$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1100968758509305858/0/3231302e352e32372e302f32342d3234203d3e203130323132.roa File: 3231302e352e32372e302f32342d3234203d3e203130323132.roa (raw, json) Hash identifier: vA1YG4qXv/mWiEldmLRUr0XkBJw1THgmJPvLxGss06w= Subject key identifier: 97:58:4E:40:56:2A:8F:F2:54:7F:E1:40:92:DB:42:6A:11:D9:12:8D Certificate issuer: /CN=9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF Certificate serial: 7DAFDC442CBF739F9C88DF43C23F5BEE9B9DEDD6 Authority key identifier: 93:13:66:50:20:BD:F9:5D:FA:4A:AC:0E:1E:4A:9A:8E:16:F3:A7:EF Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1100968758509305858/0/3231302e352e32372e302f32342d3234203d3e203130323132.roa Signing time: Mon 27 Apr 2026 03:05:03 +0000 ROA not before: Mon 27 Apr 2026 03:00:03 +0000 ROA not after: Mon 26 Apr 2027 03:05:03 +0000 asID: 10212 IP address blocks: 210.5.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1100968758509305858/0/9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF.crl rsync://rpki-rps.cnnic.cn/repo/A1100968758509305858/0/9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 09:27:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:af:dc:44:2c:bf:73:9f:9c:88:df:43:c2:3f:5b:ee:9b:9d:ed:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF Validity Not Before: Apr 27 03:00:03 2026 GMT Not After : Apr 26 03:05:03 2027 GMT Subject: CN=97584E40562A8FF2547FE14092DB426A11D9128D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:88:bb:52:a3:44:b8:27:09:1d:68:da:48:b7: dc:b0:23:99:07:a4:e4:74:86:a3:eb:2a:39:13:f4: 55:ad:ba:b5:27:66:1b:7e:3d:04:24:aa:61:de:35: f8:2e:6b:b0:d5:81:24:c5:55:9f:7a:e6:18:eb:0a: 83:9b:aa:d4:f1:fe:d3:c4:72:ac:b3:3f:68:9f:3c: f9:72:13:30:d9:77:d5:e1:9f:05:54:09:a6:0d:ef: d4:22:49:00:04:4b:aa:f5:f9:42:a7:2b:c1:df:9f: cd:81:a0:de:d1:52:1a:ac:3a:e1:0b:2e:ab:a1:67: af:ba:69:3e:9b:36:bf:60:69:e1:4b:36:a6:8a:41: 5a:34:33:5e:58:38:8a:c6:ee:c1:6b:de:84:58:43: 8f:af:b0:c5:79:c1:fa:a6:06:a2:19:b7:5a:e8:49: 15:28:d7:73:22:99:6a:10:0d:64:15:14:95:67:e8: 91:c6:40:7d:04:f8:2e:26:d8:12:ec:a6:46:8c:aa: 34:01:68:ce:f4:b5:dd:5b:6d:14:58:c7:f4:0e:e7: 86:04:98:63:ad:94:ea:df:7e:21:59:3e:8d:d0:31: 5b:96:5e:b7:db:90:41:bb:3c:de:4f:31:97:59:18: 55:9b:a4:d8:d3:dc:42:33:d9:66:db:2f:1d:52:be: 7d:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:58:4E:40:56:2A:8F:F2:54:7F:E1:40:92:DB:42:6A:11:D9:12:8D X509v3 Authority Key Identifier: keyid:93:13:66:50:20:BD:F9:5D:FA:4A:AC:0E:1E:4A:9A:8E:16:F3:A7:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1100968758509305858/0/9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1100968758509305858/0/3231302e352e32372e302f32342d3234203d3e203130323132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.5.27.0/24 Signature Algorithm: sha256WithRSAEncryption 00:4a:3a:cd:4a:ec:01:81:db:a2:15:e5:b1:ae:4f:04:10:9c: cf:71:e2:31:07:ee:bb:ca:65:ef:69:3c:60:44:df:61:a6:a6: 01:f2:f9:09:08:d1:ba:53:18:b1:a0:d4:52:6a:f8:23:f9:24: 0b:7e:12:4e:96:e7:51:00:cc:ea:de:96:3b:33:00:c9:af:02: 69:44:8b:1e:5c:2e:57:06:ff:d9:a5:32:89:e1:d6:22:1c:1e: 5b:e3:44:62:49:89:43:92:1a:72:f1:1d:97:ea:33:6f:62:b8: af:2f:1a:60:57:17:dc:af:5b:f6:6c:68:14:69:ba:c6:29:a6: 79:b5:63:d3:e9:5d:c6:62:a2:49:68:4c:0c:29:49:9f:da:d2: c8:1f:e5:86:c2:32:66:dd:23:df:65:38:9f:01:19:cc:6d:32: 35:ca:a1:45:b8:d1:26:50:0b:f1:62:97:f7:33:44:56:ad:a7: 9a:ad:de:dd:b5:b5:8d:2a:99:e3:e0:70:4b:88:42:30:aa:3b: 32:64:1e:24:f4:fd:63:c2:9c:10:d1:13:bf:d4:56:28:06:3e: 03:8e:03:9f:f8:b6:32:ec:d6:56:e1:3d:09:2a:b6:90:9c:90: 7a:16:7f:17:4d:ba:c7:ff:a1:f6:01:1f:91:b0:e9:d5:59:42: b3:fb:e9:c3 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUfa/cRCy/c5+ciN9Dwj9b7pud7dYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTMxMzY2NTAyMEJERjk1REZBNEFBQzBFMUU0QTlBOEUx NkYzQTdFRjAeFw0yNjA0MjcwMzAwMDNaFw0yNzA0MjYwMzA1MDNaMDMxMTAvBgNV BAMTKDk3NTg0RTQwNTYyQThGRjI1NDdGRTE0MDkyREI0MjZBMTFEOTEyOEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1iLtSo0S4JwkdaNpIt9ywI5kH pOR0hqPrKjkT9FWturUnZht+PQQkqmHeNfgua7DVgSTFVZ965hjrCoObqtTx/tPE cqyzP2ifPPlyEzDZd9XhnwVUCaYN79QiSQAES6r1+UKnK8Hfn82BoN7RUhqsOuEL LquhZ6+6aT6bNr9gaeFLNqaKQVo0M15YOIrG7sFr3oRYQ4+vsMV5wfqmBqIZt1ro SRUo13MimWoQDWQVFJVn6JHGQH0E+C4m2BLspkaMqjQBaM70td1bbRRYx/QO54YE mGOtlOrffiFZPo3QMVuWXrfbkEG7PN5PMZdZGFWbpNjT3EIz2WbbLx1Svn3/AgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUl1hOQFYqj/JUf+FAkttCahHZEo0wHwYDVR0j BBgwFoAUkxNmUCC9+V36SqwOHkqajhbzp+8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw MDk2ODc1ODUwOTMwNTg1OC8wLzkzMTM2NjUwMjBCREY5NURGQTRBQUMwRTFFNEE5 QThFMTZGM0E3RUYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTMxMzY2NTAyMEJERjk1REZBNEFBQzBFMUU0QTlBOEUxNkYzQTdFRi5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTAwOTY4NzU4NTA5MzA1ODU4LzAvMzIzMTMwMmUzNTJl MzIzNzJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzAzMjMxMzIucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BADSBRswDQYJKoZIhvcNAQELBQADggEBAABKOs1K7AGB26IV5bGuTwQQnM9x4jEH 7rvKZe9pPGBE32GmpgHy+QkI0bpTGLGg1FJq+CP5JAt+Ek6W51EAzOreljszAMmv AmlEix5cLlcG/9mlMonh1iIcHlvjRGJJiUOSGnLxHZfqM29iuK8vGmBXF9yvW/Zs aBRpusYppnm1Y9PpXcZiokloTAwpSZ/a0sgf5YbCMmbdI99lOJ8BGcxtMjXKoUW4 0SZQC/Fil/czRFatp5qt3t21tY0qmePgcEuIQjCqOzJkHiT0/WPCnBDRE7/UVigG PgOOA5/4tjLs1lbhPQkqtpCckHoWfxdNusf/ofYBH5Gw6dVZQrP76cM= -----END CERTIFICATE-----Generated at Mon Apr 27 11:01:03 2026 by rpki-client