$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095984294767099905/0/3131342e3131322e3130302e302f32322d3332203d3e203233373234.roa File: 3131342e3131322e3130302e302f32322d3332203d3e203233373234.roa (raw, json) Hash identifier: +TlL4Kdz+dQAHCRvyRXNP3LY3euHbF5VUmsAzxQL+aA= Subject key identifier: 3F:95:B5:F4:F1:D1:FF:DA:3B:A6:D5:5A:15:F2:38:B4:C5:7B:07:BB Certificate issuer: /CN=20CAC8E70B5CB3094E47FF051623A98578C1E315 Certificate serial: 68A4C03C3EF0E370804D343AE2C10F0CD9E4BD5D Authority key identifier: 20:CA:C8:E7:0B:5C:B3:09:4E:47:FF:05:16:23:A9:85:78:C1:E3:15 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/20CAC8E70B5CB3094E47FF051623A98578C1E315.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095984294767099905/0/3131342e3131322e3130302e302f32322d3332203d3e203233373234.roa Signing time: Wed 15 Apr 2026 07:57:28 +0000 ROA not before: Wed 15 Apr 2026 07:52:28 +0000 ROA not after: Wed 14 Apr 2027 07:57:28 +0000 asID: 23724 IP address blocks: 114.112.100.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095984294767099905/0/20CAC8E70B5CB3094E47FF051623A98578C1E315.crl rsync://rpki-rps.cnnic.cn/repo/A1095984294767099905/0/20CAC8E70B5CB3094E47FF051623A98578C1E315.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/20CAC8E70B5CB3094E47FF051623A98578C1E315.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 17:10:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:a4:c0:3c:3e:f0:e3:70:80:4d:34:3a:e2:c1:0f:0c:d9:e4:bd:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20CAC8E70B5CB3094E47FF051623A98578C1E315 Validity Not Before: Apr 15 07:52:28 2026 GMT Not After : Apr 14 07:57:28 2027 GMT Subject: CN=3F95B5F4F1D1FFDA3BA6D55A15F238B4C57B07BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:5e:d6:71:b5:0a:6c:b4:29:28:cf:1c:0f:79: 28:e0:5b:51:c4:4b:92:99:c3:ed:d4:9b:4b:47:5a: 5b:fe:9c:ee:b5:76:fd:53:43:a6:37:7f:fc:3e:8c: b9:72:c7:fe:59:bb:25:94:02:14:a3:ed:a0:56:a9: 1a:b7:b3:c8:45:26:94:aa:64:8f:12:52:3e:ae:5c: 8e:d5:00:0d:e2:29:3c:a8:ea:d9:31:2a:41:a4:1a: 98:16:f7:37:1d:ec:bd:c1:3f:7d:75:41:b9:2d:ab: 87:da:47:f5:39:f0:26:fc:d0:02:02:69:85:ce:54: be:a8:05:3a:ed:8c:31:f8:a1:1f:7b:56:c6:e1:bf: b4:68:55:4b:8f:5b:e5:4c:41:2d:38:74:be:f5:26: 0d:a9:06:50:60:b6:97:c7:f4:85:07:71:10:2a:b8: 61:c5:f3:b4:62:63:00:80:6d:6b:23:d9:5a:fc:04: 4e:94:86:e7:83:57:2b:6c:28:8a:6a:2a:16:53:dd: 0c:45:84:24:32:bf:2d:88:65:06:90:f0:78:b3:71: ef:1a:61:2b:36:1e:e0:eb:5c:50:2e:b1:26:d8:56: c1:ee:4e:04:9b:40:d3:4b:23:04:d4:0e:13:4c:8d: 18:dc:bf:4f:cc:e3:16:21:79:97:33:69:1f:d6:d2: 31:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:95:B5:F4:F1:D1:FF:DA:3B:A6:D5:5A:15:F2:38:B4:C5:7B:07:BB X509v3 Authority Key Identifier: keyid:20:CA:C8:E7:0B:5C:B3:09:4E:47:FF:05:16:23:A9:85:78:C1:E3:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095984294767099905/0/20CAC8E70B5CB3094E47FF051623A98578C1E315.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/20CAC8E70B5CB3094E47FF051623A98578C1E315.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095984294767099905/0/3131342e3131322e3130302e302f32322d3332203d3e203233373234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.112.100.0/22 Signature Algorithm: sha256WithRSAEncryption 7a:c9:a9:7a:c1:12:5f:ab:84:62:67:c4:70:8e:f7:db:6c:04: 8f:eb:62:ae:64:fb:50:54:c2:5f:bd:f4:f8:fa:63:37:31:c8: f0:24:c5:4d:8b:d2:9c:e5:ca:87:62:b0:14:16:d9:ae:60:ef: 6d:78:5b:dc:0a:d9:2e:30:a9:e1:fe:c5:67:16:3a:0f:0b:84: 9f:b0:41:29:51:cb:15:93:ac:4a:f3:68:30:e7:f5:b9:3f:31: 16:99:53:42:84:36:25:9a:e2:45:bb:b1:8e:06:3d:74:55:06: 43:38:11:e9:01:f9:07:cf:d5:05:d5:a5:1c:18:fa:19:5d:14: 60:e6:0a:3b:9d:b9:81:4d:a5:79:41:2d:3b:92:a5:31:17:cd: e5:89:22:13:66:02:f6:0e:3e:48:7f:c1:6d:df:91:4f:d9:6a: e5:58:1a:08:12:06:57:ab:e1:4d:00:52:08:c6:68:73:d9:0e: 0b:dc:bb:19:f6:8b:97:65:87:7c:09:24:73:ed:ad:a4:8e:c6: 4b:32:38:fd:39:af:6a:f0:76:0d:ad:e0:03:d9:22:d7:a2:cc: 80:51:56:6b:48:de:c2:1c:31:94:36:88:6e:98:ed:3b:a9:af: eb:8d:dc:a9:e8:81:e3:92:66:5f:14:fd:ee:99:74:63:9b:57: 58:f9:2c:09 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUaKTAPD7w43CATTQ64sEPDNnkvV0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBDQUM4RTcwQjVDQjMwOTRFNDdGRjA1MTYyM0E5ODU3 OEMxRTMxNTAeFw0yNjA0MTUwNzUyMjhaFw0yNzA0MTQwNzU3MjhaMDMxMTAvBgNV BAMTKDNGOTVCNUY0RjFEMUZGREEzQkE2RDU1QTE1RjIzOEI0QzU3QjA3QkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHXtZxtQpstCkozxwPeSjgW1HE S5KZw+3Um0tHWlv+nO61dv1TQ6Y3f/w+jLlyx/5ZuyWUAhSj7aBWqRq3s8hFJpSq ZI8SUj6uXI7VAA3iKTyo6tkxKkGkGpgW9zcd7L3BP311Qbktq4faR/U58Cb80AIC aYXOVL6oBTrtjDH4oR97Vsbhv7RoVUuPW+VMQS04dL71Jg2pBlBgtpfH9IUHcRAq uGHF87RiYwCAbWsj2Vr8BE6UhueDVytsKIpqKhZT3QxFhCQyvy2IZQaQ8Hizce8a YSs2HuDrXFAusSbYVsHuTgSbQNNLIwTUDhNMjRjcv0/M4xYheZczaR/W0jHxAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUP5W19PHR/9o7ptVaFfI4tMV7B7swHwYDVR0j BBgwFoAUIMrI5wtcswlOR/8FFiOphXjB4xUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTk4NDI5NDc2NzA5OTkwNS8wLzIwQ0FDOEU3MEI1Q0IzMDk0RTQ3RkYwNTE2MjNB OTg1NzhDMUUzMTUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjBDQUM4RTcwQjVDQjMwOTRFNDdGRjA1MTYyM0E5ODU3OEMxRTMxNS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTU5ODQyOTQ3NjcwOTk5MDUvMC8zMTMxMzQyZTMx MzEzMjJlMzEzMDMwMmUzMDJmMzIzMjJkMzMzMjIwM2QzZTIwMzIzMzM3MzIzNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAnJwZDANBgkqhkiG9w0BAQsFAAOCAQEAesmpesESX6uEYmfEcI73 22wEj+tirmT7UFTCX730+PpjNzHI8CTFTYvSnOXKh2KwFBbZrmDvbXhb3ArZLjCp 4f7FZxY6DwuEn7BBKVHLFZOsSvNoMOf1uT8xFplTQoQ2JZriRbuxjgY9dFUGQzgR 6QH5B8/VBdWlHBj6GV0UYOYKO525gU2leUEtO5KlMRfN5YkiE2YC9g4+SH/Bbd+R T9lq5VgaCBIGV6vhTQBSCMZoc9kOC9y7GfaLl2WHfAkkc+2tpI7GSzI4/TmvavB2 Da3gA9ki16LMgFFWa0jewhwxlDaIbpjtO6mv643cqeiB45JmXxT97pl0Y5tXWPks CQ== -----END CERTIFICATE-----Generated at Fri Apr 17 22:26:28 2026 by rpki-client