$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1088651015181303810/0/3231392e3233322e33322e302f32312d3231203d3e2034383437.roa File: 3231392e3233322e33322e302f32312d3231203d3e2034383437.roa (raw, json) Hash identifier: 19OWcoaieBtLmTSPQYB3Qb8dIYvVSsw5E2tnoiH7Kx0= Subject key identifier: 9D:B7:26:5D:47:C8:20:29:D3:DB:50:A3:D6:F0:B1:DA:71:52:70:22 Certificate issuer: /CN=D5EF2A792166F94FBE33377E0239034ED2FC2F80 Certificate serial: 69ED1496B893F1E99C7B3F8309A3D084507C06A6 Authority key identifier: D5:EF:2A:79:21:66:F9:4F:BE:33:37:7E:02:39:03:4E:D2:FC:2F:80 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D5EF2A792166F94FBE33377E0239034ED2FC2F80.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1088651015181303810/0/3231392e3233322e33322e302f32312d3231203d3e2034383437.roa Signing time: Sun 19 Apr 2026 10:09:37 +0000 ROA not before: Sun 19 Apr 2026 10:04:37 +0000 ROA not after: Sun 18 Apr 2027 10:09:37 +0000 asID: 4847 IP address blocks: 219.232.32.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1088651015181303810/0/D5EF2A792166F94FBE33377E0239034ED2FC2F80.crl rsync://rpki-rps.cnnic.cn/repo/A1088651015181303810/0/D5EF2A792166F94FBE33377E0239034ED2FC2F80.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D5EF2A792166F94FBE33377E0239034ED2FC2F80.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Apr 2026 21:37:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:ed:14:96:b8:93:f1:e9:9c:7b:3f:83:09:a3:d0:84:50:7c:06:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D5EF2A792166F94FBE33377E0239034ED2FC2F80 Validity Not Before: Apr 19 10:04:37 2026 GMT Not After : Apr 18 10:09:37 2027 GMT Subject: CN=9DB7265D47C82029D3DB50A3D6F0B1DA71527022 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:d7:89:a6:49:4d:9d:d7:12:c2:ff:25:00:da: 91:31:9f:61:73:af:49:2d:ce:ed:dc:50:ce:a0:de: b6:c4:a6:52:fd:fb:4a:5c:e4:12:e1:64:c7:36:19: a7:02:3f:32:40:0b:05:a6:47:82:70:c0:e3:80:4d: 0c:65:db:a5:a4:18:ea:30:9b:17:ed:50:38:07:64: 6c:cb:c5:a3:5c:68:54:d4:01:1f:69:a6:0d:57:64: 93:6c:7f:fd:18:bf:e4:93:42:1a:cf:93:21:a0:b1: a6:e9:92:02:8c:b6:34:11:9a:cf:94:ae:5c:8a:c2: cb:48:0e:cb:a1:52:c0:27:ff:31:ff:42:e4:37:b4: 5b:a6:1c:70:71:37:c6:fa:95:24:30:4e:94:f9:c7: d1:78:90:eb:97:22:7a:4a:69:46:0f:bd:14:49:1a: ec:09:d2:ef:4f:9c:99:87:7d:94:a5:44:15:31:ba: 44:83:07:52:0d:95:e8:c7:4f:94:e2:b0:d4:55:ab: ba:4c:d5:d2:c0:ee:ac:d1:a0:31:60:8e:39:26:99: 79:ff:bc:5f:11:25:5f:60:8c:67:b0:39:a5:ca:c3: 4a:81:97:2e:52:ea:94:89:11:c3:03:de:03:83:49: c5:8b:91:17:a8:35:19:84:e7:c4:b7:a5:84:75:ba: 9f:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:B7:26:5D:47:C8:20:29:D3:DB:50:A3:D6:F0:B1:DA:71:52:70:22 X509v3 Authority Key Identifier: keyid:D5:EF:2A:79:21:66:F9:4F:BE:33:37:7E:02:39:03:4E:D2:FC:2F:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1088651015181303810/0/D5EF2A792166F94FBE33377E0239034ED2FC2F80.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D5EF2A792166F94FBE33377E0239034ED2FC2F80.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1088651015181303810/0/3231392e3233322e33322e302f32312d3231203d3e2034383437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 219.232.32.0/21 Signature Algorithm: sha256WithRSAEncryption 44:e9:f5:14:74:d2:ce:e6:a1:c1:6f:7f:24:88:95:64:43:15: 9f:2a:66:cc:51:14:df:d0:7e:08:01:bd:a2:fd:d2:66:a5:f7: 62:58:e9:0e:e1:9b:11:ab:11:c2:e0:ff:e5:3b:a8:76:00:86: fc:e6:18:ac:9d:93:9e:9c:08:1b:3a:87:ed:96:3d:16:10:b2: 65:d8:56:37:5e:37:a6:a9:94:3a:b3:67:07:5d:c7:7a:80:be: 1a:bf:6e:fb:a5:3e:77:48:ef:ad:52:a2:69:35:16:be:8d:2e: 31:52:df:23:81:ac:87:ba:df:37:3b:ce:d2:e5:e5:bf:2c:78: 57:e1:ce:66:01:56:97:2a:c9:f8:42:10:dd:9a:93:3c:70:e4: ef:85:91:d1:21:09:1b:2d:49:04:d4:2f:d6:40:3f:71:9f:9c: 06:c7:b7:0d:29:39:b7:00:44:5b:b8:c6:72:bc:ca:34:07:e4: 65:d1:25:0d:00:4a:18:b5:32:af:1a:4b:73:3d:32:fa:02:8b: 8a:76:2c:55:3b:a1:c0:26:12:80:8d:80:95:2d:a3:5b:6e:56: fc:41:c9:79:50:4e:59:22:8f:dd:1e:1a:26:20:b6:2e:68:5a: 00:a6:f8:e2:24:a4:f9:c2:34:5c:39:74:b5:b4:77:d8:30:d0: ae:1e:73:5c -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUae0UlriT8emcez+DCaPQhFB8BqYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDVFRjJBNzkyMTY2Rjk0RkJFMzMzNzdFMDIzOTAzNEVE MkZDMkY4MDAeFw0yNjA0MTkxMDA0MzdaFw0yNzA0MTgxMDA5MzdaMDMxMTAvBgNV BAMTKDlEQjcyNjVENDdDODIwMjlEM0RCNTBBM0Q2RjBCMURBNzE1MjcwMjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCI14mmSU2d1xLC/yUA2pExn2Fz r0ktzu3cUM6g3rbEplL9+0pc5BLhZMc2GacCPzJACwWmR4JwwOOATQxl26WkGOow mxftUDgHZGzLxaNcaFTUAR9ppg1XZJNsf/0Yv+STQhrPkyGgsabpkgKMtjQRms+U rlyKwstIDsuhUsAn/zH/QuQ3tFumHHBxN8b6lSQwTpT5x9F4kOuXInpKaUYPvRRJ GuwJ0u9PnJmHfZSlRBUxukSDB1INlejHT5TisNRVq7pM1dLA7qzRoDFgjjkmmXn/ vF8RJV9gjGewOaXKw0qBly5S6pSJEcMD3gODScWLkReoNRmE58S3pYR1up/LAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUnbcmXUfIICnT21Cj1vCx2nFScCIwHwYDVR0j BBgwFoAU1e8qeSFm+U++Mzd+AjkDTtL8L4AwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA4 ODY1MTAxNTE4MTMwMzgxMC8wL0Q1RUYyQTc5MjE2NkY5NEZCRTMzMzc3RTAyMzkw MzRFRDJGQzJGODAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRDVFRjJBNzkyMTY2Rjk0RkJFMzMzNzdFMDIzOTAzNEVEMkZDMkY4MC5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDg4NjUxMDE1MTgxMzAzODEwLzAvMzIzMTM5MmUzMjMz MzIyZTMzMzIyZTMwMmYzMjMxMmQzMjMxMjAzZDNlMjAzNDM4MzQzNy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEA9voIDANBgkqhkiG9w0BAQsFAAOCAQEAROn1FHTSzuahwW9/JIiVZEMVnypm zFEU39B+CAG9ov3SZqX3YljpDuGbEasRwuD/5TuodgCG/OYYrJ2TnpwIGzqH7ZY9 FhCyZdhWN143pqmUOrNnB13HeoC+Gr9u+6U+d0jvrVKiaTUWvo0uMVLfI4Gsh7rf NzvO0uXlvyx4V+HOZgFWlyrJ+EIQ3ZqTPHDk74WR0SEJGy1JBNQv1kA/cZ+cBse3 DSk5twBEW7jGcrzKNAfkZdElDQBKGLUyrxpLcz0y+gKLinYsVTuhwCYSgI2AlS2j W25W/EHJeVBOWSKP3R4aJiC2LmhaAKb44iSk+cI0XDl0tbR32DDQrh5zXA== -----END CERTIFICATE-----Generated at Mon Apr 27 13:46:37 2026 by rpki-client