$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095920006954221569/1/3231302e37382e3132382e302f32322d3232203d3e2039383033.roa File: 3231302e37382e3132382e302f32322d3232203d3e2039383033.roa (raw, json) Hash identifier: g9d3B9hoJrTm52j8B539dJ9HDnLv7lTCn1c0qWVA0Dc= Subject key identifier: B5:D3:FB:7B:B4:9B:7C:07:08:51:29:B5:B1:53:B1:6C:52:AF:B6:C1 Certificate issuer: /CN=22102F7EAB37C81E87BB5EB21560BFA6243553CC Certificate serial: 116F97DD660E63B0B76966C9DE80758F9ABE683A Authority key identifier: 22:10:2F:7E:AB:37:C8:1E:87:BB:5E:B2:15:60:BF:A6:24:35:53:CC Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/3231302e37382e3132382e302f32322d3232203d3e2039383033.roa Signing time: Mon 13 Apr 2026 06:01:01 +0000 ROA not before: Mon 13 Apr 2026 05:56:01 +0000 ROA not after: Mon 12 Apr 2027 06:01:01 +0000 asID: 9803 IP address blocks: 210.78.128.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.crl rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 10:09:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:6f:97:dd:66:0e:63:b0:b7:69:66:c9:de:80:75:8f:9a:be:68:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22102F7EAB37C81E87BB5EB21560BFA6243553CC Validity Not Before: Apr 13 05:56:01 2026 GMT Not After : Apr 12 06:01:01 2027 GMT Subject: CN=B5D3FB7BB49B7C07085129B5B153B16C52AFB6C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:7a:0f:1c:ce:cb:8c:eb:e6:df:e6:7b:44:95: de:1d:74:97:69:08:1e:a8:38:8a:f3:25:8a:e9:35: 91:4b:e9:67:6b:9f:9d:cf:8f:25:93:2e:10:a5:f2: 0b:3b:bb:75:d2:04:5a:34:91:7e:82:ab:a8:cd:f7: 21:cd:ae:d6:b3:0b:be:9b:ce:e5:05:07:21:f1:ee: 3c:a3:cd:09:3f:b4:68:c3:1e:43:14:9a:55:17:ef: 19:a7:68:db:bf:e8:5c:12:bc:63:0c:56:78:a9:60: a0:25:87:0b:c0:d2:61:a2:e5:fb:df:be:9b:6f:b1: 1d:0e:21:ee:03:26:2c:3f:4c:ca:04:e3:8d:37:a3: 35:5d:9e:22:46:64:d8:78:0c:d1:f8:97:da:ea:5c: 7f:8e:ab:83:ae:6b:09:31:db:e8:e9:1b:70:ec:5a: 86:7b:6f:da:0d:8d:c8:93:62:ee:a0:10:70:d5:1a: 96:92:ca:66:1c:55:22:1a:b9:c2:4b:6d:fb:d3:fc: a9:3d:60:30:a1:61:f1:ee:0b:ab:2e:80:28:c3:36: 75:7b:f1:05:b4:4c:c6:cf:38:aa:02:42:91:bf:83: 03:1c:cf:37:90:14:ba:ba:bb:73:6d:06:10:a5:0b: b9:09:ee:82:9c:fd:c6:28:13:29:1c:49:8b:08:e1: 7a:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:D3:FB:7B:B4:9B:7C:07:08:51:29:B5:B1:53:B1:6C:52:AF:B6:C1 X509v3 Authority Key Identifier: keyid:22:10:2F:7E:AB:37:C8:1E:87:BB:5E:B2:15:60:BF:A6:24:35:53:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/3231302e37382e3132382e302f32322d3232203d3e2039383033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.78.128.0/22 Signature Algorithm: sha256WithRSAEncryption 5a:e0:44:36:c0:bd:89:0f:bd:6b:6f:ad:a3:34:d8:c3:9a:7e: b5:df:f2:29:d9:af:22:09:fb:9e:ed:56:fe:fb:88:5c:60:f8: 2a:47:0f:27:f5:24:31:0d:b3:96:67:f1:02:01:47:62:be:e2: b6:8d:1c:18:42:be:82:1c:9d:8f:53:e0:ef:c6:95:45:f5:09: 61:4b:5f:6d:88:e9:c5:da:26:4e:4c:21:7e:17:b8:fb:d8:40: 30:de:fe:30:a4:3c:ec:fe:82:27:ea:15:d3:b0:ef:c5:f4:36: 03:36:fb:76:bb:4e:45:70:41:97:66:50:25:0f:21:11:c1:5a: 3f:29:0c:b6:02:df:14:b4:3f:c8:0e:4b:35:54:32:c2:e8:3e: a8:b1:18:c0:0d:1d:98:0d:73:a5:b7:54:54:40:8f:c4:9a:58: 91:17:33:18:c0:1f:16:5e:d1:00:76:c5:d6:59:a1:b2:97:07: 30:fd:f6:d2:ba:15:77:81:c9:1d:e1:2c:c2:b1:7b:be:cb:88: 86:5c:50:f4:84:db:c2:f2:67:bd:e5:12:2e:95:9d:3a:52:32: 0a:3d:ec:ea:b0:cd:a5:a4:e2:97:7c:0c:ea:eb:59:cb:fa:5d: c5:76:f8:89:86:e3:79:b2:a9:0b:d3:11:4e:08:b9:b7:30:26: 5c:2f:19:4f -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUEW+X3WYOY7C3aWbJ3oB1j5q+aDowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjIxMDJGN0VBQjM3QzgxRTg3QkI1RUIyMTU2MEJGQTYy NDM1NTNDQzAeFw0yNjA0MTMwNTU2MDFaFw0yNzA0MTIwNjAxMDFaMDMxMTAvBgNV BAMTKEI1RDNGQjdCQjQ5QjdDMDcwODUxMjlCNUIxNTNCMTZDNTJBRkI2QzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDeg8czsuM6+bf5ntEld4ddJdp CB6oOIrzJYrpNZFL6Wdrn53PjyWTLhCl8gs7u3XSBFo0kX6Cq6jN9yHNrtazC76b zuUFByHx7jyjzQk/tGjDHkMUmlUX7xmnaNu/6FwSvGMMVnipYKAlhwvA0mGi5fvf vptvsR0OIe4DJiw/TMoE4403ozVdniJGZNh4DNH4l9rqXH+Oq4Ouawkx2+jpG3Ds WoZ7b9oNjciTYu6gEHDVGpaSymYcVSIaucJLbfvT/Kk9YDChYfHuC6sugCjDNnV7 8QW0TMbPOKoCQpG/gwMczzeQFLq6u3NtBhClC7kJ7oKc/cYoEykcSYsI4XpfAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUtdP7e7SbfAcIUSm1sVOxbFKvtsEwHwYDVR0j BBgwFoAUIhAvfqs3yB6Hu16yFWC/piQ1U8wwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTkyMDAwNjk1NDIyMTU2OS8xLzIyMTAyRjdFQUIzN0M4MUU4N0JCNUVCMjE1NjBC RkE2MjQzNTUzQ0MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjIxMDJGN0VBQjM3QzgxRTg3QkI1RUIyMTU2MEJGQTYyNDM1NTNDQy5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk1OTIwMDA2OTU0MjIxNTY5LzEvMzIzMTMwMmUzNzM4 MmUzMTMyMzgyZTMwMmYzMjMyMmQzMjMyMjAzZDNlMjAzOTM4MzAzMy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAtJOgDANBgkqhkiG9w0BAQsFAAOCAQEAWuBENsC9iQ+9a2+tozTYw5p+td/y KdmvIgn7nu1W/vuIXGD4KkcPJ/UkMQ2zlmfxAgFHYr7ito0cGEK+ghydj1Pg78aV RfUJYUtfbYjpxdomTkwhfhe4+9hAMN7+MKQ87P6CJ+oV07DvxfQ2Azb7drtORXBB l2ZQJQ8hEcFaPykMtgLfFLQ/yA5LNVQywug+qLEYwA0dmA1zpbdUVECPxJpYkRcz GMAfFl7RAHbF1lmhspcHMP320roVd4HJHeEswrF7vsuIhlxQ9ITbwvJnveUSLpWd OlIyCj3s6rDNpaTil3wM6utZy/pdxXb4iYbjebKpC9MRTgi5tzAmXC8ZTw== -----END CERTIFICATE-----Generated at Mon Apr 13 12:24:19 2026 by rpki-client