$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094815969324302337/0/3231312e3136322e3131392e302f32342d3234203d3e203137363233.roa File: 3231312e3136322e3131392e302f32342d3234203d3e203137363233.roa (raw, json) Hash identifier: LvYm4khf8eWq9RTdE95Z5RbXYxh14m1oQHO+QJxyHp8= Subject key identifier: 85:36:B6:9C:87:3D:40:D1:6F:1D:B7:B5:1A:2F:34:28:3B:94:F9:F3 Certificate issuer: /CN=32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5 Certificate serial: 4C8AC9854CCAB6752CDE4029D1A01C925AD2D3DC Authority key identifier: 32:C6:BE:DB:CA:2F:53:4D:41:32:20:06:E3:9A:6E:51:B1:A9:A9:D5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/3231312e3136322e3131392e302f32342d3234203d3e203137363233.roa Signing time: Fri 10 Apr 2026 03:00:38 +0000 ROA not before: Fri 10 Apr 2026 02:55:38 +0000 ROA not after: Fri 09 Apr 2027 03:00:38 +0000 asID: 17623 IP address blocks: 211.162.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.crl rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 08:13:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:8a:c9:85:4c:ca:b6:75:2c:de:40:29:d1:a0:1c:92:5a:d2:d3:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5 Validity Not Before: Apr 10 02:55:38 2026 GMT Not After : Apr 9 03:00:38 2027 GMT Subject: CN=8536B69C873D40D16F1DB7B51A2F34283B94F9F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:d0:f1:ff:b8:c8:65:a3:5a:de:11:f2:a1:e7: 92:9d:43:93:aa:be:f3:b5:04:17:cb:ae:6b:59:a9: bf:fc:85:95:b0:ba:b4:d2:4d:ff:33:f2:82:7d:3d: 3a:64:68:74:22:75:04:ee:00:fb:bd:b1:a6:a0:15: f3:84:3b:6d:82:8f:40:24:46:fc:78:f3:69:0e:76: 84:3a:1b:84:31:3f:3c:00:98:01:7e:88:29:b8:66: 04:08:71:b2:84:f3:e1:63:d4:8e:b1:15:c6:ea:41: 6a:85:df:c2:dd:03:44:2e:d8:bb:de:91:fd:7f:25: f0:41:4f:3e:a6:b1:f3:0a:a9:d5:7d:97:2c:3a:30: 2c:70:4a:f9:00:a4:4a:fd:1a:bd:62:19:6a:4d:be: 58:e5:2b:35:69:23:76:8b:d1:7e:e5:63:54:32:23: 7a:9e:24:a0:b0:03:92:7a:e1:b5:b8:e5:82:61:d3: 5a:2d:3a:64:25:c7:95:21:aa:5c:4a:4b:94:a4:c1: bd:4b:b0:56:22:21:ba:54:0d:17:10:08:d5:b5:f8: 32:f2:dd:85:de:7d:c8:33:68:b0:ae:8a:ef:60:22: df:2a:2f:3e:8e:9e:20:a8:8d:36:c7:7c:4c:f2:aa: 38:26:98:23:29:54:21:41:c2:d4:2f:39:40:88:04: a6:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:36:B6:9C:87:3D:40:D1:6F:1D:B7:B5:1A:2F:34:28:3B:94:F9:F3 X509v3 Authority Key Identifier: keyid:32:C6:BE:DB:CA:2F:53:4D:41:32:20:06:E3:9A:6E:51:B1:A9:A9:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/3231312e3136322e3131392e302f32342d3234203d3e203137363233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 211.162.119.0/24 Signature Algorithm: sha256WithRSAEncryption 71:47:1f:0d:10:64:d0:c0:ac:a6:b4:8b:ef:e7:47:76:51:37: 26:cb:53:2c:c4:9e:da:55:24:ad:2a:8f:dd:3a:dc:c9:df:fa: 56:c9:fa:ab:ee:8d:56:97:2e:56:e2:2a:ab:52:10:1f:cd:cf: a2:5f:47:f7:bc:97:0b:75:e7:70:53:8c:50:c9:53:17:0d:7d: 51:03:78:9c:0c:48:22:1d:9b:69:bf:10:69:79:ad:06:13:7e: 1c:d0:63:8f:66:dd:cf:21:b9:6e:2e:cb:c9:0c:38:36:13:ec: d8:a9:fb:6b:f8:a2:8b:f1:eb:54:59:66:f4:8f:b7:d8:f4:45: 19:3e:f1:34:2a:03:e0:5d:51:38:29:5b:7a:a3:ba:b3:de:2e: fe:14:6a:9b:06:83:96:f6:1d:29:52:77:14:b6:44:f7:90:bc: 10:f2:31:bf:cd:9c:59:84:45:eb:e9:f8:de:94:e6:00:b9:e6: 44:9b:64:ce:20:a1:6e:a0:5a:12:ea:a4:76:a6:a0:1a:2d:2d: 5e:df:0f:82:57:f2:80:45:b6:2b:b3:dc:70:ca:e3:cd:64:03: c5:99:00:2a:3a:53:c5:44:07:dd:82:7d:1d:68:88:eb:32:e6: f1:f5:0e:a5:20:46:48:2a:5f:4b:b2:35:d7:15:87:92:c5:bb: b8:f9:81:75 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUTIrJhUzKtnUs3kAp0aAcklrS09wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzJDNkJFREJDQTJGNTM0RDQxMzIyMDA2RTM5QTZFNTFC MUE5QTlENTAeFw0yNjA0MTAwMjU1MzhaFw0yNzA0MDkwMzAwMzhaMDMxMTAvBgNV BAMTKDg1MzZCNjlDODczRDQwRDE2RjFEQjdCNTFBMkYzNDI4M0I5NEY5RjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCl0PH/uMhlo1reEfKh55KdQ5Oq vvO1BBfLrmtZqb/8hZWwurTSTf8z8oJ9PTpkaHQidQTuAPu9saagFfOEO22Cj0Ak Rvx482kOdoQ6G4QxPzwAmAF+iCm4ZgQIcbKE8+Fj1I6xFcbqQWqF38LdA0Qu2Lve kf1/JfBBTz6msfMKqdV9lyw6MCxwSvkApEr9Gr1iGWpNvljlKzVpI3aL0X7lY1Qy I3qeJKCwA5J64bW45YJh01otOmQlx5UhqlxKS5Skwb1LsFYiIbpUDRcQCNW1+DLy 3YXefcgzaLCuiu9gIt8qLz6OniCojTbHfEzyqjgmmCMpVCFBwtQvOUCIBKaNAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUhTa2nIc9QNFvHbe1Gi80KDuU+fMwHwYDVR0j BBgwFoAUMsa+28ovU01BMiAG45puUbGpqdUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDgxNTk2OTMyNDMwMjMzNy8wLzMyQzZCRURCQ0EyRjUzNEQ0MTMyMjAwNkUzOUE2 RTUxQjFBOUE5RDUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMzJDNkJFREJDQTJGNTM0RDQxMzIyMDA2RTM5QTZFNTFCMUE5QTlENS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTQ4MTU5NjkzMjQzMDIzMzcvMC8zMjMxMzEyZTMx MzYzMjJlMzEzMTM5MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzNzM2MzIzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEANOidzANBgkqhkiG9w0BAQsFAAOCAQEAcUcfDRBk0MCsprSL7+dH dlE3JstTLMSe2lUkrSqP3Trcyd/6Vsn6q+6NVpcuVuIqq1IQH83Pol9H97yXC3Xn cFOMUMlTFw19UQN4nAxIIh2bab8QaXmtBhN+HNBjj2bdzyG5bi7LyQw4NhPs2Kn7 a/iii/HrVFlm9I+32PRFGT7xNCoD4F1ROClbeqO6s94u/hRqmwaDlvYdKVJ3FLZE 95C8EPIxv82cWYRF6+n43pTmALnmRJtkziChbqBaEuqkdqagGi0tXt8PglfygEW2 K7PccMrjzWQDxZkAKjpTxUQH3YJ9HWiI6zLm8fUOpSBGSCpfS7I11xWHksW7uPmB dQ== -----END CERTIFICATE-----Generated at Mon Apr 13 13:56:17 2026 by rpki-client