$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1099192552394850307/0/3232312e3133332e3234352e302f32342d3234203d3e2034383132.roa File: 3232312e3133332e3234352e302f32342d3234203d3e2034383132.roa (raw, json) Hash identifier: E8J6ehCAVQBTTL4nluJ8TryKPdaQtCV6x7AzifZmEoU= Subject key identifier: 72:FA:62:1A:75:34:E1:76:F2:6A:D3:E2:39:AB:13:E0:7F:C0:82:04 Certificate issuer: /CN=AEB614C24FFC2A6BE0E2DB1C7A3E0AAF641E6A8A Certificate serial: 2CB6CFAA096316E09EEB41E1258063F792E39B39 Authority key identifier: AE:B6:14:C2:4F:FC:2A:6B:E0:E2:DB:1C:7A:3E:0A:AF:64:1E:6A:8A Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AEB614C24FFC2A6BE0E2DB1C7A3E0AAF641E6A8A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1099192552394850307/0/3232312e3133332e3234352e302f32342d3234203d3e2034383132.roa Signing time: Wed 22 Apr 2026 07:51:41 +0000 ROA not before: Wed 22 Apr 2026 07:46:41 +0000 ROA not after: Wed 21 Apr 2027 07:51:41 +0000 asID: 4812 IP address blocks: 221.133.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1099192552394850307/0/AEB614C24FFC2A6BE0E2DB1C7A3E0AAF641E6A8A.crl rsync://rpki-rps.cnnic.cn/repo/A1099192552394850307/0/AEB614C24FFC2A6BE0E2DB1C7A3E0AAF641E6A8A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AEB614C24FFC2A6BE0E2DB1C7A3E0AAF641E6A8A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Apr 2026 23:41:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:b6:cf:aa:09:63:16:e0:9e:eb:41:e1:25:80:63:f7:92:e3:9b:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AEB614C24FFC2A6BE0E2DB1C7A3E0AAF641E6A8A Validity Not Before: Apr 22 07:46:41 2026 GMT Not After : Apr 21 07:51:41 2027 GMT Subject: CN=72FA621A7534E176F26AD3E239AB13E07FC08204 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:48:75:7a:a2:bb:05:f3:25:ea:b0:6a:2f:fe: 6b:2a:10:56:ee:bf:ee:10:94:8b:80:54:76:c9:be: 3c:b8:cf:7e:96:3d:f0:f9:bf:c7:f1:96:20:ac:c0: 37:93:16:82:fc:e8:7a:99:02:ec:63:88:e5:00:3f: 21:4e:c8:fa:f5:7b:6c:54:af:b0:e3:c4:07:8a:5c: 17:06:37:3f:09:d5:14:97:60:0d:47:5a:26:34:ea: b8:04:db:bf:1f:3d:f5:65:5f:d0:d5:32:e2:f7:02: 7d:19:84:4f:72:84:9b:81:b2:fb:ea:61:3f:bd:f3: 7c:5f:03:b9:09:3d:63:e5:0b:11:70:44:35:82:1a: 4b:8d:22:12:c2:54:69:86:c7:f1:65:f1:ff:91:11: d3:d2:05:34:a9:de:77:ac:b3:16:8a:d8:fa:27:16: a2:37:a1:0d:42:b7:26:62:59:1e:84:d4:d6:91:93: 94:73:8d:d5:b3:2c:23:69:ec:3e:f3:52:ac:f8:2c: dd:3f:a9:47:61:da:b7:17:04:f3:33:c7:dd:c4:a8: 50:0e:0b:bb:90:7c:e1:47:02:74:d8:cf:0f:9d:6b: c0:81:8a:10:14:b2:c0:95:0a:42:75:de:77:9f:7e: 26:d5:9c:3d:a9:3c:78:a3:b9:5d:f9:16:ab:ec:55: 55:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:FA:62:1A:75:34:E1:76:F2:6A:D3:E2:39:AB:13:E0:7F:C0:82:04 X509v3 Authority Key Identifier: keyid:AE:B6:14:C2:4F:FC:2A:6B:E0:E2:DB:1C:7A:3E:0A:AF:64:1E:6A:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1099192552394850307/0/AEB614C24FFC2A6BE0E2DB1C7A3E0AAF641E6A8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AEB614C24FFC2A6BE0E2DB1C7A3E0AAF641E6A8A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1099192552394850307/0/3232312e3133332e3234352e302f32342d3234203d3e2034383132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 221.133.245.0/24 Signature Algorithm: sha256WithRSAEncryption 99:f9:04:e3:e3:c5:59:f5:7e:13:b3:f0:a6:5d:77:04:93:ae: 5c:a8:91:33:e4:3b:d1:85:89:20:81:53:3f:0b:96:b0:af:6b: dc:77:89:e0:04:9c:f4:8b:cd:93:df:e2:2e:8c:6a:49:a8:8a: f7:70:cf:ab:25:5f:48:8e:4a:be:49:fd:3b:8c:fe:3f:52:2a: 1a:53:78:08:78:33:d8:f2:68:a1:87:04:4b:d3:5d:fd:12:30: 19:26:15:c7:86:f0:a7:f7:60:29:99:ac:74:20:65:86:f5:9a: 09:76:df:81:47:ae:6f:8d:b3:0b:0a:4d:00:41:1f:0a:c7:e4: dc:dd:e7:0c:4f:0d:13:8c:a5:45:bf:af:72:ec:b7:8d:54:b2: ab:ad:64:c7:b8:ad:2e:ca:12:a9:29:99:c0:f2:0b:ee:b2:20: 6e:32:43:a7:9a:ce:81:3a:28:0e:e4:51:d7:19:66:91:cc:89: 23:04:de:1f:4a:86:e5:1e:30:35:5c:21:c1:70:a5:f0:fc:2f: 4b:d8:10:91:15:57:2a:78:54:4a:bc:3d:87:30:a7:70:77:b3: 4e:55:d7:90:9b:cb:b7:a1:11:b4:0e:e6:15:24:de:00:fe:17: 62:f4:97:0d:76:23:7a:c8:7c:87:e0:36:6c:96:67:32:cc:99: 0d:f0:d4:43 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIULLbPqgljFuCe60HhJYBj95LjmzkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUVCNjE0QzI0RkZDMkE2QkUwRTJEQjFDN0EzRTBBQUY2 NDFFNkE4QTAeFw0yNjA0MjIwNzQ2NDFaFw0yNzA0MjEwNzUxNDFaMDMxMTAvBgNV BAMTKDcyRkE2MjFBNzUzNEUxNzZGMjZBRDNFMjM5QUIxM0UwN0ZDMDgyMDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeSHV6orsF8yXqsGov/msqEFbu v+4QlIuAVHbJvjy4z36WPfD5v8fxliCswDeTFoL86HqZAuxjiOUAPyFOyPr1e2xU r7DjxAeKXBcGNz8J1RSXYA1HWiY06rgE278fPfVlX9DVMuL3An0ZhE9yhJuBsvvq YT+983xfA7kJPWPlCxFwRDWCGkuNIhLCVGmGx/Fl8f+REdPSBTSp3nessxaK2Pon FqI3oQ1CtyZiWR6E1NaRk5RzjdWzLCNp7D7zUqz4LN0/qUdh2rcXBPMzx93EqFAO C7uQfOFHAnTYzw+da8CBihAUssCVCkJ13neffibVnD2pPHijuV35FqvsVVXRAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUcvpiGnU04XbyatPiOasT4H/AggQwHwYDVR0j BBgwFoAUrrYUwk/8Kmvg4tscej4Kr2QeaoowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 OTE5MjU1MjM5NDg1MDMwNy8wL0FFQjYxNEMyNEZGQzJBNkJFMEUyREIxQzdBM0Uw QUFGNjQxRTZBOEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQUVCNjE0QzI0RkZDMkE2QkUwRTJEQjFDN0EzRTBBQUY2NDFFNkE4QS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5OTE5MjU1MjM5NDg1MDMwNy8wLzMyMzIzMTJlMzEz MzMzMmUzMjM0MzUyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNDM4MzEzMi5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAN2F9TANBgkqhkiG9w0BAQsFAAOCAQEAmfkE4+PFWfV+E7Pwpl13BJOu XKiRM+Q70YWJIIFTPwuWsK9r3HeJ4ASc9IvNk9/iLoxqSaiK93DPqyVfSI5Kvkn9 O4z+P1IqGlN4CHgz2PJooYcES9Nd/RIwGSYVx4bwp/dgKZmsdCBlhvWaCXbfgUeu b42zCwpNAEEfCsfk3N3nDE8NE4ylRb+vcuy3jVSyq61kx7itLsoSqSmZwPIL7rIg bjJDp5rOgTooDuRR1xlmkcyJIwTeH0qG5R4wNVwhwXCl8PwvS9gQkRVXKnhUSrw9 hzCncHezTlXXkJvLt6ERtA7mFSTeAP4XYvSXDXYjesh8h+A2bJZnMsyZDfDUQw== -----END CERTIFICATE-----Generated at Mon Apr 27 08:25:07 2026 by rpki-client