$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1100968758509305858/0/3231382e39362e3132372e302f32342d3234203d3e203137363231.roa File: 3231382e39362e3132372e302f32342d3234203d3e203137363231.roa (raw, json) Hash identifier: ekasOZZvB0IapShtuuoA3q2UxAP9uJYR8sukUefszYo= Subject key identifier: AC:B4:24:CE:16:DC:C8:CD:21:C2:35:64:C5:5F:B4:CA:7A:18:07:F0 Certificate issuer: /CN=9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF Certificate serial: 0FA9309C5179CBD23D49B14433AF7EAFE4FF3B9C Authority key identifier: 93:13:66:50:20:BD:F9:5D:FA:4A:AC:0E:1E:4A:9A:8E:16:F3:A7:EF Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1100968758509305858/0/3231382e39362e3132372e302f32342d3234203d3e203137363231.roa Signing time: Mon 27 Apr 2026 02:22:22 +0000 ROA not before: Mon 27 Apr 2026 02:17:22 +0000 ROA not after: Mon 26 Apr 2027 02:22:22 +0000 asID: 17621 IP address blocks: 218.96.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1100968758509305858/0/9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF.crl rsync://rpki-rps.cnnic.cn/repo/A1100968758509305858/0/9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 09:27:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:a9:30:9c:51:79:cb:d2:3d:49:b1:44:33:af:7e:af:e4:ff:3b:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF Validity Not Before: Apr 27 02:17:22 2026 GMT Not After : Apr 26 02:22:22 2027 GMT Subject: CN=ACB424CE16DCC8CD21C23564C55FB4CA7A1807F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:af:fe:1d:cf:3c:aa:08:22:b4:16:5d:70:1b: 2e:e0:54:18:81:99:34:30:8e:b7:d2:3d:d6:71:f0: d5:8d:9c:48:08:3d:fe:a4:93:94:6b:40:6c:99:8c: 46:5e:c2:ec:6d:0d:42:49:b4:73:18:94:db:c8:6f: 60:10:74:81:72:6e:a9:ed:d3:0d:c5:82:fb:bc:4c: d7:95:5c:03:f4:b8:52:20:6a:75:31:4f:c8:37:79: 75:1f:41:34:76:6d:d3:59:66:75:a1:2e:74:34:0b: ba:f1:34:1c:7f:cb:17:f1:d4:31:22:7b:24:c7:6d: eb:e8:b9:db:78:11:09:9b:ff:0e:1e:f4:35:fe:50: 9e:c5:3a:c3:b0:2b:a6:13:e7:78:4c:9a:d8:8b:09: b8:e4:a7:8c:ad:40:40:26:89:75:33:f0:de:40:1d: ec:ec:02:1d:0c:31:cf:28:8b:5e:93:49:b2:3a:86: 16:9d:05:3a:02:d5:08:ba:ce:8a:37:9b:fb:5b:f0: 8e:e8:10:f7:ac:b9:9c:a2:e3:e5:00:81:b6:c8:85: c8:09:7a:f2:ca:93:6c:c7:25:4a:d7:93:f3:73:c3: c5:c7:e2:44:16:4c:f2:f6:5b:bb:03:92:eb:c1:04: 86:e4:ce:69:b9:c4:02:c3:95:c7:5c:42:97:ee:f3: 19:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:B4:24:CE:16:DC:C8:CD:21:C2:35:64:C5:5F:B4:CA:7A:18:07:F0 X509v3 Authority Key Identifier: keyid:93:13:66:50:20:BD:F9:5D:FA:4A:AC:0E:1E:4A:9A:8E:16:F3:A7:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1100968758509305858/0/9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1100968758509305858/0/3231382e39362e3132372e302f32342d3234203d3e203137363231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 218.96.127.0/24 Signature Algorithm: sha256WithRSAEncryption 04:c5:22:c5:2f:0a:61:52:d3:c2:1b:df:34:ca:52:5e:38:c4: f4:34:0b:c9:90:92:97:e8:c9:1f:02:3e:da:f0:5b:6d:03:37: 87:c4:20:d4:54:4c:7d:eb:45:04:9f:57:88:73:79:f1:35:96: e1:ea:d3:b6:64:f6:01:e0:d8:27:0e:d4:08:6c:f9:8e:a6:8f: 2a:d0:39:32:1f:2a:2b:e6:c1:f3:00:d1:41:b4:e9:08:c9:89: c4:7c:da:81:ae:1a:0b:a5:c0:52:cd:5d:30:5e:5e:db:b3:c8: 23:61:df:9f:79:0e:80:59:ce:4a:d0:c5:35:57:38:31:89:82: e5:5f:bc:e5:8e:2c:41:24:3d:0d:a4:69:45:29:6f:2b:7b:fc: 1d:0c:8a:7e:a0:19:d0:f8:3c:a4:bd:69:0e:64:6a:b9:15:cb: bf:ff:83:95:ce:a7:86:50:03:5f:6f:b7:c7:4f:f9:8e:23:0d: b1:0f:f6:27:60:f6:11:12:cc:33:99:af:a9:8a:b0:65:34:9a: 03:60:77:fa:22:ae:87:81:2a:fd:aa:58:ba:27:30:4b:5c:31: 4a:73:b0:7f:3a:fa:0e:9d:7e:95:cc:a4:10:4b:52:b7:c1:07: 24:b6:c6:8f:02:65:3c:d5:c1:83:4a:7c:3c:4d:1c:0b:64:65: 6d:6a:cb:34 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUD6kwnFF5y9I9SbFEM69+r+T/O5wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTMxMzY2NTAyMEJERjk1REZBNEFBQzBFMUU0QTlBOEUx NkYzQTdFRjAeFw0yNjA0MjcwMjE3MjJaFw0yNzA0MjYwMjIyMjJaMDMxMTAvBgNV BAMTKEFDQjQyNENFMTZEQ0M4Q0QyMUMyMzU2NEM1NUZCNENBN0ExODA3RjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgr/4dzzyqCCK0Fl1wGy7gVBiB mTQwjrfSPdZx8NWNnEgIPf6kk5RrQGyZjEZewuxtDUJJtHMYlNvIb2AQdIFybqnt 0w3Fgvu8TNeVXAP0uFIganUxT8g3eXUfQTR2bdNZZnWhLnQ0C7rxNBx/yxfx1DEi eyTHbevoudt4EQmb/w4e9DX+UJ7FOsOwK6YT53hMmtiLCbjkp4ytQEAmiXUz8N5A HezsAh0MMc8oi16TSbI6hhadBToC1Qi6zoo3m/tb8I7oEPesuZyi4+UAgbbIhcgJ evLKk2zHJUrXk/Nzw8XH4kQWTPL2W7sDkuvBBIbkzmm5xALDlcdcQpfu8xlTAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUrLQkzhbcyM0hwjVkxV+0ynoYB/AwHwYDVR0j BBgwFoAUkxNmUCC9+V36SqwOHkqajhbzp+8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw MDk2ODc1ODUwOTMwNTg1OC8wLzkzMTM2NjUwMjBCREY5NURGQTRBQUMwRTFFNEE5 QThFMTZGM0E3RUYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTMxMzY2NTAyMEJERjk1REZBNEFBQzBFMUU0QTlBOEUxNkYzQTdFRi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTEwMDk2ODc1ODUwOTMwNTg1OC8wLzMyMzEzODJlMzkz NjJlMzEzMjM3MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzNzM2MzIzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEANpgfzANBgkqhkiG9w0BAQsFAAOCAQEABMUixS8KYVLTwhvfNMpSXjjE 9DQLyZCSl+jJHwI+2vBbbQM3h8Qg1FRMfetFBJ9XiHN58TWW4erTtmT2AeDYJw7U CGz5jqaPKtA5Mh8qK+bB8wDRQbTpCMmJxHzaga4aC6XAUs1dMF5e27PII2Hfn3kO gFnOStDFNVc4MYmC5V+85Y4sQSQ9DaRpRSlvK3v8HQyKfqAZ0Pg8pL1pDmRquRXL v/+Dlc6nhlADX2+3x0/5jiMNsQ/2J2D2ERLMM5mvqYqwZTSaA2B3+iKuh4Eq/apY uicwS1wxSnOwfzr6Dp1+lcykEEtSt8EHJLbGjwJlPNXBg0p8PE0cC2RlbWrLNA== -----END CERTIFICATE-----Generated at Mon Apr 27 11:02:05 2026 by rpki-client