$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097387398460866561/0/3131392e33372e302e302f31372d3137203d3e2030.roa File: 3131392e33372e302e302f31372d3137203d3e2030.roa (raw, json) Hash identifier: QIsmtWVa85r+w+bRB8pFOOwuyvhvK76NaD6lFd7t69Q= Subject key identifier: 70:E8:06:16:12:5C:F1:79:35:61:81:C7:3A:22:C9:11:F7:B2:C9:00 Certificate issuer: /CN=9A8AFA7F033956E0425F15B1070A606F5F3E424E Certificate serial: 07B5C4C86B8AC04B51CC62BFFD70A394D7DB6D2D Authority key identifier: 9A:8A:FA:7F:03:39:56:E0:42:5F:15:B1:07:0A:60:6F:5F:3E:42:4E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9A8AFA7F033956E0425F15B1070A606F5F3E424E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097387398460866561/0/3131392e33372e302e302f31372d3137203d3e2030.roa Signing time: Thu 23 Apr 2026 02:37:21 +0000 ROA not before: Thu 23 Apr 2026 02:32:21 +0000 ROA not after: Thu 22 Apr 2027 02:37:21 +0000 asID: 0 IP address blocks: 119.37.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097387398460866561/0/9A8AFA7F033956E0425F15B1070A606F5F3E424E.crl rsync://rpki-rps.cnnic.cn/repo/A1097387398460866561/0/9A8AFA7F033956E0425F15B1070A606F5F3E424E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9A8AFA7F033956E0425F15B1070A606F5F3E424E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 04:52:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:b5:c4:c8:6b:8a:c0:4b:51:cc:62:bf:fd:70:a3:94:d7:db:6d:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A8AFA7F033956E0425F15B1070A606F5F3E424E Validity Not Before: Apr 23 02:32:21 2026 GMT Not After : Apr 22 02:37:21 2027 GMT Subject: CN=70E80616125CF179356181C73A22C911F7B2C900 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:77:6c:10:d3:cf:05:87:95:f5:69:f6:bf:5b: 73:78:a5:2f:14:ed:58:54:f3:3e:c2:61:f7:1d:3f: 33:d1:c7:46:ca:45:78:85:f1:9b:67:34:91:31:ad: 05:d8:0c:8a:09:d5:1b:fe:48:c9:af:89:09:92:3b: 2c:a0:80:60:7a:24:80:5c:4a:46:57:79:73:55:f5: 11:fc:3e:ca:d5:4f:a8:2d:78:41:96:e5:c8:7c:39: 33:09:f2:2e:e9:f1:b4:d0:47:f3:48:48:e7:5a:62: d1:c0:76:08:01:bf:2f:8f:7b:b2:2f:d2:d4:67:36: 76:cf:98:7f:78:91:69:c7:8a:16:22:81:1c:0f:c7: 37:9e:53:de:6d:28:c2:2b:ce:c7:39:ca:7f:b8:ea: e7:42:09:6d:0e:cb:e6:21:af:88:87:21:0c:40:1a: 40:1a:88:af:27:29:9a:d9:37:ff:b7:cc:df:11:a9: 33:e3:7f:8c:e0:8d:f9:c3:73:35:71:28:ef:7d:f1: c1:35:d3:33:99:db:05:97:cb:c0:98:67:d4:43:50: 36:f5:91:69:22:98:a5:54:30:d9:14:67:b6:81:92: b8:3a:2b:26:6c:43:94:2a:1c:37:fe:e8:42:93:e9: 56:30:79:e8:4a:ab:17:08:cc:13:2a:f3:1c:6e:3a: ef:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:E8:06:16:12:5C:F1:79:35:61:81:C7:3A:22:C9:11:F7:B2:C9:00 X509v3 Authority Key Identifier: keyid:9A:8A:FA:7F:03:39:56:E0:42:5F:15:B1:07:0A:60:6F:5F:3E:42:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097387398460866561/0/9A8AFA7F033956E0425F15B1070A606F5F3E424E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9A8AFA7F033956E0425F15B1070A606F5F3E424E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097387398460866561/0/3131392e33372e302e302f31372d3137203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.37.0.0/17 Signature Algorithm: sha256WithRSAEncryption 1c:a3:07:3f:3d:5e:69:ff:3f:a1:f5:ef:99:41:a5:f2:bf:9e: 7f:a2:f6:20:6e:d3:f9:b1:a3:9e:82:f1:9e:d6:38:0e:b9:0c: b6:7f:e0:59:9e:03:1d:79:9b:13:36:aa:83:cd:80:11:31:05: 43:da:15:4c:83:34:be:53:ce:42:7f:d2:b2:4b:dd:3c:f8:95: 3a:5a:86:61:7a:39:8c:3a:81:30:17:13:3d:9f:61:ea:f0:93: ef:fc:c2:a5:a5:e2:d8:7e:a5:c9:54:67:bd:00:32:15:ec:32: 9b:17:0f:aa:a4:55:89:08:d6:c2:a6:9f:42:9c:5e:c0:60:ca: 6a:ea:f1:d6:59:20:b3:2b:9e:5f:60:35:5b:5b:92:bd:65:33: 3a:36:e4:fb:fe:0f:a6:16:cf:fe:89:89:49:fe:4c:f3:1b:2d: 4b:41:c1:53:72:f5:19:d0:5c:a2:7a:10:d9:f9:9f:bc:ca:a6: 4c:21:c3:95:71:89:dd:af:77:5b:f6:24:e2:99:59:c9:15:ea: 43:d0:4c:0f:f4:75:5d:d1:ca:e4:dd:e6:fe:fb:e7:89:ed:43: 70:33:77:e2:77:f6:e8:d4:e3:09:3b:22:ae:4c:a6:82:de:89: 14:76:18:40:41:46:90:59:c4:50:f5:d9:7a:fa:3b:30:58:79: 94:98:a8:f6 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgIUB7XEyGuKwEtRzGK//XCjlNfbbS0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE4QUZBN0YwMzM5NTZFMDQyNUYxNUIxMDcwQTYwNkY1 RjNFNDI0RTAeFw0yNjA0MjMwMjMyMjFaFw0yNzA0MjIwMjM3MjFaMDMxMTAvBgNV BAMTKDcwRTgwNjE2MTI1Q0YxNzkzNTYxODFDNzNBMjJDOTExRjdCMkM5MDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6d2wQ088Fh5X1afa/W3N4pS8U 7VhU8z7CYfcdPzPRx0bKRXiF8ZtnNJExrQXYDIoJ1Rv+SMmviQmSOyyggGB6JIBc SkZXeXNV9RH8PsrVT6gteEGW5ch8OTMJ8i7p8bTQR/NISOdaYtHAdggBvy+Pe7Iv 0tRnNnbPmH94kWnHihYigRwPxzeeU95tKMIrzsc5yn+46udCCW0Oy+Yhr4iHIQxA GkAaiK8nKZrZN/+3zN8RqTPjf4zgjfnDczVxKO998cE10zOZ2wWXy8CYZ9RDUDb1 kWkimKVUMNkUZ7aBkrg6KyZsQ5QqHDf+6EKT6VYweehKqxcIzBMq8xxuOu/jAgMB AAGjggIHMIICAzAdBgNVHQ4EFgQUcOgGFhJc8Xk1YYHHOiLJEfeyyQAwHwYDVR0j BBgwFoAUmor6fwM5VuBCXxWxBwpgb18+Qk4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzM4NzM5ODQ2MDg2NjU2MS8wLzlBOEFGQTdGMDMzOTU2RTA0MjVGMTVCMTA3MEE2 MDZGNUYzRTQyNEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOUE4QUZBN0YwMzM5NTZFMDQyNUYxNUIxMDcwQTYwNkY1RjNFNDI0RS5jZXIw gYAGCCsGAQUFBwELBHQwcjBwBggrBgEFBQcwC4ZkcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk3Mzg3Mzk4NDYwODY2NTYxLzAvMzEzMTM5MmUzMzM3 MmUzMDJlMzAyZjMxMzcyZDMxMzcyMDNkM2UyMDMwLnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQHdyUAMA0G CSqGSIb3DQEBCwUAA4IBAQAcowc/PV5p/z+h9e+ZQaXyv55/ovYgbtP5saOegvGe 1jgOuQy2f+BZngMdeZsTNqqDzYARMQVD2hVMgzS+U85Cf9KyS908+JU6WoZhejmM OoEwFxM9n2Hq8JPv/MKlpeLYfqXJVGe9ADIV7DKbFw+qpFWJCNbCpp9CnF7AYMpq 6vHWWSCzK55fYDVbW5K9ZTM6NuT7/g+mFs/+iYlJ/kzzGy1LQcFTcvUZ0FyiehDZ +Z+8yqZMIcOVcYndr3db9iTimVnJFepD0EwP9HVd0crk3eb+++eJ7UNwM3fid/bo 1OMJOyKuTKaC3okUdhhAQUaQWcRQ9dl6+jswWHmUmKj2 -----END CERTIFICATE-----Generated at Mon Apr 27 10:59:26 2026 by rpki-client