$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095920006954221569/1/3231312e3135302e36342e302f32302d3230203d3e203233373234.roa File: 3231312e3135302e36342e302f32302d3230203d3e203233373234.roa (raw, json) Hash identifier: 8Mipqd5VSCLIE7ckbJlkKsFvCvNdrD/MGNTiQIqJBa8= Subject key identifier: 46:5B:FF:0D:0D:83:FD:49:0B:3A:16:11:2F:5D:01:BE:CC:83:13:1E Certificate issuer: /CN=22102F7EAB37C81E87BB5EB21560BFA6243553CC Certificate serial: 3AC67EBD06B33F02C367C607C6FAC6EC08C3E148 Authority key identifier: 22:10:2F:7E:AB:37:C8:1E:87:BB:5E:B2:15:60:BF:A6:24:35:53:CC Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/3231312e3135302e36342e302f32302d3230203d3e203233373234.roa Signing time: Mon 13 Apr 2026 06:50:53 +0000 ROA not before: Mon 13 Apr 2026 06:45:53 +0000 ROA not after: Mon 12 Apr 2027 06:50:53 +0000 asID: 23724 IP address blocks: 211.150.64.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.crl rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 10:09:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:c6:7e:bd:06:b3:3f:02:c3:67:c6:07:c6:fa:c6:ec:08:c3:e1:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22102F7EAB37C81E87BB5EB21560BFA6243553CC Validity Not Before: Apr 13 06:45:53 2026 GMT Not After : Apr 12 06:50:53 2027 GMT Subject: CN=465BFF0D0D83FD490B3A16112F5D01BECC83131E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:5a:0f:9d:cc:9e:ea:9f:25:c8:6e:4b:92:13: 28:61:c0:f2:88:e3:b4:dc:6a:24:4b:2a:11:f7:e5: ea:6f:e1:ae:6c:61:bd:fe:15:1c:3c:2c:73:d5:4a: da:12:d2:62:fe:6e:0d:d2:98:15:3a:27:0c:97:e9: 80:16:64:10:9f:56:18:93:9b:f7:49:91:3c:bf:02: f9:c6:ab:8d:3d:81:5d:58:2b:1a:93:ee:24:9c:41: 1b:71:90:1c:e1:0c:b9:9f:98:15:8b:71:fb:bc:35: 04:0b:28:48:e9:91:dc:dd:5d:71:80:35:fd:ec:63: fc:c9:23:bd:ef:6c:b4:88:51:03:3d:28:af:93:a5: 01:97:dd:e1:f2:ce:38:cb:90:6f:2d:ba:7f:d9:36: a5:df:16:9c:61:f3:7e:ee:7e:ee:be:85:3b:ec:64: cf:25:a5:48:c4:f2:37:1e:be:cd:4d:f7:f8:85:b8: 5c:96:45:76:2e:bc:30:41:a6:79:9c:cb:14:35:ae: 63:2c:fc:a8:21:3e:05:b3:dd:c1:c0:82:a6:16:e5: 4c:32:40:af:94:c8:a3:67:1a:e6:03:74:19:aa:c8: ab:c3:d7:f6:07:8b:a6:82:9b:08:c4:37:67:ad:d5: 92:51:d2:18:4f:a8:4c:14:f8:e7:f9:70:35:6d:bd: 16:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:5B:FF:0D:0D:83:FD:49:0B:3A:16:11:2F:5D:01:BE:CC:83:13:1E X509v3 Authority Key Identifier: keyid:22:10:2F:7E:AB:37:C8:1E:87:BB:5E:B2:15:60:BF:A6:24:35:53:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/3231312e3135302e36342e302f32302d3230203d3e203233373234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 211.150.64.0/20 Signature Algorithm: sha256WithRSAEncryption 89:4f:3a:a3:42:39:ab:85:31:0b:48:bb:d7:2c:e3:f7:c0:9c: 9e:7c:5a:2d:28:36:7a:96:e8:ce:72:2b:c8:7f:7e:2a:fe:4d: 5e:31:20:2a:f7:cd:81:de:2a:58:1a:1c:f9:34:9e:2f:cd:c3: bc:03:07:28:38:2f:a0:58:5f:dc:6c:00:46:33:92:25:79:5f: 65:c0:73:66:fb:aa:fc:36:31:4c:a7:b9:31:9b:78:a6:98:04: 95:01:ea:db:cc:21:a7:8d:66:01:a3:2b:4a:a4:ba:1d:0e:7e: fe:f5:71:f7:89:4d:a0:13:1e:4d:72:96:0e:44:c7:12:f8:ad: df:10:2f:ee:97:f5:e5:4f:10:f3:de:75:71:21:da:33:03:d2: d6:54:be:58:63:7c:5f:ab:e6:ec:2d:c8:b5:65:e5:96:78:1a: 6b:98:25:18:89:26:6f:f0:a3:e9:36:d1:a8:d2:f4:91:52:5f: 9d:27:f5:5a:be:7b:78:ea:56:3c:e4:dc:c3:5e:7f:cf:82:c1: 87:82:30:dc:ca:59:93:dc:56:f0:a9:88:51:9b:29:d2:4d:6a: f5:78:88:8f:2a:c7:c6:2f:1c:bb:5b:fa:9a:e5:b6:33:8b:25: 41:5b:db:4c:18:7e:69:43:0d:a1:cd:53:09:fb:ec:70:1e:0f: 47:d2:54:a9 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUOsZ+vQazPwLDZ8YHxvrG7AjD4UgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjIxMDJGN0VBQjM3QzgxRTg3QkI1RUIyMTU2MEJGQTYy NDM1NTNDQzAeFw0yNjA0MTMwNjQ1NTNaFw0yNzA0MTIwNjUwNTNaMDMxMTAvBgNV BAMTKDQ2NUJGRjBEMEQ4M0ZENDkwQjNBMTYxMTJGNUQwMUJFQ0M4MzEzMUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCaWg+dzJ7qnyXIbkuSEyhhwPKI 47TcaiRLKhH35epv4a5sYb3+FRw8LHPVStoS0mL+bg3SmBU6JwyX6YAWZBCfVhiT m/dJkTy/AvnGq409gV1YKxqT7iScQRtxkBzhDLmfmBWLcfu8NQQLKEjpkdzdXXGA Nf3sY/zJI73vbLSIUQM9KK+TpQGX3eHyzjjLkG8tun/ZNqXfFpxh837ufu6+hTvs ZM8lpUjE8jcevs1N9/iFuFyWRXYuvDBBpnmcyxQ1rmMs/KghPgWz3cHAgqYW5Uwy QK+UyKNnGuYDdBmqyKvD1/YHi6aCmwjEN2et1ZJR0hhPqEwU+Of5cDVtvRZBAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQURlv/DQ2D/UkLOhYRL10BvsyDEx4wHwYDVR0j BBgwFoAUIhAvfqs3yB6Hu16yFWC/piQ1U8wwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTkyMDAwNjk1NDIyMTU2OS8xLzIyMTAyRjdFQUIzN0M4MUU4N0JCNUVCMjE1NjBC RkE2MjQzNTUzQ0MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjIxMDJGN0VBQjM3QzgxRTg3QkI1RUIyMTU2MEJGQTYyNDM1NTNDQy5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NTkyMDAwNjk1NDIyMTU2OS8xLzMyMzEzMTJlMzEz NTMwMmUzNjM0MmUzMDJmMzIzMDJkMzIzMDIwM2QzZTIwMzIzMzM3MzIzNC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEBNOWQDANBgkqhkiG9w0BAQsFAAOCAQEAiU86o0I5q4UxC0i71yzj98Cc nnxaLSg2epboznIryH9+Kv5NXjEgKvfNgd4qWBoc+TSeL83DvAMHKDgvoFhf3GwA RjOSJXlfZcBzZvuq/DYxTKe5MZt4ppgElQHq28whp41mAaMrSqS6HQ5+/vVx94lN oBMeTXKWDkTHEvit3xAv7pf15U8Q8951cSHaMwPS1lS+WGN8X6vm7C3ItWXllnga a5glGIkmb/Cj6TbRqNL0kVJfnSf1Wr57eOpWPOTcw15/z4LBh4Iw3MpZk9xW8KmI UZsp0k1q9XiIjyrHxi8cu1v6muW2M4slQVvbTBh+aUMNoc1TCfvscB4PR9JUqQ== -----END CERTIFICATE-----Generated at Mon Apr 13 12:24:19 2026 by rpki-client