$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1100968758509305858/0/3231302e352e372e302f32342d3234203d3e203130323132.roa File: 3231302e352e372e302f32342d3234203d3e203130323132.roa (raw, json) Hash identifier: 8AQBPl6xPbPaU0CaP63DyjnCz+eLFVxp+7vaGUumeQM= Subject key identifier: BF:F7:77:24:27:81:8D:9B:46:54:B0:F8:A6:C8:9B:5C:51:04:44:64 Certificate issuer: /CN=9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF Certificate serial: 3A793FF3FCFFCB9F6B5D174F9C91EB7D925B5726 Authority key identifier: 93:13:66:50:20:BD:F9:5D:FA:4A:AC:0E:1E:4A:9A:8E:16:F3:A7:EF Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1100968758509305858/0/3231302e352e372e302f32342d3234203d3e203130323132.roa Signing time: Mon 27 Apr 2026 08:55:31 +0000 ROA not before: Mon 27 Apr 2026 08:50:31 +0000 ROA not after: Mon 26 Apr 2027 08:55:31 +0000 asID: 10212 IP address blocks: 210.5.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1100968758509305858/0/9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF.crl rsync://rpki-rps.cnnic.cn/repo/A1100968758509305858/0/9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 09:27:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:79:3f:f3:fc:ff:cb:9f:6b:5d:17:4f:9c:91:eb:7d:92:5b:57:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF Validity Not Before: Apr 27 08:50:31 2026 GMT Not After : Apr 26 08:55:31 2027 GMT Subject: CN=BFF7772427818D9B4654B0F8A6C89B5C51044464 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:2c:c4:00:88:a9:bd:a6:1d:fa:38:a0:1e:cf: f2:88:96:ff:0d:d7:89:6d:41:ac:59:4d:93:53:6c: 5c:58:51:60:e0:fa:5b:a0:f9:5b:3c:3b:e9:65:a3: df:51:54:8d:48:f5:70:ed:c8:cf:53:bb:26:69:fc: 7a:3f:fd:a9:67:42:ad:af:94:01:2c:81:27:84:65: ab:bd:5e:f6:0f:2d:4a:7e:fe:cb:aa:de:e4:18:f2: 7f:bd:96:37:24:02:3c:10:75:a1:57:8c:17:be:f4: be:f3:3b:f7:f3:7f:fc:96:72:81:21:42:bf:aa:2a: 55:7f:e1:bb:8e:b5:8e:58:a2:fa:0c:25:6f:fb:59: 4a:f8:4d:da:65:98:09:56:c9:57:0e:9f:ed:89:85: c7:fc:d4:51:31:ee:b4:fe:54:10:12:ab:7c:0c:1b: 67:63:c7:87:97:e2:4c:48:17:5a:d9:93:29:21:c6: 28:5d:e7:f2:07:42:1f:5d:4d:a3:b5:ca:b6:3f:2a: 50:52:a5:91:6b:9b:27:3a:14:66:f5:02:79:be:75: fa:94:2b:cf:0d:09:4e:e6:f0:5f:ba:d7:4e:c9:e0: 02:72:4b:20:e8:c9:5a:c9:24:16:16:41:7d:7b:ce: f8:d4:de:e5:6d:8d:86:2b:c3:4e:c9:8a:4f:ff:55: 47:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:F7:77:24:27:81:8D:9B:46:54:B0:F8:A6:C8:9B:5C:51:04:44:64 X509v3 Authority Key Identifier: keyid:93:13:66:50:20:BD:F9:5D:FA:4A:AC:0E:1E:4A:9A:8E:16:F3:A7:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1100968758509305858/0/9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1100968758509305858/0/3231302e352e372e302f32342d3234203d3e203130323132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.5.7.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:6a:54:66:1f:d6:04:77:42:cc:b9:de:9a:24:7c:82:bf:10: b7:56:ed:d8:ce:e5:55:60:d3:f4:a1:58:b3:4f:15:28:ee:78: ba:dd:01:d0:96:a1:94:7d:5d:aa:c0:bf:b3:eb:69:4a:11:36: 55:9f:60:51:21:20:fa:ee:71:f6:f0:36:36:27:f7:80:03:1a: 17:ab:b5:62:5f:d2:0a:a8:41:38:e6:b8:bc:55:f6:ea:1d:04: 05:ac:4a:3e:5e:73:7d:5e:9c:1e:99:af:5e:a0:09:90:67:df: cf:0b:29:99:16:3e:92:0f:12:5e:d0:aa:81:10:ac:35:ec:8f: e8:f6:37:8c:72:1c:b8:ce:ae:83:1f:1c:1c:41:ef:ea:df:15: 53:84:2a:99:12:2f:b7:6e:08:ab:01:86:22:08:a5:22:f7:7a: da:c5:c9:dd:43:bf:c6:77:27:95:01:50:fd:54:93:33:eb:b2: d6:f6:09:ec:5d:8a:4b:bb:55:d2:a1:d3:f0:db:6b:fc:7f:b1: d9:f4:a0:7e:93:27:a9:d6:1e:38:5b:7e:c9:70:39:d8:fe:a0: c2:f3:db:62:fc:9f:2b:6a:35:ce:c0:73:46:33:7a:93:0d:62: c8:76:7d:cf:c9:ab:af:bd:a3:07:fd:b5:a1:31:fd:e4:51:5b: 51:ac:02:a1 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgIUOnk/8/z/y59rXRdPnJHrfZJbVyYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTMxMzY2NTAyMEJERjk1REZBNEFBQzBFMUU0QTlBOEUx NkYzQTdFRjAeFw0yNjA0MjcwODUwMzFaFw0yNzA0MjYwODU1MzFaMDMxMTAvBgNV BAMTKEJGRjc3NzI0Mjc4MThEOUI0NjU0QjBGOEE2Qzg5QjVDNTEwNDQ0NjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD4LMQAiKm9ph36OKAez/KIlv8N 14ltQaxZTZNTbFxYUWDg+lug+Vs8O+llo99RVI1I9XDtyM9TuyZp/Ho//alnQq2v lAEsgSeEZau9XvYPLUp+/suq3uQY8n+9ljckAjwQdaFXjBe+9L7zO/fzf/yWcoEh Qr+qKlV/4buOtY5YovoMJW/7WUr4TdplmAlWyVcOn+2Jhcf81FEx7rT+VBASq3wM G2djx4eX4kxIF1rZkykhxihd5/IHQh9dTaO1yrY/KlBSpZFrmyc6FGb1Anm+dfqU K88NCU7m8F+6107J4AJySyDoyVrJJBYWQX17zvjU3uVtjYYrw07Jik//VUcDAgMB AAGjggINMIICCTAdBgNVHQ4EFgQUv/d3JCeBjZtGVLD4psibXFEERGQwHwYDVR0j BBgwFoAUkxNmUCC9+V36SqwOHkqajhbzp+8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw MDk2ODc1ODUwOTMwNTg1OC8wLzkzMTM2NjUwMjBCREY5NURGQTRBQUMwRTFFNEE5 QThFMTZGM0E3RUYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTMxMzY2NTAyMEJERjk1REZBNEFBQzBFMUU0QTlBOEUxNkYzQTdFRi5jZXIw gYYGCCsGAQUFBwELBHoweDB2BggrBgEFBQcwC4ZqcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTAwOTY4NzU4NTA5MzA1ODU4LzAvMzIzMTMwMmUzNTJl MzcyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTMwMzIzMTMyLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA 0gUHMA0GCSqGSIb3DQEBCwUAA4IBAQAralRmH9YEd0LMud6aJHyCvxC3Vu3YzuVV YNP0oVizTxUo7ni63QHQlqGUfV2qwL+z62lKETZVn2BRISD67nH28DY2J/eAAxoX q7ViX9IKqEE45ri8VfbqHQQFrEo+XnN9Xpwema9eoAmQZ9/PCymZFj6SDxJe0KqB EKw17I/o9jeMchy4zq6DHxwcQe/q3xVThCqZEi+3bgirAYYiCKUi93raxcndQ7/G dyeVAVD9VJMz67LW9gnsXYpLu1XSodPw22v8f7HZ9KB+kyep1h44W37JcDnY/qDC 89ti/J8rajXOwHNGM3qTDWLIdn3PyauvvaMH/bWhMf3kUVtRrAKh -----END CERTIFICATE-----Generated at Mon Apr 27 13:23:10 2026 by rpki-client