$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097387398460866561/0/3231312e3135322e33322e302f32312d3234203d3e2034383131.roa File: 3231312e3135322e33322e302f32312d3234203d3e2034383131.roa (raw, json) Hash identifier: 2bd41DISwd6rDwCCs/zqXh+rpw2EVXaoNJO0JrXJNaw= Subject key identifier: 1A:78:90:42:C1:32:F8:4C:63:A7:EB:B1:EB:BD:B3:43:FE:C3:FA:39 Certificate issuer: /CN=9A8AFA7F033956E0425F15B1070A606F5F3E424E Certificate serial: 42F78FBD626701D2A19EA90EAACC2EE3402E40BD Authority key identifier: 9A:8A:FA:7F:03:39:56:E0:42:5F:15:B1:07:0A:60:6F:5F:3E:42:4E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9A8AFA7F033956E0425F15B1070A606F5F3E424E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097387398460866561/0/3231312e3135322e33322e302f32312d3234203d3e2034383131.roa Signing time: Thu 23 Apr 2026 03:07:03 +0000 ROA not before: Thu 23 Apr 2026 03:02:03 +0000 ROA not after: Thu 22 Apr 2027 03:07:03 +0000 asID: 4811 IP address blocks: 211.152.32.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097387398460866561/0/9A8AFA7F033956E0425F15B1070A606F5F3E424E.crl rsync://rpki-rps.cnnic.cn/repo/A1097387398460866561/0/9A8AFA7F033956E0425F15B1070A606F5F3E424E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9A8AFA7F033956E0425F15B1070A606F5F3E424E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 04:52:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:f7:8f:bd:62:67:01:d2:a1:9e:a9:0e:aa:cc:2e:e3:40:2e:40:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A8AFA7F033956E0425F15B1070A606F5F3E424E Validity Not Before: Apr 23 03:02:03 2026 GMT Not After : Apr 22 03:07:03 2027 GMT Subject: CN=1A789042C132F84C63A7EBB1EBBDB343FEC3FA39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:81:fc:a4:6f:0f:4d:d3:89:ad:e6:86:4c:fe: 3f:8c:df:2e:cf:bc:9a:9a:dd:c1:54:ed:fb:66:dc: 17:9d:83:ad:57:dd:c7:55:f9:9b:7f:b9:e5:e4:3e: c7:ee:10:1f:be:b4:13:ea:2e:4e:7c:50:98:f0:7c: 02:cf:9c:62:02:06:32:88:12:17:35:b9:34:a4:cb: 73:7e:8c:43:6b:ce:86:67:85:09:53:14:6c:13:99: 62:ac:17:c6:77:00:10:54:5c:70:58:b8:01:64:4f: bb:d5:ce:4a:d5:57:63:a3:21:78:f4:15:bb:3a:c4: 48:4f:b6:ab:43:e7:ad:3e:42:96:21:ad:6f:4f:95: ed:a9:2a:eb:89:e5:e8:41:98:75:6a:fe:31:65:14: 14:7b:00:7b:27:2c:3e:c6:83:f7:cc:48:ae:cf:af: 26:68:0e:fd:0e:6d:c6:c3:36:ed:6a:19:f7:d1:fc: 47:52:5e:68:ce:c8:3c:53:5c:d3:be:fa:8a:a6:ca: 8e:06:b3:df:e5:c1:28:80:84:7f:99:d8:ae:1f:1d: 2a:30:9f:f7:99:9e:ca:43:2b:8d:d4:8d:8b:49:ce: f6:60:b7:2f:a4:5c:e5:46:7f:86:5e:b9:23:82:ad: 4f:cf:e3:5a:f4:bf:c4:1b:59:ad:e9:6a:07:16:96: 4f:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:78:90:42:C1:32:F8:4C:63:A7:EB:B1:EB:BD:B3:43:FE:C3:FA:39 X509v3 Authority Key Identifier: keyid:9A:8A:FA:7F:03:39:56:E0:42:5F:15:B1:07:0A:60:6F:5F:3E:42:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097387398460866561/0/9A8AFA7F033956E0425F15B1070A606F5F3E424E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9A8AFA7F033956E0425F15B1070A606F5F3E424E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097387398460866561/0/3231312e3135322e33322e302f32312d3234203d3e2034383131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 211.152.32.0/21 Signature Algorithm: sha256WithRSAEncryption 99:95:6a:dc:59:80:00:8f:06:df:32:42:f7:98:56:db:25:15: 4c:c4:7b:0e:7c:c8:a5:3d:3a:b3:83:8f:12:4f:1c:e6:07:d3: 82:09:62:72:ee:d5:a8:87:88:db:1d:14:d4:6c:9e:96:69:27: 83:8e:b1:0f:e3:b5:9c:ce:0f:25:6d:02:45:ac:b2:a3:b6:58: 66:63:a8:45:ae:55:03:69:38:2b:01:27:03:c1:70:49:bc:81: a4:24:af:cd:ae:ad:25:e6:63:c6:7b:54:fe:38:5c:be:ae:a2: 6b:08:f7:81:50:65:a2:74:6b:6c:9f:b3:20:8e:bc:89:7a:8c: e6:28:1a:26:99:72:bb:fe:c4:e7:b9:ef:8b:17:58:45:32:a2: 0d:7b:7c:2f:25:36:c5:ca:6f:24:3f:dc:fb:e9:b5:f5:a9:15: ab:08:0d:c8:16:d1:55:8d:27:83:28:c4:1f:f3:83:18:af:a6: 66:88:27:c2:e3:22:ef:ad:19:f8:73:a4:28:5d:51:6a:f0:83: 3f:0f:35:79:49:3f:86:5c:f4:da:33:c6:8e:c4:35:ec:0b:77: f2:69:ba:5e:e4:2c:3f:fa:2a:d3:53:da:94:ea:1d:65:0d:90: c6:65:c3:64:94:ca:ef:69:70:5a:e4:0c:2f:bf:2b:5f:71:fa: 6d:ef:68:54 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUQvePvWJnAdKhnqkOqswu40AuQL0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE4QUZBN0YwMzM5NTZFMDQyNUYxNUIxMDcwQTYwNkY1 RjNFNDI0RTAeFw0yNjA0MjMwMzAyMDNaFw0yNzA0MjIwMzA3MDNaMDMxMTAvBgNV BAMTKDFBNzg5MDQyQzEzMkY4NEM2M0E3RUJCMUVCQkRCMzQzRkVDM0ZBMzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjgfykbw9N04mt5oZM/j+M3y7P vJqa3cFU7ftm3Bedg61X3cdV+Zt/ueXkPsfuEB++tBPqLk58UJjwfALPnGICBjKI Ehc1uTSky3N+jENrzoZnhQlTFGwTmWKsF8Z3ABBUXHBYuAFkT7vVzkrVV2OjIXj0 Fbs6xEhPtqtD560+QpYhrW9Ple2pKuuJ5ehBmHVq/jFlFBR7AHsnLD7Gg/fMSK7P ryZoDv0ObcbDNu1qGffR/EdSXmjOyDxTXNO++oqmyo4Gs9/lwSiAhH+Z2K4fHSow n/eZnspDK43UjYtJzvZgty+kXOVGf4ZeuSOCrU/P41r0v8QbWa3pagcWlk9PAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUGniQQsEy+Exjp+ux672zQ/7D+jkwHwYDVR0j BBgwFoAUmor6fwM5VuBCXxWxBwpgb18+Qk4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzM4NzM5ODQ2MDg2NjU2MS8wLzlBOEFGQTdGMDMzOTU2RTA0MjVGMTVCMTA3MEE2 MDZGNUYzRTQyNEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOUE4QUZBN0YwMzM5NTZFMDQyNUYxNUIxMDcwQTYwNkY1RjNFNDI0RS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk3Mzg3Mzk4NDYwODY2NTYxLzAvMzIzMTMxMmUzMTM1 MzIyZTMzMzIyZTMwMmYzMjMxMmQzMjM0MjAzZDNlMjAzNDM4MzEzMS5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEA9OYIDANBgkqhkiG9w0BAQsFAAOCAQEAmZVq3FmAAI8G3zJC95hW2yUVTMR7 DnzIpT06s4OPEk8c5gfTgglicu7VqIeI2x0U1Gyelmkng46xD+O1nM4PJW0CRayy o7ZYZmOoRa5VA2k4KwEnA8FwSbyBpCSvza6tJeZjxntU/jhcvq6iawj3gVBlonRr bJ+zII68iXqM5igaJplyu/7E57nvixdYRTKiDXt8LyU2xcpvJD/c++m19akVqwgN yBbRVY0ngyjEH/ODGK+mZognwuMi760Z+HOkKF1RavCDPw81eUk/hlz02jPGjsQ1 7At38mm6XuQsP/oq01PalOodZQ2QxmXDZJTK72lwWuQML78rX3H6be9oVA== -----END CERTIFICATE-----Generated at Mon Apr 27 11:00:48 2026 by rpki-client