$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/413/DWlP2MhT7I4zmpEGtnxcj6H4ESI.roa File: DWlP2MhT7I4zmpEGtnxcj6H4ESI.roa (raw, json) Hash identifier: me8qJbDLyT/oqWwdG1WH9T4NmAqUY/xOAQLoe77dghY= Subject key identifier: 0D:69:4F:D8:C8:53:EC:8E:33:9A:91:06:B6:7C:5C:8F:A1:F8:11:22 Certificate issuer: /CN=C65BF57BDC9B5BE7D97E0D65AA4222B1EFAABEAA Certificate serial: 1803 Authority key identifier: C6:5B:F5:7B:DC:9B:5B:E7:D9:7E:0D:65:AA:42:22:B1:EF:AA:BE:AA Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/DWlP2MhT7I4zmpEGtnxcj6H4ESI.roa Signing time: Thu 12 Feb 2026 08:17:05 +0000 ROA not before: Thu 12 Feb 2026 08:17:05 +0000 ROA not after: Fri 23 Oct 2026 03:01:03 +0000 asID: 399468 IP address blocks: 124.42.144.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Mar 2026 23:28:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6147 (0x1803) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C65BF57BDC9B5BE7D97E0D65AA4222B1EFAABEAA Validity Not Before: Feb 12 08:17:05 2026 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=0D694FD8C853EC8E339A9106B67C5C8FA1F81122 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:cb:fb:5a:9f:82:28:f4:b5:1f:07:93:00:00: f8:ed:47:cc:92:52:03:d0:08:e3:8a:62:20:32:41: 6e:85:04:85:58:f6:de:1d:1b:2f:6b:c5:17:dc:11: 1f:39:5f:79:43:3a:14:f5:f1:8d:8f:14:6b:58:e9: e3:50:a3:20:f9:60:0a:61:82:77:27:3f:61:e1:3e: 6d:cf:88:09:62:d6:be:71:ea:52:3a:3c:25:07:6c: 0e:cf:bc:9d:45:eb:ec:3a:04:e8:31:4a:92:fe:cf: d5:96:29:fd:c3:e7:ec:4d:43:96:5a:90:dd:a9:5c: 79:4e:00:a4:ed:54:5a:06:00:35:b5:8b:df:ee:45: eb:7d:7f:3f:83:43:60:b2:12:4a:94:ac:0c:b0:6f: 7f:70:4c:ac:3f:6d:54:38:40:6a:6c:27:66:39:4f: 8d:55:c0:c7:a1:95:1a:29:a1:10:d5:a0:2f:2c:77: 61:23:8f:04:9c:24:de:95:24:d8:07:5e:7d:2c:e8: ac:fa:f6:65:f7:44:fc:96:9f:48:70:01:94:f9:d6: d8:7e:aa:83:60:61:c9:7c:5e:c6:b1:9a:d2:43:e8: 94:48:68:ab:0b:7b:9d:23:a8:20:77:29:e3:e4:41: 22:62:ad:60:80:6f:91:35:85:9f:0e:cd:c3:a7:a1: 84:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:69:4F:D8:C8:53:EC:8E:33:9A:91:06:B6:7C:5C:8F:A1:F8:11:22 X509v3 Authority Key Identifier: keyid:C6:5B:F5:7B:DC:9B:5B:E7:D9:7E:0D:65:AA:42:22:B1:EF:AA:BE:AA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/DWlP2MhT7I4zmpEGtnxcj6H4ESI.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.42.144.0/22 Signature Algorithm: sha256WithRSAEncryption 43:17:32:ef:50:0d:39:d7:72:ab:f2:47:53:ab:82:ce:95:ca: 98:51:7c:e7:aa:4e:1b:51:30:ec:b6:39:07:30:c3:e7:db:46: 82:25:95:19:3f:3c:e3:32:f8:cc:14:00:7d:a7:cc:c2:04:6c: 51:84:86:ff:15:a7:00:d9:fd:3b:59:c1:35:9d:bf:50:b1:71: 55:ee:7f:ab:8d:ca:7c:ac:08:06:91:e7:08:3c:1f:c1:90:87: b8:a4:82:e7:b3:4b:93:33:f4:b4:07:eb:72:80:1f:fe:5d:71: 32:e2:80:fe:9b:58:f2:35:a0:8d:b3:c8:ab:6d:68:b1:39:15: af:48:58:dd:d5:23:8d:01:33:f3:06:1d:08:0f:f5:54:e2:db: 0f:57:60:ef:c8:ae:a6:55:28:b3:46:ef:14:a2:7d:3f:0f:98: 91:03:51:30:0c:34:6e:a0:b7:fb:79:1c:43:19:48:0c:c1:7b: 47:d0:12:b4:f9:13:b3:a2:f7:67:64:7f:30:db:4e:b9:0d:1b: be:17:13:d8:89:35:5c:0a:00:ea:64:68:ac:e7:c3:49:b8:35: 65:ce:1e:45:7a:71:ed:61:19:aa:c1:26:c9:5b:97:2c:61:d9: 36:7e:27:33:ea:55:85:0b:b4:d9:ad:2d:c1:d0:69:c9:91:ad: 81:13:f1:27 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICGAMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzY1 QkY1N0JEQzlCNUJFN0Q5N0UwRDY1QUE0MjIyQjFFRkFBQkVBQTAeFw0yNjAyMTIw ODE3MDVaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDBENjk0RkQ4Qzg1M0VD OEUzMzlBOTEwNkI2N0M1QzhGQTFGODExMjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCmy/tan4Io9LUfB5MAAPjtR8ySUgPQCOOKYiAyQW6FBIVY9t4d Gy9rxRfcER85X3lDOhT18Y2PFGtY6eNQoyD5YAphgncnP2HhPm3PiAli1r5x6lI6 PCUHbA7PvJ1F6+w6BOgxSpL+z9WWKf3D5+xNQ5ZakN2pXHlOAKTtVFoGADW1i9/u Ret9fz+DQ2CyEkqUrAywb39wTKw/bVQ4QGpsJ2Y5T41VwMehlRopoRDVoC8sd2Ej jwScJN6VJNgHXn0s6Kz69mX3RPyWn0hwAZT51th+qoNgYcl8XsaxmtJD6JRIaKsL e50jqCB3KePkQSJirWCAb5E1hZ8OzcOnoYR7AgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUDWlP2MhT7I4zmpEGtnxcj6H4ESIwHwYDVR0jBBgwFoAUxlv1e9ybW+fZfg1l qkIise+qvqowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEz L3hsdjFlOXliVy1mWmZnMWxxa0lpc2UtcXZxby5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAveGx2MWU5eWJXLWZaZmcxbHFrSWlzZS1xdnFvLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEzL0RXbFAyTWhUN0k0em1w RUd0bnhjajZINEVTSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJ8KpAwDQYJKoZIhvcNAQELBQADggEBAEMXMu9QDTnXcqvyR1Orgs6VyphRfOeq ThtRMOy2OQcww+fbRoIllRk/POMy+MwUAH2nzMIEbFGEhv8VpwDZ/TtZwTWdv1Cx cVXuf6uNynysCAaR5wg8H8GQh7ikguezS5Mz9LQH63KAH/5dcTLigP6bWPI1oI2z yKttaLE5Fa9IWN3VI40BM/MGHQgP9VTi2w9XYO/IrqZVKLNG7xSifT8PmJEDUTAM NG6gt/t5HEMZSAzBe0fQErT5E7Oi92dkfzDbTrkNG74XE9iJNVwKAOpkaKznw0m4 NWXOHkV6ce1hGarBJslblyxh2TZ+JzPqVYULtNmtLcHQacmRrYET8Sc= -----END CERTIFICATE-----Generated at Mon Mar 2 21:04:39 2026 by rpki-client