$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1099192552394850307/0/3232312e3133332e3232382e302f32332d3233203d3e2034383132.roa File: 3232312e3133332e3232382e302f32332d3233203d3e2034383132.roa (raw, json) Hash identifier: Y1HiM+KumJNDeDYPLakmSQoLeW7lH5fsmPDT4ZzwnTw= Subject key identifier: 4E:1B:E4:64:64:43:58:DF:8A:BF:C9:6D:79:E0:D1:AD:0B:A4:86:5D Certificate issuer: /CN=AEB614C24FFC2A6BE0E2DB1C7A3E0AAF641E6A8A Certificate serial: 63CE33BD41D7C6AAFFBD81FBA2680F298637F587 Authority key identifier: AE:B6:14:C2:4F:FC:2A:6B:E0:E2:DB:1C:7A:3E:0A:AF:64:1E:6A:8A Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AEB614C24FFC2A6BE0E2DB1C7A3E0AAF641E6A8A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1099192552394850307/0/3232312e3133332e3232382e302f32332d3233203d3e2034383132.roa Signing time: Wed 22 Apr 2026 07:51:41 +0000 ROA not before: Wed 22 Apr 2026 07:46:41 +0000 ROA not after: Wed 21 Apr 2027 07:51:41 +0000 asID: 4812 IP address blocks: 221.133.228.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1099192552394850307/0/AEB614C24FFC2A6BE0E2DB1C7A3E0AAF641E6A8A.crl rsync://rpki-rps.cnnic.cn/repo/A1099192552394850307/0/AEB614C24FFC2A6BE0E2DB1C7A3E0AAF641E6A8A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AEB614C24FFC2A6BE0E2DB1C7A3E0AAF641E6A8A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Apr 2026 23:41:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:ce:33:bd:41:d7:c6:aa:ff:bd:81:fb:a2:68:0f:29:86:37:f5:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AEB614C24FFC2A6BE0E2DB1C7A3E0AAF641E6A8A Validity Not Before: Apr 22 07:46:41 2026 GMT Not After : Apr 21 07:51:41 2027 GMT Subject: CN=4E1BE464644358DF8ABFC96D79E0D1AD0BA4865D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:d2:e5:50:9d:ec:a2:26:8f:13:87:bc:b1:02: b2:fa:12:bb:15:93:53:9b:ff:ee:04:a3:36:e0:b2: 50:9d:ad:fb:6a:f2:1a:ff:1d:18:12:9f:84:d0:60: 0d:5e:91:43:49:40:da:d9:fd:4e:d0:b4:b5:10:f2: ff:ee:5d:0d:52:16:44:f4:c2:5f:6a:bd:56:27:67: 82:5b:8f:1f:3d:cd:f4:14:a1:1e:cc:d3:2e:3a:51: 07:10:45:45:46:0d:bd:1b:08:e8:87:0e:e5:d0:0e: c6:3d:b0:fb:ce:9d:a0:99:64:4d:f6:68:0d:b3:c1: fe:23:58:a4:3c:1b:b5:9f:39:2d:95:82:ad:4a:b9: ea:de:e9:1d:cc:53:c6:71:df:0f:16:09:e0:09:53: 08:3e:7a:09:5d:61:a5:ff:10:95:b9:21:b4:86:06: 5e:e3:ef:11:b5:0a:19:15:16:7b:84:43:b2:3d:3b: 67:e8:20:d6:70:cf:32:06:6c:8a:32:8b:8b:f9:26: 7e:db:1f:54:62:75:83:a5:80:64:a1:f8:d9:33:e7: 1a:7e:3c:a1:f0:e7:1c:a5:05:a6:32:e9:8e:0e:89: 75:17:0b:37:93:b9:ae:27:b8:cb:09:f5:bb:15:3e: a6:dc:59:94:f9:c8:e5:18:9d:a8:d2:40:d3:a1:20: da:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:1B:E4:64:64:43:58:DF:8A:BF:C9:6D:79:E0:D1:AD:0B:A4:86:5D X509v3 Authority Key Identifier: keyid:AE:B6:14:C2:4F:FC:2A:6B:E0:E2:DB:1C:7A:3E:0A:AF:64:1E:6A:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1099192552394850307/0/AEB614C24FFC2A6BE0E2DB1C7A3E0AAF641E6A8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AEB614C24FFC2A6BE0E2DB1C7A3E0AAF641E6A8A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1099192552394850307/0/3232312e3133332e3232382e302f32332d3233203d3e2034383132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 221.133.228.0/23 Signature Algorithm: sha256WithRSAEncryption 99:99:37:ec:2f:77:24:53:6b:a2:d7:ac:5c:b5:a1:c0:15:f5: 6c:c5:1d:25:24:75:09:76:f7:49:f9:e4:7d:fe:11:5c:de:0b: 06:29:f7:cc:29:28:33:36:a9:a2:b0:2a:6b:c1:43:23:83:a5: 18:67:ba:c2:b8:4a:8f:73:dd:ad:39:35:fe:75:f9:46:f4:a1: 4d:a0:4a:27:1e:01:8b:31:56:ed:dc:f7:e5:e8:67:25:18:c1: 56:5c:27:7d:7e:27:99:11:28:9e:09:99:47:7d:ae:81:72:6c: 37:03:c6:34:bc:ce:56:27:8e:e3:3f:23:c1:54:fd:ec:43:74: e5:10:12:c2:9f:ef:e7:30:a5:aa:2a:19:52:d3:f0:c2:d9:43: ac:0a:82:26:1c:dc:d2:47:55:41:e1:19:1c:de:db:65:ae:7a: 06:46:56:a1:f2:ba:6f:21:09:6e:b0:60:dd:d7:07:9b:63:ff: 50:40:22:27:40:1b:73:b2:0f:f2:31:16:fe:a7:a6:98:c1:41: bd:aa:ba:d1:60:97:29:a9:8b:8c:92:f0:60:0a:7d:fc:3d:4c: 72:5c:f3:0a:33:ba:90:c8:17:1c:bc:a1:c5:af:d9:b5:d1:ba: 61:60:dc:77:88:7b:06:4c:37:a2:c5:be:98:87:18:a0:46:27: 23:ea:c2:97 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUY84zvUHXxqr/vYH7omgPKYY39YcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUVCNjE0QzI0RkZDMkE2QkUwRTJEQjFDN0EzRTBBQUY2 NDFFNkE4QTAeFw0yNjA0MjIwNzQ2NDFaFw0yNzA0MjEwNzUxNDFaMDMxMTAvBgNV BAMTKDRFMUJFNDY0NjQ0MzU4REY4QUJGQzk2RDc5RTBEMUFEMEJBNDg2NUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCj0uVQneyiJo8Th7yxArL6ErsV k1Ob/+4EozbgslCdrftq8hr/HRgSn4TQYA1ekUNJQNrZ/U7QtLUQ8v/uXQ1SFkT0 wl9qvVYnZ4Jbjx89zfQUoR7M0y46UQcQRUVGDb0bCOiHDuXQDsY9sPvOnaCZZE32 aA2zwf4jWKQ8G7WfOS2Vgq1Kuere6R3MU8Zx3w8WCeAJUwg+egldYaX/EJW5IbSG Bl7j7xG1ChkVFnuEQ7I9O2foINZwzzIGbIoyi4v5Jn7bH1RidYOlgGSh+Nkz5xp+ PKHw5xylBaYy6Y4OiXUXCzeTua4nuMsJ9bsVPqbcWZT5yOUYnajSQNOhINotAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUThvkZGRDWN+Kv8lteeDRrQukhl0wHwYDVR0j BBgwFoAUrrYUwk/8Kmvg4tscej4Kr2QeaoowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 OTE5MjU1MjM5NDg1MDMwNy8wL0FFQjYxNEMyNEZGQzJBNkJFMEUyREIxQzdBM0Uw QUFGNjQxRTZBOEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQUVCNjE0QzI0RkZDMkE2QkUwRTJEQjFDN0EzRTBBQUY2NDFFNkE4QS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5OTE5MjU1MjM5NDg1MDMwNy8wLzMyMzIzMTJlMzEz MzMzMmUzMjMyMzgyZTMwMmYzMjMzMmQzMjMzMjAzZDNlMjAzNDM4MzEzMi5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAd2F5DANBgkqhkiG9w0BAQsFAAOCAQEAmZk37C93JFNrotesXLWhwBX1 bMUdJSR1CXb3Sfnkff4RXN4LBin3zCkoMzaporAqa8FDI4OlGGe6wrhKj3PdrTk1 /nX5RvShTaBKJx4BizFW7dz35ehnJRjBVlwnfX4nmREongmZR32ugXJsNwPGNLzO VieO4z8jwVT97EN05RASwp/v5zClqioZUtPwwtlDrAqCJhzc0kdVQeEZHN7bZa56 BkZWofK6byEJbrBg3dcHm2P/UEAiJ0Abc7IP8jEW/qemmMFBvaq60WCXKamLjJLw YAp9/D1MclzzCjO6kMgXHLyhxa/ZtdG6YWDcd4h7Bkw3osW+mIcYoEYnI+rClw== -----END CERTIFICATE-----Generated at Mon Apr 27 08:24:33 2026 by rpki-client