$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094519876787109889/0/3136302e3235302e39302e302f32342d3234203d3e2030.roa File: 3136302e3235302e39302e302f32342d3234203d3e2030.roa (raw, json) Hash identifier: K1QDkUk1IphA/GflzuMhC8hun3fH4ROmohlTCdV9p9U= Subject key identifier: DB:36:40:AD:C7:E1:BA:F1:79:95:67:94:BE:E9:47:2F:29:07:2E:76 Certificate issuer: /CN=C2DA49E3A7421A170AB2589567E7C29841F7D385 Certificate serial: 336AE1DEF1EFEC2E9C32C4DFAC77575D05A38E97 Authority key identifier: C2:DA:49:E3:A7:42:1A:17:0A:B2:58:95:67:E7:C2:98:41:F7:D3:85 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/C2DA49E3A7421A170AB2589567E7C29841F7D385.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094519876787109889/0/3136302e3235302e39302e302f32342d3234203d3e2030.roa Signing time: Wed 15 Apr 2026 13:28:01 +0000 ROA not before: Wed 15 Apr 2026 13:23:01 +0000 ROA not after: Wed 14 Apr 2027 13:28:01 +0000 asID: 0 IP address blocks: 160.250.90.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094519876787109889/0/C2DA49E3A7421A170AB2589567E7C29841F7D385.crl rsync://rpki-rps.cnnic.cn/repo/A1094519876787109889/0/C2DA49E3A7421A170AB2589567E7C29841F7D385.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/C2DA49E3A7421A170AB2589567E7C29841F7D385.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 17 Apr 2026 08:43:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:6a:e1:de:f1:ef:ec:2e:9c:32:c4:df:ac:77:57:5d:05:a3:8e:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2DA49E3A7421A170AB2589567E7C29841F7D385 Validity Not Before: Apr 15 13:23:01 2026 GMT Not After : Apr 14 13:28:01 2027 GMT Subject: CN=DB3640ADC7E1BAF179956794BEE9472F29072E76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ba:3b:83:cd:ab:1f:a1:b4:63:64:af:53:18: 91:22:6e:eb:3e:07:ca:88:4b:9a:11:06:31:7a:0f: a2:65:df:82:bc:52:ae:b8:df:05:b9:38:7c:89:6b: 7a:26:e8:98:72:99:b8:ec:e4:e0:3a:3f:8a:75:22: 1f:14:b7:a8:99:f7:38:77:73:aa:49:26:1d:ac:42: e4:56:27:88:16:20:b3:01:24:4f:b1:8c:ee:a4:7a: 55:42:7b:00:3d:ff:a3:5f:77:e8:dc:65:db:fc:7f: 8a:33:ba:ac:54:f0:0f:c6:81:d8:dc:01:4b:8c:c4: 16:ea:02:70:4d:57:47:5f:b2:4a:17:7f:57:bb:68: 53:33:08:e6:10:4c:bb:9d:24:d4:05:8f:cb:42:86: 23:31:5f:fc:89:aa:98:e2:3e:f4:6c:10:82:80:0c: ac:3d:1d:84:23:ed:9d:19:d1:a1:2d:95:03:07:af: 8a:a1:a1:fb:2d:cf:e1:dc:54:3d:13:31:7c:57:b6: be:30:0c:45:0b:39:94:c7:e1:93:f1:98:d4:26:9c: 18:ff:b7:1f:ee:e3:16:87:30:32:a8:d5:24:e5:2f: 21:11:56:70:74:ef:09:21:3c:11:6a:82:9b:9d:d4: 0d:1c:ee:30:be:10:b4:cf:2f:04:39:e7:5a:61:30: cd:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:36:40:AD:C7:E1:BA:F1:79:95:67:94:BE:E9:47:2F:29:07:2E:76 X509v3 Authority Key Identifier: keyid:C2:DA:49:E3:A7:42:1A:17:0A:B2:58:95:67:E7:C2:98:41:F7:D3:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094519876787109889/0/C2DA49E3A7421A170AB2589567E7C29841F7D385.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/C2DA49E3A7421A170AB2589567E7C29841F7D385.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094519876787109889/0/3136302e3235302e39302e302f32342d3234203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.250.90.0/24 Signature Algorithm: sha256WithRSAEncryption 96:73:4a:77:eb:76:05:b4:5a:b2:af:02:bd:ba:48:ca:0e:4e: 4f:11:0b:b4:a1:3b:33:73:53:f0:46:0b:9a:00:7f:4c:85:88: 19:5e:1d:06:28:ea:f5:0e:9d:14:cb:8a:d3:03:7d:98:ac:42: a1:e2:b9:55:4b:3f:26:a7:06:d1:b9:fc:a2:51:e8:cf:31:e0: 1e:a7:31:0d:74:bf:8f:a5:3f:14:12:48:39:00:68:bc:bf:f4: 24:0d:65:c6:a6:80:bf:61:e2:f9:9c:fc:1e:e9:88:60:5e:63: e2:10:d4:05:09:16:6a:ca:71:ff:83:57:e3:37:a2:51:03:d5: f7:e4:bd:df:df:54:ee:a1:ca:38:a2:5e:5e:53:7f:56:1a:22: 13:81:75:3c:c3:6c:db:b9:7b:76:1d:86:ca:80:f2:1f:84:85: 1a:30:67:ac:3d:4c:59:23:c4:01:6e:dc:1d:51:93:74:2a:3b: 05:12:a5:dc:bf:fa:79:2b:bf:d0:5a:da:ba:bd:d3:91:7a:c0: 76:cb:19:ae:9c:48:ba:7c:2b:c2:4e:0a:c6:a4:85:d8:c3:b7: 40:ec:4c:f5:b8:38:29:4f:dc:96:49:f3:02:92:bc:1b:82:93: d2:df:db:e5:41:8a:9b:fc:53:4c:42:c7:25:f6:0b:1c:4e:a7: 2d:42:50:c7 -----BEGIN CERTIFICATE----- MIIFATCCA+mgAwIBAgIUM2rh3vHv7C6cMsTfrHdXXQWjjpcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzJEQTQ5RTNBNzQyMUExNzBBQjI1ODk1NjdFN0MyOTg0 MUY3RDM4NTAeFw0yNjA0MTUxMzIzMDFaFw0yNzA0MTQxMzI4MDFaMDMxMTAvBgNV BAMTKERCMzY0MEFEQzdFMUJBRjE3OTk1Njc5NEJFRTk0NzJGMjkwNzJFNzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4ujuDzasfobRjZK9TGJEibus+ B8qIS5oRBjF6D6Jl34K8Uq643wW5OHyJa3om6Jhymbjs5OA6P4p1Ih8Ut6iZ9zh3 c6pJJh2sQuRWJ4gWILMBJE+xjO6kelVCewA9/6Nfd+jcZdv8f4ozuqxU8A/Ggdjc AUuMxBbqAnBNV0dfskoXf1e7aFMzCOYQTLudJNQFj8tChiMxX/yJqpjiPvRsEIKA DKw9HYQj7Z0Z0aEtlQMHr4qhofstz+HcVD0TMXxXtr4wDEULOZTH4ZPxmNQmnBj/ tx/u4xaHMDKo1STlLyERVnB07wkhPBFqgpud1A0c7jC+ELTPLwQ551phMM3dAgMB AAGjggILMIICBzAdBgNVHQ4EFgQU2zZArcfhuvF5lWeUvulHLykHLnYwHwYDVR0j BBgwFoAUwtpJ46dCGhcKsliVZ+fCmEH304UwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDUxOTg3Njc4NzEwOTg4OS8wL0MyREE0OUUzQTc0MjFBMTcwQUIyNTg5NTY3RTdD Mjk4NDFGN0QzODUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvQzJEQTQ5RTNBNzQyMUExNzBBQjI1ODk1NjdFN0MyOTg0MUY3RDM4NS5jZXIw gYQGCCsGAQUFBwELBHgwdjB0BggrBgEFBQcwC4ZocnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk0NTE5ODc2Nzg3MTA5ODg5LzAvMzEzNjMwMmUzMjM1 MzAyZTM5MzAyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKD6 WjANBgkqhkiG9w0BAQsFAAOCAQEAlnNKd+t2BbRasq8CvbpIyg5OTxELtKE7M3NT 8EYLmgB/TIWIGV4dBijq9Q6dFMuK0wN9mKxCoeK5VUs/JqcG0bn8olHozzHgHqcx DXS/j6U/FBJIOQBovL/0JA1lxqaAv2Hi+Zz8HumIYF5j4hDUBQkWaspx/4NX4zei UQPV9+S9399U7qHKOKJeXlN/VhoiE4F1PMNs27l7dh2GyoDyH4SFGjBnrD1MWSPE AW7cHVGTdCo7BRKl3L/6eSu/0Fraur3TkXrAdssZrpxIunwrwk4KxqSF2MO3QOxM 9bg4KU/clknzApK8G4KT0t/b5UGKm/xTTELHJfYLHE6nLUJQxw== -----END CERTIFICATE-----Generated at Thu Apr 16 22:35:39 2026 by rpki-client