$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095920006954221569/1/3231312e3135372e3232382e302f32332d3234203d3e203233373234.roa File: 3231312e3135372e3232382e302f32332d3234203d3e203233373234.roa (raw, json) Hash identifier: nX1kVZajt7R6n+n7AcrtE48zts8+uLXvQJ2dsnVZ75M= Subject key identifier: CD:E0:11:91:F0:69:15:D7:C8:7B:59:6B:27:A6:7F:9E:80:F2:CE:E8 Certificate issuer: /CN=22102F7EAB37C81E87BB5EB21560BFA6243553CC Certificate serial: 5E16AB0416509851F93C0E858DD4EBAEF1FE8446 Authority key identifier: 22:10:2F:7E:AB:37:C8:1E:87:BB:5E:B2:15:60:BF:A6:24:35:53:CC Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/3231312e3135372e3232382e302f32332d3234203d3e203233373234.roa Signing time: Mon 13 Apr 2026 05:57:38 +0000 ROA not before: Mon 13 Apr 2026 05:52:38 +0000 ROA not after: Mon 12 Apr 2027 05:57:38 +0000 asID: 23724 IP address blocks: 211.157.228.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.crl rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 10:09:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:16:ab:04:16:50:98:51:f9:3c:0e:85:8d:d4:eb:ae:f1:fe:84:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22102F7EAB37C81E87BB5EB21560BFA6243553CC Validity Not Before: Apr 13 05:52:38 2026 GMT Not After : Apr 12 05:57:38 2027 GMT Subject: CN=CDE01191F06915D7C87B596B27A67F9E80F2CEE8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:c6:84:8b:f7:72:8f:17:a3:21:84:02:9b:96: 91:20:80:46:9b:13:f5:ed:e6:05:fe:a9:9e:4b:d5: f8:a3:9b:f0:3d:a9:14:dc:9c:d2:a4:3e:c6:6d:d5: 00:1e:d4:73:cb:62:46:e2:37:51:d8:8b:c7:c9:59: 6b:68:ac:d4:ab:82:45:0d:b1:1a:5c:31:d9:9f:a0: 7c:55:62:be:87:af:a6:2c:26:64:58:67:cd:5c:fb: 0c:ea:8a:32:49:7a:32:66:4b:77:d6:f0:15:02:2f: 9c:00:d7:79:cd:ed:ef:99:8e:10:95:a1:bf:45:da: ca:12:a9:f2:b8:f8:f3:f4:ef:da:8f:58:ad:33:27: 4f:a9:dc:af:bd:a0:9d:56:64:77:9f:a2:2c:7d:b3: d4:6c:51:00:b2:f5:6f:92:28:03:25:96:c9:9a:be: c3:77:99:c8:94:00:0e:d3:d8:e4:bc:d2:5c:65:54: 24:23:d9:d5:55:eb:8e:2d:ba:be:47:93:70:03:0d: c7:4a:a6:1b:1e:bf:d4:43:49:4b:12:5c:7e:47:1c: 1a:37:2b:b0:f3:c8:96:42:cb:c8:e7:a4:cc:4f:fe: f4:90:f6:3c:06:ac:e5:5b:b9:5a:26:02:4e:03:0a: eb:23:b1:4e:22:09:fd:7b:12:48:d7:43:25:b9:16: 4b:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:E0:11:91:F0:69:15:D7:C8:7B:59:6B:27:A6:7F:9E:80:F2:CE:E8 X509v3 Authority Key Identifier: keyid:22:10:2F:7E:AB:37:C8:1E:87:BB:5E:B2:15:60:BF:A6:24:35:53:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/3231312e3135372e3232382e302f32332d3234203d3e203233373234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 211.157.228.0/23 Signature Algorithm: sha256WithRSAEncryption d7:1d:dc:6f:ef:44:69:bb:d7:41:37:79:11:5b:20:23:7e:5c: 6b:73:a9:12:53:87:05:b3:e8:86:4e:94:78:98:75:96:9c:2f: 66:b5:6a:78:5b:2a:12:3a:43:7a:2e:07:58:bd:38:40:75:a7: 0b:3f:63:91:06:d8:b6:a8:ed:22:81:80:77:26:e3:6f:59:1e: 9c:94:ea:5b:f8:5f:9b:4e:33:5a:37:41:bb:61:52:14:16:9c: 50:f4:49:91:7f:0f:05:1d:50:80:d5:9e:55:dc:b8:f9:ef:9d: 74:1a:05:51:69:b5:7f:23:f2:e1:4c:a9:d9:ec:29:46:05:e0: 37:12:7b:d2:7d:2f:ce:e3:0f:29:04:0c:4b:1c:3a:db:93:b5: dd:40:54:d3:48:e0:c5:fa:13:8e:57:45:68:09:f8:01:91:20: fc:62:ad:a1:1a:67:cc:b9:cb:fc:38:e4:b3:72:48:33:26:5d: 26:af:40:5f:aa:97:1a:cc:25:cc:13:27:ef:51:9e:d3:71:2b: e4:4d:e3:10:6a:88:b4:00:2f:25:a5:e1:6c:c5:47:ed:9a:13: ca:89:b9:ed:bc:6c:a6:0a:26:26:50:cc:a8:d9:56:49:c7:6d: b0:f6:2a:5f:73:67:9e:c3:3d:df:55:8a:09:2b:df:5d:96:f4: b5:b2:d3:54 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUXharBBZQmFH5PA6FjdTrrvH+hEYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjIxMDJGN0VBQjM3QzgxRTg3QkI1RUIyMTU2MEJGQTYy NDM1NTNDQzAeFw0yNjA0MTMwNTUyMzhaFw0yNzA0MTIwNTU3MzhaMDMxMTAvBgNV BAMTKENERTAxMTkxRjA2OTE1RDdDODdCNTk2QjI3QTY3RjlFODBGMkNFRTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCRxoSL93KPF6MhhAKblpEggEab E/Xt5gX+qZ5L1fijm/A9qRTcnNKkPsZt1QAe1HPLYkbiN1HYi8fJWWtorNSrgkUN sRpcMdmfoHxVYr6Hr6YsJmRYZ81c+wzqijJJejJmS3fW8BUCL5wA13nN7e+ZjhCV ob9F2soSqfK4+PP079qPWK0zJ0+p3K+9oJ1WZHefoix9s9RsUQCy9W+SKAMllsma vsN3mciUAA7T2OS80lxlVCQj2dVV644tur5Hk3ADDcdKphsev9RDSUsSXH5HHBo3 K7DzyJZCy8jnpMxP/vSQ9jwGrOVbuVomAk4DCusjsU4iCf17EkjXQyW5FkuJAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUzeARkfBpFdfIe1lrJ6Z/noDyzugwHwYDVR0j BBgwFoAUIhAvfqs3yB6Hu16yFWC/piQ1U8wwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTkyMDAwNjk1NDIyMTU2OS8xLzIyMTAyRjdFQUIzN0M4MUU4N0JCNUVCMjE1NjBC RkE2MjQzNTUzQ0MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjIxMDJGN0VBQjM3QzgxRTg3QkI1RUIyMTU2MEJGQTYyNDM1NTNDQy5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTU5MjAwMDY5NTQyMjE1NjkvMS8zMjMxMzEyZTMx MzUzNzJlMzIzMjM4MmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzIzMzM3MzIzNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAdOd5DANBgkqhkiG9w0BAQsFAAOCAQEA1x3cb+9EabvXQTd5EVsg I35ca3OpElOHBbPohk6UeJh1lpwvZrVqeFsqEjpDei4HWL04QHWnCz9jkQbYtqjt IoGAdybjb1kenJTqW/hfm04zWjdBu2FSFBacUPRJkX8PBR1QgNWeVdy4+e+ddBoF UWm1fyPy4Uyp2ewpRgXgNxJ70n0vzuMPKQQMSxw625O13UBU00jgxfoTjldFaAn4 AZEg/GKtoRpnzLnL/Djks3JIMyZdJq9AX6qXGswlzBMn71Ge03Er5E3jEGqItAAv JaXhbMVH7ZoTyom57bxspgomJlDMqNlWScdtsPYqX3NnnsM931WKCSvfXZb0tbLT VA== -----END CERTIFICATE-----Generated at Mon Apr 13 12:24:27 2026 by rpki-client