$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095963215377989635/0/3232332e3232332e3230302e302f32322d3232203d3e2034383437.roa File: 3232332e3232332e3230302e302f32322d3232203d3e2034383437.roa (raw, json) Hash identifier: p0fgj0akP7VSNyNGAo1NXkcooIT6MEEasZD5JWVi1U4= Subject key identifier: 56:FD:41:7C:AB:23:52:84:E3:EA:E1:AB:CE:D2:D5:9C:B9:E9:27:D0 Certificate issuer: /CN=C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6 Certificate serial: 7343E607B6F7DA9C05987490CB2AE17DB1DFD3AD Authority key identifier: C2:CA:12:03:9A:28:07:0B:0F:BB:EA:FD:E7:FF:C0:5E:1F:8E:6C:C6 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/3232332e3232332e3230302e302f32322d3232203d3e2034383437.roa Signing time: Mon 13 Apr 2026 06:59:34 +0000 ROA not before: Mon 13 Apr 2026 06:54:34 +0000 ROA not after: Mon 12 Apr 2027 06:59:34 +0000 asID: 4847 IP address blocks: 223.223.200.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.crl rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 08:42:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:43:e6:07:b6:f7:da:9c:05:98:74:90:cb:2a:e1:7d:b1:df:d3:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6 Validity Not Before: Apr 13 06:54:34 2026 GMT Not After : Apr 12 06:59:34 2027 GMT Subject: CN=56FD417CAB235284E3EAE1ABCED2D59CB9E927D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:5b:3c:61:db:47:2a:b1:02:1e:95:70:2d:e0: 95:0e:87:1c:3d:72:47:d8:25:b8:f7:77:62:c5:44: 18:45:64:ee:bb:11:e6:82:08:b3:8d:9c:9b:d1:5f: 66:44:8f:ac:f6:7f:9e:64:54:68:7f:bd:9a:f1:39: fd:39:24:39:b4:7e:c3:1a:56:47:7f:86:4c:ac:23: 04:05:ed:80:e3:eb:64:29:34:0a:bb:e2:82:6c:fa: 66:4b:a1:fb:64:89:93:df:b7:e1:51:81:85:6a:82: d3:18:7c:cd:65:0c:8a:f0:ce:88:00:20:c1:85:ab: 47:dd:d5:0e:95:22:13:cf:79:27:b1:5a:1b:97:6c: 71:8d:c7:36:8b:90:1f:a8:ae:57:ba:b8:8a:ed:41: 4e:6d:58:20:18:5f:c4:f3:82:25:d3:22:cc:02:d9: 39:88:7a:8d:4c:9d:13:90:82:ae:ce:9a:61:a2:f8: 51:d2:1f:26:d5:92:b6:d2:f6:aa:8d:41:b8:5c:6a: 91:9b:1c:34:14:b3:6d:b7:f4:23:ef:9e:95:0e:d2: 8a:4e:f9:43:ab:ea:66:76:90:39:4c:29:35:70:05: 4b:ed:f4:1e:f1:72:f3:ed:6a:70:dc:d1:6a:14:06: 2b:1b:75:f1:19:d8:52:86:4e:ba:75:da:f0:9f:df: 1c:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:FD:41:7C:AB:23:52:84:E3:EA:E1:AB:CE:D2:D5:9C:B9:E9:27:D0 X509v3 Authority Key Identifier: keyid:C2:CA:12:03:9A:28:07:0B:0F:BB:EA:FD:E7:FF:C0:5E:1F:8E:6C:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/3232332e3232332e3230302e302f32322d3232203d3e2034383437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.223.200.0/22 Signature Algorithm: sha256WithRSAEncryption 56:18:78:0e:7d:7d:7b:13:ad:09:e4:3e:23:a2:2d:39:61:5c: d1:58:dc:5d:41:a5:f4:a6:a1:c1:63:ef:ed:6f:06:ac:86:38: 5d:c4:f1:11:ce:2c:01:b4:1d:f4:9c:98:83:86:c4:cd:6c:17: a5:26:93:f9:06:5a:73:dd:26:2a:b3:29:e5:84:10:4b:dc:4c: c9:c5:04:6a:4e:d8:d4:2c:b3:d4:4b:b6:42:0d:d3:8a:f8:93: cb:cf:60:51:2b:73:c7:46:b1:da:0e:ba:e0:89:9d:dc:fc:d1: a4:57:7c:99:33:a5:31:0e:f1:14:5a:8e:d7:8d:35:4b:68:11: 79:66:76:7f:7b:f7:88:22:a7:6b:7e:2e:7c:4e:10:d5:ff:f5: a2:fa:24:d4:f0:00:8f:bc:8d:3e:5c:43:6f:a3:27:59:ec:c7: 7f:29:d8:53:1c:d2:fb:5b:c8:1c:7a:2a:be:00:05:2b:b0:e9: 96:01:a1:81:f7:ae:ba:e6:5b:1c:ce:cb:9b:6a:18:c4:8a:79: 1b:3f:4f:79:9c:d5:d1:fc:32:41:91:34:e9:ae:4a:6b:6b:66: 57:11:65:01:55:66:b2:45:bf:c3:d8:f3:c9:03:8c:dd:46:76: f0:4a:7c:0e:1f:a3:41:6f:36:08:00:60:eb:7c:ad:98:d5:39: 42:84:68:d7 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUc0PmB7b32pwFmHSQyyrhfbHf060wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzJDQTEyMDM5QTI4MDcwQjBGQkJFQUZERTdGRkMwNUUx RjhFNkNDNjAeFw0yNjA0MTMwNjU0MzRaFw0yNzA0MTIwNjU5MzRaMDMxMTAvBgNV BAMTKDU2RkQ0MTdDQUIyMzUyODRFM0VBRTFBQkNFRDJENTlDQjlFOTI3RDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsWzxh20cqsQIelXAt4JUOhxw9 ckfYJbj3d2LFRBhFZO67EeaCCLONnJvRX2ZEj6z2f55kVGh/vZrxOf05JDm0fsMa Vkd/hkysIwQF7YDj62QpNAq74oJs+mZLoftkiZPft+FRgYVqgtMYfM1lDIrwzogA IMGFq0fd1Q6VIhPPeSexWhuXbHGNxzaLkB+orle6uIrtQU5tWCAYX8TzgiXTIswC 2TmIeo1MnROQgq7OmmGi+FHSHybVkrbS9qqNQbhcapGbHDQUs2239CPvnpUO0opO +UOr6mZ2kDlMKTVwBUvt9B7xcvPtanDc0WoUBisbdfEZ2FKGTrp12vCf3xw7AgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUVv1BfKsjUoTj6uGrztLVnLnpJ9AwHwYDVR0j BBgwFoAUwsoSA5ooBwsPu+r95//AXh+ObMYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTk2MzIxNTM3Nzk4OTYzNS8wL0MyQ0ExMjAzOUEyODA3MEIwRkJCRUFGREU3RkZD MDVFMUY4RTZDQzYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQzJDQTEyMDM5QTI4MDcwQjBGQkJFQUZERTdGRkMwNUUxRjhFNkNDNi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NTk2MzIxNTM3Nzk4OTYzNS8wLzMyMzIzMzJlMzIz MjMzMmUzMjMwMzAyZTMwMmYzMjMyMmQzMjMyMjAzZDNlMjAzNDM4MzQzNy5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAt/fyDANBgkqhkiG9w0BAQsFAAOCAQEAVhh4Dn19exOtCeQ+I6ItOWFc 0VjcXUGl9KahwWPv7W8GrIY4XcTxEc4sAbQd9JyYg4bEzWwXpSaT+QZac90mKrMp 5YQQS9xMycUEak7Y1Cyz1Eu2Qg3TiviTy89gUStzx0ax2g664Imd3PzRpFd8mTOl MQ7xFFqO1401S2gReWZ2f3v3iCKna34ufE4Q1f/1ovok1PAAj7yNPlxDb6MnWezH fynYUxzS+1vIHHoqvgAFK7DplgGhgfeuuuZbHM7Lm2oYxIp5Gz9PeZzV0fwyQZE0 6a5Ka2tmVxFlAVVmskW/w9jzyQOM3UZ28Ep8Dh+jQW82CABg63ytmNU5QoRo1w== -----END CERTIFICATE-----Generated at Mon Apr 13 17:47:13 2026 by rpki-client