$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094808409447923715/1/3231382e39372e3136342e302f32322d3232203d3e2039393339.roa File: 3231382e39372e3136342e302f32322d3232203d3e2039393339.roa (raw, json) Hash identifier: PBNodTPl2AQfEfxCKqc43cm79vB2LI0bukvEOlFG2Gw= Subject key identifier: BD:93:2B:F2:74:0F:C4:E8:46:1B:8F:0D:67:5E:0C:CD:D0:58:54:81 Certificate issuer: /CN=CEE0FB0A5E4DA9AC7D78C5FC8F03D9AB23BFC3F5 Certificate serial: 297CA0EEF003D638ACEEADC6BA823F11B1E86A0B Authority key identifier: CE:E0:FB:0A:5E:4D:A9:AC:7D:78:C5:FC:8F:03:D9:AB:23:BF:C3:F5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CEE0FB0A5E4DA9AC7D78C5FC8F03D9AB23BFC3F5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094808409447923715/1/3231382e39372e3136342e302f32322d3232203d3e2039393339.roa Signing time: Fri 10 Apr 2026 07:48:44 +0000 ROA not before: Fri 10 Apr 2026 07:43:44 +0000 ROA not after: Fri 09 Apr 2027 07:48:44 +0000 asID: 9939 IP address blocks: 218.97.164.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094808409447923715/1/CEE0FB0A5E4DA9AC7D78C5FC8F03D9AB23BFC3F5.crl rsync://rpki-rps.cnnic.cn/repo/A1094808409447923715/1/CEE0FB0A5E4DA9AC7D78C5FC8F03D9AB23BFC3F5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CEE0FB0A5E4DA9AC7D78C5FC8F03D9AB23BFC3F5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 05:09:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:7c:a0:ee:f0:03:d6:38:ac:ee:ad:c6:ba:82:3f:11:b1:e8:6a:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CEE0FB0A5E4DA9AC7D78C5FC8F03D9AB23BFC3F5 Validity Not Before: Apr 10 07:43:44 2026 GMT Not After : Apr 9 07:48:44 2027 GMT Subject: CN=BD932BF2740FC4E8461B8F0D675E0CCDD0585481 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:80:f1:40:22:b4:40:1d:60:0f:7e:20:11:ea: 5a:43:b0:6b:5d:3b:07:28:ab:66:6f:62:18:a8:1f: b3:f7:0f:0f:20:68:e7:25:2f:d9:07:63:ee:90:50: 54:a2:eb:4c:85:c7:5a:ba:c9:6d:cb:1d:2e:42:45: 42:94:8f:06:57:6f:e6:0e:37:d8:ad:f4:78:8d:d1: 14:0e:35:7d:a6:fd:7b:71:9a:52:0b:43:41:e1:25: c4:7c:61:df:70:88:f4:2d:6e:18:49:36:93:f5:45: 71:95:cd:79:4a:a5:d4:5d:ed:0f:87:6d:55:24:a8: 91:9b:33:be:36:dc:a5:92:ef:e5:4b:16:67:8c:79: 45:3c:e2:5c:68:88:fe:63:88:e7:c5:be:a6:f3:8c: 69:81:68:7b:ef:ee:25:11:9f:1c:04:e7:9d:de:ec: f7:e8:08:b6:13:ab:5d:19:e1:9f:ee:21:d7:05:c0: 81:ba:f9:19:12:7e:55:83:63:bd:6a:1b:b5:22:2c: f3:63:60:c4:86:b0:14:39:76:1d:30:c3:31:ef:7f: 71:1b:8b:92:8a:3a:1a:54:42:47:da:b5:c0:21:e5: 7c:fe:6a:6a:7e:d1:ef:87:89:77:24:30:8b:d5:d5: 81:64:fd:ea:52:bc:72:a2:30:85:f5:4c:87:f7:4e: 8d:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:93:2B:F2:74:0F:C4:E8:46:1B:8F:0D:67:5E:0C:CD:D0:58:54:81 X509v3 Authority Key Identifier: keyid:CE:E0:FB:0A:5E:4D:A9:AC:7D:78:C5:FC:8F:03:D9:AB:23:BF:C3:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094808409447923715/1/CEE0FB0A5E4DA9AC7D78C5FC8F03D9AB23BFC3F5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CEE0FB0A5E4DA9AC7D78C5FC8F03D9AB23BFC3F5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094808409447923715/1/3231382e39372e3136342e302f32322d3232203d3e2039393339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 218.97.164.0/22 Signature Algorithm: sha256WithRSAEncryption b4:df:d8:16:60:78:c6:d8:40:7b:3e:a0:7f:cb:46:f7:8d:55: e4:f1:81:b3:62:14:80:c1:61:94:43:ec:e1:da:6c:d5:61:d2: aa:01:ae:d9:9d:96:17:c5:b5:88:0e:1b:a5:0d:d0:33:ce:e2: ad:05:7b:00:98:34:e1:c6:e9:56:57:c8:f3:90:86:9f:06:ff: 61:d4:c8:76:22:d4:9a:03:56:97:b2:1a:36:f1:21:c5:a3:48: 88:d7:da:bc:db:47:9b:d5:ed:ac:06:8a:27:e7:c8:1d:14:54: 31:4b:8d:94:74:1b:dc:b6:e9:5f:e5:2d:0a:0c:e8:ad:ec:4b: b4:eb:2a:e0:ef:83:42:50:a0:e8:b5:1a:65:b4:ee:b4:5a:9a: 8b:f3:2f:5f:44:19:e0:c7:89:82:ec:02:ed:a6:95:d6:47:a4: af:ec:f3:01:cd:ab:a8:b5:a5:cf:ad:4a:09:46:58:c1:69:99: 5e:c6:59:44:ca:9c:ef:0e:3b:65:0d:a7:35:1f:65:0b:8b:bc: 03:16:a4:86:e5:d1:52:50:58:fe:49:2e:52:52:6e:40:eb:dd: 48:b2:6f:26:46:de:69:58:8e:76:31:9c:b4:0e:60:67:0f:22: ff:7d:7a:1b:39:ef:74:b1:9f:d0:74:24:8a:6a:8e:d3:82:28: 7a:dd:04:16 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUKXyg7vAD1jis7q3GuoI/EbHoagswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0VFMEZCMEE1RTREQTlBQzdENzhDNUZDOEYwM0Q5QUIy M0JGQzNGNTAeFw0yNjA0MTAwNzQzNDRaFw0yNzA0MDkwNzQ4NDRaMDMxMTAvBgNV BAMTKEJEOTMyQkYyNzQwRkM0RTg0NjFCOEYwRDY3NUUwQ0NERDA1ODU0ODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYgPFAIrRAHWAPfiAR6lpDsGtd Owcoq2ZvYhioH7P3Dw8gaOclL9kHY+6QUFSi60yFx1q6yW3LHS5CRUKUjwZXb+YO N9it9HiN0RQONX2m/XtxmlILQ0HhJcR8Yd9wiPQtbhhJNpP1RXGVzXlKpdRd7Q+H bVUkqJGbM7423KWS7+VLFmeMeUU84lxoiP5jiOfFvqbzjGmBaHvv7iURnxwE553e 7PfoCLYTq10Z4Z/uIdcFwIG6+RkSflWDY71qG7UiLPNjYMSGsBQ5dh0wwzHvf3Eb i5KKOhpUQkfatcAh5Xz+amp+0e+HiXckMIvV1YFk/epSvHKiMIX1TIf3To39AgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUvZMr8nQPxOhGG48NZ14MzdBYVIEwHwYDVR0j BBgwFoAUzuD7Cl5Nqax9eMX8jwPZqyO/w/UwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDgwODQwOTQ0NzkyMzcxNS8xL0NFRTBGQjBBNUU0REE5QUM3RDc4QzVGQzhGMDNE OUFCMjNCRkMzRjUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0VFMEZCMEE1RTREQTlBQzdENzhDNUZDOEYwM0Q5QUIyM0JGQzNGNS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk0ODA4NDA5NDQ3OTIzNzE1LzEvMzIzMTM4MmUzOTM3 MmUzMTM2MzQyZTMwMmYzMjMyMmQzMjMyMjAzZDNlMjAzOTM5MzMzOS5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAtphpDANBgkqhkiG9w0BAQsFAAOCAQEAtN/YFmB4xthAez6gf8tG941V5PGB s2IUgMFhlEPs4dps1WHSqgGu2Z2WF8W1iA4bpQ3QM87irQV7AJg04cbpVlfI85CG nwb/YdTIdiLUmgNWl7IaNvEhxaNIiNfavNtHm9XtrAaKJ+fIHRRUMUuNlHQb3Lbp X+UtCgzorexLtOsq4O+DQlCg6LUaZbTutFqai/MvX0QZ4MeJguwC7aaV1kekr+zz Ac2rqLWlz61KCUZYwWmZXsZZRMqc7w47ZQ2nNR9lC4u8AxakhuXRUlBY/kkuUlJu QOvdSLJvJkbeaViOdjGctA5gZw8i/316GznvdLGf0HQkimqO04Ioet0EFg== -----END CERTIFICATE-----Generated at Mon Apr 13 13:53:24 2026 by rpki-client