$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094488822684581890/0/3231312e3130312e3233322e302f32312d3234203d3e203538353139.roa File: 3231312e3130312e3233322e302f32312d3234203d3e203538353139.roa (raw, json) Hash identifier: iVNiE9bxsTL+DkppA0g1irY1nuYRs9Q3qr7qbEuyfxk= Subject key identifier: B4:F4:03:EE:E9:E8:EB:41:0D:F2:F7:08:CC:53:AF:E1:A0:28:0F:93 Certificate issuer: /CN=AE4AD27D33F9D64B7FA2184C6C030A7B8091E9E9 Certificate serial: 40F8C1165ABE3B9B76AF4C045EBB2A0B02C910F5 Authority key identifier: AE:4A:D2:7D:33:F9:D6:4B:7F:A2:18:4C:6C:03:0A:7B:80:91:E9:E9 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE4AD27D33F9D64B7FA2184C6C030A7B8091E9E9.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094488822684581890/0/3231312e3130312e3233322e302f32312d3234203d3e203538353139.roa Signing time: Thu 09 Apr 2026 05:09:21 +0000 ROA not before: Thu 09 Apr 2026 05:04:21 +0000 ROA not after: Thu 08 Apr 2027 05:09:21 +0000 asID: 58519 IP address blocks: 211.101.232.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094488822684581890/0/AE4AD27D33F9D64B7FA2184C6C030A7B8091E9E9.crl rsync://rpki-rps.cnnic.cn/repo/A1094488822684581890/0/AE4AD27D33F9D64B7FA2184C6C030A7B8091E9E9.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE4AD27D33F9D64B7FA2184C6C030A7B8091E9E9.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 Apr 2026 22:46:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:f8:c1:16:5a:be:3b:9b:76:af:4c:04:5e:bb:2a:0b:02:c9:10:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AE4AD27D33F9D64B7FA2184C6C030A7B8091E9E9 Validity Not Before: Apr 9 05:04:21 2026 GMT Not After : Apr 8 05:09:21 2027 GMT Subject: CN=B4F403EEE9E8EB410DF2F708CC53AFE1A0280F93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:4a:99:91:eb:54:7d:e7:83:61:3a:82:9f:67: 97:40:3d:6e:79:b8:55:34:5f:de:fc:8f:67:3e:fb: 95:de:98:53:98:fb:ef:f9:ab:a2:2d:04:08:1c:db: f0:7a:22:15:db:24:0e:a1:e1:b5:0c:cf:82:c2:7b: cb:94:6f:c8:75:c6:80:fb:ba:c9:2a:f0:4e:7c:a1: de:b1:e4:1e:67:ff:1a:d0:49:b2:41:a9:42:23:04: f9:98:59:92:90:b2:ba:b0:a5:ee:cb:ca:d8:db:a3: 2b:73:9e:ce:53:41:a0:12:53:2a:c7:42:03:9e:8c: 69:e5:48:82:43:a5:fd:8f:e4:bb:4b:6e:86:06:9b: 75:a1:ba:37:42:61:8b:b7:50:5a:b1:70:7b:b4:95: 8b:9e:dc:91:b5:b4:b7:31:6c:ec:05:21:47:87:9f: 53:2e:3b:4b:83:e7:72:51:92:1b:33:87:b2:c1:5c: 00:e5:ee:67:99:0b:a8:40:fe:78:ca:d5:2e:4d:67: b1:09:bc:ff:0e:b5:1f:e8:30:6a:03:72:72:b0:b3: fc:7c:3c:e8:ec:5e:79:b3:93:8b:76:f2:63:3c:7b: ea:80:15:95:96:92:38:3d:a2:ca:8d:fa:03:47:eb: 75:6a:e4:97:db:22:e6:da:c6:70:51:7c:2e:96:25: 6c:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:F4:03:EE:E9:E8:EB:41:0D:F2:F7:08:CC:53:AF:E1:A0:28:0F:93 X509v3 Authority Key Identifier: keyid:AE:4A:D2:7D:33:F9:D6:4B:7F:A2:18:4C:6C:03:0A:7B:80:91:E9:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094488822684581890/0/AE4AD27D33F9D64B7FA2184C6C030A7B8091E9E9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE4AD27D33F9D64B7FA2184C6C030A7B8091E9E9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094488822684581890/0/3231312e3130312e3233322e302f32312d3234203d3e203538353139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 211.101.232.0/21 Signature Algorithm: sha256WithRSAEncryption 04:85:3a:f5:27:13:71:f0:80:47:36:ef:de:f8:9c:c6:41:88: 1a:a8:40:ce:3b:d1:aa:7f:6d:cf:9d:48:90:cb:42:5f:89:75: db:df:c8:4c:9c:0b:79:85:67:eb:4b:67:05:8e:30:83:24:8a: 5f:30:43:28:d5:bf:d4:e8:01:51:97:3a:91:24:b0:40:1e:2c: 47:0a:5b:25:4e:14:2e:e1:3e:fc:9c:2b:13:2e:3d:d2:a0:f2: 3a:9d:37:6a:a0:eb:76:8d:a9:a1:fa:5a:8e:33:19:8f:3d:d1: 39:62:5a:7b:1c:de:bd:90:e9:80:3f:0b:c7:cb:c9:bd:f9:ae: 34:42:9b:58:2a:cc:3c:a4:39:10:d6:1d:9d:3a:a9:cb:ab:02: ee:9c:a5:05:6c:62:54:0a:b1:4e:59:c9:51:97:22:a1:ee:0f: a1:d7:61:37:7a:ff:2b:99:c1:96:ae:a2:64:35:33:4f:d5:83: cf:5c:72:20:3b:80:25:e1:87:ad:2c:87:3a:a7:66:38:4a:5f: 0a:3b:aa:56:bc:3a:a5:6c:52:5a:88:b4:1d:e7:76:b9:91:3c: 71:4e:82:2f:e4:88:3f:5e:a9:6d:5f:6d:ba:64:47:b2:cf:ff: 33:c6:c9:b5:51:92:06:61:17:83:b2:89:0c:6f:e2:fe:20:2c: e6:44:cf:81 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUQPjBFlq+O5t2r0wEXrsqCwLJEPUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUU0QUQyN0QzM0Y5RDY0QjdGQTIxODRDNkMwMzBBN0I4 MDkxRTlFOTAeFw0yNjA0MDkwNTA0MjFaFw0yNzA0MDgwNTA5MjFaMDMxMTAvBgNV BAMTKEI0RjQwM0VFRTlFOEVCNDEwREYyRjcwOENDNTNBRkUxQTAyODBGOTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpSpmR61R954NhOoKfZ5dAPW55 uFU0X978j2c++5XemFOY++/5q6ItBAgc2/B6IhXbJA6h4bUMz4LCe8uUb8h1xoD7 uskq8E58od6x5B5n/xrQSbJBqUIjBPmYWZKQsrqwpe7Lytjboytzns5TQaASUyrH QgOejGnlSIJDpf2P5LtLboYGm3WhujdCYYu3UFqxcHu0lYue3JG1tLcxbOwFIUeH n1MuO0uD53JRkhszh7LBXADl7meZC6hA/njK1S5NZ7EJvP8OtR/oMGoDcnKws/x8 POjsXnmzk4t28mM8e+qAFZWWkjg9osqN+gNH63Vq5JfbIubaxnBRfC6WJWyJAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUtPQD7uno60EN8vcIzFOv4aAoD5MwHwYDVR0j BBgwFoAUrkrSfTP51kt/ohhMbAMKe4CR6ekwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDQ4ODgyMjY4NDU4MTg5MC8wL0FFNEFEMjdEMzNGOUQ2NEI3RkEyMTg0QzZDMDMw QTdCODA5MUU5RTkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQUU0QUQyN0QzM0Y5RDY0QjdGQTIxODRDNkMwMzBBN0I4MDkxRTlFOS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTQ0ODg4MjI2ODQ1ODE4OTAvMC8zMjMxMzEyZTMx MzAzMTJlMzIzMzMyMmUzMDJmMzIzMTJkMzIzNDIwM2QzZTIwMzUzODM1MzEzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEA9Nl6DANBgkqhkiG9w0BAQsFAAOCAQEABIU69ScTcfCARzbv3vic xkGIGqhAzjvRqn9tz51IkMtCX4l129/ITJwLeYVn60tnBY4wgySKXzBDKNW/1OgB UZc6kSSwQB4sRwpbJU4ULuE+/JwrEy490qDyOp03aqDrdo2pofpajjMZjz3ROWJa exzevZDpgD8Lx8vJvfmuNEKbWCrMPKQ5ENYdnTqpy6sC7pylBWxiVAqxTlnJUZci oe4PoddhN3r/K5nBlq6iZDUzT9WDz1xyIDuAJeGHrSyHOqdmOEpfCjuqVrw6pWxS Woi0Hed2uZE8cU6CL+SIP16pbV9tumRHss//M8bJtVGSBmEXg7KJDG/i/iAs5kTP gQ== -----END CERTIFICATE-----Generated at Mon Apr 13 12:26:36 2026 by rpki-client