$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095963215377989635/0/32372e302e3136302e302f32322d3232203d3e2039383038.roa File: 32372e302e3136302e302f32322d3232203d3e2039383038.roa (raw, json) Hash identifier: +kMEw6oL0Egm4zWUZ9vyIB+clSlfM55Gi3H79PnvP2g= Subject key identifier: 65:47:EB:21:7A:A2:E4:63:91:DE:43:C6:8D:A6:51:95:60:63:AA:9C Certificate issuer: /CN=C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6 Certificate serial: 09621B53D65331A94BEDC72C614565A3AB816C0F Authority key identifier: C2:CA:12:03:9A:28:07:0B:0F:BB:EA:FD:E7:FF:C0:5E:1F:8E:6C:C6 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/32372e302e3136302e302f32322d3232203d3e2039383038.roa Signing time: Mon 13 Apr 2026 07:12:28 +0000 ROA not before: Mon 13 Apr 2026 07:07:28 +0000 ROA not after: Mon 12 Apr 2027 07:12:28 +0000 asID: 9808 IP address blocks: 27.0.160.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.crl rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 08:42:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:62:1b:53:d6:53:31:a9:4b:ed:c7:2c:61:45:65:a3:ab:81:6c:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6 Validity Not Before: Apr 13 07:07:28 2026 GMT Not After : Apr 12 07:12:28 2027 GMT Subject: CN=6547EB217AA2E46391DE43C68DA651956063AA9C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:d6:65:3c:e3:8c:b8:73:1c:43:33:1c:34:fa: c1:b2:70:30:b0:42:0a:52:cb:38:ee:8b:6a:74:41: 6b:4a:52:dd:5c:85:24:a8:be:be:70:94:1e:59:c6: c5:15:e5:96:1b:56:a2:03:68:7b:c7:b4:dc:a1:fe: 95:b6:62:96:5b:b8:ac:85:ad:b5:fd:ee:4b:5c:40: a4:ce:53:84:1d:b2:8c:e1:74:8a:86:f4:3c:a4:37: 8e:e1:ae:16:a9:c5:5b:56:2e:54:63:f0:50:a0:ed: c1:f5:32:fc:0d:8f:bb:50:eb:10:d0:de:db:34:9e: 26:f2:48:76:ac:8d:c7:5b:14:cf:4b:ad:81:9b:0f: 17:94:8c:e3:df:6f:68:ed:55:f2:2b:13:47:0b:4a: 8d:6e:5a:1b:d3:7e:a4:03:78:0f:36:22:7c:39:03: cf:ac:84:32:d5:f2:04:9d:90:f7:a2:a9:32:91:b9: 19:94:57:77:bb:3d:48:91:ab:8f:4e:48:d7:f8:8d: 38:84:ff:c0:98:1d:67:a4:e7:a5:53:74:6e:c7:6e: 76:98:c8:8e:29:89:cc:14:60:f9:25:f2:75:82:a5: 5e:bd:68:08:9b:9c:66:b4:3f:79:97:37:34:21:84: 92:04:47:73:dc:4b:52:27:46:51:72:86:49:b9:b9: fb:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:47:EB:21:7A:A2:E4:63:91:DE:43:C6:8D:A6:51:95:60:63:AA:9C X509v3 Authority Key Identifier: keyid:C2:CA:12:03:9A:28:07:0B:0F:BB:EA:FD:E7:FF:C0:5E:1F:8E:6C:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/32372e302e3136302e302f32322d3232203d3e2039383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.0.160.0/22 Signature Algorithm: sha256WithRSAEncryption 5e:ef:93:07:06:91:eb:18:42:8b:d9:c5:3d:ef:ab:10:89:6f: e6:53:2d:20:1a:a1:0b:5f:bd:e9:58:24:bf:92:02:38:8e:79: 85:5a:fa:07:9b:8b:d1:8e:6b:a4:25:a6:e3:82:36:d3:ab:7a: 7d:e5:19:fc:37:be:c1:56:44:e6:37:ef:4e:c1:e6:7a:15:7e: 15:01:c5:39:80:28:c2:18:74:05:fc:44:86:69:ca:c1:0e:0e: 07:65:db:bc:5a:a5:9f:25:fa:72:bc:22:47:e6:25:1b:b5:3a: f3:a7:ed:d8:06:87:71:f3:3f:b5:43:03:7c:f1:2d:15:9f:11: 2c:69:5a:06:30:d5:9f:01:eb:7f:b2:4e:d3:74:e6:68:40:20: c0:97:9f:6f:7a:74:6b:c1:6c:55:36:f5:c0:9d:3f:9e:90:b7: 3a:8b:2a:3c:f3:a4:0a:23:dc:1d:96:fe:0a:96:37:1f:4a:ab: 80:41:fa:f5:6c:04:46:13:c1:a3:80:a7:41:96:29:d2:00:8b: 2d:d3:e5:ff:75:b9:d3:4a:32:64:71:b9:d0:19:39:65:3e:13: 2c:f9:b5:41:97:13:a6:00:7f:0b:b1:8e:40:af:7d:97:90:07: 42:49:56:00:53:48:cf:82:6b:a4:22:b7:3b:b9:e3:f6:a5:0b: d0:25:a2:c7 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgIUCWIbU9ZTMalL7ccsYUVlo6uBbA8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzJDQTEyMDM5QTI4MDcwQjBGQkJFQUZERTdGRkMwNUUx RjhFNkNDNjAeFw0yNjA0MTMwNzA3MjhaFw0yNzA0MTIwNzEyMjhaMDMxMTAvBgNV BAMTKDY1NDdFQjIxN0FBMkU0NjM5MURFNDNDNjhEQTY1MTk1NjA2M0FBOUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/1mU844y4cxxDMxw0+sGycDCw QgpSyzjui2p0QWtKUt1chSSovr5wlB5ZxsUV5ZYbVqIDaHvHtNyh/pW2YpZbuKyF rbX97ktcQKTOU4QdsozhdIqG9DykN47hrhapxVtWLlRj8FCg7cH1MvwNj7tQ6xDQ 3ts0nibySHasjcdbFM9LrYGbDxeUjOPfb2jtVfIrE0cLSo1uWhvTfqQDeA82Inw5 A8+shDLV8gSdkPeiqTKRuRmUV3e7PUiRq49OSNf4jTiE/8CYHWek56VTdG7HbnaY yI4picwUYPkl8nWCpV69aAibnGa0P3mXNzQhhJIER3PcS1InRlFyhkm5ufuLAgMB AAGjggINMIICCTAdBgNVHQ4EFgQUZUfrIXqi5GOR3kPGjaZRlWBjqpwwHwYDVR0j BBgwFoAUwsoSA5ooBwsPu+r95//AXh+ObMYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTk2MzIxNTM3Nzk4OTYzNS8wL0MyQ0ExMjAzOUEyODA3MEIwRkJCRUFGREU3RkZD MDVFMUY4RTZDQzYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQzJDQTEyMDM5QTI4MDcwQjBGQkJFQUZERTdGRkMwNUUxRjhFNkNDNi5jZXIw gYYGCCsGAQUFBwELBHoweDB2BggrBgEFBQcwC4ZqcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk1OTYzMjE1Mzc3OTg5NjM1LzAvMzIzNzJlMzAyZTMx MzYzMDJlMzAyZjMyMzIyZDMyMzIyMDNkM2UyMDM5MzgzMDM4LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQC GwCgMA0GCSqGSIb3DQEBCwUAA4IBAQBe75MHBpHrGEKL2cU976sQiW/mUy0gGqEL X73pWCS/kgI4jnmFWvoHm4vRjmukJabjgjbTq3p95Rn8N77BVkTmN+9OweZ6FX4V AcU5gCjCGHQF/ESGacrBDg4HZdu8WqWfJfpyvCJH5iUbtTrzp+3YBodx8z+1QwN8 8S0VnxEsaVoGMNWfAet/sk7TdOZoQCDAl59venRrwWxVNvXAnT+ekLc6iyo886QK I9wdlv4KljcfSquAQfr1bARGE8GjgKdBlinSAIst0+X/dbnTSjJkcbnQGTllPhMs +bVBlxOmAH8LsY5Ar32XkAdCSVYAU0jPgmukIrc7ueP2pQvQJaLH -----END CERTIFICATE-----Generated at Mon Apr 13 15:24:02 2026 by rpki-client