$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095920006954221569/1/3231312e3135302e3132382e302f31382d3234203d3e2039383033.roa File: 3231312e3135302e3132382e302f31382d3234203d3e2039383033.roa (raw, json) Hash identifier: Iy7pJUKS62O213YpRT3Nh6MR3eqtNr5cQw4Mojyr6XM= Subject key identifier: EF:8C:CE:9E:0E:9E:5F:0F:C1:3B:12:AF:C0:5C:76:F5:26:11:39:DB Certificate issuer: /CN=22102F7EAB37C81E87BB5EB21560BFA6243553CC Certificate serial: 7AF63722407EF1110DEC3C435F287495144EA0DA Authority key identifier: 22:10:2F:7E:AB:37:C8:1E:87:BB:5E:B2:15:60:BF:A6:24:35:53:CC Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/3231312e3135302e3132382e302f31382d3234203d3e2039383033.roa Signing time: Mon 13 Apr 2026 04:14:47 +0000 ROA not before: Mon 13 Apr 2026 04:09:47 +0000 ROA not after: Mon 12 Apr 2027 04:14:47 +0000 asID: 9803 IP address blocks: 211.150.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.crl rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 10:09:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:f6:37:22:40:7e:f1:11:0d:ec:3c:43:5f:28:74:95:14:4e:a0:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22102F7EAB37C81E87BB5EB21560BFA6243553CC Validity Not Before: Apr 13 04:09:47 2026 GMT Not After : Apr 12 04:14:47 2027 GMT Subject: CN=EF8CCE9E0E9E5F0FC13B12AFC05C76F5261139DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:ab:49:ee:f4:60:84:fd:82:89:ee:21:b8:2a: 91:be:50:89:d9:43:87:c8:6d:2a:11:0e:26:28:b6: 26:60:59:be:90:e4:27:03:3c:ba:7a:a8:54:33:8f: ea:93:db:45:cd:3a:1b:82:ae:9d:bb:f8:a8:59:79: dd:71:5e:51:d4:80:51:49:bc:48:42:51:86:ed:83: f9:c4:d5:9f:35:0f:71:b0:97:5c:ac:fe:0e:e3:a6: c0:0f:12:23:80:da:ae:66:b1:d1:9b:5d:67:74:98: f3:7c:f7:89:83:2c:e3:c4:8a:ae:91:3c:9a:e3:a4: 20:42:97:47:ba:eb:c9:a9:20:40:a6:a9:59:3e:f3: e6:0b:46:74:ad:4c:81:cd:03:57:37:7b:7f:6d:ad: 87:b0:61:0d:b9:b7:be:a7:d1:3a:b5:4a:4d:f4:70: 23:01:f1:23:59:3a:5d:3d:9e:32:03:ea:f4:20:0c: cb:f3:ca:96:9d:87:0d:41:ae:6b:3e:b0:40:b1:d9: 93:de:4c:28:c3:05:3e:77:53:45:99:86:d4:b6:d7: 35:57:98:19:36:75:90:28:32:1d:d8:0b:84:20:1b: 2a:85:fc:89:b2:4a:05:99:aa:6a:a0:ed:81:55:0d: 0f:7c:06:97:6c:0c:61:c1:cb:04:82:76:6f:fd:20: 57:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:8C:CE:9E:0E:9E:5F:0F:C1:3B:12:AF:C0:5C:76:F5:26:11:39:DB X509v3 Authority Key Identifier: keyid:22:10:2F:7E:AB:37:C8:1E:87:BB:5E:B2:15:60:BF:A6:24:35:53:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/3231312e3135302e3132382e302f31382d3234203d3e2039383033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 211.150.128.0/18 Signature Algorithm: sha256WithRSAEncryption 91:44:0a:de:e1:55:11:91:bb:00:b2:f0:70:74:94:97:0f:d9: 9d:3e:2c:f6:28:e4:38:e3:1d:6b:0b:dc:28:ce:9e:b4:e4:0c: ec:45:5a:1a:19:20:1c:a2:e8:a1:ba:4c:fa:c3:cc:fe:2a:df: 14:3f:74:14:04:8f:3a:05:07:1c:a4:ae:f4:87:39:f8:00:0f: 92:2c:21:87:fc:a1:79:c4:0b:e3:fb:56:db:89:90:1e:7a:86: 44:07:56:7d:3e:4e:49:21:07:05:b0:aa:00:2a:16:78:6c:b2: 71:61:09:63:a8:ca:50:36:eb:aa:af:13:a4:7c:a4:6e:47:3a: 16:77:f1:39:ea:56:d8:d1:c2:d4:f2:d9:6f:a3:b5:c8:1d:c1: 64:80:60:b0:3e:2b:76:7c:7e:c4:17:21:99:c8:18:bf:bb:93: bb:e8:64:bf:3c:2e:05:e5:f4:e9:0d:2c:c9:39:e6:3c:b0:eb: 51:6c:bb:63:51:14:9e:9c:81:1b:6e:38:01:56:1e:95:99:a5: c5:09:49:b8:b8:a0:41:45:da:cd:1a:89:15:82:d1:82:74:99: 64:d7:bc:08:3a:8b:99:6b:fc:21:93:ab:d8:9e:d4:bf:98:c0: 41:79:31:90:84:30:7f:a8:66:a2:48:ba:6e:87:de:27:13:27: 55:dd:64:0b -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUevY3IkB+8REN7DxDXyh0lRROoNowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjIxMDJGN0VBQjM3QzgxRTg3QkI1RUIyMTU2MEJGQTYy NDM1NTNDQzAeFw0yNjA0MTMwNDA5NDdaFw0yNzA0MTIwNDE0NDdaMDMxMTAvBgNV BAMTKEVGOENDRTlFMEU5RTVGMEZDMTNCMTJBRkMwNUM3NkY1MjYxMTM5REIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXq0nu9GCE/YKJ7iG4KpG+UInZ Q4fIbSoRDiYotiZgWb6Q5CcDPLp6qFQzj+qT20XNOhuCrp27+KhZed1xXlHUgFFJ vEhCUYbtg/nE1Z81D3Gwl1ys/g7jpsAPEiOA2q5msdGbXWd0mPN894mDLOPEiq6R PJrjpCBCl0e668mpIECmqVk+8+YLRnStTIHNA1c3e39trYewYQ25t76n0Tq1Sk30 cCMB8SNZOl09njID6vQgDMvzypadhw1Brms+sECx2ZPeTCjDBT53U0WZhtS21zVX mBk2dZAoMh3YC4QgGyqF/ImySgWZqmqg7YFVDQ98BpdsDGHBywSCdm/9IFdZAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQU74zOng6eXw/BOxKvwFx29SYROdswHwYDVR0j BBgwFoAUIhAvfqs3yB6Hu16yFWC/piQ1U8wwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTkyMDAwNjk1NDIyMTU2OS8xLzIyMTAyRjdFQUIzN0M4MUU4N0JCNUVCMjE1NjBC RkE2MjQzNTUzQ0MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjIxMDJGN0VBQjM3QzgxRTg3QkI1RUIyMTU2MEJGQTYyNDM1NTNDQy5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NTkyMDAwNjk1NDIyMTU2OS8xLzMyMzEzMTJlMzEz NTMwMmUzMTMyMzgyZTMwMmYzMTM4MmQzMjM0MjAzZDNlMjAzOTM4MzAzMy5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEBtOWgDANBgkqhkiG9w0BAQsFAAOCAQEAkUQK3uFVEZG7ALLwcHSUlw/Z nT4s9ijkOOMdawvcKM6etOQM7EVaGhkgHKLoobpM+sPM/irfFD90FASPOgUHHKSu 9Ic5+AAPkiwhh/yhecQL4/tW24mQHnqGRAdWfT5OSSEHBbCqACoWeGyycWEJY6jK UDbrqq8TpHykbkc6FnfxOepW2NHC1PLZb6O1yB3BZIBgsD4rdnx+xBchmcgYv7uT u+hkvzwuBeX06Q0syTnmPLDrUWy7Y1EUnpyBG244AVYelZmlxQlJuLigQUXazRqJ FYLRgnSZZNe8CDqLmWv8IZOr2J7Uv5jAQXkxkIQwf6hmoki6bofeJxMnVd1kCw== -----END CERTIFICATE-----Generated at Mon Apr 13 13:53:24 2026 by rpki-client