$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/861/gvqgf9X3F5lAkpyP9pMBz7_Af_s.roa File: gvqgf9X3F5lAkpyP9pMBz7_Af_s.roa (raw, json) Hash identifier: dbjoFl3negX/Dh4v0U17o5gnK9+/dHfkN3BeOndRto4= Subject key identifier: 82:FA:A0:7F:D5:F7:17:99:40:92:9C:8F:F6:93:01:CF:BF:C0:7F:FB Certificate issuer: /CN=615BCE8F7F8A83DB939AE0F42FA05413B285181E Certificate serial: 1ACA Authority key identifier: 61:5B:CE:8F:7F:8A:83:DB:93:9A:E0:F4:2F:A0:54:13:B2:85:18:1E Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/YVvOj3-Kg9uTmuD0L6BUE7KFGB4.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/861/gvqgf9X3F5lAkpyP9pMBz7_Af_s.roa Signing time: Mon 26 Jan 2026 06:53:33 +0000 ROA not before: Mon 26 Jan 2026 06:53:33 +0000 ROA not after: Sat 09 Jan 2027 08:23:18 +0000 asID: 59043 IP address blocks: 103.56.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/861/YVvOj3-Kg9uTmuD0L6BUE7KFGB4.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/861/YVvOj3-Kg9uTmuD0L6BUE7KFGB4.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/YVvOj3-Kg9uTmuD0L6BUE7KFGB4.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Mar 2026 05:59:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6858 (0x1aca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=615BCE8F7F8A83DB939AE0F42FA05413B285181E Validity Not Before: Jan 26 06:53:33 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=82FAA07FD5F7179940929C8FF69301CFBFC07FFB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:a4:3b:3f:ca:75:8e:1e:cd:04:28:5e:1c:cd: 41:2c:70:55:2e:18:de:ab:4d:17:99:0f:df:7e:25: d3:f4:8a:e6:e5:45:ed:6c:f8:41:29:a9:c5:39:e8: 46:db:64:7e:b5:4c:37:d0:01:c0:69:c2:20:81:78: 14:1c:67:fa:b3:b0:37:80:43:85:f4:52:3a:3d:9f: cc:9a:1a:0c:94:e2:f0:57:84:8f:50:88:31:03:56: 7e:7a:38:35:39:8c:ab:da:98:42:a5:10:9d:6d:37: ba:7a:d3:e8:e9:0b:3e:e4:5c:ae:ec:06:80:bf:7b: 5a:0c:92:b7:80:a4:59:2d:44:6d:99:00:1b:45:f0: aa:de:94:da:c3:e2:aa:c5:51:24:f8:5a:42:b9:4b: 96:4f:0e:9f:f3:0a:c3:56:66:d9:7e:90:7b:94:18: e2:3b:a0:9e:71:3d:16:6a:95:e3:d1:1d:88:96:82: b7:81:0c:0d:2f:49:ff:a8:32:84:97:85:36:b7:8c: 16:41:47:5b:51:4a:13:d1:05:02:20:dc:28:9f:ac: 00:ee:33:dc:f5:b8:ef:63:df:63:44:db:96:d5:ad: f2:0a:ec:c3:2d:ca:a4:ed:45:e1:fd:36:3b:56:6a: 08:5e:70:72:56:47:2b:81:4b:9f:b6:92:22:33:58: 74:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:FA:A0:7F:D5:F7:17:99:40:92:9C:8F:F6:93:01:CF:BF:C0:7F:FB X509v3 Authority Key Identifier: keyid:61:5B:CE:8F:7F:8A:83:DB:93:9A:E0:F4:2F:A0:54:13:B2:85:18:1E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/861/YVvOj3-Kg9uTmuD0L6BUE7KFGB4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/YVvOj3-Kg9uTmuD0L6BUE7KFGB4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/861/gvqgf9X3F5lAkpyP9pMBz7_Af_s.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.56.187.0/24 Signature Algorithm: sha256WithRSAEncryption a1:4b:d4:fa:28:bb:27:c7:77:2c:8f:ae:01:f0:5a:86:f5:ff: 5f:2e:c7:61:31:f9:c8:5b:bd:84:a7:03:a8:9e:0c:98:fe:99: 91:35:24:b7:8c:39:c1:d5:0e:2f:b9:10:11:2d:d2:9d:dd:ea: 65:ef:87:e6:86:72:59:da:44:78:60:e5:e8:57:53:4a:4d:cb: e2:95:8e:40:1a:d3:ab:95:22:cc:49:7b:8b:d0:11:9f:60:6a: 11:98:7b:a1:15:61:c3:56:92:36:9c:db:38:2b:b9:43:98:64: ab:a3:ed:11:8b:eb:6e:b6:04:f3:a9:56:e0:15:ad:ad:bc:91: bb:83:7b:40:03:dd:19:ce:05:42:19:36:f1:96:11:e8:e1:dc: 91:3f:df:0c:f3:8c:ce:06:42:17:58:2e:b4:62:ec:42:2e:2e: a1:b4:0c:4d:78:87:f4:74:da:2a:a7:e3:a0:3e:70:5b:03:72: 27:e1:8f:98:30:95:dc:55:9d:7b:8f:1a:1d:ac:02:5d:57:ee: 9a:ca:35:5f:26:27:ca:bb:97:9b:d5:23:1d:0d:a7:ee:65:7a: 32:08:8d:45:4e:1f:e6:9c:b6:43:2f:04:a4:21:f4:76:a7:3d: 8b:10:ed:03:bc:bf:5a:a2:94:f6:67:b7:51:ca:f7:bc:78:68: 87:be:c3:6d -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICGsowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjE1 QkNFOEY3RjhBODNEQjkzOUFFMEY0MkZBMDU0MTNCMjg1MTgxRTAeFw0yNjAxMjYw NjUzMzNaFw0yNzAxMDkwODIzMThaMDMxMTAvBgNVBAMTKDgyRkFBMDdGRDVGNzE3 OTk0MDkyOUM4RkY2OTMwMUNGQkZDMDdGRkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD8pDs/ynWOHs0EKF4czUEscFUuGN6rTReZD99+JdP0iublRe1s +EEpqcU56EbbZH61TDfQAcBpwiCBeBQcZ/qzsDeAQ4X0Ujo9n8yaGgyU4vBXhI9Q iDEDVn56ODU5jKvamEKlEJ1tN7p60+jpCz7kXK7sBoC/e1oMkreApFktRG2ZABtF 8KrelNrD4qrFUST4WkK5S5ZPDp/zCsNWZtl+kHuUGOI7oJ5xPRZqlePRHYiWgreB DA0vSf+oMoSXhTa3jBZBR1tRShPRBQIg3CifrADuM9z1uO9j32NE25bVrfIK7MMt yqTtReH9NjtWaghecHJWRyuBS5+2kiIzWHQlAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUgvqgf9X3F5lAkpyP9pMBz7/Af/swHwYDVR0jBBgwFoAUYVvOj3+Kg9uTmuD0 L6BUE7KFGB4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvODYx L1lWdk9qMy1LZzl1VG11RDBMNkJVRTdLRkdCNC5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvWVZ2T2ozLUtnOXVUbXVEMEw2QlVFN0tGR0I0LmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvODYxL2d2cWdmOVgzRjVsQWtw eVA5cE1CejdfQWZfcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnOLswDQYJKoZIhvcNAQELBQADggEBAKFL1PoouyfHdyyPrgHwWob1/18ux2Ex +chbvYSnA6ieDJj+mZE1JLeMOcHVDi+5EBEt0p3d6mXvh+aGclnaRHhg5ehXU0pN y+KVjkAa06uVIsxJe4vQEZ9gahGYe6EVYcNWkjac2zgruUOYZKuj7RGL6262BPOp VuAVra28kbuDe0AD3RnOBUIZNvGWEejh3JE/3wzzjM4GQhdYLrRi7EIuLqG0DE14 h/R02iqn46A+cFsDcifhj5gwldxVnXuPGh2sAl1X7prKNV8mJ8q7l5vVIx0Np+5l ejIIjUVOH+actkMvBKQh9HanPYsQ7QO8v1qilPZnt1HK97x4aIe+w20= -----END CERTIFICATE-----Generated at Mon Mar 2 05:54:25 2026 by rpki-client