$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095963215377989635/0/3232332e3232332e3139362e302f32322d3232203d3e2039383038.roa File: 3232332e3232332e3139362e302f32322d3232203d3e2039383038.roa (raw, json) Hash identifier: w1nEoSlIE/pMn5TcQuqW3Z0Fh/zlhj5HXhkStRWWZSM= Subject key identifier: 57:14:F9:23:1A:69:86:E1:9C:2C:D4:B8:9A:D6:BE:50:A1:9D:69:E8 Certificate issuer: /CN=C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6 Certificate serial: 398C73A157B0608A8D8DC4EBF0929EE738C7AB1D Authority key identifier: C2:CA:12:03:9A:28:07:0B:0F:BB:EA:FD:E7:FF:C0:5E:1F:8E:6C:C6 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/3232332e3232332e3139362e302f32322d3232203d3e2039383038.roa Signing time: Mon 13 Apr 2026 06:59:35 +0000 ROA not before: Mon 13 Apr 2026 06:54:35 +0000 ROA not after: Mon 12 Apr 2027 06:59:35 +0000 asID: 9808 IP address blocks: 223.223.196.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.crl rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 08:42:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:8c:73:a1:57:b0:60:8a:8d:8d:c4:eb:f0:92:9e:e7:38:c7:ab:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6 Validity Not Before: Apr 13 06:54:35 2026 GMT Not After : Apr 12 06:59:35 2027 GMT Subject: CN=5714F9231A6986E19C2CD4B89AD6BE50A19D69E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:d8:2f:ff:d3:ef:62:7d:3b:aa:f4:10:3d:4b: eb:88:3c:a2:0b:1f:ff:25:00:30:11:b5:b8:82:68: bf:fa:23:91:12:ad:cb:fe:cc:ce:d5:ed:1b:fb:cb: 47:db:39:f6:79:62:5a:d8:21:b4:a0:a1:ea:40:ea: f3:6b:2e:92:93:47:dd:d2:47:a6:2c:d4:d9:7e:50: 94:17:6b:e3:a4:b5:19:05:d1:d5:d5:bc:e6:37:d3: c0:16:8a:96:d9:4c:9c:be:85:8c:55:53:8c:ae:be: b6:b2:74:21:90:9f:16:c0:27:26:4a:1f:3d:bf:8a: 0e:a4:21:15:1b:6d:17:d0:ff:5e:9d:32:bc:84:17: ef:3f:07:d0:5c:3c:71:d0:36:1e:8c:bf:95:0b:e4: 32:45:7e:a5:1e:b7:aa:fe:44:61:2d:f9:23:e4:7d: 50:03:de:ee:24:92:f8:d8:98:67:01:25:f4:1c:dc: df:df:00:90:13:07:37:df:ee:a8:d7:7f:75:b8:8c: 89:94:c1:9c:e8:65:a4:2f:76:06:66:ba:aa:a1:0e: c2:5d:5d:8b:30:cc:36:23:38:f3:4f:cd:7a:a0:ff: 46:c0:2c:6c:5f:55:41:fb:8e:d5:0f:85:01:50:e9: b1:69:cd:33:bb:4f:41:70:a0:7d:fd:01:d3:4b:19: 78:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:14:F9:23:1A:69:86:E1:9C:2C:D4:B8:9A:D6:BE:50:A1:9D:69:E8 X509v3 Authority Key Identifier: keyid:C2:CA:12:03:9A:28:07:0B:0F:BB:EA:FD:E7:FF:C0:5E:1F:8E:6C:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/3232332e3232332e3139362e302f32322d3232203d3e2039383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.223.196.0/22 Signature Algorithm: sha256WithRSAEncryption 4f:20:4c:4d:e3:c4:6d:4a:95:6f:7b:a7:32:f9:65:c6:63:c7: 50:91:69:ca:6c:84:93:6c:b9:88:d5:ac:47:85:d3:d0:23:06: a0:d3:7f:23:6a:96:08:8e:ce:3c:76:a7:74:ef:fa:cd:86:58: 57:1f:1f:c6:86:3d:51:0f:8d:a6:16:4e:60:c0:b4:a9:a8:36: b9:0d:df:d1:88:f1:5b:39:c8:d3:a2:7e:25:8f:42:dc:67:c8: 65:e4:f7:da:c1:22:9a:6c:5c:1e:43:8e:66:0c:d4:5c:d2:88: 40:05:56:2c:ea:48:70:21:e6:da:20:91:8f:c8:8c:67:7f:8c: 55:59:e3:bd:04:da:27:bd:76:22:fb:7c:ad:f5:db:56:04:6c: 73:28:3d:c0:7a:e7:b1:49:8d:d6:a1:dc:dc:b9:d7:02:a2:80: a0:d7:2b:0a:16:66:42:55:8f:ac:14:40:07:48:fd:70:0d:49: 95:e8:fc:fc:75:f5:40:be:34:11:48:12:93:b6:b9:f6:fc:11: 4f:f3:36:85:e3:b7:be:b9:39:88:1b:78:09:d7:3c:aa:9d:22: 49:0b:f5:41:26:89:03:b9:4d:00:1a:f0:78:f7:e8:3d:04:1e: 2b:64:0a:ea:7d:45:8a:18:33:1e:87:20:fa:1a:4f:ec:f2:66: 5c:d6:da:1d -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUOYxzoVewYIqNjcTr8JKe5zjHqx0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzJDQTEyMDM5QTI4MDcwQjBGQkJFQUZERTdGRkMwNUUx RjhFNkNDNjAeFw0yNjA0MTMwNjU0MzVaFw0yNzA0MTIwNjU5MzVaMDMxMTAvBgNV BAMTKDU3MTRGOTIzMUE2OTg2RTE5QzJDRDRCODlBRDZCRTUwQTE5RDY5RTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCm2C//0+9ifTuq9BA9S+uIPKIL H/8lADARtbiCaL/6I5ESrcv+zM7V7Rv7y0fbOfZ5YlrYIbSgoepA6vNrLpKTR93S R6Ys1Nl+UJQXa+OktRkF0dXVvOY308AWipbZTJy+hYxVU4yuvraydCGQnxbAJyZK Hz2/ig6kIRUbbRfQ/16dMryEF+8/B9BcPHHQNh6Mv5UL5DJFfqUet6r+RGEt+SPk fVAD3u4kkvjYmGcBJfQc3N/fAJATBzff7qjXf3W4jImUwZzoZaQvdgZmuqqhDsJd XYswzDYjOPNPzXqg/0bALGxfVUH7jtUPhQFQ6bFpzTO7T0FwoH39AdNLGXg7AgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUVxT5IxpphuGcLNS4mta+UKGdaegwHwYDVR0j BBgwFoAUwsoSA5ooBwsPu+r95//AXh+ObMYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTk2MzIxNTM3Nzk4OTYzNS8wL0MyQ0ExMjAzOUEyODA3MEIwRkJCRUFGREU3RkZD MDVFMUY4RTZDQzYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQzJDQTEyMDM5QTI4MDcwQjBGQkJFQUZERTdGRkMwNUUxRjhFNkNDNi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NTk2MzIxNTM3Nzk4OTYzNS8wLzMyMzIzMzJlMzIz MjMzMmUzMTM5MzYyZTMwMmYzMjMyMmQzMjMyMjAzZDNlMjAzOTM4MzAzOC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAt/fxDANBgkqhkiG9w0BAQsFAAOCAQEATyBMTePEbUqVb3unMvllxmPH UJFpymyEk2y5iNWsR4XT0CMGoNN/I2qWCI7OPHandO/6zYZYVx8fxoY9UQ+NphZO YMC0qag2uQ3f0YjxWznI06J+JY9C3GfIZeT32sEimmxcHkOOZgzUXNKIQAVWLOpI cCHm2iCRj8iMZ3+MVVnjvQTaJ712Ivt8rfXbVgRscyg9wHrnsUmN1qHc3LnXAqKA oNcrChZmQlWPrBRAB0j9cA1Jlej8/HX1QL40EUgSk7a59vwRT/M2heO3vrk5iBt4 Cdc8qp0iSQv1QSaJA7lNABrwePfoPQQeK2QK6n1FihgzHocg+hpP7PJmXNbaHQ== -----END CERTIFICATE-----Generated at Mon Apr 13 15:24:38 2026 by rpki-client