$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094808409447923715/1/3231382e39372e3136302e302f32302d3230203d3e2039393339.roa File: 3231382e39372e3136302e302f32302d3230203d3e2039393339.roa (raw, json) Hash identifier: o3TjiUZNVyrVXjI2HiIadR4I4RmHSIDY+Hq9fYkNR5Q= Subject key identifier: 0E:87:D9:76:3B:31:1A:3B:AE:1D:D5:5F:59:CD:48:70:D5:61:DD:62 Certificate issuer: /CN=CEE0FB0A5E4DA9AC7D78C5FC8F03D9AB23BFC3F5 Certificate serial: 169BEB82D0735EC4FD8079EB42F99CC93C4AFD42 Authority key identifier: CE:E0:FB:0A:5E:4D:A9:AC:7D:78:C5:FC:8F:03:D9:AB:23:BF:C3:F5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CEE0FB0A5E4DA9AC7D78C5FC8F03D9AB23BFC3F5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094808409447923715/1/3231382e39372e3136302e302f32302d3230203d3e2039393339.roa Signing time: Fri 10 Apr 2026 07:48:44 +0000 ROA not before: Fri 10 Apr 2026 07:43:44 +0000 ROA not after: Fri 09 Apr 2027 07:48:44 +0000 asID: 9939 IP address blocks: 218.97.160.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094808409447923715/1/CEE0FB0A5E4DA9AC7D78C5FC8F03D9AB23BFC3F5.crl rsync://rpki-rps.cnnic.cn/repo/A1094808409447923715/1/CEE0FB0A5E4DA9AC7D78C5FC8F03D9AB23BFC3F5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CEE0FB0A5E4DA9AC7D78C5FC8F03D9AB23BFC3F5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 05:09:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:9b:eb:82:d0:73:5e:c4:fd:80:79:eb:42:f9:9c:c9:3c:4a:fd:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CEE0FB0A5E4DA9AC7D78C5FC8F03D9AB23BFC3F5 Validity Not Before: Apr 10 07:43:44 2026 GMT Not After : Apr 9 07:48:44 2027 GMT Subject: CN=0E87D9763B311A3BAE1DD55F59CD4870D561DD62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:f3:cf:4b:ef:77:ec:08:bd:c5:36:7c:b6:66: ff:bb:be:9b:8f:fc:f1:ff:85:a6:a9:2b:3e:dd:c4: d6:11:34:23:cb:35:6e:28:70:6e:5c:12:d2:af:07: 35:b0:4b:ca:35:64:a5:88:91:d9:68:9f:49:3b:84: 06:9f:14:11:01:8a:45:cd:bd:63:ef:1d:a5:56:d9: f1:28:57:7a:ec:6e:de:99:31:b8:b4:9e:bb:97:1c: 98:2d:b4:22:a4:7a:9a:53:64:8b:a7:ad:f4:59:ec: 9a:16:cd:fb:a2:87:20:c8:2b:54:56:79:4e:e3:df: dc:e7:41:cc:13:55:d0:75:e7:e0:69:d7:e6:8f:65: 83:a6:6f:f6:a9:73:c4:62:e5:5f:a2:b6:ba:e4:55: 5c:f8:97:b1:c7:6c:83:ba:7c:e1:eb:52:94:db:3d: 90:c0:9f:c5:c8:af:d1:08:ac:c8:b9:73:29:af:07: 3b:78:48:c9:20:90:e1:dd:dc:6e:27:7c:d9:6a:7a: 1b:f8:85:fd:aa:8d:53:7f:8b:2d:9e:71:e6:16:45: 48:86:36:a7:2f:b5:73:ee:d9:f9:89:e4:ec:e0:94: 52:89:6e:03:c1:61:d5:0e:c6:69:60:8e:c4:e5:97: 55:a1:14:38:36:4c:b6:ef:20:c0:f8:8c:9e:db:5f: b4:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:87:D9:76:3B:31:1A:3B:AE:1D:D5:5F:59:CD:48:70:D5:61:DD:62 X509v3 Authority Key Identifier: keyid:CE:E0:FB:0A:5E:4D:A9:AC:7D:78:C5:FC:8F:03:D9:AB:23:BF:C3:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094808409447923715/1/CEE0FB0A5E4DA9AC7D78C5FC8F03D9AB23BFC3F5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CEE0FB0A5E4DA9AC7D78C5FC8F03D9AB23BFC3F5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094808409447923715/1/3231382e39372e3136302e302f32302d3230203d3e2039393339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 218.97.160.0/20 Signature Algorithm: sha256WithRSAEncryption a3:58:16:57:20:ae:6b:d0:a4:40:67:60:09:b8:ff:75:63:26: 43:45:81:f0:8f:8f:0a:b2:34:19:d5:51:38:2b:56:54:d7:39: 91:8b:a7:28:cf:37:47:13:a7:a1:25:b7:a7:49:ef:ef:6a:4b: 22:59:4d:97:90:94:90:0c:ef:37:84:de:e2:af:6a:ac:a5:98: 1b:6e:54:dd:8b:b8:cf:ab:ab:7e:29:dc:46:8c:d7:83:93:10: bc:f9:9d:0c:ce:e7:1b:33:5c:ca:d0:62:18:5a:3a:43:d2:8f: 81:7c:56:90:46:fa:85:d5:0b:f3:46:3c:81:30:43:b9:bb:42: c8:41:c9:6b:6e:b2:98:cc:11:6e:96:b5:db:ba:e2:39:12:59: af:14:8a:6b:74:14:c9:a4:87:d4:d3:52:0a:2b:bb:94:c7:05: f1:81:77:8b:d4:c7:45:22:38:1c:92:46:a2:22:4d:c4:85:fe: 20:9d:77:62:10:88:af:40:a1:96:a7:56:95:fe:45:6f:16:0e: cb:4a:d9:e2:87:8b:95:40:c6:05:c7:14:be:be:07:90:2d:e5: 71:1e:52:13:bd:10:8d:6a:c2:ee:a5:a9:32:ca:3d:7c:0c:bf: cc:ce:04:e9:fc:ff:78:28:31:72:3d:d2:b1:b6:23:d9:ff:65: 9f:b1:aa:09 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUFpvrgtBzXsT9gHnrQvmcyTxK/UIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0VFMEZCMEE1RTREQTlBQzdENzhDNUZDOEYwM0Q5QUIy M0JGQzNGNTAeFw0yNjA0MTAwNzQzNDRaFw0yNzA0MDkwNzQ4NDRaMDMxMTAvBgNV BAMTKDBFODdEOTc2M0IzMTFBM0JBRTFERDU1RjU5Q0Q0ODcwRDU2MURENjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDI889L73fsCL3FNny2Zv+7vpuP /PH/haapKz7dxNYRNCPLNW4ocG5cEtKvBzWwS8o1ZKWIkdlon0k7hAafFBEBikXN vWPvHaVW2fEoV3rsbt6ZMbi0nruXHJgttCKkeppTZIunrfRZ7JoWzfuihyDIK1RW eU7j39znQcwTVdB15+Bp1+aPZYOmb/apc8Ri5V+itrrkVVz4l7HHbIO6fOHrUpTb PZDAn8XIr9EIrMi5cymvBzt4SMkgkOHd3G4nfNlqehv4hf2qjVN/iy2eceYWRUiG NqcvtXPu2fmJ5OzglFKJbgPBYdUOxmlgjsTll1WhFDg2TLbvIMD4jJ7bX7T/AgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUDofZdjsxGjuuHdVfWc1IcNVh3WIwHwYDVR0j BBgwFoAUzuD7Cl5Nqax9eMX8jwPZqyO/w/UwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDgwODQwOTQ0NzkyMzcxNS8xL0NFRTBGQjBBNUU0REE5QUM3RDc4QzVGQzhGMDNE OUFCMjNCRkMzRjUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0VFMEZCMEE1RTREQTlBQzdENzhDNUZDOEYwM0Q5QUIyM0JGQzNGNS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk0ODA4NDA5NDQ3OTIzNzE1LzEvMzIzMTM4MmUzOTM3 MmUzMTM2MzAyZTMwMmYzMjMwMmQzMjMwMjAzZDNlMjAzOTM5MzMzOS5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBNphoDANBgkqhkiG9w0BAQsFAAOCAQEAo1gWVyCua9CkQGdgCbj/dWMmQ0WB 8I+PCrI0GdVROCtWVNc5kYunKM83RxOnoSW3p0nv72pLIllNl5CUkAzvN4Te4q9q rKWYG25U3Yu4z6urfincRozXg5MQvPmdDM7nGzNcytBiGFo6Q9KPgXxWkEb6hdUL 80Y8gTBDubtCyEHJa26ymMwRbpa127riORJZrxSKa3QUyaSH1NNSCiu7lMcF8YF3 i9THRSI4HJJGoiJNxIX+IJ13YhCIr0ChlqdWlf5FbxYOy0rZ4oeLlUDGBccUvr4H kC3lcR5SE70QjWrC7qWpMso9fAy/zM4E6fz/eCgxcj3SsbYj2f9ln7GqCQ== -----END CERTIFICATE-----Generated at Mon Apr 13 12:24:17 2026 by rpki-client