$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095920006954221569/1/3231312e3135302e3132382e302f32342d3234203d3e2039383033.roa File: 3231312e3135302e3132382e302f32342d3234203d3e2039383033.roa (raw, json) Hash identifier: S7Hcu6QVVzcYJZ+TIhGWLG0GW1wRjr2gL5ORninwvZQ= Subject key identifier: 07:E5:53:10:80:EE:43:B9:50:1C:A0:41:52:60:6D:95:8F:63:B1:E1 Certificate issuer: /CN=22102F7EAB37C81E87BB5EB21560BFA6243553CC Certificate serial: 607513F034887E42825C2DD577E59268499D9658 Authority key identifier: 22:10:2F:7E:AB:37:C8:1E:87:BB:5E:B2:15:60:BF:A6:24:35:53:CC Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/3231312e3135302e3132382e302f32342d3234203d3e2039383033.roa Signing time: Mon 13 Apr 2026 06:12:14 +0000 ROA not before: Mon 13 Apr 2026 06:07:14 +0000 ROA not after: Mon 12 Apr 2027 06:12:14 +0000 asID: 9803 IP address blocks: 211.150.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.crl rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 10:09:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:75:13:f0:34:88:7e:42:82:5c:2d:d5:77:e5:92:68:49:9d:96:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22102F7EAB37C81E87BB5EB21560BFA6243553CC Validity Not Before: Apr 13 06:07:14 2026 GMT Not After : Apr 12 06:12:14 2027 GMT Subject: CN=07E5531080EE43B9501CA04152606D958F63B1E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:0b:b1:72:87:8b:06:0c:5b:4d:a2:8c:6a:53: f5:a0:db:aa:4a:09:c3:d0:70:e6:48:15:c0:e1:27: 69:16:6a:4c:31:9a:e7:9f:51:35:6c:0b:ed:8b:26: b5:7c:30:28:63:72:6d:c3:a7:48:07:37:b7:90:58: 23:30:5e:38:11:40:8f:32:8c:11:44:6c:39:04:d0: c8:33:f3:92:ae:81:a3:d9:c4:e2:f6:37:19:ab:ff: 17:ab:11:84:22:fe:b8:cf:d6:9b:a9:5d:8d:b5:11: 10:9d:eb:d3:44:8a:8e:be:7f:ea:2f:59:dd:3f:43: b9:99:ea:66:6f:27:05:ae:f0:3b:81:0f:be:6b:f5: 1d:48:d5:f5:89:58:1a:b7:d7:46:85:e2:b7:82:be: fc:80:8e:6c:d4:d9:b1:20:67:06:49:cd:62:2b:7e: cd:77:08:f2:78:93:cf:03:0b:0a:3c:6f:e8:6d:21: 4c:45:8c:16:12:68:93:08:52:52:3e:65:d9:31:1b: 68:2a:65:9a:de:24:36:28:66:3e:f4:3e:23:84:1d: 3d:a6:3b:a1:e4:14:a8:d1:fa:27:96:51:d6:d4:ff: fd:c7:f5:45:73:57:52:25:7b:9d:30:ec:6e:a2:c7: 77:b7:b6:4b:5f:e8:00:4b:17:b0:20:65:d3:07:8e: 47:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:E5:53:10:80:EE:43:B9:50:1C:A0:41:52:60:6D:95:8F:63:B1:E1 X509v3 Authority Key Identifier: keyid:22:10:2F:7E:AB:37:C8:1E:87:BB:5E:B2:15:60:BF:A6:24:35:53:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/3231312e3135302e3132382e302f32342d3234203d3e2039383033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 211.150.128.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:9c:45:31:4d:81:1a:40:bf:5e:7a:eb:81:62:83:f1:8a:59: 29:2a:e3:e5:cf:36:bf:8d:78:73:ec:1a:aa:73:61:76:e7:41: 69:68:fa:7e:09:e8:1b:16:13:b3:2c:e1:28:7e:44:5e:79:5e: 57:6d:5f:38:cb:35:56:a6:d6:62:89:4b:5f:a8:86:24:5e:60: 2e:7c:4e:61:38:24:02:14:f8:6d:4b:b3:a4:28:9b:d6:f5:63: 69:78:8b:78:44:e8:17:8b:22:25:f4:b2:da:b7:a6:4a:98:22: af:7b:36:1f:ed:ff:23:bb:d9:38:df:91:b8:e5:a8:f3:bc:7e: 80:e4:a4:df:e0:cf:f9:69:ce:88:d2:7e:71:62:d5:c7:9c:5c: db:2f:fd:0b:e1:f4:df:68:fa:81:15:a0:0d:58:da:c4:d0:38: 38:2c:c4:4a:ab:cb:0a:ce:34:2d:78:ef:45:cb:86:7b:5c:7b: e1:87:05:a1:b7:c3:c1:ed:ff:79:db:c4:14:8c:1d:91:6b:8f: f3:0a:ce:df:52:87:2b:e3:46:49:66:e8:d0:70:5f:61:c9:86: c9:15:d8:d1:83:9f:93:24:35:08:34:48:a1:75:01:06:9d:c5: 7b:41:91:46:6e:85:d3:5c:86:73:dc:66:09:2b:b1:40:6c:6b: 26:3b:f4:32 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUYHUT8DSIfkKCXC3Vd+WSaEmdllgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjIxMDJGN0VBQjM3QzgxRTg3QkI1RUIyMTU2MEJGQTYy NDM1NTNDQzAeFw0yNjA0MTMwNjA3MTRaFw0yNzA0MTIwNjEyMTRaMDMxMTAvBgNV BAMTKDA3RTU1MzEwODBFRTQzQjk1MDFDQTA0MTUyNjA2RDk1OEY2M0IxRTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpC7Fyh4sGDFtNooxqU/Wg26pK CcPQcOZIFcDhJ2kWakwxmuefUTVsC+2LJrV8MChjcm3Dp0gHN7eQWCMwXjgRQI8y jBFEbDkE0Mgz85KugaPZxOL2Nxmr/xerEYQi/rjP1pupXY21ERCd69NEio6+f+ov Wd0/Q7mZ6mZvJwWu8DuBD75r9R1I1fWJWBq310aF4reCvvyAjmzU2bEgZwZJzWIr fs13CPJ4k88DCwo8b+htIUxFjBYSaJMIUlI+ZdkxG2gqZZreJDYoZj70PiOEHT2m O6HkFKjR+ieWUdbU//3H9UVzV1Ile50w7G6ix3e3tktf6ABLF7AgZdMHjkcXAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUB+VTEIDuQ7lQHKBBUmBtlY9jseEwHwYDVR0j BBgwFoAUIhAvfqs3yB6Hu16yFWC/piQ1U8wwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTkyMDAwNjk1NDIyMTU2OS8xLzIyMTAyRjdFQUIzN0M4MUU4N0JCNUVCMjE1NjBC RkE2MjQzNTUzQ0MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjIxMDJGN0VBQjM3QzgxRTg3QkI1RUIyMTU2MEJGQTYyNDM1NTNDQy5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NTkyMDAwNjk1NDIyMTU2OS8xLzMyMzEzMTJlMzEz NTMwMmUzMTMyMzgyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzOTM4MzAzMy5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEANOWgDANBgkqhkiG9w0BAQsFAAOCAQEAWpxFMU2BGkC/XnrrgWKD8YpZ KSrj5c82v414c+waqnNhdudBaWj6fgnoGxYTsyzhKH5EXnleV21fOMs1VqbWYolL X6iGJF5gLnxOYTgkAhT4bUuzpCib1vVjaXiLeEToF4siJfSy2remSpgir3s2H+3/ I7vZON+RuOWo87x+gOSk3+DP+WnOiNJ+cWLVx5xc2y/9C+H032j6gRWgDVjaxNA4 OCzESqvLCs40LXjvRcuGe1x74YcFobfDwe3/edvEFIwdkWuP8wrO31KHK+NGSWbo 0HBfYcmGyRXY0YOfkyQ1CDRIoXUBBp3Fe0GRRm6F01yGc9xmCSuxQGxrJjv0Mg== -----END CERTIFICATE-----Generated at Mon Apr 13 15:20:49 2026 by rpki-client