$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095963215377989635/0/3232332e3232332e3230342e302f32332d3233203d3e2034383437.roa File: 3232332e3232332e3230342e302f32332d3233203d3e2034383437.roa (raw, json) Hash identifier: 5IhF0jLatyAjq6ASoY6Cx91xVUBfTWOCXuuVbPZX/jU= Subject key identifier: 35:76:64:45:A5:71:08:ED:7F:C4:BD:CF:09:98:E2:6A:AB:89:9E:2C Certificate issuer: /CN=C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6 Certificate serial: 083960E7CB0F29DB451F9D2CFB6E1D0AB5A329A0 Authority key identifier: C2:CA:12:03:9A:28:07:0B:0F:BB:EA:FD:E7:FF:C0:5E:1F:8E:6C:C6 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/3232332e3232332e3230342e302f32332d3233203d3e2034383437.roa Signing time: Mon 13 Apr 2026 06:59:35 +0000 ROA not before: Mon 13 Apr 2026 06:54:35 +0000 ROA not after: Mon 12 Apr 2027 06:59:35 +0000 asID: 4847 IP address blocks: 223.223.204.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.crl rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 08:42:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:39:60:e7:cb:0f:29:db:45:1f:9d:2c:fb:6e:1d:0a:b5:a3:29:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6 Validity Not Before: Apr 13 06:54:35 2026 GMT Not After : Apr 12 06:59:35 2027 GMT Subject: CN=35766445A57108ED7FC4BDCF0998E26AAB899E2C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c7:70:c2:dd:8c:0b:a2:c0:d4:c5:df:72:25: eb:e4:77:df:30:ea:b1:be:1e:fe:be:9f:4b:0e:c7: 39:58:67:0d:90:93:15:2b:25:5a:bf:bb:33:6e:5a: 31:df:c9:f1:d2:40:24:d8:e2:ee:99:90:2d:b0:6b: c1:22:c9:92:10:bb:cb:8b:74:e4:f7:f9:32:94:d1: d6:5a:4f:01:cf:0b:d4:d9:58:5a:d0:b8:fd:dc:4d: 09:39:52:8d:8c:06:8b:b0:db:33:0b:e9:88:0c:47: 37:40:f6:56:df:18:78:8c:46:df:cb:4b:15:2f:f3: 01:a3:4c:26:ee:0f:b4:58:2a:b7:a9:d6:c8:e4:42: 72:ff:67:71:00:52:00:41:59:af:c5:a2:87:30:9e: f6:bf:f8:e4:b5:ab:7f:f0:a4:99:cb:31:17:f4:4e: ac:7d:7e:a2:48:38:bb:87:b7:c4:cd:98:25:83:c1: 1c:8c:e7:7f:1f:81:cf:60:ac:eb:40:d8:7f:eb:c5: a9:ce:c3:eb:82:7d:a3:28:f4:63:88:e8:99:d4:b6: f3:e1:9c:2a:7e:ef:e7:66:7f:f6:2a:ca:ae:6b:8b: e7:ad:a4:0b:b0:a1:53:69:41:77:50:e4:71:e9:88: f6:88:d1:0c:28:59:ef:ed:fc:78:d5:76:b3:05:a8: 03:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:76:64:45:A5:71:08:ED:7F:C4:BD:CF:09:98:E2:6A:AB:89:9E:2C X509v3 Authority Key Identifier: keyid:C2:CA:12:03:9A:28:07:0B:0F:BB:EA:FD:E7:FF:C0:5E:1F:8E:6C:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/3232332e3232332e3230342e302f32332d3233203d3e2034383437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.223.204.0/23 Signature Algorithm: sha256WithRSAEncryption 04:08:4c:dd:ca:12:52:6e:d3:a3:f1:c9:5e:78:bc:a5:21:5f: 74:4f:cd:03:fd:83:4c:0e:57:ff:f5:5d:4c:a2:9e:be:a8:87: 39:a0:32:59:fa:63:fe:ac:0a:93:68:57:3d:51:bc:8a:40:90: ca:ee:98:0a:42:a1:f9:4c:cb:b7:5f:bd:67:6b:03:fc:be:9e: e9:f0:56:b3:af:3b:77:c4:db:7d:1b:eb:9d:09:5d:e2:42:13: 90:8c:80:31:23:cc:ef:fa:6c:25:d4:27:65:04:3d:21:e3:a6: f1:cf:e4:87:45:30:00:98:84:b4:c5:27:b9:ad:c2:fa:b2:3c: 64:84:91:86:c2:1c:c3:41:96:73:6e:e3:32:b1:fc:22:6b:44: 4a:79:bf:0e:4f:f8:49:26:e2:8f:9c:15:11:b9:b9:05:73:37: fb:7b:70:1d:89:f6:0e:ff:59:6c:d4:a3:1b:91:02:3c:2f:6a: 01:38:9e:3c:9e:5e:a7:9b:d5:99:a0:d4:59:36:5a:7f:69:8b: 75:26:d1:6d:06:2a:f3:a8:d2:0e:e7:99:2a:dd:b3:e3:d2:59: b7:7d:63:88:3d:31:f6:8f:1f:70:f1:b2:c0:ae:94:1a:d8:3a: 8c:0c:87:7a:e2:84:58:13:49:e4:0e:4f:d3:22:2f:7f:61:0d: db:9a:35:b7 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUCDlg58sPKdtFH50s+24dCrWjKaAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzJDQTEyMDM5QTI4MDcwQjBGQkJFQUZERTdGRkMwNUUx RjhFNkNDNjAeFw0yNjA0MTMwNjU0MzVaFw0yNzA0MTIwNjU5MzVaMDMxMTAvBgNV BAMTKDM1NzY2NDQ1QTU3MTA4RUQ3RkM0QkRDRjA5OThFMjZBQUI4OTlFMkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9x3DC3YwLosDUxd9yJevkd98w 6rG+Hv6+n0sOxzlYZw2QkxUrJVq/uzNuWjHfyfHSQCTY4u6ZkC2wa8EiyZIQu8uL dOT3+TKU0dZaTwHPC9TZWFrQuP3cTQk5Uo2MBouw2zML6YgMRzdA9lbfGHiMRt/L SxUv8wGjTCbuD7RYKrep1sjkQnL/Z3EAUgBBWa/Foocwnva/+OS1q3/wpJnLMRf0 Tqx9fqJIOLuHt8TNmCWDwRyM538fgc9grOtA2H/rxanOw+uCfaMo9GOI6JnUtvPh nCp+7+dmf/Yqyq5ri+etpAuwoVNpQXdQ5HHpiPaI0QwoWe/t/HjVdrMFqANDAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUNXZkRaVxCO1/xL3PCZjiaquJniwwHwYDVR0j BBgwFoAUwsoSA5ooBwsPu+r95//AXh+ObMYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTk2MzIxNTM3Nzk4OTYzNS8wL0MyQ0ExMjAzOUEyODA3MEIwRkJCRUFGREU3RkZD MDVFMUY4RTZDQzYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQzJDQTEyMDM5QTI4MDcwQjBGQkJFQUZERTdGRkMwNUUxRjhFNkNDNi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NTk2MzIxNTM3Nzk4OTYzNS8wLzMyMzIzMzJlMzIz MjMzMmUzMjMwMzQyZTMwMmYzMjMzMmQzMjMzMjAzZDNlMjAzNDM4MzQzNy5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAd/fzDANBgkqhkiG9w0BAQsFAAOCAQEABAhM3coSUm7To/HJXni8pSFf dE/NA/2DTA5X//VdTKKevqiHOaAyWfpj/qwKk2hXPVG8ikCQyu6YCkKh+UzLt1+9 Z2sD/L6e6fBWs687d8TbfRvrnQld4kITkIyAMSPM7/psJdQnZQQ9IeOm8c/kh0Uw AJiEtMUnua3C+rI8ZISRhsIcw0GWc27jMrH8ImtESnm/Dk/4SSbij5wVEbm5BXM3 +3twHYn2Dv9ZbNSjG5ECPC9qATiePJ5ep5vVmaDUWTZaf2mLdSbRbQYq86jSDueZ Kt2z49JZt31jiD0x9o8fcPGywK6UGtg6jAyHeuKEWBNJ5A5P0yIvf2EN25o1tw== -----END CERTIFICATE-----Generated at Mon Apr 13 17:47:15 2026 by rpki-client