$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096265459348537346/1/3230332e3139362e302e302f32312d3332203d3e203233373234.roa File: 3230332e3139362e302e302f32312d3332203d3e203233373234.roa (raw, json) Hash identifier: gfBMB7Ui+e2fOBQ5Tl23lKPDE0eKQepKcbPTeJBVaPE= Subject key identifier: 38:61:90:62:7C:30:07:93:DF:1D:38:E3:84:2E:EF:CB:5F:F2:EF:86 Certificate issuer: /CN=1C519CD1C415925E7FCE92FDA20FF18EC544C74B Certificate serial: 208A7D100961C005A43F57999EC203545ADBB345 Authority key identifier: 1C:51:9C:D1:C4:15:92:5E:7F:CE:92:FD:A2:0F:F1:8E:C5:44:C7:4B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1C519CD1C415925E7FCE92FDA20FF18EC544C74B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096265459348537346/1/3230332e3139362e302e302f32312d3332203d3e203233373234.roa Signing time: Tue 14 Apr 2026 03:00:09 +0000 ROA not before: Tue 14 Apr 2026 02:55:09 +0000 ROA not after: Tue 13 Apr 2027 03:00:09 +0000 asID: 23724 IP address blocks: 203.196.0.0/21 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096265459348537346/1/1C519CD1C415925E7FCE92FDA20FF18EC544C74B.crl rsync://rpki-rps.cnnic.cn/repo/A1096265459348537346/1/1C519CD1C415925E7FCE92FDA20FF18EC544C74B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1C519CD1C415925E7FCE92FDA20FF18EC544C74B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 05:17:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:8a:7d:10:09:61:c0:05:a4:3f:57:99:9e:c2:03:54:5a:db:b3:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1C519CD1C415925E7FCE92FDA20FF18EC544C74B Validity Not Before: Apr 14 02:55:09 2026 GMT Not After : Apr 13 03:00:09 2027 GMT Subject: CN=386190627C300793DF1D38E3842EEFCB5FF2EF86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f2:ed:c4:38:ae:5e:7d:bc:78:be:ca:8d:b8: 90:a6:33:2d:6e:de:ff:ed:49:5e:d7:ff:08:5e:d8: e8:3f:6a:6a:1e:10:8c:af:da:45:5e:10:a0:d4:19: 5d:f2:4d:64:38:02:31:e0:44:5d:b6:d4:d2:4b:b9: d3:25:0e:ce:3d:b7:06:b0:0c:18:1a:80:49:a3:e5: ef:fc:ff:b0:42:0c:8c:d5:2f:fa:9c:8b:db:5f:e5: 1c:08:f1:a5:62:87:0a:ad:1a:76:0f:43:69:50:7b: 58:99:55:c3:5c:06:03:5a:1d:74:0a:ba:42:c9:a7: d2:39:e7:fc:f8:97:ba:08:c1:06:9e:2e:5b:c8:14: 76:63:8c:24:64:de:33:c8:af:ca:a8:ca:e3:27:32: de:3d:a1:bd:cd:f9:8d:78:81:30:b5:42:f5:94:23: 6a:41:ef:00:fa:dc:7b:24:43:8b:90:c5:0c:27:07: 41:90:96:dd:43:dd:41:67:03:b7:25:bf:58:c8:59: ed:cf:0a:cb:91:84:09:06:d5:4b:cf:b8:25:c8:8f: 5b:5a:a9:fb:ef:33:3c:39:d6:d3:aa:9a:10:42:c1: f8:9b:a7:56:8f:65:61:68:57:8e:8c:9b:a9:6c:0e: ea:76:20:c4:0b:4b:88:99:8b:23:e0:a4:ee:c7:a6: ec:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:61:90:62:7C:30:07:93:DF:1D:38:E3:84:2E:EF:CB:5F:F2:EF:86 X509v3 Authority Key Identifier: keyid:1C:51:9C:D1:C4:15:92:5E:7F:CE:92:FD:A2:0F:F1:8E:C5:44:C7:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096265459348537346/1/1C519CD1C415925E7FCE92FDA20FF18EC544C74B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1C519CD1C415925E7FCE92FDA20FF18EC544C74B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096265459348537346/1/3230332e3139362e302e302f32312d3332203d3e203233373234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.196.0.0/21 Signature Algorithm: sha256WithRSAEncryption cb:3d:85:96:a9:99:94:89:96:a9:ff:2b:8b:e4:97:50:8f:13: 1e:f7:7a:67:da:27:6a:b2:c8:cd:99:05:89:f7:5d:87:cf:51: 2c:66:7b:f0:90:59:a7:a2:d5:60:27:2e:a1:dc:57:ac:18:5f: 23:85:e0:97:fc:bf:17:d9:32:c9:00:6e:cf:e1:7d:22:6d:78: fa:7b:a5:f5:27:b4:10:ad:ea:e8:c9:bf:e7:da:e4:6a:82:46: 20:fc:74:63:5f:21:7d:52:af:95:d9:7a:98:b1:2e:d0:33:31: 3a:0f:67:5d:08:f0:67:df:4b:68:44:3d:52:f6:31:a2:4c:f6: 60:2f:5e:c4:20:eb:1e:fa:38:b9:fd:da:e0:36:58:4c:c0:e6: 35:15:2e:0f:6e:de:26:74:b1:05:61:c9:e9:e1:08:f9:03:0d: df:14:ca:5a:6a:85:26:ab:6a:73:1d:01:68:b1:cb:09:3e:5f: bc:fe:61:2b:98:86:60:a1:99:0d:04:7e:97:7e:e5:22:aa:fe: 10:57:7e:7e:0a:2a:c1:a9:19:d9:d6:84:70:0a:a4:be:f5:24: 8c:d4:d0:d0:56:c8:84:67:34:2c:a9:95:cd:88:7c:c7:54:31: 2c:93:11:46:eb:36:a0:07:e7:d0:73:cf:2b:2f:d4:d9:9f:8c: ef:51:2b:cc -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUIIp9EAlhwAWkP1eZnsIDVFrbs0UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUM1MTlDRDFDNDE1OTI1RTdGQ0U5MkZEQTIwRkYxOEVD NTQ0Qzc0QjAeFw0yNjA0MTQwMjU1MDlaFw0yNzA0MTMwMzAwMDlaMDMxMTAvBgNV BAMTKDM4NjE5MDYyN0MzMDA3OTNERjFEMzhFMzg0MkVFRkNCNUZGMkVGODYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC58u3EOK5efbx4vsqNuJCmMy1u 3v/tSV7X/whe2Og/amoeEIyv2kVeEKDUGV3yTWQ4AjHgRF221NJLudMlDs49twaw DBgagEmj5e/8/7BCDIzVL/qci9tf5RwI8aVihwqtGnYPQ2lQe1iZVcNcBgNaHXQK ukLJp9I55/z4l7oIwQaeLlvIFHZjjCRk3jPIr8qoyuMnMt49ob3N+Y14gTC1QvWU I2pB7wD63HskQ4uQxQwnB0GQlt1D3UFnA7clv1jIWe3PCsuRhAkG1UvPuCXIj1ta qfvvMzw51tOqmhBCwfibp1aPZWFoV46Mm6lsDup2IMQLS4iZiyPgpO7HpuxzAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUOGGQYnwwB5PfHTjjhC7vy1/y74YwHwYDVR0j BBgwFoAUHFGc0cQVkl5/zpL9og/xjsVEx0swDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjI2NTQ1OTM0ODUzNzM0Ni8xLzFDNTE5Q0QxQzQxNTkyNUU3RkNFOTJGREEyMEZG MThFQzU0NEM3NEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMUM1MTlDRDFDNDE1OTI1RTdGQ0U5MkZEQTIwRkYxOEVDNTQ0Qzc0Qi5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk2MjY1NDU5MzQ4NTM3MzQ2LzEvMzIzMDMzMmUzMTM5 MzYyZTMwMmUzMDJmMzIzMTJkMzMzMjIwM2QzZTIwMzIzMzM3MzIzNC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEA8vEADANBgkqhkiG9w0BAQsFAAOCAQEAyz2FlqmZlImWqf8ri+SXUI8THvd6 Z9onarLIzZkFifddh89RLGZ78JBZp6LVYCcuodxXrBhfI4Xgl/y/F9kyyQBuz+F9 Im14+nul9Se0EK3q6Mm/59rkaoJGIPx0Y18hfVKvldl6mLEu0DMxOg9nXQjwZ99L aEQ9UvYxokz2YC9exCDrHvo4uf3a4DZYTMDmNRUuD27eJnSxBWHJ6eEI+QMN3xTK WmqFJqtqcx0BaLHLCT5fvP5hK5iGYKGZDQR+l37lIqr+EFd+fgoqwakZ2daEcAqk vvUkjNTQ0FbIhGc0LKmVzYh8x1QxLJMRRus2oAfn0HPPKy/U2Z+M71ErzA== -----END CERTIFICATE-----Generated at Fri Apr 17 19:26:31 2026 by rpki-client