$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582330346864641/0/3131302e3137322e3232342e302f32322d3232203d3e2030.roa File: 3131302e3137322e3232342e302f32322d3232203d3e2030.roa (raw, json) Hash identifier: vfSoXvfxdoOO8Tcwj9aUwTPHooLMqelVtrGaoAhknTQ= Subject key identifier: FC:34:AD:27:FC:C0:0A:00:0B:6D:B5:DB:99:7C:09:A6:06:1B:71:2C Certificate issuer: /CN=D9EB5C6DC17682949F5243587DA38740C3EEA953 Certificate serial: 330F2CBDEA0AFC3D06AA83F69214A2794F79CF0F Authority key identifier: D9:EB:5C:6D:C1:76:82:94:9F:52:43:58:7D:A3:87:40:C3:EE:A9:53 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D9EB5C6DC17682949F5243587DA38740C3EEA953.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582330346864641/0/3131302e3137322e3232342e302f32322d3232203d3e2030.roa Signing time: Thu 16 Apr 2026 07:09:23 +0000 ROA not before: Thu 16 Apr 2026 07:04:23 +0000 ROA not after: Thu 15 Apr 2027 07:09:23 +0000 asID: 0 IP address blocks: 110.172.224.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582330346864641/0/D9EB5C6DC17682949F5243587DA38740C3EEA953.crl rsync://rpki-rps.cnnic.cn/repo/A1065582330346864641/0/D9EB5C6DC17682949F5243587DA38740C3EEA953.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D9EB5C6DC17682949F5243587DA38740C3EEA953.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 17 Apr 2026 13:03:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:0f:2c:bd:ea:0a:fc:3d:06:aa:83:f6:92:14:a2:79:4f:79:cf:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D9EB5C6DC17682949F5243587DA38740C3EEA953 Validity Not Before: Apr 16 07:04:23 2026 GMT Not After : Apr 15 07:09:23 2027 GMT Subject: CN=FC34AD27FCC00A000B6DB5DB997C09A6061B712C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:4b:68:54:7c:36:3f:cb:45:24:a7:a5:99:a8: 50:13:f4:73:e8:7c:71:cc:42:e8:9a:2c:9a:e0:d9: 46:9f:01:ba:19:76:b5:20:84:dd:8d:f2:bd:65:72: 1e:8d:8f:69:28:a8:71:c9:2c:98:15:5e:05:0e:ee: 5d:c4:41:ad:54:c2:f2:60:5e:f0:ef:5c:d7:8e:84: 11:6a:34:1f:e0:f5:ea:69:e8:91:ea:4a:aa:88:b8: 65:d1:4e:68:b4:29:b4:fd:1e:5f:31:68:ff:d4:f3: 15:ca:0d:80:14:6b:20:bb:cd:90:db:37:a8:be:c0: 97:a7:9a:96:7a:8a:2c:a8:9d:ba:8b:87:f3:81:09: ae:94:75:f1:17:40:2f:c7:d3:5e:0f:92:ab:f1:c6: c9:d2:da:f4:db:28:64:39:58:6e:16:64:aa:bf:6e: c5:b6:b6:1b:6a:06:37:dc:bc:84:94:58:4a:d8:b5: 69:77:93:e7:a5:56:43:5d:5d:c6:69:cf:c7:68:cc: f3:f2:d7:73:31:f2:f9:d5:5e:34:c4:d8:ee:e1:05: 27:6e:ad:50:15:03:c9:88:29:fd:b4:9b:68:d8:64: 2b:ca:00:6c:5f:7b:a5:36:5a:40:d7:77:60:bb:c5: 77:00:4e:45:37:bb:68:ec:bc:a8:f8:d9:5e:ca:99: bf:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:34:AD:27:FC:C0:0A:00:0B:6D:B5:DB:99:7C:09:A6:06:1B:71:2C X509v3 Authority Key Identifier: keyid:D9:EB:5C:6D:C1:76:82:94:9F:52:43:58:7D:A3:87:40:C3:EE:A9:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346864641/0/D9EB5C6DC17682949F5243587DA38740C3EEA953.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D9EB5C6DC17682949F5243587DA38740C3EEA953.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346864641/0/3131302e3137322e3232342e302f32322d3232203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.172.224.0/22 Signature Algorithm: sha256WithRSAEncryption 16:38:2b:41:ab:78:c0:55:e9:0c:bc:64:99:6a:31:86:80:ca: 8c:d7:32:5e:74:60:7d:16:0a:d5:4c:8b:8e:9a:f4:3c:1c:ea: 32:24:77:3c:40:c2:30:34:95:16:85:7d:b6:0f:0d:dd:8d:ed: 0b:33:d2:a2:96:be:b7:3b:4e:05:05:7a:ff:12:20:d2:7d:27: ed:8c:69:d2:ea:89:a8:20:de:75:32:2b:20:37:c4:f2:75:74: 42:fa:15:9d:18:1b:e8:7b:01:4c:41:cb:0f:a0:e1:53:66:00: 63:5f:11:e1:45:9b:84:64:de:24:ef:66:76:32:11:17:b6:05: b1:6c:a4:d5:e2:7e:47:e2:20:6d:37:22:79:e9:ce:ee:f4:f5: f0:9b:73:fb:be:8a:8a:f6:c1:a2:13:2a:81:44:af:bb:a2:8b: 04:22:87:05:1e:ca:13:b7:87:ad:d8:de:d3:ef:4d:23:99:71: 9d:18:9c:fd:7f:95:48:f4:37:46:5d:cc:a1:6d:f2:8b:87:97: 1b:8e:37:6f:4a:be:38:89:1f:8c:5c:3e:35:b9:7f:83:92:9e: 72:be:d8:25:3b:bd:18:33:e8:fb:36:bb:bc:7f:13:92:93:71: 03:6e:bb:01:ce:83:d0:01:47:60:01:c5:fb:94:d0:10:86:a9: a8:76:66:f4 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgIUMw8sveoK/D0GqoP2khSieU95zw8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDlFQjVDNkRDMTc2ODI5NDlGNTI0MzU4N0RBMzg3NDBD M0VFQTk1MzAeFw0yNjA0MTYwNzA0MjNaFw0yNzA0MTUwNzA5MjNaMDMxMTAvBgNV BAMTKEZDMzRBRDI3RkNDMDBBMDAwQjZEQjVEQjk5N0MwOUE2MDYxQjcxMkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpS2hUfDY/y0Ukp6WZqFAT9HPo fHHMQuiaLJrg2UafAboZdrUghN2N8r1lch6Nj2koqHHJLJgVXgUO7l3EQa1UwvJg XvDvXNeOhBFqNB/g9epp6JHqSqqIuGXRTmi0KbT9Hl8xaP/U8xXKDYAUayC7zZDb N6i+wJenmpZ6iiyonbqLh/OBCa6UdfEXQC/H014PkqvxxsnS2vTbKGQ5WG4WZKq/ bsW2thtqBjfcvISUWErYtWl3k+elVkNdXcZpz8dozPPy13Mx8vnVXjTE2O7hBSdu rVAVA8mIKf20m2jYZCvKAGxfe6U2WkDXd2C7xXcATkU3u2jsvKj42V7Kmb/VAgMB AAGjggINMIICCTAdBgNVHQ4EFgQU/DStJ/zACgALbbXbmXwJpgYbcSwwHwYDVR0j BBgwFoAU2etcbcF2gpSfUkNYfaOHQMPuqVMwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4MjMzMDM0Njg2NDY0MS8wL0Q5RUI1QzZEQzE3NjgyOTQ5RjUyNDM1ODdEQTM4 NzQwQzNFRUE5NTMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRDlFQjVDNkRDMTc2ODI5NDlGNTI0MzU4N0RBMzg3NDBDM0VFQTk1My5jZXIw gYYGCCsGAQUFBwELBHoweDB2BggrBgEFBQcwC4ZqcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTgyMzMwMzQ2ODY0NjQxLzAvMzEzMTMwMmUzMTM3 MzIyZTMyMzIzNDJlMzAyZjMyMzIyZDMyMzIyMDNkM2UyMDMwLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQC bqzgMA0GCSqGSIb3DQEBCwUAA4IBAQAWOCtBq3jAVekMvGSZajGGgMqM1zJedGB9 FgrVTIuOmvQ8HOoyJHc8QMIwNJUWhX22Dw3dje0LM9Kilr63O04FBXr/EiDSfSft jGnS6omoIN51MisgN8TydXRC+hWdGBvoewFMQcsPoOFTZgBjXxHhRZuEZN4k72Z2 MhEXtgWxbKTV4n5H4iBtNyJ56c7u9PXwm3P7voqK9sGiEyqBRK+7oosEIocFHsoT t4et2N7T700jmXGdGJz9f5VI9DdGXcyhbfKLh5cbjjdvSr44iR+MXD41uX+Dkp5y vtglO70YM+j7Nru8fxOSk3EDbrsBzoPQAUdgAcX7lNAQhqmodmb0 -----END CERTIFICATE-----Generated at Thu Apr 16 22:35:47 2026 by rpki-client