$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095978316885655555/0/3232332e3232332e3138342e302f32312d3231203d3e2034383437.roa File: 3232332e3232332e3138342e302f32312d3231203d3e2034383437.roa (raw, json) Hash identifier: 4luDx/9zAC3YCiEkDohFLYU6qHIXb5VqeFWS79iS+vI= Subject key identifier: 2C:5E:8A:24:5B:BB:1B:5E:CC:8E:46:1B:4E:E9:34:48:2C:E2:BF:FB Certificate issuer: /CN=C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398 Certificate serial: 4893DE73DC450635DA54AB581FD386CA7C55527A Authority key identifier: C1:C4:8F:95:93:D6:A1:9D:BD:3F:AC:A9:C6:EF:A5:B5:5A:D3:F3:98 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/3232332e3232332e3138342e302f32312d3231203d3e2034383437.roa Signing time: Mon 13 Apr 2026 08:08:31 +0000 ROA not before: Mon 13 Apr 2026 08:03:31 +0000 ROA not after: Mon 12 Apr 2027 08:08:31 +0000 asID: 4847 IP address blocks: 223.223.184.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.crl rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 17:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:93:de:73:dc:45:06:35:da:54:ab:58:1f:d3:86:ca:7c:55:52:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398 Validity Not Before: Apr 13 08:03:31 2026 GMT Not After : Apr 12 08:08:31 2027 GMT Subject: CN=2C5E8A245BBB1B5ECC8E461B4EE934482CE2BFFB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:be:97:74:af:b7:70:3a:e4:1a:50:2e:a0:2a: c2:29:43:e9:a1:17:bb:e8:29:db:1a:32:cf:1c:e4: c7:36:e0:d1:be:05:09:81:83:b9:0c:fc:02:05:e1: 3d:91:de:8e:33:e6:e1:3f:e7:ca:25:41:1a:be:8c: be:3a:20:a2:b9:f8:02:15:9f:c5:1b:3e:dc:c9:70: 87:84:e3:c8:8d:82:fa:fb:7c:3c:8c:ff:63:08:c1: 25:3c:67:ed:b0:47:97:e8:cf:bd:b2:e9:40:58:e8: 07:45:ed:50:9b:cb:d1:18:b6:f8:cc:e0:cc:66:b4: 86:52:a0:e9:17:49:ae:3a:8e:6a:16:3a:dd:a6:1b: bb:b7:8e:46:34:37:c1:59:31:a8:6f:50:3b:62:c5: 29:23:46:6d:c1:1a:25:b9:55:b7:2c:b7:53:8a:ce: 8c:5a:17:04:40:33:5d:85:44:1e:5c:fb:7b:aa:82: 29:bf:48:a0:16:3e:96:c3:6d:00:1b:ae:7a:c4:89: 7a:a4:27:da:8f:64:d3:24:da:84:ac:35:ab:3f:16: 8e:08:5c:dc:ec:37:7a:99:56:f1:73:78:14:64:0f: 67:ee:54:7c:82:eb:b3:fb:41:96:5c:b1:32:d2:6a: 94:c3:ba:af:71:d3:a6:cb:4a:00:4d:3b:e2:47:ee: 37:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:5E:8A:24:5B:BB:1B:5E:CC:8E:46:1B:4E:E9:34:48:2C:E2:BF:FB X509v3 Authority Key Identifier: keyid:C1:C4:8F:95:93:D6:A1:9D:BD:3F:AC:A9:C6:EF:A5:B5:5A:D3:F3:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/3232332e3232332e3138342e302f32312d3231203d3e2034383437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.223.184.0/21 Signature Algorithm: sha256WithRSAEncryption 36:5e:5a:88:a1:60:60:00:f1:99:3b:cf:0a:83:93:07:45:82: 9b:4a:26:54:93:d3:c3:ae:a4:af:f9:c0:bf:32:a6:56:13:7a: 3c:cf:e1:69:03:92:08:24:5a:3a:b3:25:40:9b:1a:f4:03:22: bf:49:c7:f7:86:f4:98:57:36:0e:ad:83:a8:49:5f:aa:c5:f4: 31:15:bb:77:8c:c6:ef:70:8b:7b:6e:55:fc:28:93:cd:96:47: 8d:19:22:b2:a5:88:b0:ca:ef:ef:10:f8:99:ba:30:b1:fd:13: 3e:0a:2c:3a:93:df:63:9e:37:69:db:de:68:43:a5:8d:f3:37: d1:4c:4d:a2:36:e7:69:fc:82:68:17:a2:b0:ca:22:3c:ef:70: af:3c:0b:f1:40:a8:40:42:69:58:7c:53:11:22:1c:55:3f:c1: 79:55:00:ba:f9:87:78:ad:14:88:44:10:35:55:96:d1:1a:38: c7:b9:50:ef:2f:c5:b6:a5:ed:5b:b8:53:25:e4:ac:a5:a7:6c: f7:fd:f3:ca:cd:57:f3:c7:2c:6d:d5:d1:62:e2:c6:85:09:8d: d0:13:ff:7d:fa:90:d4:5d:40:3b:4c:fc:04:af:58:82:94:ce: c8:b2:f5:fc:85:cc:41:10:a6:b3:ab:32:6d:16:2b:10:13:d9: 62:05:ed:79 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUSJPec9xFBjXaVKtYH9OGynxVUnowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzFDNDhGOTU5M0Q2QTE5REJEM0ZBQ0E5QzZFRkE1QjU1 QUQzRjM5ODAeFw0yNjA0MTMwODAzMzFaFw0yNzA0MTIwODA4MzFaMDMxMTAvBgNV BAMTKDJDNUU4QTI0NUJCQjFCNUVDQzhFNDYxQjRFRTkzNDQ4MkNFMkJGRkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkvpd0r7dwOuQaUC6gKsIpQ+mh F7voKdsaMs8c5Mc24NG+BQmBg7kM/AIF4T2R3o4z5uE/58olQRq+jL46IKK5+AIV n8UbPtzJcIeE48iNgvr7fDyM/2MIwSU8Z+2wR5foz72y6UBY6AdF7VCby9EYtvjM 4MxmtIZSoOkXSa46jmoWOt2mG7u3jkY0N8FZMahvUDtixSkjRm3BGiW5Vbcst1OK zoxaFwRAM12FRB5c+3uqgim/SKAWPpbDbQAbrnrEiXqkJ9qPZNMk2oSsNas/Fo4I XNzsN3qZVvFzeBRkD2fuVHyC67P7QZZcsTLSapTDuq9x06bLSgBNO+JH7jcRAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQULF6KJFu7G17MjkYbTuk0SCziv/swHwYDVR0j BBgwFoAUwcSPlZPWoZ29P6ypxu+ltVrT85gwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTk3ODMxNjg4NTY1NTU1NS8wL0MxQzQ4Rjk1OTNENkExOURCRDNGQUNBOUM2RUZB NUI1NUFEM0YzOTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQzFDNDhGOTU5M0Q2QTE5REJEM0ZBQ0E5QzZFRkE1QjU1QUQzRjM5OC5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NTk3ODMxNjg4NTY1NTU1NS8wLzMyMzIzMzJlMzIz MjMzMmUzMTM4MzQyZTMwMmYzMjMxMmQzMjMxMjAzZDNlMjAzNDM4MzQzNy5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEA9/fuDANBgkqhkiG9w0BAQsFAAOCAQEANl5aiKFgYADxmTvPCoOTB0WC m0omVJPTw66kr/nAvzKmVhN6PM/haQOSCCRaOrMlQJsa9AMiv0nH94b0mFc2Dq2D qElfqsX0MRW7d4zG73CLe25V/CiTzZZHjRkisqWIsMrv7xD4mbowsf0TPgosOpPf Y543adveaEOljfM30UxNojbnafyCaBeisMoiPO9wrzwL8UCoQEJpWHxTESIcVT/B eVUAuvmHeK0UiEQQNVWW0Ro4x7lQ7y/FtqXtW7hTJeSspads9/3zys1X88csbdXR YuLGhQmN0BP/ffqQ1F1AO0z8BK9YgpTOyLL1/IXMQRCms6sybRYrEBPZYgXteQ== -----END CERTIFICATE-----Generated at Sat Apr 18 02:26:52 2026 by rpki-client