$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095963215377989635/0/3232332e3232332e3230362e302f32342d3234203d3e2034383437.roa File: 3232332e3232332e3230362e302f32342d3234203d3e2034383437.roa (raw, json) Hash identifier: E6pPucDSFvQSC7w/yef2FvR/gP2u1JY6SZJBNoJgqXo= Subject key identifier: 8F:95:CD:4C:6D:10:5A:B5:0A:93:83:37:62:8D:1F:F0:2C:B4:73:F0 Certificate issuer: /CN=C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6 Certificate serial: 4BEA893F0DAB8660EDBA4C3369BEA86831DEB10E Authority key identifier: C2:CA:12:03:9A:28:07:0B:0F:BB:EA:FD:E7:FF:C0:5E:1F:8E:6C:C6 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/3232332e3232332e3230362e302f32342d3234203d3e2034383437.roa Signing time: Mon 13 Apr 2026 07:01:30 +0000 ROA not before: Mon 13 Apr 2026 06:56:30 +0000 ROA not after: Mon 12 Apr 2027 07:01:30 +0000 asID: 4847 IP address blocks: 223.223.206.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.crl rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 08:42:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:ea:89:3f:0d:ab:86:60:ed:ba:4c:33:69:be:a8:68:31:de:b1:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6 Validity Not Before: Apr 13 06:56:30 2026 GMT Not After : Apr 12 07:01:30 2027 GMT Subject: CN=8F95CD4C6D105AB50A938337628D1FF02CB473F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:f4:76:a7:d6:ea:9b:c7:11:63:a4:fd:23:8d: 3e:6d:08:d4:ca:23:b6:82:ce:3a:11:4f:6c:c3:97: d9:a6:44:db:e6:56:25:d6:b7:fd:7e:e8:03:90:09: 5f:aa:4d:a7:a2:44:dc:8b:e6:72:99:b7:cb:80:ec: 39:61:a2:ca:8c:15:57:92:49:71:de:f3:dc:39:9a: cb:5f:b6:58:7d:fd:ad:80:af:cc:84:e1:36:a1:3c: 71:cb:8e:73:9d:49:79:28:b4:c1:c0:24:ad:cd:f9: 26:fe:df:1f:b6:2c:fe:f2:5c:be:82:46:25:32:e3: 58:0d:38:80:c0:c2:68:b4:ff:ba:6d:ce:39:94:d6: c3:c2:99:85:fc:d2:9a:d5:68:ce:c3:9b:85:6e:3f: 58:2d:8d:87:9f:7b:c9:ff:2e:ef:8a:7d:01:96:bf: 5c:03:32:86:cd:ab:7c:d2:76:a8:9f:f3:37:5b:8d: 0a:36:a3:54:bb:32:6d:a1:5f:0b:64:7e:a5:c2:c4: 78:d9:1b:83:37:36:58:95:fa:59:53:4c:23:3c:35: c4:32:f7:18:7f:15:3b:fd:fc:e9:a3:96:b9:26:40: b0:e1:33:cd:a4:af:f9:93:ed:21:50:0b:b9:d0:47: 6b:cb:b7:54:92:77:1d:1b:c8:a4:e2:54:9f:a7:59: a4:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:95:CD:4C:6D:10:5A:B5:0A:93:83:37:62:8D:1F:F0:2C:B4:73:F0 X509v3 Authority Key Identifier: keyid:C2:CA:12:03:9A:28:07:0B:0F:BB:EA:FD:E7:FF:C0:5E:1F:8E:6C:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/3232332e3232332e3230362e302f32342d3234203d3e2034383437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.223.206.0/24 Signature Algorithm: sha256WithRSAEncryption 85:1a:2d:ca:14:54:95:9e:ae:c8:1f:0c:c8:e8:1f:e4:7b:38: 31:d2:11:e6:5c:6f:01:3c:c7:eb:1f:6f:0d:9b:6e:a1:a9:ce: a4:23:3b:50:b4:96:4b:fc:24:d4:ad:18:c7:47:09:e5:90:53: 68:08:2d:a5:5a:ea:99:79:d4:b9:64:60:34:09:63:6a:a6:e9: 1b:ec:3e:45:f1:b8:af:15:8f:5b:4e:cb:92:36:3a:42:c7:61: c1:64:93:f8:9a:dc:90:d9:f4:3a:73:fd:57:89:b7:6e:ed:4a: ae:62:f8:df:d2:6f:25:6b:75:e2:de:f4:dd:da:7c:fb:46:c3: 36:81:30:ed:ac:83:6a:b5:41:50:42:28:8a:ef:85:99:01:7b: 5d:fc:52:be:bd:c1:26:a8:2c:c8:f1:b5:f6:84:fb:7d:30:37: 5b:f3:f8:f7:42:17:16:d7:ef:c5:a3:f2:5e:7e:9d:07:c9:96: ec:1a:a5:28:4b:81:0f:63:50:7a:80:47:f3:f5:70:10:92:52: b6:c1:f6:8d:cb:24:01:49:23:c3:a4:be:20:e7:3e:87:8e:d4: 3c:f5:6e:d3:8a:1d:34:c2:89:6c:f7:7b:a2:5a:83:f0:0a:f7: 94:06:c5:98:c2:5c:c7:47:f3:b6:72:ad:7f:ed:84:0e:26:bf: 4d:f1:6e:9b -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUS+qJPw2rhmDtukwzab6oaDHesQ4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzJDQTEyMDM5QTI4MDcwQjBGQkJFQUZERTdGRkMwNUUx RjhFNkNDNjAeFw0yNjA0MTMwNjU2MzBaFw0yNzA0MTIwNzAxMzBaMDMxMTAvBgNV BAMTKDhGOTVDRDRDNkQxMDVBQjUwQTkzODMzNzYyOEQxRkYwMkNCNDczRjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCe9Han1uqbxxFjpP0jjT5tCNTK I7aCzjoRT2zDl9mmRNvmViXWt/1+6AOQCV+qTaeiRNyL5nKZt8uA7DlhosqMFVeS SXHe89w5mstftlh9/a2Ar8yE4TahPHHLjnOdSXkotMHAJK3N+Sb+3x+2LP7yXL6C RiUy41gNOIDAwmi0/7ptzjmU1sPCmYX80prVaM7Dm4VuP1gtjYefe8n/Lu+KfQGW v1wDMobNq3zSdqif8zdbjQo2o1S7Mm2hXwtkfqXCxHjZG4M3NliV+llTTCM8NcQy 9xh/FTv9/OmjlrkmQLDhM82kr/mT7SFQC7nQR2vLt1SSdx0byKTiVJ+nWaTJAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUj5XNTG0QWrUKk4M3Yo0f8Cy0c/AwHwYDVR0j BBgwFoAUwsoSA5ooBwsPu+r95//AXh+ObMYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTk2MzIxNTM3Nzk4OTYzNS8wL0MyQ0ExMjAzOUEyODA3MEIwRkJCRUFGREU3RkZD MDVFMUY4RTZDQzYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQzJDQTEyMDM5QTI4MDcwQjBGQkJFQUZERTdGRkMwNUUxRjhFNkNDNi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NTk2MzIxNTM3Nzk4OTYzNS8wLzMyMzIzMzJlMzIz MjMzMmUzMjMwMzYyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNDM4MzQzNy5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAN/fzjANBgkqhkiG9w0BAQsFAAOCAQEAhRotyhRUlZ6uyB8MyOgf5Hs4 MdIR5lxvATzH6x9vDZtuoanOpCM7ULSWS/wk1K0Yx0cJ5ZBTaAgtpVrqmXnUuWRg NAljaqbpG+w+RfG4rxWPW07LkjY6QsdhwWST+JrckNn0OnP9V4m3bu1KrmL439Jv JWt14t703dp8+0bDNoEw7ayDarVBUEIoiu+FmQF7XfxSvr3BJqgsyPG19oT7fTA3 W/P490IXFtfvxaPyXn6dB8mW7BqlKEuBD2NQeoBH8/VwEJJStsH2jcskAUkjw6S+ IOc+h47UPPVu04odNMKJbPd7olqD8Ar3lAbFmMJcx0fztnKtf+2EDia/TfFumw== -----END CERTIFICATE-----Generated at Mon Apr 13 17:47:50 2026 by rpki-client