$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095920006954221569/1/3231312e3135302e3131342e302f32332d3233203d3e203233373234.roa File: 3231312e3135302e3131342e302f32332d3233203d3e203233373234.roa (raw, json) Hash identifier: /N41C8IZCYtR5Q93paxQKC5pHJDkVfDrpJDU7nOx8dk= Subject key identifier: 73:FF:14:76:DC:5A:9A:16:99:59:39:A1:4C:F3:6E:11:76:F8:F3:68 Certificate issuer: /CN=22102F7EAB37C81E87BB5EB21560BFA6243553CC Certificate serial: 33910209C3A6C4A243DAB983E87BFD83ACE9017B Authority key identifier: 22:10:2F:7E:AB:37:C8:1E:87:BB:5E:B2:15:60:BF:A6:24:35:53:CC Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/3231312e3135302e3131342e302f32332d3233203d3e203233373234.roa Signing time: Mon 13 Apr 2026 05:49:34 +0000 ROA not before: Mon 13 Apr 2026 05:44:34 +0000 ROA not after: Mon 12 Apr 2027 05:49:34 +0000 asID: 23724 IP address blocks: 211.150.114.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.crl rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 10:09:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:91:02:09:c3:a6:c4:a2:43:da:b9:83:e8:7b:fd:83:ac:e9:01:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22102F7EAB37C81E87BB5EB21560BFA6243553CC Validity Not Before: Apr 13 05:44:34 2026 GMT Not After : Apr 12 05:49:34 2027 GMT Subject: CN=73FF1476DC5A9A16995939A14CF36E1176F8F368 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:76:f2:f7:7d:3a:77:47:4c:4a:ab:68:c6:9a: 04:cf:a4:82:e9:c7:b5:09:22:cb:6f:ce:d4:3d:22: da:bb:8b:4c:d1:af:7f:b0:1c:08:1f:b6:0d:0d:df: 58:f0:c7:20:ef:70:d2:b0:3f:cd:56:5d:2e:cb:52: 7a:bc:06:8e:cc:dc:bf:d7:a5:7f:b5:4f:48:83:73: cf:01:bc:f0:e8:4f:55:bf:d0:94:71:3a:88:10:50: b0:4d:da:1b:0b:a5:43:bf:39:27:be:c0:36:a7:e6: e6:0e:12:4e:e0:21:c1:d6:be:20:ef:1f:25:a3:6e: be:3f:d3:cd:d0:85:d4:91:18:4b:c6:31:83:dc:bf: 36:26:02:d5:ca:73:2a:5d:73:c6:8a:12:cb:ca:48: ef:36:ec:2f:af:58:de:65:b9:85:b1:7c:ac:75:6f: 8f:a8:8f:c5:c8:c6:0e:3d:ac:c1:a2:6c:90:f5:29: 68:72:18:d5:57:4f:b2:ae:0f:f6:74:99:18:27:05: e9:30:50:93:25:a4:df:65:61:6c:88:40:3d:45:14: 7c:c2:62:22:9e:7c:ec:6b:32:12:28:3a:ef:ae:79: 25:c2:8e:52:b0:bf:6c:10:9a:6f:ea:ae:5c:de:02: 9d:ae:85:b5:50:a3:20:01:f8:0e:f6:d3:14:bd:1c: 96:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:FF:14:76:DC:5A:9A:16:99:59:39:A1:4C:F3:6E:11:76:F8:F3:68 X509v3 Authority Key Identifier: keyid:22:10:2F:7E:AB:37:C8:1E:87:BB:5E:B2:15:60:BF:A6:24:35:53:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/3231312e3135302e3131342e302f32332d3233203d3e203233373234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 211.150.114.0/23 Signature Algorithm: sha256WithRSAEncryption 18:46:5a:35:21:a6:be:8a:87:52:4e:d9:e6:0f:bd:b8:27:3c: bb:3f:2e:5b:7d:b6:6b:1a:14:5d:a3:43:da:13:5a:ac:69:c5: 2c:ab:4b:30:3e:fe:f7:1e:04:b7:2b:98:71:6d:7a:71:04:b2: f2:0f:c9:ca:85:f4:f6:c6:94:9f:f3:c8:56:3d:f4:88:34:fa: 98:20:8c:fa:95:13:96:db:d7:ff:86:f8:5f:55:9f:1f:cd:ad: 27:9d:68:cf:7c:3c:94:24:47:c1:1c:3e:2d:24:e7:7c:b6:73: 87:0e:ed:68:7e:0b:9e:88:0c:e4:4b:c3:68:ef:45:51:eb:da: d3:29:f1:66:9d:35:f4:ac:1a:1a:c3:3e:8a:4f:14:75:0e:2f: 11:07:e2:e0:ff:06:45:dd:09:d6:e6:6c:bb:5f:37:7c:92:3d: 7a:44:cf:16:c6:e4:14:c3:09:52:6f:95:af:1b:9c:73:b9:be: 54:cb:43:7b:74:0f:a0:01:0b:1e:50:b2:11:6b:c4:a6:fd:16: 59:b0:63:07:91:37:2c:5e:ab:dc:5a:cf:a5:84:4b:fb:d5:2c: 7d:e8:07:bd:70:3a:8a:81:b9:3b:fb:ed:a6:23:58:eb:6f:f3: b9:a2:40:b3:87:eb:78:b1:1c:aa:fd:65:41:5f:fd:d3:74:23: b8:88:2d:3b -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUM5ECCcOmxKJD2rmD6Hv9g6zpAXswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjIxMDJGN0VBQjM3QzgxRTg3QkI1RUIyMTU2MEJGQTYy NDM1NTNDQzAeFw0yNjA0MTMwNTQ0MzRaFw0yNzA0MTIwNTQ5MzRaMDMxMTAvBgNV BAMTKDczRkYxNDc2REM1QTlBMTY5OTU5MzlBMTRDRjM2RTExNzZGOEYzNjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQdvL3fTp3R0xKq2jGmgTPpILp x7UJIstvztQ9Itq7i0zRr3+wHAgftg0N31jwxyDvcNKwP81WXS7LUnq8Bo7M3L/X pX+1T0iDc88BvPDoT1W/0JRxOogQULBN2hsLpUO/OSe+wDan5uYOEk7gIcHWviDv HyWjbr4/083QhdSRGEvGMYPcvzYmAtXKcypdc8aKEsvKSO827C+vWN5luYWxfKx1 b4+oj8XIxg49rMGibJD1KWhyGNVXT7KuD/Z0mRgnBekwUJMlpN9lYWyIQD1FFHzC YiKefOxrMhIoOu+ueSXCjlKwv2wQmm/qrlzeAp2uhbVQoyAB+A720xS9HJbLAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUc/8UdtxamhaZWTmhTPNuEXb482gwHwYDVR0j BBgwFoAUIhAvfqs3yB6Hu16yFWC/piQ1U8wwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTkyMDAwNjk1NDIyMTU2OS8xLzIyMTAyRjdFQUIzN0M4MUU4N0JCNUVCMjE1NjBC RkE2MjQzNTUzQ0MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjIxMDJGN0VBQjM3QzgxRTg3QkI1RUIyMTU2MEJGQTYyNDM1NTNDQy5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTU5MjAwMDY5NTQyMjE1NjkvMS8zMjMxMzEyZTMx MzUzMDJlMzEzMTM0MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzIzMzM3MzIzNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAdOWcjANBgkqhkiG9w0BAQsFAAOCAQEAGEZaNSGmvoqHUk7Z5g+9 uCc8uz8uW322axoUXaND2hNarGnFLKtLMD7+9x4EtyuYcW16cQSy8g/JyoX09saU n/PIVj30iDT6mCCM+pUTltvX/4b4X1WfH82tJ51oz3w8lCRHwRw+LSTnfLZzhw7t aH4LnogM5EvDaO9FUeva0ynxZp019KwaGsM+ik8UdQ4vEQfi4P8GRd0J1uZsu183 fJI9ekTPFsbkFMMJUm+Vrxucc7m+VMtDe3QPoAELHlCyEWvEpv0WWbBjB5E3LF6r 3FrPpYRL+9UsfegHvXA6ioG5O/vtpiNY62/zuaJAs4freLEcqv1lQV/903QjuIgt Ow== -----END CERTIFICATE-----Generated at Mon Apr 13 12:23:25 2026 by rpki-client