$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097387398460866561/0/3231312e3135322e34382e302f32302d3234203d3e2034383131.roa File: 3231312e3135322e34382e302f32302d3234203d3e2034383131.roa (raw, json) Hash identifier: lIT9UA7MUbbh6lzw2U/Rp15uopsKMqSEt9PAKzZABR8= Subject key identifier: 99:65:C0:3A:B6:24:EE:73:0B:A3:61:5C:B0:F2:9C:94:CB:AE:85:73 Certificate issuer: /CN=9A8AFA7F033956E0425F15B1070A606F5F3E424E Certificate serial: 3AAE5B6947DD437CEB55A937341BDD21459944BF Authority key identifier: 9A:8A:FA:7F:03:39:56:E0:42:5F:15:B1:07:0A:60:6F:5F:3E:42:4E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9A8AFA7F033956E0425F15B1070A606F5F3E424E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097387398460866561/0/3231312e3135322e34382e302f32302d3234203d3e2034383131.roa Signing time: Thu 23 Apr 2026 03:07:03 +0000 ROA not before: Thu 23 Apr 2026 03:02:03 +0000 ROA not after: Thu 22 Apr 2027 03:07:03 +0000 asID: 4811 IP address blocks: 211.152.48.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097387398460866561/0/9A8AFA7F033956E0425F15B1070A606F5F3E424E.crl rsync://rpki-rps.cnnic.cn/repo/A1097387398460866561/0/9A8AFA7F033956E0425F15B1070A606F5F3E424E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9A8AFA7F033956E0425F15B1070A606F5F3E424E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 04:52:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:ae:5b:69:47:dd:43:7c:eb:55:a9:37:34:1b:dd:21:45:99:44:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A8AFA7F033956E0425F15B1070A606F5F3E424E Validity Not Before: Apr 23 03:02:03 2026 GMT Not After : Apr 22 03:07:03 2027 GMT Subject: CN=9965C03AB624EE730BA3615CB0F29C94CBAE8573 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:63:05:71:da:33:ce:36:1a:21:f9:99:0f:b5: eb:30:6b:6f:b1:4f:06:56:5c:98:00:06:af:ef:b5: 7d:f3:3d:ba:65:59:b7:06:e9:8b:fb:fa:01:2f:73: 27:9c:d5:a8:68:a4:82:62:e8:89:d4:a0:24:60:2a: 96:8c:eb:69:28:c3:63:f6:c2:f9:0c:c6:5c:92:99: dd:47:35:2d:f8:a2:3a:48:56:ee:b2:7f:5e:06:a2: 7c:d4:c1:3a:e1:d6:b4:7b:08:8c:5c:0d:99:8d:b8: b5:e0:86:83:d5:11:2b:3a:89:93:5b:48:8e:6a:7d: fe:7e:e2:27:0e:fb:c1:7d:66:00:05:f7:c6:98:4d: 36:01:ef:db:97:34:2c:89:77:0e:a8:37:70:a9:10: 2b:b3:f8:19:62:69:00:15:cf:c6:40:36:c2:a6:d7: 52:46:dd:03:82:02:39:0f:31:26:b4:d1:90:27:28: f9:53:8d:6f:52:26:21:86:80:50:4b:5b:9e:e2:ec: d4:ae:d2:42:17:20:37:c1:b6:f3:65:79:cc:58:e6: bb:e7:1b:70:50:07:a2:e7:d9:db:1b:28:c5:c7:74: d3:7f:71:00:88:e5:7c:e2:0a:44:7d:e0:18:29:67: 6c:a8:1b:58:a8:c5:19:01:a2:43:cc:87:95:80:3f: fa:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:65:C0:3A:B6:24:EE:73:0B:A3:61:5C:B0:F2:9C:94:CB:AE:85:73 X509v3 Authority Key Identifier: keyid:9A:8A:FA:7F:03:39:56:E0:42:5F:15:B1:07:0A:60:6F:5F:3E:42:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097387398460866561/0/9A8AFA7F033956E0425F15B1070A606F5F3E424E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9A8AFA7F033956E0425F15B1070A606F5F3E424E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097387398460866561/0/3231312e3135322e34382e302f32302d3234203d3e2034383131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 211.152.48.0/20 Signature Algorithm: sha256WithRSAEncryption 45:f9:49:03:9c:6d:b9:f8:d0:5d:ea:b0:5a:49:b5:0b:6e:cd: 64:7a:b5:2c:b8:7e:95:69:57:dc:ce:42:5b:47:01:91:7a:66: 91:5e:33:7f:a7:1c:69:e6:e3:70:62:1b:ae:4d:4b:87:14:e0: 18:88:61:b2:33:17:75:30:f4:0b:6a:6e:44:f8:61:c4:96:c8: 81:81:c4:cc:27:f3:90:a2:f3:e0:34:ef:5c:22:c1:e7:5f:a1: 86:65:3a:8e:66:50:2b:f6:34:a2:5c:9e:1f:f1:2f:a4:0e:4f: c7:19:31:5a:29:50:e5:f9:07:ee:fc:c8:af:f9:55:3a:a0:8c: 98:77:7d:87:0e:53:d4:01:ac:99:bb:a2:4c:23:18:0c:e8:18: ff:c3:36:be:d7:05:e5:c7:83:6b:c2:9f:2d:9b:c6:03:d9:7e: b5:7f:d9:52:eb:5c:fc:d9:47:25:ac:58:e1:32:c9:bb:39:46: 97:22:1f:27:1e:d4:07:78:97:63:7a:47:19:8f:d4:f9:ee:f1: 58:da:5b:b1:39:7e:c5:b1:94:f7:d7:9c:6d:54:e7:74:ca:d6: 4c:2b:9a:df:6d:53:b6:9a:54:de:42:b9:1e:00:d2:46:71:08: e4:63:eb:5c:c9:97:3b:5f:2e:77:e1:a7:39:f7:90:de:2f:72: d4:9e:36:94 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUOq5baUfdQ3zrVak3NBvdIUWZRL8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE4QUZBN0YwMzM5NTZFMDQyNUYxNUIxMDcwQTYwNkY1 RjNFNDI0RTAeFw0yNjA0MjMwMzAyMDNaFw0yNzA0MjIwMzA3MDNaMDMxMTAvBgNV BAMTKDk5NjVDMDNBQjYyNEVFNzMwQkEzNjE1Q0IwRjI5Qzk0Q0JBRTg1NzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSYwVx2jPONhoh+ZkPteswa2+x TwZWXJgABq/vtX3zPbplWbcG6Yv7+gEvcyec1ahopIJi6InUoCRgKpaM62kow2P2 wvkMxlySmd1HNS34ojpIVu6yf14GonzUwTrh1rR7CIxcDZmNuLXghoPVESs6iZNb SI5qff5+4icO+8F9ZgAF98aYTTYB79uXNCyJdw6oN3CpECuz+BliaQAVz8ZANsKm 11JG3QOCAjkPMSa00ZAnKPlTjW9SJiGGgFBLW57i7NSu0kIXIDfBtvNlecxY5rvn G3BQB6Ln2dsbKMXHdNN/cQCI5XziCkR94BgpZ2yoG1ioxRkBokPMh5WAP/oxAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUmWXAOrYk7nMLo2FcsPKclMuuhXMwHwYDVR0j BBgwFoAUmor6fwM5VuBCXxWxBwpgb18+Qk4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzM4NzM5ODQ2MDg2NjU2MS8wLzlBOEFGQTdGMDMzOTU2RTA0MjVGMTVCMTA3MEE2 MDZGNUYzRTQyNEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOUE4QUZBN0YwMzM5NTZFMDQyNUYxNUIxMDcwQTYwNkY1RjNFNDI0RS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk3Mzg3Mzk4NDYwODY2NTYxLzAvMzIzMTMxMmUzMTM1 MzIyZTM0MzgyZTMwMmYzMjMwMmQzMjM0MjAzZDNlMjAzNDM4MzEzMS5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBNOYMDANBgkqhkiG9w0BAQsFAAOCAQEARflJA5xtufjQXeqwWkm1C27NZHq1 LLh+lWlX3M5CW0cBkXpmkV4zf6ccaebjcGIbrk1LhxTgGIhhsjMXdTD0C2puRPhh xJbIgYHEzCfzkKLz4DTvXCLB51+hhmU6jmZQK/Y0olyeH/EvpA5PxxkxWilQ5fkH 7vzIr/lVOqCMmHd9hw5T1AGsmbuiTCMYDOgY/8M2vtcF5ceDa8KfLZvGA9l+tX/Z Uutc/NlHJaxY4TLJuzlGlyIfJx7UB3iXY3pHGY/U+e7xWNpbsTl+xbGU99ecbVTn dMrWTCua321TtppU3kK5HgDSRnEI5GPrXMmXO18ud+GnOfeQ3i9y1J42lA== -----END CERTIFICATE-----Generated at Mon Apr 27 11:00:49 2026 by rpki-client