$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094808409447923715/1/3231382e39372e3137362e302f32302d3230203d3e2039393339.roa File: 3231382e39372e3137362e302f32302d3230203d3e2039393339.roa (raw, json) Hash identifier: 7PSW0tMNyGrnbrrCaZmNRJ5IAXyNScpk2tdB1ptCA68= Subject key identifier: CC:70:CA:F1:CD:CB:4A:BE:8A:BE:0E:E7:A6:88:D9:CF:E7:6C:CA:21 Certificate issuer: /CN=CEE0FB0A5E4DA9AC7D78C5FC8F03D9AB23BFC3F5 Certificate serial: 0E73A5E38AFC30C08D35CDE51784B1D3F4149EF8 Authority key identifier: CE:E0:FB:0A:5E:4D:A9:AC:7D:78:C5:FC:8F:03:D9:AB:23:BF:C3:F5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CEE0FB0A5E4DA9AC7D78C5FC8F03D9AB23BFC3F5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094808409447923715/1/3231382e39372e3137362e302f32302d3230203d3e2039393339.roa Signing time: Fri 10 Apr 2026 07:50:31 +0000 ROA not before: Fri 10 Apr 2026 07:45:31 +0000 ROA not after: Fri 09 Apr 2027 07:50:31 +0000 asID: 9939 IP address blocks: 218.97.176.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094808409447923715/1/CEE0FB0A5E4DA9AC7D78C5FC8F03D9AB23BFC3F5.crl rsync://rpki-rps.cnnic.cn/repo/A1094808409447923715/1/CEE0FB0A5E4DA9AC7D78C5FC8F03D9AB23BFC3F5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CEE0FB0A5E4DA9AC7D78C5FC8F03D9AB23BFC3F5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 05:09:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:73:a5:e3:8a:fc:30:c0:8d:35:cd:e5:17:84:b1:d3:f4:14:9e:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CEE0FB0A5E4DA9AC7D78C5FC8F03D9AB23BFC3F5 Validity Not Before: Apr 10 07:45:31 2026 GMT Not After : Apr 9 07:50:31 2027 GMT Subject: CN=CC70CAF1CDCB4ABE8ABE0EE7A688D9CFE76CCA21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:4e:29:fe:f5:2c:ae:d4:01:19:0e:97:52:aa: 7b:85:33:71:9a:ee:35:21:e8:ef:59:fd:8d:da:d6: 25:c6:0e:d5:a7:7e:64:88:85:16:a8:0e:ea:7c:80: bf:f0:f9:68:03:ce:79:35:47:3b:33:5a:b6:d1:b6: e1:ef:55:71:75:b4:5f:d8:1b:62:0f:59:b7:4c:0b: f1:5d:b6:ef:70:e3:c0:f2:b5:9a:a1:b4:82:46:2b: 8e:15:18:42:fa:77:31:d7:ff:86:6a:7b:11:55:87: c1:86:f2:15:9a:c6:be:b4:8c:dd:53:43:d5:c8:4d: 15:33:f0:92:4d:ab:61:4c:a4:7a:3a:9f:73:2b:91: 5e:a2:db:97:5a:18:83:bf:5d:ec:4a:3b:cc:d4:a7: 3a:e6:1f:c0:01:cc:86:79:f1:72:e1:95:fb:0c:a3: 83:6d:1b:9d:c8:b5:94:5a:23:ec:48:a1:3c:ba:9e: c3:82:dd:89:2b:49:20:e8:3e:a5:e5:91:40:1c:6b: 7d:c4:28:44:e6:f3:bc:21:e9:e4:06:95:4d:32:ba: 31:67:1f:18:6a:91:00:25:98:06:37:68:49:1c:9f: 84:5a:f6:0e:ef:5d:86:55:18:85:3a:6d:50:ea:95: fd:b4:d1:d7:7a:ef:31:d1:be:30:35:af:f0:88:e5: 15:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:70:CA:F1:CD:CB:4A:BE:8A:BE:0E:E7:A6:88:D9:CF:E7:6C:CA:21 X509v3 Authority Key Identifier: keyid:CE:E0:FB:0A:5E:4D:A9:AC:7D:78:C5:FC:8F:03:D9:AB:23:BF:C3:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094808409447923715/1/CEE0FB0A5E4DA9AC7D78C5FC8F03D9AB23BFC3F5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CEE0FB0A5E4DA9AC7D78C5FC8F03D9AB23BFC3F5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094808409447923715/1/3231382e39372e3137362e302f32302d3230203d3e2039393339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 218.97.176.0/20 Signature Algorithm: sha256WithRSAEncryption b0:a8:d0:c7:c1:6d:ad:10:cd:f1:fc:40:91:35:9d:ac:1b:ee: d0:9b:23:70:0c:5a:7e:87:de:7e:28:15:f2:3a:3c:5a:61:e7: a1:53:d3:e9:19:05:f0:36:b8:09:b7:ea:55:a9:4d:eb:26:a4: d7:9a:a1:be:52:22:ec:2d:26:59:a4:ec:d6:8c:b0:4c:e6:47: cb:9a:3c:58:91:95:c8:46:ad:c3:85:34:e9:dd:e8:72:78:ec: 52:5d:3d:1e:fa:58:8b:f1:d6:d9:d7:f8:00:0c:93:77:83:9b: 9a:fb:0d:96:8c:62:8f:48:23:26:c2:60:b7:37:79:6a:2f:85: 68:38:db:fb:c3:36:6f:73:d7:0d:8b:20:e9:a3:e1:5a:61:f7: 5e:96:14:d9:7b:5c:9c:8c:91:52:b3:72:5d:48:f1:77:72:04: 69:83:aa:35:c8:cc:60:3a:4d:c0:fa:6c:34:10:81:10:d8:3e: 31:90:4d:a2:18:5e:f1:10:56:94:a0:bb:d0:39:47:b5:41:8c: bd:35:7f:f5:84:75:0c:70:30:62:c5:4a:ad:4c:4b:fa:7c:cb: ce:0a:70:c2:9f:de:43:2d:ce:c6:a9:d0:5e:f8:dc:84:4a:16: 9e:33:96:49:99:8e:1e:9e:2d:92:2e:cf:ef:08:81:39:4e:ae: e6:37:0d:73 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUDnOl44r8MMCNNc3lF4Sx0/QUnvgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0VFMEZCMEE1RTREQTlBQzdENzhDNUZDOEYwM0Q5QUIy M0JGQzNGNTAeFw0yNjA0MTAwNzQ1MzFaFw0yNzA0MDkwNzUwMzFaMDMxMTAvBgNV BAMTKENDNzBDQUYxQ0RDQjRBQkU4QUJFMEVFN0E2ODhEOUNGRTc2Q0NBMjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpTin+9Syu1AEZDpdSqnuFM3Ga 7jUh6O9Z/Y3a1iXGDtWnfmSIhRaoDup8gL/w+WgDznk1RzszWrbRtuHvVXF1tF/Y G2IPWbdMC/Fdtu9w48DytZqhtIJGK44VGEL6dzHX/4ZqexFVh8GG8hWaxr60jN1T Q9XITRUz8JJNq2FMpHo6n3MrkV6i25daGIO/XexKO8zUpzrmH8ABzIZ58XLhlfsM o4NtG53ItZRaI+xIoTy6nsOC3YkrSSDoPqXlkUAca33EKETm87wh6eQGlU0yujFn HxhqkQAlmAY3aEkcn4Ra9g7vXYZVGIU6bVDqlf200dd67zHRvjA1r/CI5RXVAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUzHDK8c3LSr6Kvg7npojZz+dsyiEwHwYDVR0j BBgwFoAUzuD7Cl5Nqax9eMX8jwPZqyO/w/UwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDgwODQwOTQ0NzkyMzcxNS8xL0NFRTBGQjBBNUU0REE5QUM3RDc4QzVGQzhGMDNE OUFCMjNCRkMzRjUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0VFMEZCMEE1RTREQTlBQzdENzhDNUZDOEYwM0Q5QUIyM0JGQzNGNS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk0ODA4NDA5NDQ3OTIzNzE1LzEvMzIzMTM4MmUzOTM3 MmUzMTM3MzYyZTMwMmYzMjMwMmQzMjMwMjAzZDNlMjAzOTM5MzMzOS5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBNphsDANBgkqhkiG9w0BAQsFAAOCAQEAsKjQx8FtrRDN8fxAkTWdrBvu0Jsj cAxafofefigV8jo8WmHnoVPT6RkF8Da4CbfqValN6yak15qhvlIi7C0mWaTs1oyw TOZHy5o8WJGVyEatw4U06d3ocnjsUl09HvpYi/HW2df4AAyTd4ObmvsNloxij0gj JsJgtzd5ai+FaDjb+8M2b3PXDYsg6aPhWmH3XpYU2XtcnIyRUrNyXUjxd3IEaYOq NcjMYDpNwPpsNBCBENg+MZBNohhe8RBWlKC70DlHtUGMvTV/9YR1DHAwYsVKrUxL +nzLzgpwwp/eQy3OxqnQXvjchEoWnjOWSZmOHp4tki7P7wiBOU6u5jcNcw== -----END CERTIFICATE-----Generated at Mon Apr 13 12:24:11 2026 by rpki-client