$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094815969324302337/0/3231312e3136322e3132302e302f32312d3231203d3e203137363233.roa File: 3231312e3136322e3132302e302f32312d3231203d3e203137363233.roa (raw, json) Hash identifier: Dkof9BXXex9VNnkwcENC64qS5WIEb5ozehHFEZJpJrA= Subject key identifier: 96:9D:8E:11:70:66:E6:B2:D7:94:0E:49:B8:82:E4:5A:B2:3A:AD:5C Certificate issuer: /CN=32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5 Certificate serial: 3AC8494B222D79051B8856AB7956D2DEB2D935A2 Authority key identifier: 32:C6:BE:DB:CA:2F:53:4D:41:32:20:06:E3:9A:6E:51:B1:A9:A9:D5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/3231312e3136322e3132302e302f32312d3231203d3e203137363233.roa Signing time: Fri 10 Apr 2026 03:00:39 +0000 ROA not before: Fri 10 Apr 2026 02:55:39 +0000 ROA not after: Fri 09 Apr 2027 03:00:39 +0000 asID: 17623 IP address blocks: 211.162.120.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.crl rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 08:13:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:c8:49:4b:22:2d:79:05:1b:88:56:ab:79:56:d2:de:b2:d9:35:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5 Validity Not Before: Apr 10 02:55:39 2026 GMT Not After : Apr 9 03:00:39 2027 GMT Subject: CN=969D8E117066E6B2D7940E49B882E45AB23AAD5C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:e4:74:99:36:2a:7f:f4:b1:18:9f:3e:ce:22: e9:90:81:91:ae:de:4c:ce:8d:12:d3:cd:e5:71:1f: 1c:a9:a6:1d:87:8f:6e:32:0f:0f:cc:0e:3e:57:24: e7:16:e1:59:10:c8:d3:80:48:04:b5:64:3a:21:f6: 9e:0d:b3:0e:f8:1f:b6:42:b8:5c:8d:ea:ba:a6:0e: 97:4a:00:d4:28:52:30:a8:b4:6a:c2:ac:c0:d7:bd: f6:64:10:ec:4f:1f:0b:e4:12:df:b6:80:47:91:11: e5:81:1c:42:de:af:3f:2b:c5:fe:22:4c:1c:be:77: 13:a1:4c:5d:2c:f1:8e:fb:d8:2c:59:c7:89:00:5c: ed:71:9b:f5:d3:bf:69:17:10:55:01:2f:31:bb:da: ec:03:7a:81:c6:df:bb:bc:cb:c2:17:68:a3:a4:db: 1f:8a:ab:14:49:1e:e3:77:5e:a1:f3:41:1c:89:56: 3f:2b:95:74:b8:ee:bc:dd:57:33:07:2e:28:72:b4: c3:6b:59:8b:a1:88:8f:6c:35:72:6e:06:bb:07:5b: 2f:4e:94:13:6d:f3:a6:18:de:ec:2e:fe:00:3e:a8: 1e:f5:1e:e9:d0:45:fd:12:c1:dd:76:6c:17:fd:83: e9:a5:68:13:e3:0d:3c:97:c0:8e:15:dd:a5:31:11: e7:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:9D:8E:11:70:66:E6:B2:D7:94:0E:49:B8:82:E4:5A:B2:3A:AD:5C X509v3 Authority Key Identifier: keyid:32:C6:BE:DB:CA:2F:53:4D:41:32:20:06:E3:9A:6E:51:B1:A9:A9:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/3231312e3136322e3132302e302f32312d3231203d3e203137363233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 211.162.120.0/21 Signature Algorithm: sha256WithRSAEncryption 07:7c:a0:de:99:ac:33:14:08:d2:71:eb:63:28:82:4b:53:97: e5:9a:c8:78:9e:1d:59:d3:07:dd:89:af:2f:7a:de:0c:1a:91: bc:42:0e:4d:53:d8:2c:ab:03:85:0f:ad:0a:ad:fa:f5:ea:a8: ca:1f:45:07:09:c1:07:5f:a9:f4:a3:e8:fb:90:c9:24:bb:c8: d8:b3:a9:f0:75:37:bb:6f:e7:de:b5:73:a5:f1:c7:a1:cb:6e: 85:c6:63:b1:d1:11:c8:ed:28:a6:87:90:dd:4e:29:11:63:08: 92:9c:96:04:8a:f9:4b:09:ad:e6:8a:82:1c:31:e1:75:38:fa: f1:5c:da:b4:19:2e:1a:b7:a1:9b:50:42:7e:ba:f3:ce:49:b0: ee:16:32:ac:cf:3d:fc:56:93:77:0e:b3:2c:28:c8:bc:f2:d2: 23:62:ad:9f:cb:4e:47:bc:00:88:f0:36:6a:78:21:a2:e2:f1: 1d:8d:34:75:e5:16:02:c4:c2:b8:d7:15:42:a6:00:ab:71:a2: ab:6b:6e:ce:27:93:2e:e7:21:5c:58:4a:f0:36:ec:a9:89:c7: fb:5d:03:62:c4:05:20:17:29:eb:87:87:56:3f:1d:56:b2:70: ff:22:52:28:e1:1e:68:9f:d1:60:ef:39:9f:50:94:9a:6c:14: 0c:f7:01:15 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUOshJSyIteQUbiFareVbS3rLZNaIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzJDNkJFREJDQTJGNTM0RDQxMzIyMDA2RTM5QTZFNTFC MUE5QTlENTAeFw0yNjA0MTAwMjU1MzlaFw0yNzA0MDkwMzAwMzlaMDMxMTAvBgNV BAMTKDk2OUQ4RTExNzA2NkU2QjJENzk0MEU0OUI4ODJFNDVBQjIzQUFENUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC95HSZNip/9LEYnz7OIumQgZGu 3kzOjRLTzeVxHxypph2Hj24yDw/MDj5XJOcW4VkQyNOASAS1ZDoh9p4Nsw74H7ZC uFyN6rqmDpdKANQoUjCotGrCrMDXvfZkEOxPHwvkEt+2gEeREeWBHELerz8rxf4i TBy+dxOhTF0s8Y772CxZx4kAXO1xm/XTv2kXEFUBLzG72uwDeoHG37u8y8IXaKOk 2x+KqxRJHuN3XqHzQRyJVj8rlXS47rzdVzMHLihytMNrWYuhiI9sNXJuBrsHWy9O lBNt86YY3uwu/gA+qB71HunQRf0Swd12bBf9g+mlaBPjDTyXwI4V3aUxEeeZAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUlp2OEXBm5rLXlA5JuILkWrI6rVwwHwYDVR0j BBgwFoAUMsa+28ovU01BMiAG45puUbGpqdUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDgxNTk2OTMyNDMwMjMzNy8wLzMyQzZCRURCQ0EyRjUzNEQ0MTMyMjAwNkUzOUE2 RTUxQjFBOUE5RDUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMzJDNkJFREJDQTJGNTM0RDQxMzIyMDA2RTM5QTZFNTFCMUE5QTlENS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTQ4MTU5NjkzMjQzMDIzMzcvMC8zMjMxMzEyZTMx MzYzMjJlMzEzMjMwMmUzMDJmMzIzMTJkMzIzMTIwM2QzZTIwMzEzNzM2MzIzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEA9OieDANBgkqhkiG9w0BAQsFAAOCAQEAB3yg3pmsMxQI0nHrYyiC S1OX5ZrIeJ4dWdMH3YmvL3reDBqRvEIOTVPYLKsDhQ+tCq369eqoyh9FBwnBB1+p 9KPo+5DJJLvI2LOp8HU3u2/n3rVzpfHHoctuhcZjsdERyO0opoeQ3U4pEWMIkpyW BIr5Swmt5oqCHDHhdTj68VzatBkuGrehm1BCfrrzzkmw7hYyrM89/FaTdw6zLCjI vPLSI2Ktn8tOR7wAiPA2anghouLxHY00deUWAsTCuNcVQqYAq3Giq2tuzieTLuch XFhK8DbsqYnH+10DYsQFIBcp64eHVj8dVrJw/yJSKOEeaJ/RYO85n1CUmmwUDPcB FQ== -----END CERTIFICATE-----Generated at Mon Apr 13 15:20:48 2026 by rpki-client