$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1100968758509305858/0/3231302e352e392e302f32342d3234203d3e203130323132.roa File: 3231302e352e392e302f32342d3234203d3e203130323132.roa (raw, json) Hash identifier: 7PMBASA3xhNr9oha5KSLoV2kd4ZT7RgK1W97LxBOauM= Subject key identifier: BF:6F:58:BA:2F:AD:F0:B1:27:C8:08:31:C6:5A:57:7C:3E:EF:64:9F Certificate issuer: /CN=9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF Certificate serial: 25EC13E1A827533D46BF59A08B47018C413AC01D Authority key identifier: 93:13:66:50:20:BD:F9:5D:FA:4A:AC:0E:1E:4A:9A:8E:16:F3:A7:EF Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1100968758509305858/0/3231302e352e392e302f32342d3234203d3e203130323132.roa Signing time: Mon 27 Apr 2026 08:38:04 +0000 ROA not before: Mon 27 Apr 2026 08:33:04 +0000 ROA not after: Mon 26 Apr 2027 08:38:04 +0000 asID: 10212 IP address blocks: 210.5.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1100968758509305858/0/9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF.crl rsync://rpki-rps.cnnic.cn/repo/A1100968758509305858/0/9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 09:27:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:ec:13:e1:a8:27:53:3d:46:bf:59:a0:8b:47:01:8c:41:3a:c0:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF Validity Not Before: Apr 27 08:33:04 2026 GMT Not After : Apr 26 08:38:04 2027 GMT Subject: CN=BF6F58BA2FADF0B127C80831C65A577C3EEF649F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:cd:ec:92:98:d1:ac:89:fe:34:04:3d:d7:2d: 8f:cc:42:94:61:2a:83:89:a7:97:af:db:d0:fa:3a: e7:0c:1d:3c:a5:8c:11:1e:8f:e0:a4:f6:f0:d9:6b: cc:13:0f:b1:d5:d3:d6:5d:30:79:96:e3:67:a2:36: 4e:9d:a0:8a:ab:3a:08:b1:b7:3d:50:46:f7:ae:96: 4e:06:e0:cd:7c:8a:17:4d:c3:9e:4d:bd:90:f3:01: 33:6a:dc:79:c8:f1:a1:bd:b2:fc:3c:71:1d:e9:6c: 70:c2:98:29:16:7b:ac:1b:60:3e:25:c1:08:40:ad: 47:a5:3b:b8:fb:9a:84:8d:8b:dc:2f:d6:c9:c5:53: 7d:c9:81:f0:47:40:3b:39:18:61:f1:a7:f5:0a:0c: 5d:f0:1c:06:ee:a4:03:24:e2:91:33:33:ea:f1:46: b2:0e:f5:07:37:e1:4e:ae:db:a3:d6:81:bb:f0:c9: b0:96:06:f6:ea:d2:ba:78:71:c9:ef:21:80:3c:8f: b8:da:c7:c6:3a:db:4d:c5:8f:1b:fa:37:28:7e:c6: 69:c4:c0:a5:97:ba:9f:64:ed:38:68:bd:0e:a6:4e: 74:1b:13:df:4b:25:2e:38:fc:48:d7:bf:35:e6:07: be:3f:37:78:02:50:0a:f8:a8:97:17:21:c1:53:b5: 19:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:6F:58:BA:2F:AD:F0:B1:27:C8:08:31:C6:5A:57:7C:3E:EF:64:9F X509v3 Authority Key Identifier: keyid:93:13:66:50:20:BD:F9:5D:FA:4A:AC:0E:1E:4A:9A:8E:16:F3:A7:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1100968758509305858/0/9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1100968758509305858/0/3231302e352e392e302f32342d3234203d3e203130323132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.5.9.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:55:04:bc:e7:30:8e:b1:5f:be:1a:f0:da:32:8d:e2:fd:aa: 0a:73:52:e7:eb:a5:da:6f:60:e2:5a:49:c0:06:72:50:c4:99: 92:f4:ae:03:71:c0:06:c3:73:e1:04:a1:43:33:c9:c2:e3:dd: 98:58:33:a6:cb:16:72:cd:1e:a3:35:82:33:f5:73:82:d3:12: c6:0a:72:97:c7:00:c1:76:a2:60:5e:04:58:5f:c8:2e:07:36: 52:f2:7b:54:6f:05:64:e9:99:c1:ca:be:4e:7c:d9:d5:59:12: b0:0f:2f:8f:3b:d3:12:41:e6:f7:8c:e8:37:38:96:d5:d0:f4: 12:45:85:df:7c:2f:02:11:5e:e6:b6:65:f5:a5:60:ef:b7:ad: 78:ac:c8:a7:12:a4:6e:bb:ec:94:47:91:40:dc:02:cb:50:cc: 3f:8b:9f:2c:ee:3f:91:45:09:44:b4:20:81:ec:68:14:8c:d8: e8:60:1c:d6:91:57:a7:07:13:5e:63:6b:82:6a:d4:a2:4e:db: b8:29:bf:a6:82:70:b1:e9:20:c7:d0:36:96:be:20:32:c1:f3: 13:68:6c:b5:46:1c:03:dd:5b:6c:6f:c9:e7:14:7a:36:24:0c: 95:7d:e3:5d:b7:8d:cf:bd:0e:d5:16:86:1f:36:2b:35:4e:51: e4:6c:c0:73 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgIUJewT4agnUz1Gv1mgi0cBjEE6wB0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTMxMzY2NTAyMEJERjk1REZBNEFBQzBFMUU0QTlBOEUx NkYzQTdFRjAeFw0yNjA0MjcwODMzMDRaFw0yNzA0MjYwODM4MDRaMDMxMTAvBgNV BAMTKEJGNkY1OEJBMkZBREYwQjEyN0M4MDgzMUM2NUE1NzdDM0VFRjY0OUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrzeySmNGsif40BD3XLY/MQpRh KoOJp5ev29D6OucMHTyljBEej+Ck9vDZa8wTD7HV09ZdMHmW42eiNk6doIqrOgix tz1QRveulk4G4M18ihdNw55NvZDzATNq3HnI8aG9svw8cR3pbHDCmCkWe6wbYD4l wQhArUelO7j7moSNi9wv1snFU33JgfBHQDs5GGHxp/UKDF3wHAbupAMk4pEzM+rx RrIO9Qc34U6u26PWgbvwybCWBvbq0rp4ccnvIYA8j7jax8Y6203Fjxv6Nyh+xmnE wKWXup9k7ThovQ6mTnQbE99LJS44/EjXvzXmB74/N3gCUAr4qJcXIcFTtRmxAgMB AAGjggINMIICCTAdBgNVHQ4EFgQUv29Yui+t8LEnyAgxxlpXfD7vZJ8wHwYDVR0j BBgwFoAUkxNmUCC9+V36SqwOHkqajhbzp+8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw MDk2ODc1ODUwOTMwNTg1OC8wLzkzMTM2NjUwMjBCREY5NURGQTRBQUMwRTFFNEE5 QThFMTZGM0E3RUYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTMxMzY2NTAyMEJERjk1REZBNEFBQzBFMUU0QTlBOEUxNkYzQTdFRi5jZXIw gYYGCCsGAQUFBwELBHoweDB2BggrBgEFBQcwC4ZqcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTAwOTY4NzU4NTA5MzA1ODU4LzAvMzIzMTMwMmUzNTJl MzkyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTMwMzIzMTMyLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA 0gUJMA0GCSqGSIb3DQEBCwUAA4IBAQBeVQS85zCOsV++GvDaMo3i/aoKc1Ln66Xa b2DiWknABnJQxJmS9K4DccAGw3PhBKFDM8nC492YWDOmyxZyzR6jNYIz9XOC0xLG CnKXxwDBdqJgXgRYX8guBzZS8ntUbwVk6ZnByr5OfNnVWRKwDy+PO9MSQeb3jOg3 OJbV0PQSRYXffC8CEV7mtmX1pWDvt614rMinEqRuu+yUR5FA3ALLUMw/i58s7j+R RQlEtCCB7GgUjNjoYBzWkVenBxNeY2uCatSiTtu4Kb+mgnCx6SDH0DaWviAywfMT aGy1RhwD3Vtsb8nnFHo2JAyVfeNdt43PvQ7VFoYfNis1TlHkbMBz -----END CERTIFICATE-----Generated at Mon Apr 27 13:23:09 2026 by rpki-client