$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095963215377989635/0/3232332e3232332e3230302e302f32332d3233203d3e2039383038.roa File: 3232332e3232332e3230302e302f32332d3233203d3e2039383038.roa (raw, json) Hash identifier: muSRDn62mhZ45G3XmxpfuQW5T5qUeOnzSfVdO4cjRKM= Subject key identifier: 44:28:7E:67:0B:CF:0B:2B:6C:AD:A7:DB:E7:29:32:C1:A9:A1:53:46 Certificate issuer: /CN=C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6 Certificate serial: 6553C3CF775F5F1FE94772F03EBFCA2818E6B9DA Authority key identifier: C2:CA:12:03:9A:28:07:0B:0F:BB:EA:FD:E7:FF:C0:5E:1F:8E:6C:C6 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/3232332e3232332e3230302e302f32332d3233203d3e2039383038.roa Signing time: Mon 13 Apr 2026 06:59:35 +0000 ROA not before: Mon 13 Apr 2026 06:54:35 +0000 ROA not after: Mon 12 Apr 2027 06:59:35 +0000 asID: 9808 IP address blocks: 223.223.200.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.crl rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 08:42:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:53:c3:cf:77:5f:5f:1f:e9:47:72:f0:3e:bf:ca:28:18:e6:b9:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6 Validity Not Before: Apr 13 06:54:35 2026 GMT Not After : Apr 12 06:59:35 2027 GMT Subject: CN=44287E670BCF0B2B6CADA7DBE72932C1A9A15346 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:78:a6:43:39:e1:1e:2b:85:03:80:93:df:9d: e0:4f:48:f4:d0:ea:a8:38:73:ff:b0:44:6e:e1:5a: fb:f7:e5:a9:10:cf:fc:93:8a:c1:78:ab:fc:72:84: 50:d5:69:5e:5b:00:f1:f3:18:49:e4:5f:44:60:5b: 6a:89:8d:ad:13:3b:94:16:4e:03:ff:10:de:ed:18: 63:65:c2:aa:69:0d:01:d4:c4:30:7f:41:12:65:94: a8:b4:64:cf:ec:cd:58:9a:9c:20:de:8a:c1:aa:d3: ed:a0:0e:08:b6:07:56:13:59:88:ed:f1:20:85:f6: 6c:c0:c5:2c:26:9d:9d:a2:a2:85:7e:d4:2c:7f:43: f3:f6:4d:3b:f5:2c:cd:11:97:14:47:94:f1:76:8c: 44:65:02:88:5d:8d:84:55:73:b0:53:12:40:64:bd: c8:bc:6b:6c:b2:3a:d9:72:96:5d:27:28:be:ec:b3: 0f:78:74:93:5e:5c:40:cc:d6:09:13:00:82:fa:5b: b3:ff:a4:d9:78:04:ea:e7:47:cb:f2:f4:01:7c:66: 8f:40:a2:0f:fc:7a:e4:f7:2d:27:98:4e:e2:21:ac: c6:93:d9:6b:1f:f0:ad:96:2a:86:a8:4c:d8:7d:49: 0f:e8:b4:f9:ed:3d:c3:81:ab:21:8f:47:db:52:58: 1e:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:28:7E:67:0B:CF:0B:2B:6C:AD:A7:DB:E7:29:32:C1:A9:A1:53:46 X509v3 Authority Key Identifier: keyid:C2:CA:12:03:9A:28:07:0B:0F:BB:EA:FD:E7:FF:C0:5E:1F:8E:6C:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/3232332e3232332e3230302e302f32332d3233203d3e2039383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.223.200.0/23 Signature Algorithm: sha256WithRSAEncryption 78:67:ae:fd:58:ab:f3:d9:df:62:1d:68:ea:57:61:3d:c2:8b: d0:04:ed:b9:5a:fc:6c:20:4d:e8:b6:bd:ed:7f:6b:74:75:85: c8:ad:ad:d2:77:df:39:ea:53:9a:de:4b:5f:b7:98:42:ae:1b: 5a:9c:d2:aa:9f:b7:9c:79:fa:1a:30:a7:04:1a:ae:91:79:87: da:a4:4e:44:8c:0a:db:0b:bb:a6:96:20:8a:f9:c3:64:8e:86: 8c:8c:98:0b:06:50:ca:4e:ad:95:ae:67:7b:ea:55:e2:55:d5: 6a:96:89:67:eb:e3:91:6d:9d:d6:e4:97:95:d8:d4:96:42:1b: 42:de:37:3a:52:30:09:f8:d5:a7:54:3a:a3:56:0e:5c:18:43: 36:4b:31:f7:3b:17:18:d7:8f:51:81:4c:7d:e7:26:85:42:a2: 27:bd:70:66:6e:6a:3b:57:67:de:90:28:61:d6:db:86:ca:de: 39:4f:88:70:51:af:fa:08:e3:4e:72:7c:8a:f8:d6:a0:5d:1d: e5:be:01:88:46:75:3f:96:58:6b:e5:e2:66:b7:7e:4a:bb:66: 41:c8:d8:85:52:ee:10:97:75:bb:20:d5:04:ee:9c:b3:57:f8: 93:38:8d:54:dc:d0:1c:54:da:1c:b1:4b:e2:27:b0:7b:24:c0: 12:da:fb:e7 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUZVPDz3dfXx/pR3LwPr/KKBjmudowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzJDQTEyMDM5QTI4MDcwQjBGQkJFQUZERTdGRkMwNUUx RjhFNkNDNjAeFw0yNjA0MTMwNjU0MzVaFw0yNzA0MTIwNjU5MzVaMDMxMTAvBgNV BAMTKDQ0Mjg3RTY3MEJDRjBCMkI2Q0FEQTdEQkU3MjkzMkMxQTlBMTUzNDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2eKZDOeEeK4UDgJPfneBPSPTQ 6qg4c/+wRG7hWvv35akQz/yTisF4q/xyhFDVaV5bAPHzGEnkX0RgW2qJja0TO5QW TgP/EN7tGGNlwqppDQHUxDB/QRJllKi0ZM/szVianCDeisGq0+2gDgi2B1YTWYjt 8SCF9mzAxSwmnZ2iooV+1Cx/Q/P2TTv1LM0RlxRHlPF2jERlAohdjYRVc7BTEkBk vci8a2yyOtlyll0nKL7ssw94dJNeXEDM1gkTAIL6W7P/pNl4BOrnR8vy9AF8Zo9A og/8euT3LSeYTuIhrMaT2Wsf8K2WKoaoTNh9SQ/otPntPcOBqyGPR9tSWB65AgMB AAGjggIUMIICEDAdBgNVHQ4EFgQURCh+ZwvPCytsrafb5ykywamhU0YwHwYDVR0j BBgwFoAUwsoSA5ooBwsPu+r95//AXh+ObMYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTk2MzIxNTM3Nzk4OTYzNS8wL0MyQ0ExMjAzOUEyODA3MEIwRkJCRUFGREU3RkZD MDVFMUY4RTZDQzYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQzJDQTEyMDM5QTI4MDcwQjBGQkJFQUZERTdGRkMwNUUxRjhFNkNDNi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NTk2MzIxNTM3Nzk4OTYzNS8wLzMyMzIzMzJlMzIz MjMzMmUzMjMwMzAyZTMwMmYzMjMzMmQzMjMzMjAzZDNlMjAzOTM4MzAzOC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAd/fyDANBgkqhkiG9w0BAQsFAAOCAQEAeGeu/Vir89nfYh1o6ldhPcKL 0ATtuVr8bCBN6La97X9rdHWFyK2t0nffOepTmt5LX7eYQq4bWpzSqp+3nHn6GjCn BBqukXmH2qRORIwK2wu7ppYgivnDZI6GjIyYCwZQyk6tla5ne+pV4lXVapaJZ+vj kW2d1uSXldjUlkIbQt43OlIwCfjVp1Q6o1YOXBhDNksx9zsXGNePUYFMfecmhUKi J71wZm5qO1dn3pAoYdbbhsreOU+IcFGv+gjjTnJ8ivjWoF0d5b4BiEZ1P5ZYa+Xi Zrd+SrtmQcjYhVLuEJd1uyDVBO6cs1f4kziNVNzQHFTaHLFL4ieweyTAEtr75w== -----END CERTIFICATE-----Generated at Mon Apr 13 15:24:02 2026 by rpki-client