$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095984294767099905/0/3135302e3234322e3234382e302f32322d3332203d3e203233373234.roa File: 3135302e3234322e3234382e302f32322d3332203d3e203233373234.roa (raw, json) Hash identifier: vwPEmTIi0cfS54R8Za5ZiN5YnIDWkEMterbti+msZ9U= Subject key identifier: 3D:37:04:CB:BA:74:0F:5C:90:8D:19:69:D2:11:AA:92:C3:51:F9:02 Certificate issuer: /CN=20CAC8E70B5CB3094E47FF051623A98578C1E315 Certificate serial: 605F1D9C25EF9CB595417A31E47728C9064463C7 Authority key identifier: 20:CA:C8:E7:0B:5C:B3:09:4E:47:FF:05:16:23:A9:85:78:C1:E3:15 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/20CAC8E70B5CB3094E47FF051623A98578C1E315.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095984294767099905/0/3135302e3234322e3234382e302f32322d3332203d3e203233373234.roa Signing time: Wed 15 Apr 2026 07:58:03 +0000 ROA not before: Wed 15 Apr 2026 07:53:03 +0000 ROA not after: Wed 14 Apr 2027 07:58:03 +0000 asID: 23724 IP address blocks: 150.242.248.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095984294767099905/0/20CAC8E70B5CB3094E47FF051623A98578C1E315.crl rsync://rpki-rps.cnnic.cn/repo/A1095984294767099905/0/20CAC8E70B5CB3094E47FF051623A98578C1E315.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/20CAC8E70B5CB3094E47FF051623A98578C1E315.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 17:10:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:5f:1d:9c:25:ef:9c:b5:95:41:7a:31:e4:77:28:c9:06:44:63:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20CAC8E70B5CB3094E47FF051623A98578C1E315 Validity Not Before: Apr 15 07:53:03 2026 GMT Not After : Apr 14 07:58:03 2027 GMT Subject: CN=3D3704CBBA740F5C908D1969D211AA92C351F902 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:d8:d9:ad:86:9b:75:7d:84:c6:1e:af:4a:47: f2:fa:33:79:3a:60:31:ec:e0:57:42:fa:f6:d5:89: 4b:9f:77:1d:8c:6e:47:e9:b5:b3:19:41:b8:1e:fc: 96:af:69:eb:96:30:a6:53:ad:23:35:ad:05:98:2e: ea:b1:36:55:81:b2:4b:d3:27:39:5d:c6:70:d9:9a: 73:b6:1e:64:9f:94:7e:5a:07:0b:4e:64:d7:6e:a2: a1:aa:50:2c:29:1f:31:a3:bc:88:53:9f:1f:ef:90: 4f:b6:4a:ad:5c:41:14:f4:df:35:60:3c:60:69:0b: db:c4:12:bc:ce:74:58:ac:0b:3e:df:8f:c2:dd:6c: 85:41:9b:4d:35:c5:06:39:c4:cc:f3:51:61:a2:cf: 44:d2:46:63:a8:e9:ae:d6:b6:34:0e:3b:5b:2d:8a: f9:18:b1:70:64:51:77:9e:9e:c6:31:78:08:87:9c: b6:40:49:cf:e3:ed:fa:14:ab:1f:d6:65:ac:20:83: 62:97:38:cc:5a:4c:65:8f:f0:7b:44:b9:fb:df:72: d6:29:68:ec:c2:02:42:5f:d1:da:c3:cc:7a:13:e9: eb:2e:47:78:7c:cd:5e:39:01:b8:e7:cc:3d:a4:0a: f1:68:03:cc:f5:30:9d:6e:3c:be:12:dc:25:2a:61: 56:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:37:04:CB:BA:74:0F:5C:90:8D:19:69:D2:11:AA:92:C3:51:F9:02 X509v3 Authority Key Identifier: keyid:20:CA:C8:E7:0B:5C:B3:09:4E:47:FF:05:16:23:A9:85:78:C1:E3:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095984294767099905/0/20CAC8E70B5CB3094E47FF051623A98578C1E315.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/20CAC8E70B5CB3094E47FF051623A98578C1E315.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095984294767099905/0/3135302e3234322e3234382e302f32322d3332203d3e203233373234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.242.248.0/22 Signature Algorithm: sha256WithRSAEncryption 73:7d:91:e7:47:b7:63:e2:e6:ca:db:93:58:4e:9c:00:f1:fb: f3:eb:d5:0d:69:48:1a:be:f9:97:e3:47:9e:e2:25:95:d6:60: 1f:ae:52:a6:a8:89:3f:5f:8f:3d:11:11:75:76:7d:0d:37:9e: c5:24:17:f0:f2:1d:f1:c2:6c:e9:a4:39:96:c4:17:d1:b0:0a: 8e:ee:50:9a:54:f4:21:e4:75:32:d4:1a:54:d5:81:e8:9a:27: e9:5f:a1:55:98:9a:c1:74:31:47:31:f0:a6:cf:cc:1d:9f:cb: 53:bd:4c:bd:27:d7:56:e8:9f:fb:1d:32:ae:e8:31:42:68:f5: 0e:d0:41:a5:5a:18:70:9a:6f:b6:f3:73:b5:d9:c9:1e:25:3e: 6b:39:37:bd:07:ca:6f:b7:66:fa:5f:03:e2:b0:ec:60:f4:ca: df:1b:d8:a4:b8:57:64:ec:11:3e:47:83:3a:a0:68:c5:e2:f6: d2:52:24:cd:4b:a2:6a:c2:05:f5:c5:12:a9:1b:24:6f:ef:df: d3:54:4d:c0:ef:2d:60:71:62:0a:fd:ad:c5:d5:4b:68:dd:3c: bf:37:9d:01:83:b9:15:a7:74:13:4c:4f:ff:fb:dc:52:cc:89: 37:e2:c2:89:04:e2:29:a0:1c:0e:fe:54:6d:0b:53:d0:c7:6a: a1:17:09:40 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUYF8dnCXvnLWVQXox5HcoyQZEY8cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBDQUM4RTcwQjVDQjMwOTRFNDdGRjA1MTYyM0E5ODU3 OEMxRTMxNTAeFw0yNjA0MTUwNzUzMDNaFw0yNzA0MTQwNzU4MDNaMDMxMTAvBgNV BAMTKDNEMzcwNENCQkE3NDBGNUM5MDhEMTk2OUQyMTFBQTkyQzM1MUY5MDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCq2Nmthpt1fYTGHq9KR/L6M3k6 YDHs4FdC+vbViUufdx2MbkfptbMZQbge/JavaeuWMKZTrSM1rQWYLuqxNlWBskvT JzldxnDZmnO2HmSflH5aBwtOZNduoqGqUCwpHzGjvIhTnx/vkE+2Sq1cQRT03zVg PGBpC9vEErzOdFisCz7fj8LdbIVBm001xQY5xMzzUWGiz0TSRmOo6a7WtjQOO1st ivkYsXBkUXeensYxeAiHnLZASc/j7foUqx/WZawgg2KXOMxaTGWP8HtEufvfctYp aOzCAkJf0drDzHoT6esuR3h8zV45AbjnzD2kCvFoA8z1MJ1uPL4S3CUqYVahAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUPTcEy7p0D1yQjRlp0hGqksNR+QIwHwYDVR0j BBgwFoAUIMrI5wtcswlOR/8FFiOphXjB4xUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTk4NDI5NDc2NzA5OTkwNS8wLzIwQ0FDOEU3MEI1Q0IzMDk0RTQ3RkYwNTE2MjNB OTg1NzhDMUUzMTUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjBDQUM4RTcwQjVDQjMwOTRFNDdGRjA1MTYyM0E5ODU3OEMxRTMxNS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTU5ODQyOTQ3NjcwOTk5MDUvMC8zMTM1MzAyZTMy MzQzMjJlMzIzNDM4MmUzMDJmMzIzMjJkMzMzMjIwM2QzZTIwMzIzMzM3MzIzNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEApby+DANBgkqhkiG9w0BAQsFAAOCAQEAc32R50e3Y+LmytuTWE6c APH78+vVDWlIGr75l+NHnuIlldZgH65SpqiJP1+PPRERdXZ9DTeexSQX8PId8cJs 6aQ5lsQX0bAKju5QmlT0IeR1MtQaVNWB6Jon6V+hVZiawXQxRzHwps/MHZ/LU71M vSfXVuif+x0yrugxQmj1DtBBpVoYcJpvtvNztdnJHiU+azk3vQfKb7dm+l8D4rDs YPTK3xvYpLhXZOwRPkeDOqBoxeL20lIkzUuiasIF9cUSqRskb+/f01RNwO8tYHFi Cv2txdVLaN08vzedAYO5Fad0E0xP//vcUsyJN+LCiQTiKaAcDv5UbQtT0MdqoRcJ QA== -----END CERTIFICATE-----Generated at Fri Apr 17 22:27:48 2026 by rpki-client