_riwqI5vqWS_wvrBk.roa (raw, json) Hash identifier: mhO0AgztC6j4+pI/1BuZcbLakKJ3LaGfmLDEYhL8yOk= Subject key identifier: 47:15:D7:EC:47:92:F5:7F:EB:8B:0A:88:E6:FA:96:4B:FC:2F:AC:19 Certificate issuer: /CN=7FFE6EB152FAF96D18BFC69FD3E3BF99862AA9F1 Certificate serial: 0F29 Authority key identifier: 7F:FE:6E:B1:52:FA:F9:6D:18:BF:C6:9F:D3:E3:BF:99:86:2A:A9:F1 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/f_5usVL6-W0Yv8af0-O_mYYqqfE.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3246/RxXX7EeS9X_riwqI5vqWS_wvrBk.roa Signing time: Mon 26 Jan 2026 07:00:32 +0000 ROA not before: Mon 26 Jan 2026 07:00:32 +0000 ROA not after: Fri 23 Oct 2026 03:01:03 +0000 asID: 211392 IP address blocks: 210.87.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3246/f_5usVL6-W0Yv8af0-O_mYYqqfE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3246/f_5usVL6-W0Yv8af0-O_mYYqqfE.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/f_5usVL6-W0Yv8af0-O_mYYqqfE.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Mar 2026 00:58:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3881 (0xf29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7FFE6EB152FAF96D18BFC69FD3E3BF99862AA9F1 Validity Not Before: Jan 26 07:00:32 2026 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=4715D7EC4792F57FEB8B0A88E6FA964BFC2FAC19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:13:e5:f6:95:fa:c1:df:e6:8a:06:51:af:4e: d0:c7:38:72:3f:7b:e6:9a:79:b0:ce:3f:1c:c0:d5: a7:71:07:4d:ee:32:2a:bf:9e:82:d5:fd:ba:1b:d1: 42:f6:e2:7d:7d:1e:43:c4:bc:1a:ec:f1:4f:ac:79: 1d:6e:63:9c:af:57:23:a4:a3:a3:26:0e:d3:4f:43: 19:b0:74:ba:82:3b:5e:e1:5e:57:1b:5f:e2:52:7e: c9:c9:19:56:55:5c:ad:2d:6e:e0:b2:21:2f:74:a8: fd:24:74:22:73:e0:a3:16:aa:1e:ca:10:3a:3d:92: 25:19:4d:8d:c5:e4:15:27:7c:a1:67:cb:af:c1:5f: 51:48:bd:f1:61:90:b2:ed:3d:56:ff:e0:5b:43:c0: 04:13:6c:d8:72:d4:94:73:95:8e:05:00:5e:49:6c: 65:3d:07:2f:f7:5e:92:4b:0d:00:13:bb:92:03:a7: 0d:68:04:f7:8c:ef:21:b4:61:ec:e9:10:57:31:26: 7f:6e:f9:4f:99:69:43:6a:8f:4a:ce:16:75:96:0e: 55:3f:16:87:26:eb:fd:5a:08:92:05:ea:e6:fa:f1: 34:8b:e7:05:51:6e:09:e4:5b:75:7d:2f:c8:f8:56: bd:26:97:63:4a:79:39:da:08:7e:04:d4:c2:dd:8e: c8:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:15:D7:EC:47:92:F5:7F:EB:8B:0A:88:E6:FA:96:4B:FC:2F:AC:19 X509v3 Authority Key Identifier: keyid:7F:FE:6E:B1:52:FA:F9:6D:18:BF:C6:9F:D3:E3:BF:99:86:2A:A9:F1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3246/f_5usVL6-W0Yv8af0-O_mYYqqfE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/f_5usVL6-W0Yv8af0-O_mYYqqfE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3246/RxXX7EeS9X_riwqI5vqWS_wvrBk.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.87.72.0/24 Signature Algorithm: sha256WithRSAEncryption 58:2e:e6:42:a5:2b:3e:14:f9:30:1c:fb:d6:a3:f9:68:70:af: 06:3f:14:88:e7:f6:e5:a3:79:f6:08:b8:99:3a:04:41:cf:f3: f4:04:8f:dc:71:c8:96:bc:bd:36:35:57:a1:bd:e9:8e:95:d4: 3c:9f:4b:94:8b:4b:5b:c6:e7:a9:fe:20:51:7c:65:d4:ab:46: e5:c8:a7:4f:e5:86:c6:30:7d:78:cc:99:e5:70:1c:e4:2c:8f: 32:c0:ac:5c:5e:54:93:6e:25:3c:e2:b8:2b:c6:0b:c5:52:fc: c1:b5:3a:87:b6:62:dc:fd:9a:d1:c0:b7:62:83:92:44:47:12: 5b:2d:95:bc:0b:05:ef:7f:5d:97:ea:5c:7c:ca:4e:0f:63:01: 48:59:d0:1f:c8:fe:02:48:29:a2:98:9f:fd:a2:b8:16:a9:d0: fe:58:72:38:d8:e3:52:3c:46:21:10:55:06:2a:02:24:9a:15: 81:ea:89:bf:e7:73:e3:a3:bf:81:3d:d1:45:18:f1:ec:73:d5: 83:25:b8:6e:ae:f0:67:85:c3:9a:d8:ac:fa:d5:9f:60:6b:fc: c6:99:eb:f7:30:2d:07:82:c2:21:67:aa:36:19:05:3e:97:29: 54:d4:11:73:24:d1:3f:64:26:99:62:98:ea:eb:b9:94:44:31: d7:96:1d:ff -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICDykwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0ZG RTZFQjE1MkZBRjk2RDE4QkZDNjlGRDNFM0JGOTk4NjJBQTlGMTAeFw0yNjAxMjYw NzAwMzJaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDQ3MTVEN0VDNDc5MkY1 N0ZFQjhCMEE4OEU2RkE5NjRCRkMyRkFDMTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCYE+X2lfrB3+aKBlGvTtDHOHI/e+aaebDOPxzA1adxB03uMiq/ noLV/bob0UL24n19HkPEvBrs8U+seR1uY5yvVyOko6MmDtNPQxmwdLqCO17hXlcb X+JSfsnJGVZVXK0tbuCyIS90qP0kdCJz4KMWqh7KEDo9kiUZTY3F5BUnfKFny6/B X1FIvfFhkLLtPVb/4FtDwAQTbNhy1JRzlY4FAF5JbGU9By/3XpJLDQATu5IDpw1o BPeM7yG0YezpEFcxJn9u+U+ZaUNqj0rOFnWWDlU/Focm6/1aCJIF6ub68TSL5wVR bgnkW3V9L8j4Vr0ml2NKeTnaCH4E1MLdjsjbAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQURxXX7EeS9X/riwqI5vqWS/wvrBkwHwYDVR0jBBgwFoAUf/5usVL6+W0Yv8af 0+O/mYYqqfEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzI0 Ni9mXzV1c1ZMNi1XMFl2OGFmMC1PX21ZWXFxZkUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2ZfNXVzVkw2LVcwWXY4YWYwLU9fbVlZcXFmRS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMyNDYvUnhYWDdFZVM5WF9y aXdxSTV2cVdTX3d2ckJrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEANJXSDANBgkqhkiG9w0BAQsFAAOCAQEAWC7mQqUrPhT5MBz71qP5aHCvBj8U iOf25aN59gi4mToEQc/z9ASP3HHIlry9NjVXob3pjpXUPJ9LlItLW8bnqf4gUXxl 1KtG5cinT+WGxjB9eMyZ5XAc5CyPMsCsXF5Uk24lPOK4K8YLxVL8wbU6h7Zi3P2a 0cC3YoOSREcSWy2VvAsF739dl+pcfMpOD2MBSFnQH8j+Akgpopif/aK4FqnQ/lhy ONjjUjxGIRBVBioCJJoVgeqJv+dz46O/gT3RRRjx7HPVgyW4bq7wZ4XDmtis+tWf YGv8xpnr9zAtB4LCIWeqNhkFPpcpVNQRcyTRP2QmmWKY6uu5lEQx15Yd/w== -----END CERTIFICATE-----Generated at Mon Mar 2 00:01:07 2026 by rpki-client