$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096276598698606595/0/3137352e32352e32342e302f32322d3232203d3e2034383038.roa File: 3137352e32352e32342e302f32322d3232203d3e2034383038.roa (raw, json) Hash identifier: Fb38YILBFKW+SaTVJcVeG2xQLifobPx2dH6e9pLD29k= Subject key identifier: AD:17:FC:92:81:39:F4:05:88:58:82:9B:98:37:98:B6:E5:F8:97:0D Certificate issuer: /CN=51179D675C3CB56A2D44AA60FA2B9330A0C06680 Certificate serial: 0C656F64A284EF7608A218FBFC419B809FBE7722 Authority key identifier: 51:17:9D:67:5C:3C:B5:6A:2D:44:AA:60:FA:2B:93:30:A0:C0:66:80 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/51179D675C3CB56A2D44AA60FA2B9330A0C06680.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096276598698606595/0/3137352e32352e32342e302f32322d3232203d3e2034383038.roa Signing time: Tue 14 Apr 2026 06:41:54 +0000 ROA not before: Tue 14 Apr 2026 06:36:54 +0000 ROA not after: Tue 13 Apr 2027 06:41:54 +0000 asID: 4808 IP address blocks: 175.25.24.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096276598698606595/0/51179D675C3CB56A2D44AA60FA2B9330A0C06680.crl rsync://rpki-rps.cnnic.cn/repo/A1096276598698606595/0/51179D675C3CB56A2D44AA60FA2B9330A0C06680.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/51179D675C3CB56A2D44AA60FA2B9330A0C06680.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 09:09:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:65:6f:64:a2:84:ef:76:08:a2:18:fb:fc:41:9b:80:9f:be:77:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=51179D675C3CB56A2D44AA60FA2B9330A0C06680 Validity Not Before: Apr 14 06:36:54 2026 GMT Not After : Apr 13 06:41:54 2027 GMT Subject: CN=AD17FC928139F4058858829B983798B6E5F8970D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:e9:3e:54:56:55:a7:ac:29:b4:82:b2:1a:6e: b9:ce:f0:ce:a0:a8:ae:9a:d9:e9:99:d9:ef:e1:43: cd:dd:72:9d:85:0b:9f:4a:a2:a0:2a:54:d3:26:97: 2d:0d:4e:dd:6f:9b:a5:1a:57:7f:5b:eb:b1:bd:29: 22:38:37:01:2d:7b:9e:59:b4:0d:ec:bf:ad:f7:7a: a1:b1:32:4b:0e:7d:fe:fb:48:13:e6:a8:2c:cc:72: 4e:46:6a:1c:5a:d8:91:3a:40:a7:68:7d:21:99:a7: e6:8e:aa:c0:0c:f5:41:c5:6f:08:f8:ef:7b:13:46: 71:35:0f:84:be:2c:59:f0:c1:d7:1b:d0:51:c3:c7: d7:af:13:81:44:50:ad:7d:75:e8:04:0b:05:bd:e4: e4:fa:76:39:7e:c1:04:bc:99:d6:e6:ec:a4:cd:0b: 37:54:19:18:a0:20:62:7f:e9:2f:cc:cf:05:c8:08: d2:57:06:65:74:c3:d8:58:c1:a9:4e:e4:6f:83:f9: 19:6a:80:32:6a:57:37:94:2a:d7:42:18:ab:49:02: ab:ee:78:8d:85:b6:49:bf:be:27:8e:d5:d0:2b:ff: fb:6a:7f:98:84:b8:43:45:3c:0f:8f:a6:24:22:ff: 28:5c:0c:0e:52:67:f1:42:45:87:41:1d:23:97:08: 2a:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:17:FC:92:81:39:F4:05:88:58:82:9B:98:37:98:B6:E5:F8:97:0D X509v3 Authority Key Identifier: keyid:51:17:9D:67:5C:3C:B5:6A:2D:44:AA:60:FA:2B:93:30:A0:C0:66:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096276598698606595/0/51179D675C3CB56A2D44AA60FA2B9330A0C06680.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/51179D675C3CB56A2D44AA60FA2B9330A0C06680.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096276598698606595/0/3137352e32352e32342e302f32322d3232203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.25.24.0/22 Signature Algorithm: sha256WithRSAEncryption 32:0c:64:4d:8c:e4:55:41:12:90:4a:fc:bb:95:f1:fb:5f:83: 58:71:1b:3d:f8:a5:45:90:29:2d:92:c2:ce:58:c7:a6:04:36: ac:83:5d:cb:81:a6:6c:fb:98:38:eb:96:f5:3f:5f:e7:23:5a: f8:3d:10:0b:b4:b3:32:34:5c:19:db:be:c4:70:33:30:71:8d: 11:35:da:04:4e:1e:7f:9f:9c:66:46:03:73:7f:56:5b:cf:a5: 41:ab:9c:09:1f:7a:55:87:c5:94:83:dd:09:03:dc:6a:bb:26: ca:ec:29:39:53:40:8b:57:6f:eb:3b:8d:80:97:84:32:ab:42: 1e:9c:db:08:7d:ba:01:0b:4a:8e:10:d3:39:05:78:ce:f7:f9: 62:7f:ec:4d:0c:7e:a2:c2:92:93:fd:80:43:7f:80:fd:2c:0e: 7a:09:00:d7:89:db:b6:f3:45:e9:f6:ff:80:0a:56:67:d0:83: 37:35:57:cb:71:01:60:a5:4b:8e:90:61:7f:f8:20:8d:f1:6d: cf:be:e7:84:90:8a:d2:06:5e:d0:10:45:2b:f3:e8:05:79:5b: 9c:79:ba:50:45:62:9d:7a:0c:ee:ac:29:15:1e:08:c4:02:49: c8:4f:cc:a6:f4:ad:b1:78:b2:4d:4f:ca:03:18:d1:ac:09:65: b8:10:28:de -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUDGVvZKKE73YIohj7/EGbgJ++dyIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTExNzlENjc1QzNDQjU2QTJENDRBQTYwRkEyQjkzMzBB MEMwNjY4MDAeFw0yNjA0MTQwNjM2NTRaFw0yNzA0MTMwNjQxNTRaMDMxMTAvBgNV BAMTKEFEMTdGQzkyODEzOUY0MDU4ODU4ODI5Qjk4Mzc5OEI2RTVGODk3MEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCh6T5UVlWnrCm0grIabrnO8M6g qK6a2emZ2e/hQ83dcp2FC59KoqAqVNMmly0NTt1vm6UaV39b67G9KSI4NwEte55Z tA3sv633eqGxMksOff77SBPmqCzMck5Gahxa2JE6QKdofSGZp+aOqsAM9UHFbwj4 73sTRnE1D4S+LFnwwdcb0FHDx9evE4FEUK19degECwW95OT6djl+wQS8mdbm7KTN CzdUGRigIGJ/6S/MzwXICNJXBmV0w9hYwalO5G+D+RlqgDJqVzeUKtdCGKtJAqvu eI2Ftkm/vieO1dAr//tqf5iEuENFPA+PpiQi/yhcDA5SZ/FCRYdBHSOXCCo3AgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUrRf8koE59AWIWIKbmDeYtuX4lw0wHwYDVR0j BBgwFoAUURedZ1w8tWotRKpg+iuTMKDAZoAwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjI3NjU5ODY5ODYwNjU5NS8wLzUxMTc5RDY3NUMzQ0I1NkEyRDQ0QUE2MEZBMkI5 MzMwQTBDMDY2ODAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTExNzlENjc1QzNDQjU2QTJENDRBQTYwRkEyQjkzMzBBMEMwNjY4MC5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk2Mjc2NTk4Njk4NjA2NTk1LzAvMzEzNzM1MmUzMjM1 MmUzMjM0MmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzQzODMwMzgucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAKvGRgwDQYJKoZIhvcNAQELBQADggEBADIMZE2M5FVBEpBK/LuV8ftfg1hxGz34 pUWQKS2Sws5Yx6YENqyDXcuBpmz7mDjrlvU/X+cjWvg9EAu0szI0XBnbvsRwMzBx jRE12gROHn+fnGZGA3N/VlvPpUGrnAkfelWHxZSD3QkD3Gq7JsrsKTlTQItXb+s7 jYCXhDKrQh6c2wh9ugELSo4Q0zkFeM73+WJ/7E0MfqLCkpP9gEN/gP0sDnoJANeJ 27bzRen2/4AKVmfQgzc1V8txAWClS46QYX/4II3xbc++54SQitIGXtAQRSvz6AV5 W5x5ulBFYp16DO6sKRUeCMQCSchPzKb0rbF4sk1PygMY0awJZbgQKN4= -----END CERTIFICATE-----Generated at Fri Apr 17 10:10:21 2026 by rpki-client