$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096265459348537346/1/3230332e3139362e302e302f32312d3332203d3e2039383038.roa File: 3230332e3139362e302e302f32312d3332203d3e2039383038.roa (raw, json) Hash identifier: nY+kYZKCRjTwM2Pe+31eHYMExxD8wIz3C74tueZL3ZQ= Subject key identifier: 52:27:77:6F:00:1C:1B:98:6A:42:0C:15:3D:8D:F8:43:5F:47:A3:6D Certificate issuer: /CN=1C519CD1C415925E7FCE92FDA20FF18EC544C74B Certificate serial: 039474930D9DFE7465A96E365772A036DC2C8856 Authority key identifier: 1C:51:9C:D1:C4:15:92:5E:7F:CE:92:FD:A2:0F:F1:8E:C5:44:C7:4B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1C519CD1C415925E7FCE92FDA20FF18EC544C74B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096265459348537346/1/3230332e3139362e302e302f32312d3332203d3e2039383038.roa Signing time: Tue 14 Apr 2026 03:00:09 +0000 ROA not before: Tue 14 Apr 2026 02:55:09 +0000 ROA not after: Tue 13 Apr 2027 03:00:09 +0000 asID: 9808 IP address blocks: 203.196.0.0/21 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096265459348537346/1/1C519CD1C415925E7FCE92FDA20FF18EC544C74B.crl rsync://rpki-rps.cnnic.cn/repo/A1096265459348537346/1/1C519CD1C415925E7FCE92FDA20FF18EC544C74B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1C519CD1C415925E7FCE92FDA20FF18EC544C74B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 05:17:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:94:74:93:0d:9d:fe:74:65:a9:6e:36:57:72:a0:36:dc:2c:88:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1C519CD1C415925E7FCE92FDA20FF18EC544C74B Validity Not Before: Apr 14 02:55:09 2026 GMT Not After : Apr 13 03:00:09 2027 GMT Subject: CN=5227776F001C1B986A420C153D8DF8435F47A36D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:17:b2:cf:b5:3e:60:21:5f:c3:15:0f:29:3d: c1:2b:f7:14:94:b1:e9:5f:1b:f0:4d:67:ff:cf:b3: 6f:53:ba:64:6e:05:78:cf:6d:f1:e3:d4:a8:1f:78: 63:fa:16:cf:66:fb:38:66:60:63:97:1e:4c:a2:6f: 12:86:5a:8d:2f:1b:4a:9d:a3:76:fd:3d:bf:7b:35: 10:16:fc:fe:fa:14:d7:a1:15:35:03:9e:8c:e8:f1: ff:3a:c5:c5:02:5e:48:52:e5:bc:8e:02:85:f4:65: 91:b9:10:8e:5b:b4:50:00:a2:f5:26:d8:c0:af:d7: fc:a8:e3:3a:c5:e0:2b:83:08:b2:f7:be:4d:0a:9f: 49:0b:6a:6a:40:71:22:3e:9a:3c:fa:70:eb:ad:6a: e7:de:b3:c0:15:60:f3:88:08:02:6b:2b:c9:ba:5a: 8e:b5:06:91:78:cd:4b:8f:0c:d0:dc:43:38:ba:e2: 28:ca:e9:4f:e5:d5:74:ff:59:6a:75:97:b6:02:fe: ab:d6:f0:8e:a9:1b:58:c9:19:fc:0c:b9:1f:01:2f: 2b:bf:73:ce:21:28:2b:53:d7:2d:c6:ae:8e:68:6a: 26:3f:6d:42:c3:86:42:b4:35:76:fc:a3:b1:05:64: 8d:9a:f6:31:b9:b4:86:42:87:75:5d:86:c9:08:38: 68:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:27:77:6F:00:1C:1B:98:6A:42:0C:15:3D:8D:F8:43:5F:47:A3:6D X509v3 Authority Key Identifier: keyid:1C:51:9C:D1:C4:15:92:5E:7F:CE:92:FD:A2:0F:F1:8E:C5:44:C7:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096265459348537346/1/1C519CD1C415925E7FCE92FDA20FF18EC544C74B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1C519CD1C415925E7FCE92FDA20FF18EC544C74B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096265459348537346/1/3230332e3139362e302e302f32312d3332203d3e2039383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.196.0.0/21 Signature Algorithm: sha256WithRSAEncryption b2:82:9f:38:24:4a:5a:65:8a:dd:01:6c:bd:dd:7d:78:f4:b2: 80:87:85:5a:0b:55:1c:d1:fc:f3:69:5f:ef:41:70:d4:e9:bd: 8c:9d:10:4f:5b:f9:03:ad:08:d8:8e:4d:b0:ba:80:99:3e:a1: 35:b9:a1:36:58:7b:27:56:0b:d0:90:46:13:6e:d4:3a:90:bd: 7f:9b:89:41:f1:30:91:6b:cb:d0:45:8c:6a:e7:13:26:ea:40: c8:fb:2e:43:61:60:b5:26:97:1e:c2:9b:d5:dc:ae:0d:64:23: 91:ce:82:88:1a:cb:b0:0e:ca:f4:9d:88:28:29:05:78:45:7f: e0:f8:fe:cd:c4:7b:b5:1b:fb:b1:0a:bd:d3:87:50:b6:42:1f: 4e:21:86:85:e1:a7:56:24:e7:3a:c7:d8:75:a6:2b:82:4c:b7: eb:cd:74:18:02:42:91:09:64:7e:ae:3c:37:89:99:73:ed:28: 15:f6:be:35:49:2e:9e:bc:ec:a6:cf:fa:7e:54:19:83:98:9b: b8:76:03:13:bd:91:ae:0d:ec:99:b6:da:64:b7:c4:24:34:4c: 39:f3:62:43:fe:23:ac:df:23:d8:81:19:ae:64:9f:76:af:57: b5:56:26:b5:02:8f:60:2e:df:a2:49:a9:5e:df:91:dc:33:fe: a6:b8:f6:5d -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUA5R0kw2d/nRlqW42V3KgNtwsiFYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUM1MTlDRDFDNDE1OTI1RTdGQ0U5MkZEQTIwRkYxOEVD NTQ0Qzc0QjAeFw0yNjA0MTQwMjU1MDlaFw0yNzA0MTMwMzAwMDlaMDMxMTAvBgNV BAMTKDUyMjc3NzZGMDAxQzFCOTg2QTQyMEMxNTNEOERGODQzNUY0N0EzNkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTF7LPtT5gIV/DFQ8pPcEr9xSU selfG/BNZ//Ps29TumRuBXjPbfHj1KgfeGP6Fs9m+zhmYGOXHkyibxKGWo0vG0qd o3b9Pb97NRAW/P76FNehFTUDnozo8f86xcUCXkhS5byOAoX0ZZG5EI5btFAAovUm 2MCv1/yo4zrF4CuDCLL3vk0Kn0kLampAcSI+mjz6cOutaufes8AVYPOICAJrK8m6 Wo61BpF4zUuPDNDcQzi64ijK6U/l1XT/WWp1l7YC/qvW8I6pG1jJGfwMuR8BLyu/ c84hKCtT1y3Gro5oaiY/bULDhkK0NXb8o7EFZI2a9jG5tIZCh3VdhskIOGivAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUUid3bwAcG5hqQgwVPY34Q19Ho20wHwYDVR0j BBgwFoAUHFGc0cQVkl5/zpL9og/xjsVEx0swDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjI2NTQ1OTM0ODUzNzM0Ni8xLzFDNTE5Q0QxQzQxNTkyNUU3RkNFOTJGREEyMEZG MThFQzU0NEM3NEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMUM1MTlDRDFDNDE1OTI1RTdGQ0U5MkZEQTIwRkYxOEVDNTQ0Qzc0Qi5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk2MjY1NDU5MzQ4NTM3MzQ2LzEvMzIzMDMzMmUzMTM5 MzYyZTMwMmUzMDJmMzIzMTJkMzMzMjIwM2QzZTIwMzkzODMwMzgucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAPLxAAwDQYJKoZIhvcNAQELBQADggEBALKCnzgkSlplit0BbL3dfXj0soCHhVoL VRzR/PNpX+9BcNTpvYydEE9b+QOtCNiOTbC6gJk+oTW5oTZYeydWC9CQRhNu1DqQ vX+biUHxMJFry9BFjGrnEybqQMj7LkNhYLUmlx7Cm9Xcrg1kI5HOgogay7AOyvSd iCgpBXhFf+D4/s3Ee7Ub+7EKvdOHULZCH04hhoXhp1Yk5zrH2HWmK4JMt+vNdBgC QpEJZH6uPDeJmXPtKBX2vjVJLp687KbP+n5UGYOYm7h2AxO9ka4N7Jm22mS3xCQ0 TDnzYkP+I6zfI9iBGa5kn3avV7VWJrUCj2Au36JJqV7fkdwz/qa49l0= -----END CERTIFICATE-----Generated at Fri Apr 17 17:52:14 2026 by rpki-client