$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1099192552394850307/0/3232312e3133332e3232342e302f32302d3230203d3e2030.roa File: 3232312e3133332e3232342e302f32302d3230203d3e2030.roa (raw, json) Hash identifier: nHvu/7uCsbClyS8g05j2ZhgLdmx83hkxQxwIo964IPY= Subject key identifier: 17:9B:82:4B:01:DD:03:73:AB:FA:78:94:7A:D7:3E:CD:F0:48:45:F6 Certificate issuer: /CN=AEB614C24FFC2A6BE0E2DB1C7A3E0AAF641E6A8A Certificate serial: 498A17A734E45ED4200763E87208C477D6459674 Authority key identifier: AE:B6:14:C2:4F:FC:2A:6B:E0:E2:DB:1C:7A:3E:0A:AF:64:1E:6A:8A Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AEB614C24FFC2A6BE0E2DB1C7A3E0AAF641E6A8A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1099192552394850307/0/3232312e3133332e3232342e302f32302d3230203d3e2030.roa Signing time: Wed 22 Apr 2026 07:51:41 +0000 ROA not before: Wed 22 Apr 2026 07:46:41 +0000 ROA not after: Wed 21 Apr 2027 07:51:41 +0000 asID: 0 IP address blocks: 221.133.224.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1099192552394850307/0/AEB614C24FFC2A6BE0E2DB1C7A3E0AAF641E6A8A.crl rsync://rpki-rps.cnnic.cn/repo/A1099192552394850307/0/AEB614C24FFC2A6BE0E2DB1C7A3E0AAF641E6A8A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AEB614C24FFC2A6BE0E2DB1C7A3E0AAF641E6A8A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Apr 2026 23:41:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:8a:17:a7:34:e4:5e:d4:20:07:63:e8:72:08:c4:77:d6:45:96:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AEB614C24FFC2A6BE0E2DB1C7A3E0AAF641E6A8A Validity Not Before: Apr 22 07:46:41 2026 GMT Not After : Apr 21 07:51:41 2027 GMT Subject: CN=179B824B01DD0373ABFA78947AD73ECDF04845F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:42:a8:5d:73:ca:d2:29:bf:3a:f7:3b:7c:9e: 7b:13:0d:64:e9:74:d5:bd:4c:71:75:05:38:25:ed: eb:51:d5:56:47:d5:94:b4:29:b7:3b:e9:df:79:9e: 42:9f:36:f0:a5:68:40:00:bc:bf:e1:d7:8e:d4:f5: 1d:4f:0b:6d:00:bf:42:02:a4:5e:da:96:37:a3:eb: fd:37:c4:9e:27:78:8e:2a:84:0c:bd:dc:80:6a:f7: 54:eb:4b:85:0e:2d:bb:99:4e:f1:e4:46:3b:59:3c: 73:e8:cd:cf:77:1a:e2:6a:94:51:fa:00:4e:17:b7: 9a:c2:29:44:2c:4f:3a:8a:98:f9:a4:66:a0:a2:91: 98:11:dd:c5:84:0b:32:f2:ae:64:ea:1b:d7:c3:ab: 11:72:d4:55:cf:6b:6b:b0:1c:e1:a9:60:02:26:97: a0:a2:67:43:53:f3:f6:3e:f8:9c:7e:20:5e:67:08: b7:60:a7:e8:e7:f8:be:3b:13:76:af:df:98:da:d7: e7:fb:ab:85:36:4e:1f:24:1f:c0:93:94:b9:cf:12: 93:33:86:d6:8c:72:7a:33:72:e9:4e:ef:43:60:59: fe:6e:53:24:ee:f6:e6:44:1c:cf:41:4b:f4:a3:90: 92:66:ab:7e:61:88:2a:ee:29:30:64:bd:ce:8e:0b: 61:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:9B:82:4B:01:DD:03:73:AB:FA:78:94:7A:D7:3E:CD:F0:48:45:F6 X509v3 Authority Key Identifier: keyid:AE:B6:14:C2:4F:FC:2A:6B:E0:E2:DB:1C:7A:3E:0A:AF:64:1E:6A:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1099192552394850307/0/AEB614C24FFC2A6BE0E2DB1C7A3E0AAF641E6A8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AEB614C24FFC2A6BE0E2DB1C7A3E0AAF641E6A8A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1099192552394850307/0/3232312e3133332e3232342e302f32302d3230203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 221.133.224.0/20 Signature Algorithm: sha256WithRSAEncryption b7:e2:17:a5:dd:1b:ea:6a:87:52:db:4a:56:59:34:66:6e:29: 5c:3c:02:da:f4:df:d8:a4:7a:5f:53:32:65:38:ae:42:f5:05: 34:19:ee:88:23:1b:14:31:8f:27:c4:b9:a4:7a:38:d0:e8:da: 22:fc:5f:f0:cb:da:90:f9:21:91:7d:48:cd:ab:9d:e8:9f:66: 84:dc:3e:09:51:ff:1e:f3:5f:4d:3a:a9:4b:35:1f:cd:d9:a6: eb:cd:5a:47:27:37:27:68:ad:0a:58:38:15:90:2c:7a:53:7a: 30:0b:bc:6c:6c:a7:ce:fd:26:25:42:43:0f:7f:fc:85:ea:0c: 0b:bb:6e:d2:99:2a:c7:eb:6e:0a:01:83:58:ae:05:4a:35:b8: 98:ba:1c:aa:55:5b:65:c7:1b:8d:0e:d5:6a:21:55:82:d7:81: 91:c8:91:39:1b:bf:62:7b:62:6d:49:63:a2:6f:ba:65:24:ab: f7:46:3a:e9:ef:91:3e:d3:73:84:55:a9:36:08:73:9f:68:bc: 77:a9:3f:a9:6f:e0:c6:3e:14:b2:1c:4e:a1:e1:4f:f6:eb:d1: f3:2b:e4:cd:76:aa:2b:d5:8a:95:27:0c:9d:bc:c0:81:c1:e2: 64:5f:6e:69:82:aa:47:ae:a5:25:5c:d6:a8:32:de:2f:21:7b: e2:5e:db:aa -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgIUSYoXpzTkXtQgB2PocgjEd9ZFlnQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUVCNjE0QzI0RkZDMkE2QkUwRTJEQjFDN0EzRTBBQUY2 NDFFNkE4QTAeFw0yNjA0MjIwNzQ2NDFaFw0yNzA0MjEwNzUxNDFaMDMxMTAvBgNV BAMTKDE3OUI4MjRCMDFERDAzNzNBQkZBNzg5NDdBRDczRUNERjA0ODQ1RjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtQqhdc8rSKb869zt8nnsTDWTp dNW9THF1BTgl7etR1VZH1ZS0Kbc76d95nkKfNvClaEAAvL/h147U9R1PC20Av0IC pF7aljej6/03xJ4neI4qhAy93IBq91TrS4UOLbuZTvHkRjtZPHPozc93GuJqlFH6 AE4Xt5rCKUQsTzqKmPmkZqCikZgR3cWECzLyrmTqG9fDqxFy1FXPa2uwHOGpYAIm l6CiZ0NT8/Y++Jx+IF5nCLdgp+jn+L47E3av35ja1+f7q4U2Th8kH8CTlLnPEpMz htaMcnozculO70NgWf5uUyTu9uZEHM9BS/SjkJJmq35hiCruKTBkvc6OC2GFAgMB AAGjggINMIICCTAdBgNVHQ4EFgQUF5uCSwHdA3Or+niUetc+zfBIRfYwHwYDVR0j BBgwFoAUrrYUwk/8Kmvg4tscej4Kr2QeaoowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 OTE5MjU1MjM5NDg1MDMwNy8wL0FFQjYxNEMyNEZGQzJBNkJFMEUyREIxQzdBM0Uw QUFGNjQxRTZBOEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQUVCNjE0QzI0RkZDMkE2QkUwRTJEQjFDN0EzRTBBQUY2NDFFNkE4QS5jZXIw gYYGCCsGAQUFBwELBHoweDB2BggrBgEFBQcwC4ZqcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk5MTkyNTUyMzk0ODUwMzA3LzAvMzIzMjMxMmUzMTMz MzMyZTMyMzIzNDJlMzAyZjMyMzAyZDMyMzAyMDNkM2UyMDMwLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQE 3YXgMA0GCSqGSIb3DQEBCwUAA4IBAQC34hel3RvqaodS20pWWTRmbilcPALa9N/Y pHpfUzJlOK5C9QU0Ge6IIxsUMY8nxLmkejjQ6Noi/F/wy9qQ+SGRfUjNq53on2aE 3D4JUf8e819NOqlLNR/N2abrzVpHJzcnaK0KWDgVkCx6U3owC7xsbKfO/SYlQkMP f/yF6gwLu27SmSrH624KAYNYrgVKNbiYuhyqVVtlxxuNDtVqIVWC14GRyJE5G79i e2JtSWOib7plJKv3Rjrp75E+03OEVak2CHOfaLx3qT+pb+DGPhSyHE6h4U/269Hz K+TNdqor1YqVJwydvMCBweJkX25pgqpHrqUlXNaoMt4vIXviXtuq -----END CERTIFICATE-----Generated at Mon Apr 27 10:59:26 2026 by rpki-client