$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095963215377989635/0/3232332e3232332e3230372e302f32342d3234203d3e2039383038.roa File: 3232332e3232332e3230372e302f32342d3234203d3e2039383038.roa (raw, json) Hash identifier: esptBCRFnL/6Lai6rNuyf9Xnx0Qa7zWcscVwg+2VBOs= Subject key identifier: 0A:A2:11:64:D9:EC:B5:B1:34:6D:F1:09:93:02:E1:64:99:CC:95:A4 Certificate issuer: /CN=C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6 Certificate serial: 746A2EA9EEAFB9556740F0A60EA90043FCF5E034 Authority key identifier: C2:CA:12:03:9A:28:07:0B:0F:BB:EA:FD:E7:FF:C0:5E:1F:8E:6C:C6 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/3232332e3232332e3230372e302f32342d3234203d3e2039383038.roa Signing time: Mon 13 Apr 2026 07:01:30 +0000 ROA not before: Mon 13 Apr 2026 06:56:30 +0000 ROA not after: Mon 12 Apr 2027 07:01:30 +0000 asID: 9808 IP address blocks: 223.223.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.crl rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 08:42:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:6a:2e:a9:ee:af:b9:55:67:40:f0:a6:0e:a9:00:43:fc:f5:e0:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6 Validity Not Before: Apr 13 06:56:30 2026 GMT Not After : Apr 12 07:01:30 2027 GMT Subject: CN=0AA21164D9ECB5B1346DF1099302E16499CC95A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:24:32:0d:e5:fd:e1:d3:6d:57:a2:33:80:d4: a5:87:1b:26:bd:75:cc:9c:5b:20:32:f7:9f:2d:f0: 1a:f1:02:13:9e:58:2b:f3:f5:99:af:a6:12:54:15: 37:86:59:73:19:ca:33:2d:47:b8:43:de:12:63:07: 0c:40:a6:66:eb:a4:dd:b1:d7:7a:13:7a:7d:22:de: de:fa:a8:9d:4f:27:f6:bf:25:0f:ea:21:ab:b4:c5: 7f:1e:33:9d:d8:8d:a2:42:7d:78:5a:d2:66:f9:73: d4:64:6f:3a:4d:29:0e:ce:d1:b9:d9:01:ce:3f:0c: aa:fa:cb:39:a9:bd:2a:91:8d:f3:44:23:60:35:1e: 59:c6:68:ee:4d:20:10:ae:2d:9d:ef:8d:e4:ca:01: 19:85:13:e9:28:2c:bc:65:93:83:32:02:dd:d8:e2: 54:af:4f:96:9a:66:24:d8:42:9e:f3:cd:49:06:71: 22:92:2e:c4:46:89:82:fa:0a:c3:21:ea:71:ae:1c: ad:7c:1e:07:cb:89:eb:af:22:91:c0:26:41:18:38: 05:60:07:29:55:cc:92:33:40:73:2c:31:16:38:9b: f7:70:f3:c3:16:fd:02:0b:41:15:67:f6:ac:e1:cb: 9c:96:f4:c0:73:62:ba:58:66:9f:23:08:91:6e:47: fc:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:A2:11:64:D9:EC:B5:B1:34:6D:F1:09:93:02:E1:64:99:CC:95:A4 X509v3 Authority Key Identifier: keyid:C2:CA:12:03:9A:28:07:0B:0F:BB:EA:FD:E7:FF:C0:5E:1F:8E:6C:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/3232332e3232332e3230372e302f32342d3234203d3e2039383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.223.207.0/24 Signature Algorithm: sha256WithRSAEncryption b4:e1:6c:c3:05:4e:ad:1b:7e:bb:d9:8f:53:1d:fc:7d:81:d1: 7b:1b:00:39:17:4c:d1:41:19:bc:97:43:1b:9b:4e:bd:1d:87: 01:15:80:90:5e:bc:77:9e:64:d7:02:3c:11:d0:da:57:ca:bb: 56:08:fe:c0:a1:50:ac:2a:21:bc:49:c3:13:ce:d9:a1:b3:00: c9:36:96:b7:f8:a1:33:cf:37:b2:23:99:fd:85:f4:6a:15:e0: 37:bd:65:16:8c:00:81:32:4a:42:9e:04:00:5a:ec:27:24:6e: 4c:bf:d0:64:f2:8e:76:0f:4c:b9:73:70:52:e4:1d:17:64:99: bf:a9:21:b6:05:f7:fe:b1:31:cf:f5:bf:19:98:56:67:5a:a1: a3:b8:d7:0a:27:c9:dc:c2:01:f5:69:0b:c9:b6:e6:c3:20:67: 07:62:d3:26:7d:33:a8:2f:58:32:dd:59:e9:9a:ff:12:b8:6a: 2f:f2:f0:9b:9b:27:ce:a1:22:cf:06:06:c7:ee:9a:53:a6:15: b3:06:66:5a:a8:5f:ec:54:3f:31:64:1a:f3:b2:00:66:f5:3b: 2a:ae:7d:26:32:54:d5:96:6a:5a:78:5a:7f:ed:59:da:19:bf: 5b:2d:af:bb:06:fb:d0:d6:32:3b:a0:5d:0b:ab:fc:03:f7:99: fc:02:53:b6 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUdGouqe6vuVVnQPCmDqkAQ/z14DQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzJDQTEyMDM5QTI4MDcwQjBGQkJFQUZERTdGRkMwNUUx RjhFNkNDNjAeFw0yNjA0MTMwNjU2MzBaFw0yNzA0MTIwNzAxMzBaMDMxMTAvBgNV BAMTKDBBQTIxMTY0RDlFQ0I1QjEzNDZERjEwOTkzMDJFMTY0OTlDQzk1QTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+JDIN5f3h021XojOA1KWHGya9 dcycWyAy958t8BrxAhOeWCvz9ZmvphJUFTeGWXMZyjMtR7hD3hJjBwxApmbrpN2x 13oTen0i3t76qJ1PJ/a/JQ/qIau0xX8eM53YjaJCfXha0mb5c9RkbzpNKQ7O0bnZ Ac4/DKr6yzmpvSqRjfNEI2A1HlnGaO5NIBCuLZ3vjeTKARmFE+koLLxlk4MyAt3Y 4lSvT5aaZiTYQp7zzUkGcSKSLsRGiYL6CsMh6nGuHK18HgfLieuvIpHAJkEYOAVg BylVzJIzQHMsMRY4m/dw88MW/QILQRVn9qzhy5yW9MBzYrpYZp8jCJFuR/zFAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUCqIRZNnstbE0bfEJkwLhZJnMlaQwHwYDVR0j BBgwFoAUwsoSA5ooBwsPu+r95//AXh+ObMYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTk2MzIxNTM3Nzk4OTYzNS8wL0MyQ0ExMjAzOUEyODA3MEIwRkJCRUFGREU3RkZD MDVFMUY4RTZDQzYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQzJDQTEyMDM5QTI4MDcwQjBGQkJFQUZERTdGRkMwNUUxRjhFNkNDNi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NTk2MzIxNTM3Nzk4OTYzNS8wLzMyMzIzMzJlMzIz MjMzMmUzMjMwMzcyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzOTM4MzAzOC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAN/fzzANBgkqhkiG9w0BAQsFAAOCAQEAtOFswwVOrRt+u9mPUx38fYHR exsAORdM0UEZvJdDG5tOvR2HARWAkF68d55k1wI8EdDaV8q7Vgj+wKFQrCohvEnD E87ZobMAyTaWt/ihM883siOZ/YX0ahXgN71lFowAgTJKQp4EAFrsJyRuTL/QZPKO dg9MuXNwUuQdF2SZv6khtgX3/rExz/W/GZhWZ1qho7jXCifJ3MIB9WkLybbmwyBn B2LTJn0zqC9YMt1Z6Zr/ErhqL/Lwm5snzqEizwYGx+6aU6YVswZmWqhf7FQ/MWQa 87IAZvU7Kq59JjJU1ZZqWnhaf+1Z2hm/Wy2vuwb70NYyO6BdC6v8A/eZ/AJTtg== -----END CERTIFICATE-----Generated at Mon Apr 13 15:24:39 2026 by rpki-client