$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/357/gIpZp16RVJiyaukGncHAAp8v7Z4.roa File: gIpZp16RVJiyaukGncHAAp8v7Z4.roa (raw, json) Hash identifier: KlFqfBhgn1zm+5r4EvNoSG+8QugbfpO1s1kFZ8Il0qU= Subject key identifier: 80:8A:59:A7:5E:91:54:98:B2:6A:E9:06:9D:C1:C0:02:9F:2F:ED:9E Certificate issuer: /CN=B3BA6AEF3B8FA2E5D9B5E43438E0020D426A1ECA Certificate serial: 1C96 Authority key identifier: B3:BA:6A:EF:3B:8F:A2:E5:D9:B5:E4:34:38:E0:02:0D:42:6A:1E:CA Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/s7pq7zuPouXZteQ0OOACDUJqHso.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/357/gIpZp16RVJiyaukGncHAAp8v7Z4.roa Signing time: Thu 26 Feb 2026 04:18:20 +0000 ROA not before: Thu 26 Feb 2026 04:18:20 +0000 ROA not after: Sat 09 Jan 2027 08:23:18 +0000 asID: 37963 IP address blocks: 2405:e000::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/357/s7pq7zuPouXZteQ0OOACDUJqHso.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/357/s7pq7zuPouXZteQ0OOACDUJqHso.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/s7pq7zuPouXZteQ0OOACDUJqHso.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Mar 2026 05:59:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7318 (0x1c96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B3BA6AEF3B8FA2E5D9B5E43438E0020D426A1ECA Validity Not Before: Feb 26 04:18:20 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=808A59A75E915498B26AE9069DC1C0029F2FED9E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:93:4f:e1:7e:0a:a8:ff:d4:2c:9d:42:b0:14: e1:50:8f:42:fc:28:55:4c:7e:ae:44:4b:9a:73:04: b1:c4:1b:0b:15:a6:cf:a5:04:b2:70:70:69:79:c1: f5:26:86:2a:bd:7a:43:54:47:11:c8:ad:c6:97:02: e1:36:49:00:29:20:70:21:b9:0a:d0:3c:9a:64:dc: 1d:23:4a:04:2a:3a:a0:7f:7c:54:b6:6d:5b:37:8b: e8:71:e2:29:00:ee:3c:17:9e:ea:d1:29:52:80:da: ca:a8:bc:9c:4a:d9:a0:bd:84:8b:76:7f:5b:80:17: 43:e4:58:60:c5:d6:16:91:78:9d:98:21:54:d5:0f: 19:28:78:e4:9e:8a:e1:a0:67:79:0c:70:63:bf:c5: dd:7a:4a:39:41:e3:a4:64:6d:a9:41:a6:e4:ec:5c: 19:ca:aa:1a:06:02:2f:64:c7:6d:fe:c3:34:c5:3c: 64:61:8a:d8:46:3f:77:42:4a:82:1b:2e:26:4a:5d: 4e:b1:ab:69:bf:87:94:2f:56:6c:5a:41:19:e2:bf: 31:80:b9:94:da:d3:bf:2b:a1:59:68:9c:a4:98:8c: 81:fd:11:1d:9d:42:60:03:ac:8e:5c:45:37:84:15: 5c:26:d6:71:b3:aa:77:e5:c3:d8:14:fb:ed:0d:55: 20:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:8A:59:A7:5E:91:54:98:B2:6A:E9:06:9D:C1:C0:02:9F:2F:ED:9E X509v3 Authority Key Identifier: keyid:B3:BA:6A:EF:3B:8F:A2:E5:D9:B5:E4:34:38:E0:02:0D:42:6A:1E:CA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/357/s7pq7zuPouXZteQ0OOACDUJqHso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/s7pq7zuPouXZteQ0OOACDUJqHso.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/357/gIpZp16RVJiyaukGncHAAp8v7Z4.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2405:e000::/32 Signature Algorithm: sha256WithRSAEncryption 97:14:df:09:fe:8c:dd:00:56:3f:54:04:1d:ae:ca:60:39:82: 72:1f:69:48:02:50:53:79:cc:8e:38:ea:40:0e:2f:d8:52:96: 07:66:df:de:cf:18:87:4a:61:75:af:d9:78:54:b1:f7:35:24: 3e:38:98:76:30:59:da:2f:d5:64:14:1f:d9:e6:5e:b1:6e:47: 09:5c:8e:5b:2e:98:60:a4:56:b4:72:c2:79:fd:d7:fb:41:88: ac:b6:dc:ff:07:d4:4c:72:2d:6d:2b:03:98:5d:67:51:db:8f: ec:93:59:f3:0e:4b:cc:de:d0:e6:e6:35:6d:f7:91:d0:15:44: 8b:73:0b:13:64:3d:7d:fe:48:8b:e6:43:99:94:cd:85:26:6c: d3:84:ff:5b:99:bf:97:88:59:7a:b3:1c:72:93:26:7d:23:ae: 07:f5:34:f8:70:65:25:4a:7b:46:91:36:43:79:39:22:23:cb: 72:34:38:b0:92:65:a6:01:df:5f:3d:dc:ec:3f:65:3a:ea:23: 11:6e:3a:bb:fa:06:44:16:5b:0f:f7:3d:8d:5a:2d:c3:b0:7c: a4:f4:94:dd:ff:df:f4:fa:d1:67:43:7c:56:4d:91:08:8f:21: 29:e6:b9:27:11:82:69:57:d8:52:a9:91:18:f7:ac:fa:f2:d7: 0c:d2:48:ef -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICHJYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjNC QTZBRUYzQjhGQTJFNUQ5QjVFNDM0MzhFMDAyMEQ0MjZBMUVDQTAeFw0yNjAyMjYw NDE4MjBaFw0yNzAxMDkwODIzMThaMDMxMTAvBgNVBAMTKDgwOEE1OUE3NUU5MTU0 OThCMjZBRTkwNjlEQzFDMDAyOUYyRkVEOUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0k0/hfgqo/9QsnUKwFOFQj0L8KFVMfq5ES5pzBLHEGwsVps+l BLJwcGl5wfUmhiq9ekNURxHIrcaXAuE2SQApIHAhuQrQPJpk3B0jSgQqOqB/fFS2 bVs3i+hx4ikA7jwXnurRKVKA2sqovJxK2aC9hIt2f1uAF0PkWGDF1haReJ2YIVTV DxkoeOSeiuGgZ3kMcGO/xd16SjlB46RkbalBpuTsXBnKqhoGAi9kx23+wzTFPGRh ithGP3dCSoIbLiZKXU6xq2m/h5QvVmxaQRnivzGAuZTa078roVlonKSYjIH9ER2d QmADrI5cRTeEFVwm1nGzqnflw9gU++0NVSB3AgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUgIpZp16RVJiyaukGncHAAp8v7Z4wHwYDVR0jBBgwFoAUs7pq7zuPouXZteQ0 OOACDUJqHsowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzU3 L3M3cHE3enVQb3VYWnRlUTBPT0FDRFVKcUhzby5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvczdwcTd6dVBvdVhadGVRME9PQUNEVUpxSHNvLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzU3L2dJcFpwMTZSVkppeWF1 a0duY0hBQXA4djdaNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcD BQAkBeAAMA0GCSqGSIb3DQEBCwUAA4IBAQCXFN8J/ozdAFY/VAQdrspgOYJyH2lI AlBTecyOOOpADi/YUpYHZt/ezxiHSmF1r9l4VLH3NSQ+OJh2MFnaL9VkFB/Z5l6x bkcJXI5bLphgpFa0csJ5/df7QYisttz/B9RMci1tKwOYXWdR24/sk1nzDkvM3tDm 5jVt95HQFUSLcwsTZD19/kiL5kOZlM2FJmzThP9bmb+XiFl6sxxykyZ9I64H9TT4 cGUlSntGkTZDeTkiI8tyNDiwkmWmAd9fPdzsP2U66iMRbjq7+gZEFlsP9z2NWi3D sHyk9JTd/9/0+tFnQ3xWTZEIjyEp5rknEYJpV9hSqZEY96z68tcM0kjv -----END CERTIFICATE-----Generated at Mon Mar 2 05:27:33 2026 by rpki-client