$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094808409447923715/1/3231382e39372e3138382e302f32322d3232203d3e2039393339.roa File: 3231382e39372e3138382e302f32322d3232203d3e2039393339.roa (raw, json) Hash identifier: +G6lCsgfk7uWMzBw4ImLzEgulhmE/NNciG8WMfAwxqA= Subject key identifier: 51:28:AB:25:BB:BF:C9:EC:40:EA:CC:AB:77:F6:DB:A5:BC:88:41:82 Certificate issuer: /CN=CEE0FB0A5E4DA9AC7D78C5FC8F03D9AB23BFC3F5 Certificate serial: 2D6A766141ED36BF0376E516B8D5C7049F40F5DE Authority key identifier: CE:E0:FB:0A:5E:4D:A9:AC:7D:78:C5:FC:8F:03:D9:AB:23:BF:C3:F5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CEE0FB0A5E4DA9AC7D78C5FC8F03D9AB23BFC3F5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094808409447923715/1/3231382e39372e3138382e302f32322d3232203d3e2039393339.roa Signing time: Fri 10 Apr 2026 07:50:31 +0000 ROA not before: Fri 10 Apr 2026 07:45:31 +0000 ROA not after: Fri 09 Apr 2027 07:50:31 +0000 asID: 9939 IP address blocks: 218.97.188.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094808409447923715/1/CEE0FB0A5E4DA9AC7D78C5FC8F03D9AB23BFC3F5.crl rsync://rpki-rps.cnnic.cn/repo/A1094808409447923715/1/CEE0FB0A5E4DA9AC7D78C5FC8F03D9AB23BFC3F5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CEE0FB0A5E4DA9AC7D78C5FC8F03D9AB23BFC3F5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 05:09:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:6a:76:61:41:ed:36:bf:03:76:e5:16:b8:d5:c7:04:9f:40:f5:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CEE0FB0A5E4DA9AC7D78C5FC8F03D9AB23BFC3F5 Validity Not Before: Apr 10 07:45:31 2026 GMT Not After : Apr 9 07:50:31 2027 GMT Subject: CN=5128AB25BBBFC9EC40EACCAB77F6DBA5BC884182 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:bd:2e:5e:70:11:1c:54:8f:97:c0:e2:a8:45: be:e9:ef:44:a6:f3:5c:38:be:d9:d8:91:fe:d6:de: d8:c1:b8:f9:ea:11:7f:ef:da:bf:f1:49:c6:19:52: 00:e2:da:09:c8:9d:a1:88:83:e1:d2:ee:01:23:bc: 4d:95:30:fe:8a:cd:e5:4a:62:af:6c:9e:73:b8:ef: de:67:4f:30:e1:75:22:60:78:bf:98:ab:57:c2:90: 41:31:2e:05:96:55:b5:20:2b:d5:0a:b5:a4:ef:de: 90:47:36:8a:13:10:4a:63:28:ae:64:c4:31:4b:94: b0:4e:d8:8a:96:8d:8f:be:70:cc:48:22:08:f5:de: 79:62:c4:83:90:e7:93:cb:c5:9a:fe:1c:c8:84:ab: cf:ee:b5:a6:b8:2f:a6:8e:27:fb:b2:76:c1:1b:87: 79:fa:c7:78:09:a2:82:43:ee:1f:18:9f:0f:36:54: 20:30:cc:de:51:b9:ad:45:5d:be:43:8d:42:f9:d8: 4f:cb:8e:41:57:06:43:ef:d9:16:24:83:31:59:bb: 73:ad:1b:dc:8f:09:40:e3:75:38:e6:ce:fe:b2:29: 9c:97:bb:42:ad:56:b2:87:d3:07:a7:94:2f:7f:20: 4e:c2:b3:ab:04:77:8e:81:4d:6f:b6:34:0e:d8:eb: 32:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:28:AB:25:BB:BF:C9:EC:40:EA:CC:AB:77:F6:DB:A5:BC:88:41:82 X509v3 Authority Key Identifier: keyid:CE:E0:FB:0A:5E:4D:A9:AC:7D:78:C5:FC:8F:03:D9:AB:23:BF:C3:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094808409447923715/1/CEE0FB0A5E4DA9AC7D78C5FC8F03D9AB23BFC3F5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CEE0FB0A5E4DA9AC7D78C5FC8F03D9AB23BFC3F5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094808409447923715/1/3231382e39372e3138382e302f32322d3232203d3e2039393339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 218.97.188.0/22 Signature Algorithm: sha256WithRSAEncryption 22:fb:43:9a:11:6a:aa:db:ec:03:78:54:cb:3f:c6:4c:1d:85: 25:6c:73:dc:47:55:f0:4e:e5:29:83:75:ac:12:bc:4c:d5:36: 27:f2:9f:23:fc:1f:72:05:d1:cd:52:6a:80:81:6f:ae:15:ad: e5:72:a8:74:31:a9:c1:19:2c:30:14:3a:d2:68:85:19:41:c3: ee:80:51:26:3f:fe:95:26:88:b1:6e:d6:d4:4a:8e:c2:c6:1e: c4:61:5b:c4:cb:60:6a:02:a6:4a:22:bd:60:48:8d:f1:39:b6: de:c2:6f:2f:11:22:a3:8f:93:7c:62:a9:60:98:36:df:0e:ce: 0f:7b:52:d2:8c:21:b7:cc:21:89:20:fc:0d:4d:11:cc:51:a2: 72:ef:74:24:c3:17:06:81:51:2c:f9:c7:2f:ec:f3:a8:9e:bd: d3:8b:48:f4:71:04:97:06:63:49:53:8d:3d:81:c1:db:ca:72: 50:65:c3:24:f0:ba:bb:ea:b4:e2:7f:e6:42:c7:c8:a1:79:b9: e4:64:37:ac:d5:5d:fe:a3:75:98:9d:09:16:d1:c6:a7:82:35: b3:f9:df:c0:fd:ee:43:32:69:12:f4:28:8b:6d:c2:4d:a8:cf: 68:63:47:23:90:2f:90:ba:ed:f9:01:98:44:0f:be:54:5f:d3: ee:e6:47:fb -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIULWp2YUHtNr8DduUWuNXHBJ9A9d4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0VFMEZCMEE1RTREQTlBQzdENzhDNUZDOEYwM0Q5QUIy M0JGQzNGNTAeFw0yNjA0MTAwNzQ1MzFaFw0yNzA0MDkwNzUwMzFaMDMxMTAvBgNV BAMTKDUxMjhBQjI1QkJCRkM5RUM0MEVBQ0NBQjc3RjZEQkE1QkM4ODQxODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCTvS5ecBEcVI+XwOKoRb7p70Sm 81w4vtnYkf7W3tjBuPnqEX/v2r/xScYZUgDi2gnInaGIg+HS7gEjvE2VMP6KzeVK Yq9snnO4795nTzDhdSJgeL+Yq1fCkEExLgWWVbUgK9UKtaTv3pBHNooTEEpjKK5k xDFLlLBO2IqWjY++cMxIIgj13nlixIOQ55PLxZr+HMiEq8/utaa4L6aOJ/uydsEb h3n6x3gJooJD7h8Ynw82VCAwzN5Rua1FXb5DjUL52E/LjkFXBkPv2RYkgzFZu3Ot G9yPCUDjdTjmzv6yKZyXu0KtVrKH0wenlC9/IE7Cs6sEd46BTW+2NA7Y6zIrAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUUSirJbu/yexA6syrd/bbpbyIQYIwHwYDVR0j BBgwFoAUzuD7Cl5Nqax9eMX8jwPZqyO/w/UwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDgwODQwOTQ0NzkyMzcxNS8xL0NFRTBGQjBBNUU0REE5QUM3RDc4QzVGQzhGMDNE OUFCMjNCRkMzRjUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0VFMEZCMEE1RTREQTlBQzdENzhDNUZDOEYwM0Q5QUIyM0JGQzNGNS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk0ODA4NDA5NDQ3OTIzNzE1LzEvMzIzMTM4MmUzOTM3 MmUzMTM4MzgyZTMwMmYzMjMyMmQzMjMyMjAzZDNlMjAzOTM5MzMzOS5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAtphvDANBgkqhkiG9w0BAQsFAAOCAQEAIvtDmhFqqtvsA3hUyz/GTB2FJWxz 3EdV8E7lKYN1rBK8TNU2J/KfI/wfcgXRzVJqgIFvrhWt5XKodDGpwRksMBQ60miF GUHD7oBRJj/+lSaIsW7W1EqOwsYexGFbxMtgagKmSiK9YEiN8Tm23sJvLxEio4+T fGKpYJg23w7OD3tS0owht8whiSD8DU0RzFGicu90JMMXBoFRLPnHL+zzqJ6904tI 9HEElwZjSVONPYHB28pyUGXDJPC6u+q04n/mQsfIoXm55GQ3rNVd/qN1mJ0JFtHG p4I1s/nfwP3uQzJpEvQoi23CTajPaGNHI5AvkLrt+QGYRA++VF/T7uZH+w== -----END CERTIFICATE-----Generated at Mon Apr 13 13:53:34 2026 by rpki-client