$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095920006954221569/1/3231312e3135372e3232362e302f32342d3234203d3e203233373234.roa File: 3231312e3135372e3232362e302f32342d3234203d3e203233373234.roa (raw, json) Hash identifier: rjo7jrhrMRVuR0JfRg7FPv4u+eyoOM/AtQUL2V3uCs8= Subject key identifier: 25:34:23:43:BC:C5:5D:FD:E6:F7:CC:1B:A7:EB:4E:3C:9B:1F:F6:DE Certificate issuer: /CN=22102F7EAB37C81E87BB5EB21560BFA6243553CC Certificate serial: 3DF61CCB3E78843E810811A0B982492CC53F42E3 Authority key identifier: 22:10:2F:7E:AB:37:C8:1E:87:BB:5E:B2:15:60:BF:A6:24:35:53:CC Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/3231312e3135372e3232362e302f32342d3234203d3e203233373234.roa Signing time: Mon 13 Apr 2026 05:57:39 +0000 ROA not before: Mon 13 Apr 2026 05:52:39 +0000 ROA not after: Mon 12 Apr 2027 05:57:39 +0000 asID: 23724 IP address blocks: 211.157.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.crl rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 10:09:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:f6:1c:cb:3e:78:84:3e:81:08:11:a0:b9:82:49:2c:c5:3f:42:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22102F7EAB37C81E87BB5EB21560BFA6243553CC Validity Not Before: Apr 13 05:52:39 2026 GMT Not After : Apr 12 05:57:39 2027 GMT Subject: CN=25342343BCC55DFDE6F7CC1BA7EB4E3C9B1FF6DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:1d:1c:ea:59:d6:c8:fe:f2:75:3b:21:f0:5e: 37:f7:04:80:36:94:3f:f0:cc:04:66:f3:62:8b:d8: 93:a1:97:ae:1b:9b:40:ad:e5:5d:d1:25:d7:65:29: c8:d4:3b:98:c5:29:c7:83:c4:d1:74:1e:2f:ba:ba: 3d:13:ea:dd:82:12:41:66:ac:11:f1:14:2d:b5:b4: b9:d2:bc:aa:71:8d:1b:a9:3b:4b:5f:01:1c:9b:9a: e9:e6:45:94:1a:be:01:95:b6:d6:a7:62:72:54:9f: ee:d1:bc:02:88:09:ce:19:91:e5:6f:9c:de:ae:1e: fa:54:f2:32:52:21:6f:fd:11:2e:50:d3:a6:40:e5: 98:ae:77:a3:ea:16:09:2b:f8:d6:ec:c9:4a:48:4a: ac:01:1b:65:78:6c:0f:63:78:5b:1c:8b:be:00:57: 53:e2:f6:65:a7:f3:52:81:b6:d3:4f:5c:b2:78:78: f5:70:ec:09:0f:3b:b5:16:23:20:93:10:13:d3:54: 81:8f:14:bd:8d:52:1b:32:a9:42:0a:4f:bd:c9:fc: c4:d6:72:e2:73:be:1d:26:3a:1a:51:ea:2a:d0:75: 66:19:49:d3:b2:78:90:90:98:80:d9:a4:cb:03:8b: 33:41:57:a6:c5:32:96:85:e8:a4:f3:e0:a4:83:8a: 93:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:34:23:43:BC:C5:5D:FD:E6:F7:CC:1B:A7:EB:4E:3C:9B:1F:F6:DE X509v3 Authority Key Identifier: keyid:22:10:2F:7E:AB:37:C8:1E:87:BB:5E:B2:15:60:BF:A6:24:35:53:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/3231312e3135372e3232362e302f32342d3234203d3e203233373234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 211.157.226.0/24 Signature Algorithm: sha256WithRSAEncryption 07:91:b3:1a:06:a8:b1:a9:a6:59:60:dc:f2:d1:72:91:d5:ad: 51:d1:bc:f3:6a:b0:ff:55:63:46:f4:fe:60:24:b6:21:54:71: 10:6d:a8:c6:4a:59:c9:ac:b0:fc:f6:67:af:32:14:5a:9a:f5: 3f:cf:21:3e:ec:03:db:6a:4c:4b:53:4e:9f:76:7d:86:59:c1: bc:6c:89:3d:be:a4:aa:16:fa:d2:e6:af:41:d2:9e:e3:0d:79: 80:e7:99:51:58:e1:65:5f:2b:bd:60:4f:47:15:5c:b1:7c:84: 8c:a8:98:82:e2:91:74:63:7d:9c:1e:94:0a:c9:66:c4:9c:ea: 34:a1:ee:cd:26:8c:82:7e:ce:2f:e0:78:00:6a:87:8b:f6:3c: c3:25:31:76:42:73:ba:cb:6b:82:d5:83:7b:c6:15:19:06:d1: 8a:16:3f:76:9e:80:76:47:67:d2:e7:3a:ca:75:3e:ab:85:89: 3b:6e:6f:e2:f2:c6:ec:2c:e7:67:c4:65:36:c6:d7:65:8d:c3: ce:f6:9e:3c:9e:d5:b8:45:1f:54:69:91:ef:04:48:77:8b:48: 11:6e:dd:18:ab:61:67:b1:e0:6c:92:dc:c6:ec:b2:bb:b4:9f: b0:42:00:7b:b2:55:3b:8a:86:10:22:58:14:67:86:35:f6:68: 35:68:04:7f -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUPfYcyz54hD6BCBGguYJJLMU/QuMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjIxMDJGN0VBQjM3QzgxRTg3QkI1RUIyMTU2MEJGQTYy NDM1NTNDQzAeFw0yNjA0MTMwNTUyMzlaFw0yNzA0MTIwNTU3MzlaMDMxMTAvBgNV BAMTKDI1MzQyMzQzQkNDNTVERkRFNkY3Q0MxQkE3RUI0RTNDOUIxRkY2REUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeHRzqWdbI/vJ1OyHwXjf3BIA2 lD/wzARm82KL2JOhl64bm0Ct5V3RJddlKcjUO5jFKceDxNF0Hi+6uj0T6t2CEkFm rBHxFC21tLnSvKpxjRupO0tfARybmunmRZQavgGVttanYnJUn+7RvAKICc4ZkeVv nN6uHvpU8jJSIW/9ES5Q06ZA5Ziud6PqFgkr+NbsyUpISqwBG2V4bA9jeFsci74A V1Pi9mWn81KBttNPXLJ4ePVw7AkPO7UWIyCTEBPTVIGPFL2NUhsyqUIKT73J/MTW cuJzvh0mOhpR6irQdWYZSdOyeJCQmIDZpMsDizNBV6bFMpaF6KTz4KSDipO5AgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUJTQjQ7zFXf3m98wbp+tOPJsf9t4wHwYDVR0j BBgwFoAUIhAvfqs3yB6Hu16yFWC/piQ1U8wwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTkyMDAwNjk1NDIyMTU2OS8xLzIyMTAyRjdFQUIzN0M4MUU4N0JCNUVCMjE1NjBC RkE2MjQzNTUzQ0MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjIxMDJGN0VBQjM3QzgxRTg3QkI1RUIyMTU2MEJGQTYyNDM1NTNDQy5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTU5MjAwMDY5NTQyMjE1NjkvMS8zMjMxMzEyZTMx MzUzNzJlMzIzMjM2MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzMzM3MzIzNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEANOd4jANBgkqhkiG9w0BAQsFAAOCAQEAB5GzGgaosammWWDc8tFy kdWtUdG882qw/1VjRvT+YCS2IVRxEG2oxkpZyayw/PZnrzIUWpr1P88hPuwD22pM S1NOn3Z9hlnBvGyJPb6kqhb60uavQdKe4w15gOeZUVjhZV8rvWBPRxVcsXyEjKiY guKRdGN9nB6UCslmxJzqNKHuzSaMgn7OL+B4AGqHi/Y8wyUxdkJzustrgtWDe8YV GQbRihY/dp6Adkdn0uc6ynU+q4WJO25v4vLG7CznZ8RlNsbXZY3DzvaePJ7VuEUf VGmR7wRId4tIEW7dGKthZ7HgbJLcxuyyu7SfsEIAe7JVO4qGECJYFGeGNfZoNWgE fw== -----END CERTIFICATE-----Generated at Mon Apr 13 13:54:23 2026 by rpki-client