$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094808409447923715/1/3231382e39372e3137322e302f32322d3232203d3e2039393339.roa File: 3231382e39372e3137322e302f32322d3232203d3e2039393339.roa (raw, json) Hash identifier: P277/T4eGGrFGV8jZUfaWSd1zYvJIrtME/DL6maRQ+Y= Subject key identifier: C7:72:15:6D:A6:5A:27:BF:33:7E:3D:CA:56:6C:25:E0:A2:23:07:6B Certificate issuer: /CN=CEE0FB0A5E4DA9AC7D78C5FC8F03D9AB23BFC3F5 Certificate serial: 26684D52CD8B0BD2304C5D0EE6249F5934DBC6AC Authority key identifier: CE:E0:FB:0A:5E:4D:A9:AC:7D:78:C5:FC:8F:03:D9:AB:23:BF:C3:F5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CEE0FB0A5E4DA9AC7D78C5FC8F03D9AB23BFC3F5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094808409447923715/1/3231382e39372e3137322e302f32322d3232203d3e2039393339.roa Signing time: Fri 10 Apr 2026 07:50:31 +0000 ROA not before: Fri 10 Apr 2026 07:45:31 +0000 ROA not after: Fri 09 Apr 2027 07:50:31 +0000 asID: 9939 IP address blocks: 218.97.172.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094808409447923715/1/CEE0FB0A5E4DA9AC7D78C5FC8F03D9AB23BFC3F5.crl rsync://rpki-rps.cnnic.cn/repo/A1094808409447923715/1/CEE0FB0A5E4DA9AC7D78C5FC8F03D9AB23BFC3F5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CEE0FB0A5E4DA9AC7D78C5FC8F03D9AB23BFC3F5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 05:09:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:68:4d:52:cd:8b:0b:d2:30:4c:5d:0e:e6:24:9f:59:34:db:c6:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CEE0FB0A5E4DA9AC7D78C5FC8F03D9AB23BFC3F5 Validity Not Before: Apr 10 07:45:31 2026 GMT Not After : Apr 9 07:50:31 2027 GMT Subject: CN=C772156DA65A27BF337E3DCA566C25E0A223076B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:46:b7:39:18:d7:57:ae:da:8a:db:95:0c:c8: 6f:4f:e1:86:4f:e9:87:f1:7b:3d:63:3f:9c:45:fd: 06:35:c5:70:01:dc:b1:0c:13:de:d7:b7:b5:36:0e: 95:2e:4a:37:34:d7:e4:70:c7:51:b7:f8:d3:50:fd: 70:e7:58:78:98:c1:82:44:bc:a7:68:25:03:14:dd: 55:0e:02:e7:78:9f:80:a6:5e:5c:92:de:ff:78:2d: a6:f2:13:bd:2b:a4:5d:53:ff:10:74:23:b2:81:a9: 14:4c:3a:89:3b:ed:2f:fc:42:0e:f7:03:57:c2:f6: ed:81:7d:19:59:3b:06:86:04:f4:4d:c9:78:20:1d: 5e:72:b1:22:5e:45:d2:1e:24:d8:4b:3b:01:ef:e0: d9:6f:1c:91:15:c9:8a:92:6c:04:f2:5a:0c:dd:7c: c3:44:e2:4e:d9:51:70:a9:44:f2:3f:eb:f7:84:e6: d2:5e:5c:81:99:84:86:0e:b4:33:4f:78:97:75:22: 04:ff:99:eb:8a:28:55:e3:4f:ea:ae:56:5f:4b:9b: 9c:ca:6b:21:54:6e:d2:3a:c8:34:e3:e1:79:bf:31: 45:5d:f7:40:7c:d9:c2:ae:1a:8c:d6:ca:ed:16:0c: 56:13:41:f9:17:44:75:63:22:2f:19:96:fa:24:66: 19:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:72:15:6D:A6:5A:27:BF:33:7E:3D:CA:56:6C:25:E0:A2:23:07:6B X509v3 Authority Key Identifier: keyid:CE:E0:FB:0A:5E:4D:A9:AC:7D:78:C5:FC:8F:03:D9:AB:23:BF:C3:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094808409447923715/1/CEE0FB0A5E4DA9AC7D78C5FC8F03D9AB23BFC3F5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CEE0FB0A5E4DA9AC7D78C5FC8F03D9AB23BFC3F5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094808409447923715/1/3231382e39372e3137322e302f32322d3232203d3e2039393339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 218.97.172.0/22 Signature Algorithm: sha256WithRSAEncryption 55:65:05:92:ef:e3:12:f9:7b:76:be:51:15:eb:7c:d5:c6:fa: c1:ef:a9:c7:44:c6:b2:67:c4:ad:d3:f7:11:69:e1:0b:5b:3d: b2:35:75:aa:30:39:76:ae:6f:e9:5e:22:f4:ca:e9:e0:dd:55: 92:b8:7a:52:46:b1:a7:f3:28:54:6c:a4:67:3c:15:d8:ff:49: 94:ce:a1:db:30:cb:b1:40:44:38:0f:52:ec:db:43:ba:1d:7c: 3c:cb:ad:04:6c:15:29:5c:ef:a4:74:bf:08:9a:4b:46:2a:3b: de:09:51:9a:65:c3:ed:fd:d7:75:8a:19:d1:d3:79:72:e5:61: af:f1:71:ba:25:54:29:d0:e8:df:fc:5e:95:17:7e:92:ce:a7: 1a:05:ab:66:80:5f:0e:44:9f:9b:d3:50:cd:d4:6b:d2:8a:11: bd:6c:bd:61:9e:35:82:4d:ed:77:2d:81:78:1c:b0:65:8e:51: e2:8c:70:36:31:13:eb:ea:fc:f2:f7:99:5d:45:8b:0d:10:dd: 1b:78:2e:fa:fe:68:98:2f:f5:1c:19:67:e8:90:12:88:d6:88: cb:3a:8c:a0:0c:6b:44:b1:1b:4d:ef:4e:6c:16:fc:ce:44:2b: fe:0b:27:be:35:95:ba:d2:2c:d9:52:cd:a1:64:c0:67:45:71: 44:75:c1:5c -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUJmhNUs2LC9IwTF0O5iSfWTTbxqwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0VFMEZCMEE1RTREQTlBQzdENzhDNUZDOEYwM0Q5QUIy M0JGQzNGNTAeFw0yNjA0MTAwNzQ1MzFaFw0yNzA0MDkwNzUwMzFaMDMxMTAvBgNV BAMTKEM3NzIxNTZEQTY1QTI3QkYzMzdFM0RDQTU2NkMyNUUwQTIyMzA3NkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRRrc5GNdXrtqK25UMyG9P4YZP 6Yfxez1jP5xF/QY1xXAB3LEME97Xt7U2DpUuSjc01+Rwx1G3+NNQ/XDnWHiYwYJE vKdoJQMU3VUOAud4n4CmXlyS3v94LabyE70rpF1T/xB0I7KBqRRMOok77S/8Qg73 A1fC9u2BfRlZOwaGBPRNyXggHV5ysSJeRdIeJNhLOwHv4NlvHJEVyYqSbATyWgzd fMNE4k7ZUXCpRPI/6/eE5tJeXIGZhIYOtDNPeJd1IgT/meuKKFXjT+quVl9Lm5zK ayFUbtI6yDTj4Xm/MUVd90B82cKuGozWyu0WDFYTQfkXRHVjIi8ZlvokZhlDAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUx3IVbaZaJ78zfj3KVmwl4KIjB2swHwYDVR0j BBgwFoAUzuD7Cl5Nqax9eMX8jwPZqyO/w/UwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDgwODQwOTQ0NzkyMzcxNS8xL0NFRTBGQjBBNUU0REE5QUM3RDc4QzVGQzhGMDNE OUFCMjNCRkMzRjUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0VFMEZCMEE1RTREQTlBQzdENzhDNUZDOEYwM0Q5QUIyM0JGQzNGNS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk0ODA4NDA5NDQ3OTIzNzE1LzEvMzIzMTM4MmUzOTM3 MmUzMTM3MzIyZTMwMmYzMjMyMmQzMjMyMjAzZDNlMjAzOTM5MzMzOS5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAtphrDANBgkqhkiG9w0BAQsFAAOCAQEAVWUFku/jEvl7dr5RFet81cb6we+p x0TGsmfErdP3EWnhC1s9sjV1qjA5dq5v6V4i9Mrp4N1Vkrh6Ukaxp/MoVGykZzwV 2P9JlM6h2zDLsUBEOA9S7NtDuh18PMutBGwVKVzvpHS/CJpLRio73glRmmXD7f3X dYoZ0dN5cuVhr/FxuiVUKdDo3/xelRd+ks6nGgWrZoBfDkSfm9NQzdRr0ooRvWy9 YZ41gk3tdy2BeBywZY5R4oxwNjET6+r88veZXUWLDRDdG3gu+v5omC/1HBln6JAS iNaIyzqMoAxrRLEbTe9ObBb8zkQr/gsnvjWVutIs2VLNoWTAZ0VxRHXBXA== -----END CERTIFICATE-----Generated at Mon Apr 13 13:53:32 2026 by rpki-client