$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096265459348537346/1/3230332e3139362e302e302f32312d3332203d3e2034383038.roa File: 3230332e3139362e302e302f32312d3332203d3e2034383038.roa (raw, json) Hash identifier: v13sKVP5G+MzipZ26XV3Qox3XisUaSYh0ehZGkkQSOI= Subject key identifier: D5:89:D3:6E:F7:F7:8C:41:CE:57:9B:22:89:D2:00:A2:96:3A:6D:1F Certificate issuer: /CN=1C519CD1C415925E7FCE92FDA20FF18EC544C74B Certificate serial: D98DA8F90F815E03428459D2F654292A174AD6 Authority key identifier: 1C:51:9C:D1:C4:15:92:5E:7F:CE:92:FD:A2:0F:F1:8E:C5:44:C7:4B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1C519CD1C415925E7FCE92FDA20FF18EC544C74B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096265459348537346/1/3230332e3139362e302e302f32312d3332203d3e2034383038.roa Signing time: Tue 14 Apr 2026 03:00:09 +0000 ROA not before: Tue 14 Apr 2026 02:55:09 +0000 ROA not after: Tue 13 Apr 2027 03:00:09 +0000 asID: 4808 IP address blocks: 203.196.0.0/21 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096265459348537346/1/1C519CD1C415925E7FCE92FDA20FF18EC544C74B.crl rsync://rpki-rps.cnnic.cn/repo/A1096265459348537346/1/1C519CD1C415925E7FCE92FDA20FF18EC544C74B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1C519CD1C415925E7FCE92FDA20FF18EC544C74B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 05:17:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: d9:8d:a8:f9:0f:81:5e:03:42:84:59:d2:f6:54:29:2a:17:4a:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1C519CD1C415925E7FCE92FDA20FF18EC544C74B Validity Not Before: Apr 14 02:55:09 2026 GMT Not After : Apr 13 03:00:09 2027 GMT Subject: CN=D589D36EF7F78C41CE579B2289D200A2963A6D1F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:f5:39:90:21:af:b6:ca:b6:7a:97:99:43:92: ce:9d:13:97:ab:d0:c5:36:2a:b2:b0:19:86:5f:a8: 3e:31:39:05:22:f0:f8:87:54:20:4e:11:b2:dd:93: c7:43:1a:15:d1:03:42:60:ce:16:75:27:2c:27:58: d7:98:82:a5:c5:fe:89:66:2e:e0:89:cb:49:d2:45: 6e:88:76:7a:41:84:d5:ca:0d:92:ba:04:87:b5:30: 3e:0f:28:dd:9b:55:7b:ff:ba:3b:05:ed:83:d1:99: 2e:e3:c4:66:9d:7c:0b:b2:ea:3a:b4:b1:84:08:2e: 60:85:23:2f:29:20:46:9e:2a:f2:66:34:3e:e2:52: 69:56:b5:bf:7c:e2:70:8f:cb:bd:c3:a1:e1:86:30: cd:94:af:cb:23:06:c8:cd:2e:f1:10:03:f9:1c:74: ec:9d:a8:db:0e:a5:94:62:69:3a:31:a9:a5:42:f0: 0f:19:6f:4d:17:1a:78:d1:9f:4e:3c:9f:49:7b:c8: f3:7b:7c:0a:df:b5:62:03:4f:d2:a8:e2:70:1c:25: f9:6a:d9:6d:4f:39:70:24:79:1e:cb:89:65:9d:4e: 49:07:1a:f9:f8:a0:d3:2c:74:7a:1a:91:53:48:78: 95:c7:37:00:92:c5:04:ad:4b:64:f8:ff:b4:0b:1d: 07:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:89:D3:6E:F7:F7:8C:41:CE:57:9B:22:89:D2:00:A2:96:3A:6D:1F X509v3 Authority Key Identifier: keyid:1C:51:9C:D1:C4:15:92:5E:7F:CE:92:FD:A2:0F:F1:8E:C5:44:C7:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096265459348537346/1/1C519CD1C415925E7FCE92FDA20FF18EC544C74B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1C519CD1C415925E7FCE92FDA20FF18EC544C74B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096265459348537346/1/3230332e3139362e302e302f32312d3332203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.196.0.0/21 Signature Algorithm: sha256WithRSAEncryption 19:a6:e5:c8:af:4b:0b:6f:43:e6:c6:06:19:e4:20:cc:14:6b: 20:28:63:59:be:62:fb:ce:36:83:83:0b:85:70:fc:58:46:38: 2d:80:2c:a9:44:ed:a7:88:66:74:65:6a:58:c0:28:77:10:cc: 5b:29:55:6b:04:f9:0b:2f:e8:a7:5d:59:ec:d1:07:d8:e0:8c: 71:7d:4a:95:2c:e6:d8:d4:f6:bf:8b:18:fd:fa:cd:f7:69:6b: 9a:8b:d0:d4:b7:20:1b:75:31:a2:2f:8a:0d:0f:d8:fe:12:66: 5b:7b:97:96:e2:11:fb:34:d9:1f:50:c3:94:94:fd:e6:6b:3c: 7a:52:bd:af:dc:70:08:d1:3d:c0:e7:dc:26:52:77:11:bb:6d: 95:33:b1:7b:33:8d:a4:f0:a0:fc:64:e4:7e:ee:db:79:e4:71: d8:fc:00:74:12:03:11:32:fd:72:15:a1:3b:00:7b:0b:37:42: 91:e8:70:63:3d:ea:8e:b7:2e:ff:33:35:b8:38:a4:ab:83:0e: 44:6e:7e:66:a6:34:cc:84:98:5d:38:5a:8b:6b:30:bf:8a:95: ef:a3:c8:23:86:f8:4b:f0:02:e3:db:e3:2e:bf:e2:9d:ec:1d: 95:cc:71:82:01:fe:04:bc:ef:49:2f:06:a0:f2:75:4c:81:79: 4c:51:41:36 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUANmNqPkPgV4DQoRZ0vZUKSoXStYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUM1MTlDRDFDNDE1OTI1RTdGQ0U5MkZEQTIwRkYxOEVD NTQ0Qzc0QjAeFw0yNjA0MTQwMjU1MDlaFw0yNzA0MTMwMzAwMDlaMDMxMTAvBgNV BAMTKEQ1ODlEMzZFRjdGNzhDNDFDRTU3OUIyMjg5RDIwMEEyOTYzQTZEMUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDs9TmQIa+2yrZ6l5lDks6dE5er 0MU2KrKwGYZfqD4xOQUi8PiHVCBOEbLdk8dDGhXRA0JgzhZ1JywnWNeYgqXF/olm LuCJy0nSRW6IdnpBhNXKDZK6BIe1MD4PKN2bVXv/ujsF7YPRmS7jxGadfAuy6jq0 sYQILmCFIy8pIEaeKvJmND7iUmlWtb984nCPy73DoeGGMM2Ur8sjBsjNLvEQA/kc dOydqNsOpZRiaToxqaVC8A8Zb00XGnjRn048n0l7yPN7fArftWIDT9Ko4nAcJflq 2W1POXAkeR7LiWWdTkkHGvn4oNMsdHoakVNIeJXHNwCSxQStS2T4/7QLHQdjAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQU1YnTbvf3jEHOV5siidIAopY6bR8wHwYDVR0j BBgwFoAUHFGc0cQVkl5/zpL9og/xjsVEx0swDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjI2NTQ1OTM0ODUzNzM0Ni8xLzFDNTE5Q0QxQzQxNTkyNUU3RkNFOTJGREEyMEZG MThFQzU0NEM3NEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMUM1MTlDRDFDNDE1OTI1RTdGQ0U5MkZEQTIwRkYxOEVDNTQ0Qzc0Qi5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk2MjY1NDU5MzQ4NTM3MzQ2LzEvMzIzMDMzMmUzMTM5 MzYyZTMwMmUzMDJmMzIzMTJkMzMzMjIwM2QzZTIwMzQzODMwMzgucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAPLxAAwDQYJKoZIhvcNAQELBQADggEBABmm5civSwtvQ+bGBhnkIMwUayAoY1m+ YvvONoODC4Vw/FhGOC2ALKlE7aeIZnRlaljAKHcQzFspVWsE+Qsv6KddWezRB9jg jHF9SpUs5tjU9r+LGP36zfdpa5qL0NS3IBt1MaIvig0P2P4SZlt7l5biEfs02R9Q w5SU/eZrPHpSva/ccAjRPcDn3CZSdxG7bZUzsXszjaTwoPxk5H7u23nkcdj8AHQS AxEy/XIVoTsAews3QpHocGM96o63Lv8zNbg4pKuDDkRufmamNMyEmF04WotrML+K le+jyCOG+EvwAuPb4y6/4p3sHZXMcYIB/gS870kvBqDydUyBeUxRQTY= -----END CERTIFICATE-----Generated at Fri Apr 17 17:37:26 2026 by rpki-client