$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095920006954221569/1/3231312e3135372e3232342e302f32342d3234203d3e203233373234.roa File: 3231312e3135372e3232342e302f32342d3234203d3e203233373234.roa (raw, json) Hash identifier: K7WwzUb7hIRkI35jNdL0ZzawEOqxsqxxhb5E3doscew= Subject key identifier: A8:0C:F3:3A:4E:C0:06:E8:6F:EB:A9:6A:D1:0E:03:34:4E:8F:20:A0 Certificate issuer: /CN=22102F7EAB37C81E87BB5EB21560BFA6243553CC Certificate serial: 7E48B9A16EDFBF666D260F4636B7329DA32136A7 Authority key identifier: 22:10:2F:7E:AB:37:C8:1E:87:BB:5E:B2:15:60:BF:A6:24:35:53:CC Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/3231312e3135372e3232342e302f32342d3234203d3e203233373234.roa Signing time: Mon 13 Apr 2026 06:52:19 +0000 ROA not before: Mon 13 Apr 2026 06:47:19 +0000 ROA not after: Mon 12 Apr 2027 06:52:19 +0000 asID: 23724 IP address blocks: 211.157.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.crl rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 10:09:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:48:b9:a1:6e:df:bf:66:6d:26:0f:46:36:b7:32:9d:a3:21:36:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22102F7EAB37C81E87BB5EB21560BFA6243553CC Validity Not Before: Apr 13 06:47:19 2026 GMT Not After : Apr 12 06:52:19 2027 GMT Subject: CN=A80CF33A4EC006E86FEBA96AD10E03344E8F20A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:84:91:ce:61:5f:13:87:5a:1c:3a:6a:6e:81: f4:14:3e:3f:7a:48:e2:d9:ef:81:d6:34:62:40:3f: 6d:c8:49:c9:40:78:f2:8a:74:2a:37:fc:06:eb:73: 68:a2:ad:c9:98:60:d1:d2:85:05:31:b1:ed:8e:5a: ba:f7:31:7e:fe:e7:50:fb:d1:92:4a:ff:e4:c5:92: 8a:92:f9:24:e2:2a:1f:20:76:ff:6f:a9:55:f8:dc: e6:13:04:cc:d7:5a:90:bd:44:ec:a2:bf:48:43:66: 4c:5f:9f:9d:e2:39:74:39:23:1c:02:5e:eb:a1:cc: bf:c1:20:aa:14:2b:f8:c3:48:97:4e:ac:e8:b9:01: 0b:60:14:c8:9e:ed:83:4c:8b:e1:8e:a5:f5:30:a1: d0:1d:b8:be:11:2a:07:0e:0b:09:33:1b:7d:ac:fd: b1:d3:23:a0:f8:35:23:36:95:91:98:92:ec:7e:60: 0b:96:77:f8:52:80:90:45:24:7b:03:89:dc:8f:99: e9:c9:3a:0e:9b:9e:56:f3:4b:b6:a1:15:2d:39:3e: fb:86:6a:1f:b7:36:36:99:1a:2e:4a:58:57:a9:84: c1:67:b5:04:2b:3d:bc:96:a4:3a:00:1a:62:0a:2b: 90:37:af:54:7f:3c:c2:85:61:c9:61:28:a0:43:eb: 46:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:0C:F3:3A:4E:C0:06:E8:6F:EB:A9:6A:D1:0E:03:34:4E:8F:20:A0 X509v3 Authority Key Identifier: keyid:22:10:2F:7E:AB:37:C8:1E:87:BB:5E:B2:15:60:BF:A6:24:35:53:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/3231312e3135372e3232342e302f32342d3234203d3e203233373234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 211.157.224.0/24 Signature Algorithm: sha256WithRSAEncryption af:5c:dc:b4:2e:59:30:9e:40:50:cf:04:1e:54:da:00:7c:f8: 5c:b6:f9:14:11:88:45:bf:e0:05:95:65:f7:89:56:83:09:4f: be:40:21:95:d3:65:f4:b7:a0:a9:a3:6c:ef:62:dc:b5:b8:d9: a5:fc:9f:85:90:04:54:16:ab:35:6a:79:67:56:1a:7a:98:42: ac:29:a4:7b:e5:ce:b6:fb:87:19:08:a6:f9:0f:0c:1c:4d:33: 18:0b:ab:7a:3b:68:02:a3:11:01:dc:a5:16:2d:57:da:8c:a1: 0d:2b:b1:4a:54:af:4e:03:6d:ea:36:47:b9:2c:02:d1:ca:b6: 1c:20:d2:54:9d:ad:e0:2d:23:ad:18:4c:e2:da:39:6a:92:c1: 89:88:ea:b6:f5:0c:59:18:5a:a0:54:a2:17:d5:01:a5:c5:7a: 9b:b0:c9:44:d7:52:8e:67:3d:28:53:c6:6f:28:f3:8b:2c:6f: c1:60:5b:33:63:22:de:05:ad:0a:45:c4:c7:86:a5:f5:12:37: ba:f2:ea:f4:31:6d:96:58:d8:cd:7c:0b:d2:e5:76:9c:d2:df: 34:d1:f9:89:46:f5:09:e3:69:3f:43:ee:b2:4a:7e:e2:23:37: 67:2a:db:0e:93:62:67:3c:64:92:b8:d6:e8:cb:f2:89:7d:84: 9c:be:99:92 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUfki5oW7fv2ZtJg9GNrcynaMhNqcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjIxMDJGN0VBQjM3QzgxRTg3QkI1RUIyMTU2MEJGQTYy NDM1NTNDQzAeFw0yNjA0MTMwNjQ3MTlaFw0yNzA0MTIwNjUyMTlaMDMxMTAvBgNV BAMTKEE4MENGMzNBNEVDMDA2RTg2RkVCQTk2QUQxMEUwMzM0NEU4RjIwQTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbhJHOYV8Th1ocOmpugfQUPj96 SOLZ74HWNGJAP23ISclAePKKdCo3/Abrc2iircmYYNHShQUxse2OWrr3MX7+51D7 0ZJK/+TFkoqS+STiKh8gdv9vqVX43OYTBMzXWpC9ROyiv0hDZkxfn53iOXQ5IxwC XuuhzL/BIKoUK/jDSJdOrOi5AQtgFMie7YNMi+GOpfUwodAduL4RKgcOCwkzG32s /bHTI6D4NSM2lZGYkux+YAuWd/hSgJBFJHsDidyPmenJOg6bnlbzS7ahFS05PvuG ah+3NjaZGi5KWFephMFntQQrPbyWpDoAGmIKK5A3r1R/PMKFYclhKKBD60abAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUqAzzOk7ABuhv66lq0Q4DNE6PIKAwHwYDVR0j BBgwFoAUIhAvfqs3yB6Hu16yFWC/piQ1U8wwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTkyMDAwNjk1NDIyMTU2OS8xLzIyMTAyRjdFQUIzN0M4MUU4N0JCNUVCMjE1NjBC RkE2MjQzNTUzQ0MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjIxMDJGN0VBQjM3QzgxRTg3QkI1RUIyMTU2MEJGQTYyNDM1NTNDQy5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTU5MjAwMDY5NTQyMjE1NjkvMS8zMjMxMzEyZTMx MzUzNzJlMzIzMjM0MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzMzM3MzIzNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEANOd4DANBgkqhkiG9w0BAQsFAAOCAQEAr1zctC5ZMJ5AUM8EHlTa AHz4XLb5FBGIRb/gBZVl94lWgwlPvkAhldNl9LegqaNs72LctbjZpfyfhZAEVBar NWp5Z1YaephCrCmke+XOtvuHGQim+Q8MHE0zGAurejtoAqMRAdylFi1X2oyhDSux SlSvTgNt6jZHuSwC0cq2HCDSVJ2t4C0jrRhM4to5apLBiYjqtvUMWRhaoFSiF9UB pcV6m7DJRNdSjmc9KFPGbyjziyxvwWBbM2Mi3gWtCkXEx4al9RI3uvLq9DFtlljY zXwL0uV2nNLfNNH5iUb1CeNpP0Puskp+4iM3ZyrbDpNiZzxkkrjW6MvyiX2EnL6Z kg== -----END CERTIFICATE-----Generated at Mon Apr 13 12:24:21 2026 by rpki-client