$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095978316885655555/0/3232332e3232332e3138382e302f32322d3232203d3e203435303634.roa File: 3232332e3232332e3138382e302f32322d3232203d3e203435303634.roa (raw, json) Hash identifier: 3nmsiWW6cMLRKFttoF2caXmPqFJNaw3t8aM1xUneqAQ= Subject key identifier: 44:57:02:79:9C:85:5D:D6:D7:B8:0A:01:88:AF:13:DC:3C:95:D9:A2 Certificate issuer: /CN=C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398 Certificate serial: 74B14D624BA10BE2904FBF5EB3318EBA69689DA4 Authority key identifier: C1:C4:8F:95:93:D6:A1:9D:BD:3F:AC:A9:C6:EF:A5:B5:5A:D3:F3:98 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/3232332e3232332e3138382e302f32322d3232203d3e203435303634.roa Signing time: Mon 13 Apr 2026 08:08:31 +0000 ROA not before: Mon 13 Apr 2026 08:03:31 +0000 ROA not after: Mon 12 Apr 2027 08:08:31 +0000 asID: 45064 IP address blocks: 223.223.188.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.crl rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 17:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:b1:4d:62:4b:a1:0b:e2:90:4f:bf:5e:b3:31:8e:ba:69:68:9d:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398 Validity Not Before: Apr 13 08:03:31 2026 GMT Not After : Apr 12 08:08:31 2027 GMT Subject: CN=445702799C855DD6D7B80A0188AF13DC3C95D9A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:30:32:12:66:11:82:82:4d:81:52:7b:b2:43: 04:b6:ab:7a:cc:ac:79:e7:e8:18:1a:23:bf:39:f5: 69:20:1f:df:c8:2f:31:f2:19:df:b5:97:ba:8d:ed: d2:b5:5b:38:ed:5a:9a:10:8d:6c:b8:b6:a0:49:63: 72:28:ac:2c:a6:94:29:ba:72:cf:fb:47:d8:73:e1: 0b:71:18:52:a6:9e:2c:c8:4d:bb:61:2c:fe:aa:0c: bc:4a:ca:f7:1e:41:aa:21:17:97:49:18:53:a3:20: d3:66:ba:a2:e4:0d:7b:d1:67:3b:bc:dd:dd:53:65: 6f:9b:75:16:ed:86:a3:a9:a0:69:05:55:d3:34:91: 8d:b1:02:52:6a:ef:75:3c:e7:9e:ef:cd:51:57:35: 70:0b:7b:40:c4:98:35:75:57:4c:08:6f:b9:45:3b: 5e:80:3b:90:35:7d:29:e6:2a:4b:4c:37:c0:72:98: 9e:d7:65:75:20:78:3d:d7:6a:ae:bd:b7:9f:15:ab: ce:f3:9e:46:c4:6e:01:ea:5f:36:99:f7:65:94:64: d6:22:53:97:67:c0:f2:4b:4e:c4:d5:2d:79:d4:91: 24:18:39:73:10:89:6b:86:f6:42:b7:71:2f:fd:6d: be:69:4e:c1:35:ec:f7:34:6c:31:23:7b:82:e7:bc: db:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:57:02:79:9C:85:5D:D6:D7:B8:0A:01:88:AF:13:DC:3C:95:D9:A2 X509v3 Authority Key Identifier: keyid:C1:C4:8F:95:93:D6:A1:9D:BD:3F:AC:A9:C6:EF:A5:B5:5A:D3:F3:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/3232332e3232332e3138382e302f32322d3232203d3e203435303634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.223.188.0/22 Signature Algorithm: sha256WithRSAEncryption 74:76:89:4a:9b:41:40:76:0e:a8:cb:ab:c6:ee:27:b9:12:aa: 5c:48:1a:26:4c:88:eb:d9:44:99:ba:58:32:da:c8:ab:19:63: 58:db:2c:d4:9d:86:e1:b2:05:c6:30:05:a9:66:1d:c0:99:b5: a3:3b:c6:d8:2b:d2:01:cb:3b:be:a4:f8:83:43:50:70:75:4f: 98:39:3d:bf:76:f7:13:75:eb:ff:b9:1c:cc:90:46:c9:60:a2: 41:50:9d:c0:29:75:a7:84:78:39:5e:69:0a:4f:29:5e:61:9c: b7:44:73:d7:62:c7:4d:c2:b4:89:51:af:dd:72:96:c5:df:6d: 93:e7:e0:49:a0:08:8f:e3:c8:f8:a6:48:4a:bc:91:48:29:75: 22:d5:8b:7d:2f:c4:8a:83:8d:f8:d8:54:7e:24:4c:e3:19:8e: cb:69:16:0c:f8:e6:5a:16:6b:c9:a7:f8:53:8c:3f:46:90:b0: 6e:f2:e8:f8:2c:b6:5e:66:c0:3b:c1:3d:76:3d:d2:5a:02:8d: 3c:d6:4f:81:03:3b:4c:42:e1:90:3e:68:4d:f6:43:9d:09:1d: 67:48:1e:19:80:94:0d:34:27:00:e1:b1:68:9f:1c:83:83:64: d5:65:bb:4e:92:65:e4:28:66:d6:13:39:a6:67:32:5a:01:f4: eb:e5:65:0a -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUdLFNYkuhC+KQT79eszGOumlonaQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzFDNDhGOTU5M0Q2QTE5REJEM0ZBQ0E5QzZFRkE1QjU1 QUQzRjM5ODAeFw0yNjA0MTMwODAzMzFaFw0yNzA0MTIwODA4MzFaMDMxMTAvBgNV BAMTKDQ0NTcwMjc5OUM4NTVERDZEN0I4MEEwMTg4QUYxM0RDM0M5NUQ5QTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZMDISZhGCgk2BUnuyQwS2q3rM rHnn6BgaI7859WkgH9/ILzHyGd+1l7qN7dK1WzjtWpoQjWy4tqBJY3IorCymlCm6 cs/7R9hz4QtxGFKmnizITbthLP6qDLxKyvceQaohF5dJGFOjINNmuqLkDXvRZzu8 3d1TZW+bdRbthqOpoGkFVdM0kY2xAlJq73U8557vzVFXNXALe0DEmDV1V0wIb7lF O16AO5A1fSnmKktMN8BymJ7XZXUgeD3Xaq69t58Vq87znkbEbgHqXzaZ92WUZNYi U5dnwPJLTsTVLXnUkSQYOXMQiWuG9kK3cS/9bb5pTsE17Pc0bDEje4LnvNuRAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQURFcCeZyFXdbXuAoBiK8T3DyV2aIwHwYDVR0j BBgwFoAUwcSPlZPWoZ29P6ypxu+ltVrT85gwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTk3ODMxNjg4NTY1NTU1NS8wL0MxQzQ4Rjk1OTNENkExOURCRDNGQUNBOUM2RUZB NUI1NUFEM0YzOTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQzFDNDhGOTU5M0Q2QTE5REJEM0ZBQ0E5QzZFRkE1QjU1QUQzRjM5OC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTU5NzgzMTY4ODU2NTU1NTUvMC8zMjMyMzMyZTMy MzIzMzJlMzEzODM4MmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzQzNTMwMzYzNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAt/fvDANBgkqhkiG9w0BAQsFAAOCAQEAdHaJSptBQHYOqMurxu4n uRKqXEgaJkyI69lEmbpYMtrIqxljWNss1J2G4bIFxjAFqWYdwJm1ozvG2CvSAcs7 vqT4g0NQcHVPmDk9v3b3E3Xr/7kczJBGyWCiQVCdwCl1p4R4OV5pCk8pXmGct0Rz 12LHTcK0iVGv3XKWxd9tk+fgSaAIj+PI+KZISryRSCl1ItWLfS/EioON+NhUfiRM 4xmOy2kWDPjmWhZryaf4U4w/RpCwbvLo+Cy2XmbAO8E9dj3SWgKNPNZPgQM7TELh kD5oTfZDnQkdZ0geGYCUDTQnAOGxaJ8cg4Nk1WW7TpJl5Chm1hM5pmcyWgH06+Vl Cg== -----END CERTIFICATE-----Generated at Sat Apr 18 02:43:13 2026 by rpki-client