$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095920006954221569/1/3231312e3135372e3234302e302f32302d3230203d3e203233373234.roa File: 3231312e3135372e3234302e302f32302d3230203d3e203233373234.roa (raw, json) Hash identifier: gydNdI0Li4afslJy0wyrDnUFBOBJBUoko3onPetP7ro= Subject key identifier: 7D:20:E0:5F:73:B1:0C:2C:DC:A3:83:CB:89:0F:03:CE:E0:60:F5:89 Certificate issuer: /CN=22102F7EAB37C81E87BB5EB21560BFA6243553CC Certificate serial: 44DB18DF680A7C46BD4884F74FE1FCA83C45203A Authority key identifier: 22:10:2F:7E:AB:37:C8:1E:87:BB:5E:B2:15:60:BF:A6:24:35:53:CC Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/3231312e3135372e3234302e302f32302d3230203d3e203233373234.roa Signing time: Mon 13 Apr 2026 05:57:39 +0000 ROA not before: Mon 13 Apr 2026 05:52:39 +0000 ROA not after: Mon 12 Apr 2027 05:57:39 +0000 asID: 23724 IP address blocks: 211.157.240.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.crl rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 10:09:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:db:18:df:68:0a:7c:46:bd:48:84:f7:4f:e1:fc:a8:3c:45:20:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22102F7EAB37C81E87BB5EB21560BFA6243553CC Validity Not Before: Apr 13 05:52:39 2026 GMT Not After : Apr 12 05:57:39 2027 GMT Subject: CN=7D20E05F73B10C2CDCA383CB890F03CEE060F589 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:57:a6:de:c5:14:26:c1:4d:3b:e0:d7:4f:41: fa:5d:57:52:c9:0c:57:00:3b:4e:83:7b:21:e7:1d: 23:c3:26:b0:7d:27:e0:72:bc:b8:db:18:68:3c:0c: e2:20:fa:74:5d:fa:56:4e:dd:3b:f6:15:2b:fa:fb: cd:6e:e5:c2:9c:2f:bd:25:0a:f7:57:71:6c:dd:c5: ba:44:a3:f4:ac:e6:cb:94:7d:82:70:1d:74:d8:8c: 1c:84:aa:8b:24:cb:3a:a1:e3:78:44:1a:cf:4f:70: bf:c1:41:a6:1c:40:01:e3:5a:63:0a:37:a0:c1:d9: 13:0e:88:29:ad:32:84:2e:af:de:06:34:d1:1e:d5: b0:15:ab:23:ed:cd:9c:be:94:d9:65:89:a4:71:77: 0e:57:29:30:b5:a0:94:98:90:60:74:5f:ca:80:38: ad:a7:5e:1b:d8:7f:2d:73:40:ea:6e:cb:cc:7b:c1: f1:bc:22:b8:6a:1c:d8:5a:25:3f:1e:f1:ed:35:7e: 79:02:6a:f4:0c:95:fe:52:33:40:c6:56:f5:a0:62: a8:6b:1b:18:5d:ee:60:b6:f4:70:c1:77:7e:30:83: 43:12:99:50:bd:e0:74:1c:e6:33:27:b7:ce:8a:3c: f3:a9:81:31:58:d7:84:e6:44:4a:ef:5f:e8:04:95: 06:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:20:E0:5F:73:B1:0C:2C:DC:A3:83:CB:89:0F:03:CE:E0:60:F5:89 X509v3 Authority Key Identifier: keyid:22:10:2F:7E:AB:37:C8:1E:87:BB:5E:B2:15:60:BF:A6:24:35:53:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/22102F7EAB37C81E87BB5EB21560BFA6243553CC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095920006954221569/1/3231312e3135372e3234302e302f32302d3230203d3e203233373234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 211.157.240.0/20 Signature Algorithm: sha256WithRSAEncryption 77:76:1b:74:dd:be:f9:f6:aa:35:d9:da:69:d4:a2:46:27:02: 81:5c:f7:3a:8b:78:62:31:0f:82:6d:2f:ac:77:43:67:47:23: 5b:07:fe:b8:21:f1:c1:7d:26:07:be:4b:25:07:b5:5a:14:da: 9a:d2:6e:ca:9f:73:91:52:5d:0e:2a:5d:19:01:21:67:16:7c: 33:85:fd:d5:27:0a:4e:65:bf:94:5c:0b:55:05:8c:b9:f3:09: 4e:6a:0a:1c:68:07:33:15:30:ea:da:25:84:d1:65:c2:d1:c7: 2c:a9:5f:68:4a:b0:d7:da:16:e6:54:2b:5f:38:f7:d5:44:79: 33:96:89:83:70:9e:f9:3f:f8:7d:1a:e1:cc:c4:e8:6b:c2:4b: 6f:04:07:0a:2c:ae:5f:75:df:e4:74:fc:46:ff:51:9f:31:52: 3a:d6:0c:78:a0:20:ff:5a:f8:26:65:3b:36:b3:e0:0a:ad:1c: 92:fa:18:58:da:ec:6a:74:72:ff:10:b5:5f:9c:93:04:6b:f7: d1:b0:95:7a:72:83:ca:ee:df:e7:7f:62:21:97:21:22:e4:41: 49:df:d3:80:7b:e7:2d:d1:6d:1b:69:9c:a6:24:89:9e:b6:1a: 87:06:bc:bd:f8:54:c4:e1:31:6e:34:aa:8a:73:6a:e0:eb:e8: 4c:72:e4:88 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIURNsY32gKfEa9SIT3T+H8qDxFIDowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjIxMDJGN0VBQjM3QzgxRTg3QkI1RUIyMTU2MEJGQTYy NDM1NTNDQzAeFw0yNjA0MTMwNTUyMzlaFw0yNzA0MTIwNTU3MzlaMDMxMTAvBgNV BAMTKDdEMjBFMDVGNzNCMTBDMkNEQ0EzODNDQjg5MEYwM0NFRTA2MEY1ODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgV6bexRQmwU074NdPQfpdV1LJ DFcAO06DeyHnHSPDJrB9J+ByvLjbGGg8DOIg+nRd+lZO3Tv2FSv6+81u5cKcL70l CvdXcWzdxbpEo/Ss5suUfYJwHXTYjByEqoskyzqh43hEGs9PcL/BQaYcQAHjWmMK N6DB2RMOiCmtMoQur94GNNEe1bAVqyPtzZy+lNlliaRxdw5XKTC1oJSYkGB0X8qA OK2nXhvYfy1zQOpuy8x7wfG8IrhqHNhaJT8e8e01fnkCavQMlf5SM0DGVvWgYqhr Gxhd7mC29HDBd34wg0MSmVC94HQc5jMnt86KPPOpgTFY14TmRErvX+gElQa5AgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUfSDgX3OxDCzco4PLiQ8DzuBg9YkwHwYDVR0j BBgwFoAUIhAvfqs3yB6Hu16yFWC/piQ1U8wwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTkyMDAwNjk1NDIyMTU2OS8xLzIyMTAyRjdFQUIzN0M4MUU4N0JCNUVCMjE1NjBC RkE2MjQzNTUzQ0MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjIxMDJGN0VBQjM3QzgxRTg3QkI1RUIyMTU2MEJGQTYyNDM1NTNDQy5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTU5MjAwMDY5NTQyMjE1NjkvMS8zMjMxMzEyZTMx MzUzNzJlMzIzNDMwMmUzMDJmMzIzMDJkMzIzMDIwM2QzZTIwMzIzMzM3MzIzNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEBNOd8DANBgkqhkiG9w0BAQsFAAOCAQEAd3YbdN2++faqNdnaadSi RicCgVz3Oot4YjEPgm0vrHdDZ0cjWwf+uCHxwX0mB75LJQe1WhTamtJuyp9zkVJd DipdGQEhZxZ8M4X91ScKTmW/lFwLVQWMufMJTmoKHGgHMxUw6tolhNFlwtHHLKlf aEqw19oW5lQrXzj31UR5M5aJg3Ce+T/4fRrhzMToa8JLbwQHCiyuX3Xf5HT8Rv9R nzFSOtYMeKAg/1r4JmU7NrPgCq0ckvoYWNrsanRy/xC1X5yTBGv30bCVenKDyu7f 539iIZchIuRBSd/TgHvnLdFtG2mcpiSJnrYahwa8vfhUxOExbjSqinNq4OvoTHLk iA== -----END CERTIFICATE-----Generated at Mon Apr 13 13:53:11 2026 by rpki-client