$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094808409447923715/0/3135322e3130342e3230382e302f32322d3232203d3e2039393339.roa File: 3135322e3130342e3230382e302f32322d3232203d3e2039393339.roa (raw, json) Hash identifier: I23wvM9SW4Dtd71hWbFLbV8qMJczKqHBQWTUVOiqKYs= Subject key identifier: 07:5A:F6:FF:AF:92:24:E2:BF:43:E9:13:82:F7:18:F1:03:29:73:A1 Certificate issuer: /CN=A26A131411EAF25D645F4C22903078A445B073F7 Certificate serial: 06C8662C2AA889E8D4A4B245F2CDD4AD025F8E6A Authority key identifier: A2:6A:13:14:11:EA:F2:5D:64:5F:4C:22:90:30:78:A4:45:B0:73:F7 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/A26A131411EAF25D645F4C22903078A445B073F7.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094808409447923715/0/3135322e3130342e3230382e302f32322d3232203d3e2039393339.roa Signing time: Fri 10 Apr 2026 07:48:44 +0000 ROA not before: Fri 10 Apr 2026 07:43:44 +0000 ROA not after: Fri 09 Apr 2027 07:48:44 +0000 asID: 9939 IP address blocks: 152.104.208.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094808409447923715/0/A26A131411EAF25D645F4C22903078A445B073F7.crl rsync://rpki-rps.cnnic.cn/repo/A1094808409447923715/0/A26A131411EAF25D645F4C22903078A445B073F7.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/A26A131411EAF25D645F4C22903078A445B073F7.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 08:55:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:c8:66:2c:2a:a8:89:e8:d4:a4:b2:45:f2:cd:d4:ad:02:5f:8e:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A26A131411EAF25D645F4C22903078A445B073F7 Validity Not Before: Apr 10 07:43:44 2026 GMT Not After : Apr 9 07:48:44 2027 GMT Subject: CN=075AF6FFAF9224E2BF43E91382F718F1032973A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:54:0d:aa:0b:ae:d9:4c:0f:71:79:76:d2:e9: 3a:5c:ca:bd:8e:1c:9b:1e:04:ea:d0:5c:69:81:79: 7d:dc:63:a7:07:13:da:4e:fd:47:a0:5c:31:5c:e1: 77:8d:d2:23:e2:2d:ed:d7:ad:d1:6c:10:94:19:fd: ba:2f:4a:8e:86:70:25:88:a0:56:f2:c0:a1:02:07: 22:85:4f:05:73:ff:07:e3:a4:b5:cd:18:6c:a3:c8: f2:9e:94:7d:6a:4c:06:81:de:e7:9b:e9:9b:23:bf: 34:18:29:d1:96:ce:ee:ac:ae:10:ee:60:25:17:ab: 24:4f:ef:ed:13:58:93:96:e1:bd:74:1c:66:c2:e4: a4:31:3c:88:85:c5:e1:7d:37:85:64:23:0b:77:1d: be:1d:cd:c1:f3:4c:2d:d3:d3:12:9d:ab:05:15:6e: 95:dd:62:29:5d:9e:18:92:ee:1c:b3:19:ef:3e:4a: d8:6d:50:80:79:94:40:3f:ac:fc:a4:eb:6a:78:16: 47:81:a0:57:d7:a9:30:3f:47:6d:57:fe:6c:d9:3a: 04:b7:1e:96:c1:cc:9e:bc:6d:ce:18:1b:0a:72:bd: 21:e0:bd:d3:69:ea:2a:07:3f:25:7d:d5:3b:0d:45: 65:b1:d9:67:24:29:fd:3c:e9:c2:09:b7:b6:0b:a7: cb:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:5A:F6:FF:AF:92:24:E2:BF:43:E9:13:82:F7:18:F1:03:29:73:A1 X509v3 Authority Key Identifier: keyid:A2:6A:13:14:11:EA:F2:5D:64:5F:4C:22:90:30:78:A4:45:B0:73:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094808409447923715/0/A26A131411EAF25D645F4C22903078A445B073F7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/A26A131411EAF25D645F4C22903078A445B073F7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094808409447923715/0/3135322e3130342e3230382e302f32322d3232203d3e2039393339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 152.104.208.0/22 Signature Algorithm: sha256WithRSAEncryption 4e:95:e8:c4:f2:26:23:18:b4:71:a0:39:8f:c5:48:5c:c4:a2: 12:a1:92:19:44:e9:41:48:7f:fd:40:b9:98:e0:bc:49:2a:2f: 7c:67:d9:40:6d:76:5c:23:64:fb:29:9c:14:df:b2:bd:5c:00: 0b:26:99:36:85:ee:5a:69:0e:bc:fe:80:2f:8a:d3:7a:4f:9b: 58:67:bc:a6:ea:7d:ec:c3:ed:fa:f4:f5:90:9a:1a:4d:b7:05: a3:f5:2c:33:76:ca:7b:22:2a:09:4a:87:d0:13:32:d9:3a:21: 79:c8:48:b8:a5:7e:12:1f:ce:83:c0:9e:5d:b7:89:89:34:a7: 3d:42:ca:99:48:23:79:66:38:e9:a7:e1:dd:ab:9d:bc:6d:9d: c6:60:7c:ab:fb:49:f0:0b:55:28:39:1e:aa:43:89:7e:e9:74: 0a:96:94:e0:9a:83:2e:f8:7d:43:f0:9d:3e:49:72:76:53:92: 7d:09:d2:60:df:32:28:69:1d:f2:ed:95:56:d3:7d:02:ed:3c: 27:cd:de:0d:c7:6d:ab:d7:86:cd:b1:5b:c4:e1:33:46:d6:c7: e9:ee:32:fb:78:91:fe:87:26:6d:9c:a6:00:8b:07:d5:84:34: 4a:86:7c:39:cf:29:df:d4:81:dc:4b:7e:8f:05:d6:77:ae:1b: 5e:7b:e1:b2 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUBshmLCqoiejUpLJF8s3UrQJfjmowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTI2QTEzMTQxMUVBRjI1RDY0NUY0QzIyOTAzMDc4QTQ0 NUIwNzNGNzAeFw0yNjA0MTAwNzQzNDRaFw0yNzA0MDkwNzQ4NDRaMDMxMTAvBgNV BAMTKDA3NUFGNkZGQUY5MjI0RTJCRjQzRTkxMzgyRjcxOEYxMDMyOTczQTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtVA2qC67ZTA9xeXbS6Tpcyr2O HJseBOrQXGmBeX3cY6cHE9pO/UegXDFc4XeN0iPiLe3XrdFsEJQZ/bovSo6GcCWI oFbywKECByKFTwVz/wfjpLXNGGyjyPKelH1qTAaB3ueb6ZsjvzQYKdGWzu6srhDu YCUXqyRP7+0TWJOW4b10HGbC5KQxPIiFxeF9N4VkIwt3Hb4dzcHzTC3T0xKdqwUV bpXdYildnhiS7hyzGe8+SthtUIB5lEA/rPyk62p4FkeBoFfXqTA/R21X/mzZOgS3 HpbBzJ68bc4YGwpyvSHgvdNp6ioHPyV91TsNRWWx2WckKf086cIJt7YLp8uRAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUB1r2/6+SJOK/Q+kTgvcY8QMpc6EwHwYDVR0j BBgwFoAUomoTFBHq8l1kX0wikDB4pEWwc/cwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDgwODQwOTQ0NzkyMzcxNS8wL0EyNkExMzE0MTFFQUYyNUQ2NDVGNEMyMjkwMzA3 OEE0NDVCMDczRjcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvQTI2QTEzMTQxMUVBRjI1RDY0NUY0QzIyOTAzMDc4QTQ0NUIwNzNGNy5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NDgwODQwOTQ0NzkyMzcxNS8wLzMxMzUzMjJlMzEz MDM0MmUzMjMwMzgyZTMwMmYzMjMyMmQzMjMyMjAzZDNlMjAzOTM5MzMzOS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEApho0DANBgkqhkiG9w0BAQsFAAOCAQEATpXoxPImIxi0caA5j8VIXMSi EqGSGUTpQUh//UC5mOC8SSovfGfZQG12XCNk+ymcFN+yvVwACyaZNoXuWmkOvP6A L4rTek+bWGe8pup97MPt+vT1kJoaTbcFo/UsM3bKeyIqCUqH0BMy2TohechIuKV+ Eh/Og8CeXbeJiTSnPULKmUgjeWY46afh3audvG2dxmB8q/tJ8AtVKDkeqkOJful0 CpaU4JqDLvh9Q/CdPklydlOSfQnSYN8yKGkd8u2VVtN9Au08J83eDcdtq9eGzbFb xOEzRtbH6e4y+3iR/ocmbZymAIsH1YQ0SoZ8Oc8p39SB3Et+jwXWd64bXnvhsg== -----END CERTIFICATE-----Generated at Mon Apr 13 15:19:24 2026 by rpki-client