$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095920006954221569/1/3231312e3135372e3232342e302f31392d3139203d3e203233373234.roa File: 3231312e3135372e3232342e302f31392d3139203d3e203233373234.roa (raw, json) Hash identifier: mXdeRxX9NNx5ZnpMgxouFbHE5Nv9XoEo7yaCgv3A0pw= Subject key identifier: 86:C4:70:D7:96:3E:34:86:80:28:59:AC:48:AF:4A:9E:38:9E:10:EF Certificate issuer: /CN=22102F7EAB37C81E87BB5EB21560BFA6243553CC Certificate serial: 096356A57A29710FA3D3D0A9A93B2C056B8EEE56 Authority key identifier: 22:10:2F:7E:AB:37:C8:1E:87:BB:5E:B2:15:60:BF:A6:24:35:53:CC Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/3231312e3135372e3232342e302f31392d3139203d3e203233373234.roa Signing time: Mon 13 Apr 2026 06:52:19 +0000 ROA not before: Mon 13 Apr 2026 06:47:19 +0000 ROA not after: Mon 12 Apr 2027 06:52:19 +0000 asID: 23724 IP address blocks: 211.157.224.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.crl rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 10:09:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:63:56:a5:7a:29:71:0f:a3:d3:d0:a9:a9:3b:2c:05:6b:8e:ee:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22102F7EAB37C81E87BB5EB21560BFA6243553CC Validity Not Before: Apr 13 06:47:19 2026 GMT Not After : Apr 12 06:52:19 2027 GMT Subject: CN=86C470D7963E3486802859AC48AF4A9E389E10EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:bc:7d:07:86:4b:93:5b:91:77:61:07:2c:0c: 1f:c9:a3:e5:9d:64:4a:6e:62:ab:29:b6:3c:ec:78: 22:e4:78:ad:62:38:ee:a8:82:cc:f2:2d:40:bf:d1: 7d:64:a2:03:e3:77:c8:4b:e2:69:1b:11:34:aa:92: 46:5f:b7:a8:44:68:1a:a2:19:22:c8:bc:d0:ea:7e: 0a:32:ae:b4:30:4a:f3:27:d4:fa:00:bb:23:05:de: dd:87:63:ae:cc:6b:eb:c4:8d:eb:cc:9a:27:0f:c9: 1e:29:74:b2:f8:ab:3e:07:58:c3:bc:17:84:ea:d1: 1e:3b:1e:0b:43:ef:19:e1:2a:d0:00:a4:47:3e:20: 64:6b:a9:6a:90:4d:e1:3b:2c:14:e7:7b:dd:99:b3: c4:6e:01:f9:33:d9:f0:50:b6:d8:07:59:29:b2:14: 0d:95:70:bc:98:f1:7a:0a:6d:fb:36:7e:f0:a9:b7: 42:20:b1:ab:be:63:c7:00:ce:10:fe:55:ac:4a:2c: de:29:53:11:48:87:1f:75:b7:5c:3e:54:98:30:2d: 59:b3:60:a0:52:9d:64:2a:31:62:57:b0:34:43:0b: d2:e4:d1:ee:da:37:24:a0:68:48:c6:77:3c:ad:12: 93:7a:b8:29:ef:ff:4a:d7:17:57:71:33:f5:e4:71: 2a:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:C4:70:D7:96:3E:34:86:80:28:59:AC:48:AF:4A:9E:38:9E:10:EF X509v3 Authority Key Identifier: keyid:22:10:2F:7E:AB:37:C8:1E:87:BB:5E:B2:15:60:BF:A6:24:35:53:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/3231312e3135372e3232342e302f31392d3139203d3e203233373234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 211.157.224.0/19 Signature Algorithm: sha256WithRSAEncryption ca:ed:f0:f2:23:13:bf:37:6b:81:b6:4d:24:e8:e2:2f:d0:b6: 1d:35:b0:d0:bb:de:7c:37:c9:04:27:3a:4d:17:c4:4a:43:ca: 1f:ca:12:a2:2d:63:e4:1b:1e:ca:a8:c6:5f:cf:f9:0e:33:e0: dd:6a:d9:9f:13:65:a9:41:87:ec:cd:fb:5f:98:d0:27:10:c7: 3d:92:da:8e:6c:88:73:c0:83:7d:d5:e1:db:0e:c9:92:44:20: 20:c1:20:75:88:05:20:fd:0e:59:36:06:6a:d3:d9:de:c5:ce: 66:f6:b6:c2:a8:7e:e4:97:8b:4e:2e:98:5f:39:7c:4e:f9:c6: af:68:cb:59:a2:e0:a9:4d:ff:c9:6d:0e:83:fb:90:6f:ab:89: 55:7c:cb:d9:f0:ac:ba:85:38:3d:59:02:b6:0c:d7:aa:1e:cf: 10:2c:b7:08:a3:95:be:48:fd:29:81:ac:50:f1:bd:74:37:78: 3e:98:63:57:82:48:5a:65:46:49:17:ba:e4:a1:fd:b2:de:be: c0:6e:17:bd:19:8d:d5:1b:f4:45:13:8e:1b:8f:82:6d:4b:72: f8:2a:4d:19:a5:48:5b:ab:0f:69:ee:5c:c3:b7:8b:ae:1a:e3: 3e:09:26:43:19:8e:e8:5b:d9:76:44:2e:dd:13:45:d0:99:39: 80:99:1c:c0 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUCWNWpXopcQ+j09CpqTssBWuO7lYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjIxMDJGN0VBQjM3QzgxRTg3QkI1RUIyMTU2MEJGQTYy NDM1NTNDQzAeFw0yNjA0MTMwNjQ3MTlaFw0yNzA0MTIwNjUyMTlaMDMxMTAvBgNV BAMTKDg2QzQ3MEQ3OTYzRTM0ODY4MDI4NTlBQzQ4QUY0QTlFMzg5RTEwRUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWvH0HhkuTW5F3YQcsDB/Jo+Wd ZEpuYqsptjzseCLkeK1iOO6ogszyLUC/0X1kogPjd8hL4mkbETSqkkZft6hEaBqi GSLIvNDqfgoyrrQwSvMn1PoAuyMF3t2HY67Ma+vEjevMmicPyR4pdLL4qz4HWMO8 F4Tq0R47HgtD7xnhKtAApEc+IGRrqWqQTeE7LBTne92Zs8RuAfkz2fBQttgHWSmy FA2VcLyY8XoKbfs2fvCpt0Igsau+Y8cAzhD+VaxKLN4pUxFIhx91t1w+VJgwLVmz YKBSnWQqMWJXsDRDC9Lk0e7aNySgaEjGdzytEpN6uCnv/0rXF1dxM/XkcSqJAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUhsRw15Y+NIaAKFmsSK9KnjieEO8wHwYDVR0j BBgwFoAUIhAvfqs3yB6Hu16yFWC/piQ1U8wwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTkyMDAwNjk1NDIyMTU2OS8xLzIyMTAyRjdFQUIzN0M4MUU4N0JCNUVCMjE1NjBC RkE2MjQzNTUzQ0MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjIxMDJGN0VBQjM3QzgxRTg3QkI1RUIyMTU2MEJGQTYyNDM1NTNDQy5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTU5MjAwMDY5NTQyMjE1NjkvMS8zMjMxMzEyZTMx MzUzNzJlMzIzMjM0MmUzMDJmMzEzOTJkMzEzOTIwM2QzZTIwMzIzMzM3MzIzNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEBdOd4DANBgkqhkiG9w0BAQsFAAOCAQEAyu3w8iMTvzdrgbZNJOji L9C2HTWw0LvefDfJBCc6TRfESkPKH8oSoi1j5BseyqjGX8/5DjPg3WrZnxNlqUGH 7M37X5jQJxDHPZLajmyIc8CDfdXh2w7JkkQgIMEgdYgFIP0OWTYGatPZ3sXOZva2 wqh+5JeLTi6YXzl8TvnGr2jLWaLgqU3/yW0Og/uQb6uJVXzL2fCsuoU4PVkCtgzX qh7PECy3CKOVvkj9KYGsUPG9dDd4PphjV4JIWmVGSRe65KH9st6+wG4XvRmN1Rv0 RROOG4+CbUty+CpNGaVIW6sPae5cw7eLrhrjPgkmQxmO6FvZdkQu3RNF0Jk5gJkc wA== -----END CERTIFICATE-----Generated at Mon Apr 13 12:24:22 2026 by rpki-client