$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095920006954221569/1/3231312e3135372e3232352e302f32342d3234203d3e203233373234.roa File: 3231312e3135372e3232352e302f32342d3234203d3e203233373234.roa (raw, json) Hash identifier: duppbLzESzwcPhrDvmhz6qAUsN5VpGNvb5VQZcQu5Io= Subject key identifier: 8B:67:7E:0D:ED:80:02:5A:01:70:A5:77:9D:FC:07:A6:75:52:13:33 Certificate issuer: /CN=22102F7EAB37C81E87BB5EB21560BFA6243553CC Certificate serial: 70D218D67A511D641392E135B65157A972FEC4AF Authority key identifier: 22:10:2F:7E:AB:37:C8:1E:87:BB:5E:B2:15:60:BF:A6:24:35:53:CC Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/3231312e3135372e3232352e302f32342d3234203d3e203233373234.roa Signing time: Mon 13 Apr 2026 05:57:39 +0000 ROA not before: Mon 13 Apr 2026 05:52:39 +0000 ROA not after: Mon 12 Apr 2027 05:57:39 +0000 asID: 23724 IP address blocks: 211.157.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.crl rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 10:09:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:d2:18:d6:7a:51:1d:64:13:92:e1:35:b6:51:57:a9:72:fe:c4:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22102F7EAB37C81E87BB5EB21560BFA6243553CC Validity Not Before: Apr 13 05:52:39 2026 GMT Not After : Apr 12 05:57:39 2027 GMT Subject: CN=8B677E0DED80025A0170A5779DFC07A675521333 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:ea:b9:82:c3:6e:c7:05:62:22:a8:28:ad:33: d5:03:9c:fd:d0:2f:f7:39:80:a7:2c:b2:f8:19:2e: 1c:31:5e:6c:c2:27:99:6e:64:98:fb:b5:f7:b0:4b: cb:eb:57:37:16:1d:5b:fb:2e:31:ad:2e:48:6c:a2: b4:5e:e3:79:04:3f:17:be:2a:e8:58:fa:16:98:9f: 68:c2:dc:7c:24:f7:08:95:07:ac:3c:60:95:f3:f0: 32:09:29:a2:1b:f4:ef:01:37:c4:f3:54:f9:b0:1f: f6:9f:15:47:6c:3f:99:12:af:6b:68:36:b0:d2:8b: 1c:6d:0e:11:cc:f5:8c:e4:9c:cc:70:84:1e:54:85: 30:bc:f6:bf:2d:fa:e3:3e:24:dd:1a:f7:60:6b:d5: 92:ee:e5:d5:c3:af:04:05:63:34:ed:21:b3:fc:d1: 50:ce:e2:b1:d5:2e:1d:89:ee:65:b6:fc:08:9d:b6: 49:72:4e:33:30:02:a9:29:3d:09:d8:bf:fc:76:ec: e0:0e:ed:5d:55:dd:30:c2:e1:36:7c:35:fd:91:cf: 58:fe:35:13:fa:ca:36:ad:74:69:d5:1f:e2:a8:d1: 2f:1d:d7:d2:f7:80:72:9e:4f:e4:1b:3c:f8:a5:7f: 89:e0:7e:c5:dc:35:d4:5a:01:a5:c5:1b:bf:fd:18: e9:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:67:7E:0D:ED:80:02:5A:01:70:A5:77:9D:FC:07:A6:75:52:13:33 X509v3 Authority Key Identifier: keyid:22:10:2F:7E:AB:37:C8:1E:87:BB:5E:B2:15:60:BF:A6:24:35:53:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/3231312e3135372e3232352e302f32342d3234203d3e203233373234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 211.157.225.0/24 Signature Algorithm: sha256WithRSAEncryption 57:af:2b:09:d9:c6:d4:4b:01:21:fd:98:bf:5e:51:53:9b:88: 3f:8b:64:e9:29:9c:bd:89:8c:c6:52:8a:ca:97:d2:95:0f:bb: fc:8e:af:3e:96:3e:d6:26:d8:d9:dd:ce:f5:4d:4e:35:7e:45: 07:b1:95:f5:68:26:44:fd:2e:c8:24:05:52:48:35:22:8c:ae: 5a:ac:f2:94:6e:9c:ee:52:62:03:3b:e4:12:5f:5d:79:7a:02: 2f:bc:d3:58:d4:4a:4b:75:d8:c5:a1:e2:50:23:8b:8a:bc:03: e2:c5:9e:d0:f6:22:42:a7:e6:17:e0:72:f9:45:f3:7e:72:89: 42:c2:52:58:ff:bb:66:6a:04:2c:6a:dd:b3:68:b6:ec:6b:ff: 6f:43:e1:67:e8:54:ae:37:f6:54:5b:63:2d:11:ef:64:46:00: 76:a0:7d:74:67:59:b2:1d:a8:3f:79:91:d6:8b:1f:6e:43:da: 52:54:19:ee:ce:6b:15:bb:04:3d:c2:a4:91:84:c9:4e:10:88: 1e:3a:2c:f0:e7:16:72:11:24:26:b7:ff:a4:f6:55:c9:f9:d8: 32:0a:b1:b1:6b:d1:e1:f3:ae:d2:d1:59:91:06:29:3b:0d:1e: 5f:b3:05:8e:f3:72:13:9b:f9:e1:1f:e3:7e:be:8d:9a:b9:72: ba:d0:e4:16 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUcNIY1npRHWQTkuE1tlFXqXL+xK8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjIxMDJGN0VBQjM3QzgxRTg3QkI1RUIyMTU2MEJGQTYy NDM1NTNDQzAeFw0yNjA0MTMwNTUyMzlaFw0yNzA0MTIwNTU3MzlaMDMxMTAvBgNV BAMTKDhCNjc3RTBERUQ4MDAyNUEwMTcwQTU3NzlERkMwN0E2NzU1MjEzMzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCy6rmCw27HBWIiqCitM9UDnP3Q L/c5gKcssvgZLhwxXmzCJ5luZJj7tfewS8vrVzcWHVv7LjGtLkhsorRe43kEPxe+ KuhY+haYn2jC3Hwk9wiVB6w8YJXz8DIJKaIb9O8BN8TzVPmwH/afFUdsP5kSr2to NrDSixxtDhHM9YzknMxwhB5UhTC89r8t+uM+JN0a92Br1ZLu5dXDrwQFYzTtIbP8 0VDO4rHVLh2J7mW2/AidtklyTjMwAqkpPQnYv/x27OAO7V1V3TDC4TZ8Nf2Rz1j+ NRP6yjatdGnVH+Ko0S8d19L3gHKeT+QbPPilf4ngfsXcNdRaAaXFG7/9GOnJAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUi2d+De2AAloBcKV3nfwHpnVSEzMwHwYDVR0j BBgwFoAUIhAvfqs3yB6Hu16yFWC/piQ1U8wwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTkyMDAwNjk1NDIyMTU2OS8xLzIyMTAyRjdFQUIzN0M4MUU4N0JCNUVCMjE1NjBC RkE2MjQzNTUzQ0MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjIxMDJGN0VBQjM3QzgxRTg3QkI1RUIyMTU2MEJGQTYyNDM1NTNDQy5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTU5MjAwMDY5NTQyMjE1NjkvMS8zMjMxMzEyZTMx MzUzNzJlMzIzMjM1MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzMzM3MzIzNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEANOd4TANBgkqhkiG9w0BAQsFAAOCAQEAV68rCdnG1EsBIf2Yv15R U5uIP4tk6SmcvYmMxlKKypfSlQ+7/I6vPpY+1ibY2d3O9U1ONX5FB7GV9WgmRP0u yCQFUkg1IoyuWqzylG6c7lJiAzvkEl9deXoCL7zTWNRKS3XYxaHiUCOLirwD4sWe 0PYiQqfmF+By+UXzfnKJQsJSWP+7ZmoELGrds2i27Gv/b0PhZ+hUrjf2VFtjLRHv ZEYAdqB9dGdZsh2oP3mR1osfbkPaUlQZ7s5rFbsEPcKkkYTJThCIHjos8OcWchEk Jrf/pPZVyfnYMgqxsWvR4fOu0tFZkQYpOw0eX7MFjvNyE5v54R/jfr6NmrlyutDk Fg== -----END CERTIFICATE-----Generated at Mon Apr 13 13:54:26 2026 by rpki-client