$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/861/m_ku9b95rIZvTjlyKpvktiE2mmU.roa File: m_ku9b95rIZvTjlyKpvktiE2mmU.roa (raw, json) Hash identifier: YCQPNj+dQ0XjKbvOY82q9utZ7Q/OXrj8oy8Hb+gPrIY= Subject key identifier: 9B:F9:2E:F5:BF:79:AC:86:6F:4E:39:72:2A:9B:E4:B6:21:36:9A:65 Certificate issuer: /CN=615BCE8F7F8A83DB939AE0F42FA05413B285181E Certificate serial: 1AC8 Authority key identifier: 61:5B:CE:8F:7F:8A:83:DB:93:9A:E0:F4:2F:A0:54:13:B2:85:18:1E Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/YVvOj3-Kg9uTmuD0L6BUE7KFGB4.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/861/m_ku9b95rIZvTjlyKpvktiE2mmU.roa Signing time: Mon 26 Jan 2026 06:53:32 +0000 ROA not before: Mon 26 Jan 2026 06:53:32 +0000 ROA not after: Sat 09 Jan 2027 08:23:18 +0000 asID: 59043 IP address blocks: 103.56.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/861/YVvOj3-Kg9uTmuD0L6BUE7KFGB4.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/861/YVvOj3-Kg9uTmuD0L6BUE7KFGB4.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/YVvOj3-Kg9uTmuD0L6BUE7KFGB4.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Mar 2026 05:59:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6856 (0x1ac8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=615BCE8F7F8A83DB939AE0F42FA05413B285181E Validity Not Before: Jan 26 06:53:32 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=9BF92EF5BF79AC866F4E39722A9BE4B621369A65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:d1:99:fe:ac:18:ac:08:99:77:96:50:ba:10: 42:50:7d:36:2e:1f:d4:a7:4d:6b:fa:4b:73:00:e4: 49:56:d5:22:c4:ca:87:88:b1:7f:bf:e0:6e:31:1e: 91:fb:a8:07:7f:ec:70:7b:3d:0c:33:aa:fd:7b:3b: 06:2a:cc:ba:18:2e:1e:36:c5:7b:93:a1:bd:eb:69: 76:bd:03:2a:82:b5:10:97:02:3a:05:83:88:53:e9: 02:37:9f:87:fa:9f:cb:4e:c2:38:e4:34:81:da:51: b7:ae:c4:34:6f:bd:23:55:2c:2e:9b:a5:57:a2:c3: 00:b9:4e:4c:56:20:cb:3a:fa:4d:a3:25:9e:23:ea: 3c:aa:c1:fe:7f:ae:8b:1c:0b:8e:0b:04:1d:e2:e6: 4a:07:9e:73:aa:04:6a:36:8b:da:3d:45:b4:05:38: 85:64:b9:ab:95:3c:8f:01:88:b5:fb:4b:61:35:b3: 71:94:05:a5:7a:a2:16:a4:c3:7b:77:fa:1d:11:ce: b1:08:76:e9:20:ce:d5:08:99:c4:9d:f1:d6:a7:0e: 5a:f9:35:af:c8:95:15:ea:db:b5:2d:88:08:cf:f6: 03:4e:f7:6a:3a:5f:af:7e:38:e3:28:37:26:83:cd: 40:d2:61:35:36:21:d1:9a:d0:33:df:cf:5e:9e:3a: 40:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:F9:2E:F5:BF:79:AC:86:6F:4E:39:72:2A:9B:E4:B6:21:36:9A:65 X509v3 Authority Key Identifier: keyid:61:5B:CE:8F:7F:8A:83:DB:93:9A:E0:F4:2F:A0:54:13:B2:85:18:1E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/861/YVvOj3-Kg9uTmuD0L6BUE7KFGB4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/YVvOj3-Kg9uTmuD0L6BUE7KFGB4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/861/m_ku9b95rIZvTjlyKpvktiE2mmU.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.56.186.0/24 Signature Algorithm: sha256WithRSAEncryption a0:f5:9c:0d:2e:28:1d:26:43:5b:15:1d:fe:8c:c1:25:a2:2c: b8:88:4f:28:b2:03:ed:8e:14:a4:d7:9e:cf:9d:f2:be:59:2b: 1f:53:19:5c:51:9f:4a:23:7a:2f:f3:ef:71:4d:b6:17:cf:0f: e8:0e:cc:60:ef:91:af:9f:17:bd:1b:44:28:c7:06:81:dd:04: 04:c4:d5:ee:15:a2:04:06:79:2b:a1:8b:7a:d1:e8:f8:a3:cc: 10:02:3e:64:44:fc:aa:14:28:83:e3:55:50:9a:06:77:71:87: 5c:8f:fb:92:a1:54:68:b4:83:55:db:86:8a:5a:df:f9:70:33: 3a:62:8b:42:21:a0:52:32:d7:f6:96:04:e1:37:0a:55:42:e5: 7e:81:81:19:e0:75:36:20:83:69:39:40:c6:a7:3e:33:48:0e: ea:08:07:e9:20:b7:7b:b1:02:94:53:d4:ca:d1:de:b0:33:10: 08:34:77:9f:3a:04:14:f1:a4:35:4a:7b:38:51:0e:c6:94:2e: 81:ff:cf:1f:fa:17:c2:b2:a4:74:e8:86:1c:f2:34:c3:35:11: 26:8d:97:dd:ca:08:4d:c1:60:eb:4f:2f:98:bd:d6:c0:25:ce: 1a:8f:2c:96:9f:fd:fa:ce:eb:3c:ee:ea:15:82:58:6f:8f:51: 52:ee:50:23 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICGsgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjE1 QkNFOEY3RjhBODNEQjkzOUFFMEY0MkZBMDU0MTNCMjg1MTgxRTAeFw0yNjAxMjYw NjUzMzJaFw0yNzAxMDkwODIzMThaMDMxMTAvBgNVBAMTKDlCRjkyRUY1QkY3OUFD ODY2RjRFMzk3MjJBOUJFNEI2MjEzNjlBNjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/0Zn+rBisCJl3llC6EEJQfTYuH9SnTWv6S3MA5ElW1SLEyoeI sX+/4G4xHpH7qAd/7HB7PQwzqv17OwYqzLoYLh42xXuTob3raXa9AyqCtRCXAjoF g4hT6QI3n4f6n8tOwjjkNIHaUbeuxDRvvSNVLC6bpVeiwwC5TkxWIMs6+k2jJZ4j 6jyqwf5/roscC44LBB3i5koHnnOqBGo2i9o9RbQFOIVkuauVPI8BiLX7S2E1s3GU BaV6ohakw3t3+h0RzrEIdukgztUImcSd8danDlr5Na/IlRXq27UtiAjP9gNO92o6 X69+OOMoNyaDzUDSYTU2IdGa0DPfz16eOkALAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUm/ku9b95rIZvTjlyKpvktiE2mmUwHwYDVR0jBBgwFoAUYVvOj3+Kg9uTmuD0 L6BUE7KFGB4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvODYx L1lWdk9qMy1LZzl1VG11RDBMNkJVRTdLRkdCNC5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvWVZ2T2ozLUtnOXVUbXVEMEw2QlVFN0tGR0I0LmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvODYxL21fa3U5Yjk1ckladlRq bHlLcHZrdGlFMm1tVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnOLowDQYJKoZIhvcNAQELBQADggEBAKD1nA0uKB0mQ1sVHf6MwSWiLLiITyiy A+2OFKTXns+d8r5ZKx9TGVxRn0ojei/z73FNthfPD+gOzGDvka+fF70bRCjHBoHd BATE1e4VogQGeSuhi3rR6PijzBACPmRE/KoUKIPjVVCaBndxh1yP+5KhVGi0g1Xb hopa3/lwMzpii0IhoFIy1/aWBOE3ClVC5X6BgRngdTYgg2k5QManPjNIDuoIB+kg t3uxApRT1MrR3rAzEAg0d586BBTxpDVKezhRDsaULoH/zx/6F8KypHTohhzyNMM1 ESaNl93KCE3BYOtPL5i91sAlzhqPLJaf/frO6zzu6hWCWG+PUVLuUCM= -----END CERTIFICATE-----Generated at Mon Mar 2 05:54:22 2026 by rpki-client