$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095963215377989635/0/3138322e35302e3132302e302f32322d3232203d3e2034383437.roa File: 3138322e35302e3132302e302f32322d3232203d3e2034383437.roa (raw, json) Hash identifier: RxSH2dzIm76L4smWFUyYuoeagJIAF2UbyIWuLoc0mK4= Subject key identifier: C0:86:D3:A4:88:C8:DE:F8:32:F7:D8:59:D5:2A:CD:77:CC:E3:11:08 Certificate issuer: /CN=C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6 Certificate serial: 507B8D93FC01D75E7F13656482FE6CD4F93338A0 Authority key identifier: C2:CA:12:03:9A:28:07:0B:0F:BB:EA:FD:E7:FF:C0:5E:1F:8E:6C:C6 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/3138322e35302e3132302e302f32322d3232203d3e2034383437.roa Signing time: Mon 13 Apr 2026 06:59:35 +0000 ROA not before: Mon 13 Apr 2026 06:54:35 +0000 ROA not after: Mon 12 Apr 2027 06:59:35 +0000 asID: 4847 IP address blocks: 182.50.120.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.crl rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 08:42:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:7b:8d:93:fc:01:d7:5e:7f:13:65:64:82:fe:6c:d4:f9:33:38:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6 Validity Not Before: Apr 13 06:54:35 2026 GMT Not After : Apr 12 06:59:35 2027 GMT Subject: CN=C086D3A488C8DEF832F7D859D52ACD77CCE31108 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:e9:eb:71:56:c1:08:ed:1c:36:d1:46:60:69: 4c:e6:86:4d:10:12:d5:9c:4a:37:f7:13:12:fb:39: d2:3b:61:1b:2e:60:0b:1d:7f:6f:49:48:7c:d9:c1: 42:0e:f5:5a:66:e3:e9:3a:2f:d2:45:b0:c7:f2:e9: 29:bd:3d:b1:3a:4c:6d:04:73:c8:a0:84:58:b0:87: ac:bb:a1:1d:4a:81:2f:55:f9:45:6e:21:a3:47:ed: 8d:42:15:fd:d2:37:81:02:8a:07:6c:ef:40:c4:49: c2:ac:c6:77:8a:a3:96:f0:31:26:88:71:4d:00:4d: be:d5:e6:0d:9b:ba:37:f7:20:f5:ad:54:57:fb:4d: 4f:57:50:f6:b1:de:1a:96:8a:eb:10:6d:4d:d9:e7: dd:32:35:18:2e:f3:7a:59:d6:5a:dc:8c:34:19:d9: d2:cf:f2:f9:d0:e1:5d:20:d1:38:29:cf:49:07:0d: 2a:96:5b:a3:03:4c:83:cf:02:90:7b:16:2e:3c:12: d4:10:f7:bd:65:ba:04:5f:e5:a2:35:71:03:c4:cf: 70:d4:f9:bc:d4:74:75:fb:63:8b:15:13:f5:0f:32: 43:e5:d1:30:fd:db:e1:42:08:34:56:e5:08:6f:43: d6:69:ba:41:42:54:02:2b:4c:47:1f:fc:34:a0:c4: 42:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:86:D3:A4:88:C8:DE:F8:32:F7:D8:59:D5:2A:CD:77:CC:E3:11:08 X509v3 Authority Key Identifier: keyid:C2:CA:12:03:9A:28:07:0B:0F:BB:EA:FD:E7:FF:C0:5E:1F:8E:6C:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/3138322e35302e3132302e302f32322d3232203d3e2034383437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 182.50.120.0/22 Signature Algorithm: sha256WithRSAEncryption 82:ff:cf:a3:be:eb:ad:b5:80:f7:92:01:8d:ad:57:bb:1a:b8: 52:b4:df:d7:c9:4e:d6:cc:e1:29:32:03:46:c2:62:a6:dd:86: b8:cd:9b:83:36:52:24:39:58:2f:3c:37:1a:e7:96:51:6d:d8: 8e:93:74:66:57:f1:cf:e0:6b:d4:39:33:94:dd:fb:27:4f:ae: 8f:e8:da:de:0c:75:62:b4:eb:95:11:ce:59:53:46:d2:66:01: 3f:13:13:e0:1d:55:30:2b:69:5e:b4:62:cd:62:7e:49:42:02: ee:e0:c9:eb:c1:a1:23:38:44:a2:de:fc:32:92:5f:73:26:d2: 78:f0:0b:03:60:35:d8:d1:70:cf:b5:78:08:1a:c8:84:84:3f: d3:8a:29:30:d9:d0:de:21:42:8d:d4:da:64:f0:f2:e0:f6:96: 44:6c:f8:3a:c2:2a:00:0c:5c:e5:4c:5d:0e:03:f1:92:58:49: f3:27:8b:30:0a:15:45:ca:77:28:ce:5e:d4:33:0c:a6:47:20: 27:81:bd:01:55:f4:32:1b:5e:68:01:4d:df:b3:72:eb:a6:cd: 7c:fa:f0:b0:91:0b:c3:3b:c1:86:9a:2a:04:3d:ed:2c:8a:57: 4c:b2:d8:6f:8e:65:95:28:96:d2:0f:bd:2e:73:68:3e:b9:04: e9:76:d0:ed -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUUHuNk/wB115/E2Vkgv5s1PkzOKAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzJDQTEyMDM5QTI4MDcwQjBGQkJFQUZERTdGRkMwNUUx RjhFNkNDNjAeFw0yNjA0MTMwNjU0MzVaFw0yNzA0MTIwNjU5MzVaMDMxMTAvBgNV BAMTKEMwODZEM0E0ODhDOERFRjgzMkY3RDg1OUQ1MkFDRDc3Q0NFMzExMDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCs6etxVsEI7Rw20UZgaUzmhk0Q EtWcSjf3ExL7OdI7YRsuYAsdf29JSHzZwUIO9Vpm4+k6L9JFsMfy6Sm9PbE6TG0E c8ighFiwh6y7oR1KgS9V+UVuIaNH7Y1CFf3SN4ECigds70DEScKsxneKo5bwMSaI cU0ATb7V5g2bujf3IPWtVFf7TU9XUPax3hqWiusQbU3Z590yNRgu83pZ1lrcjDQZ 2dLP8vnQ4V0g0Tgpz0kHDSqWW6MDTIPPApB7Fi48EtQQ971lugRf5aI1cQPEz3DU +bzUdHX7Y4sVE/UPMkPl0TD92+FCCDRW5QhvQ9ZpukFCVAIrTEcf/DSgxEI3AgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUwIbTpIjI3vgy99hZ1SrNd8zjEQgwHwYDVR0j BBgwFoAUwsoSA5ooBwsPu+r95//AXh+ObMYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTk2MzIxNTM3Nzk4OTYzNS8wL0MyQ0ExMjAzOUEyODA3MEIwRkJCRUFGREU3RkZD MDVFMUY4RTZDQzYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQzJDQTEyMDM5QTI4MDcwQjBGQkJFQUZERTdGRkMwNUUxRjhFNkNDNi5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk1OTYzMjE1Mzc3OTg5NjM1LzAvMzEzODMyMmUzNTMw MmUzMTMyMzAyZTMwMmYzMjMyMmQzMjMyMjAzZDNlMjAzNDM4MzQzNy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEArYyeDANBgkqhkiG9w0BAQsFAAOCAQEAgv/Po77rrbWA95IBja1Xuxq4UrTf 18lO1szhKTIDRsJipt2GuM2bgzZSJDlYLzw3GueWUW3YjpN0Zlfxz+Br1DkzlN37 J0+uj+ja3gx1YrTrlRHOWVNG0mYBPxMT4B1VMCtpXrRizWJ+SUIC7uDJ68GhIzhE ot78MpJfcybSePALA2A12NFwz7V4CBrIhIQ/04opMNnQ3iFCjdTaZPDy4PaWRGz4 OsIqAAxc5UxdDgPxklhJ8yeLMAoVRcp3KM5e1DMMpkcgJ4G9AVX0MhteaAFN37Ny 66bNfPrwsJELwzvBhpoqBD3tLIpXTLLYb45llSiW0g+9LnNoPrkE6XbQ7Q== -----END CERTIFICATE-----Generated at Mon Apr 13 17:47:15 2026 by rpki-client