$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096276598698606595/0/3137352e32352e36302e302f32322d3232203d3e2034383038.roa File: 3137352e32352e36302e302f32322d3232203d3e2034383038.roa (raw, json) Hash identifier: rNkkzUQnXRnwJuEg9knKfntbDRTT7TQH3U9CkAaYgvw= Subject key identifier: 68:85:F5:3B:A7:8F:6B:FC:2C:42:D1:91:EA:47:1D:65:87:82:87:EE Certificate issuer: /CN=51179D675C3CB56A2D44AA60FA2B9330A0C06680 Certificate serial: 428031EA729F25CAF906F49101E99F814B3B5F77 Authority key identifier: 51:17:9D:67:5C:3C:B5:6A:2D:44:AA:60:FA:2B:93:30:A0:C0:66:80 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/51179D675C3CB56A2D44AA60FA2B9330A0C06680.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096276598698606595/0/3137352e32352e36302e302f32322d3232203d3e2034383038.roa Signing time: Tue 14 Apr 2026 06:41:55 +0000 ROA not before: Tue 14 Apr 2026 06:36:55 +0000 ROA not after: Tue 13 Apr 2027 06:41:55 +0000 asID: 4808 IP address blocks: 175.25.60.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096276598698606595/0/51179D675C3CB56A2D44AA60FA2B9330A0C06680.crl rsync://rpki-rps.cnnic.cn/repo/A1096276598698606595/0/51179D675C3CB56A2D44AA60FA2B9330A0C06680.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/51179D675C3CB56A2D44AA60FA2B9330A0C06680.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 09:09:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:80:31:ea:72:9f:25:ca:f9:06:f4:91:01:e9:9f:81:4b:3b:5f:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=51179D675C3CB56A2D44AA60FA2B9330A0C06680 Validity Not Before: Apr 14 06:36:55 2026 GMT Not After : Apr 13 06:41:55 2027 GMT Subject: CN=6885F53BA78F6BFC2C42D191EA471D65878287EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:1b:8c:49:90:b2:89:f5:2d:8c:b2:bf:fa:b9: cf:9d:5e:e1:fe:cb:eb:ea:e1:e3:c8:9f:b4:ac:6b: 8a:70:cd:ab:d3:ed:f8:77:6f:fc:90:6f:49:cc:d4: e1:10:af:c2:89:58:37:af:f0:5c:1c:68:fc:67:55: 5e:25:be:f5:92:0c:66:ea:fe:ed:ff:de:2b:55:00: 82:2d:d5:eb:be:bf:6f:b6:80:81:ff:0e:92:42:d7: 08:13:1a:33:44:d0:be:b0:8d:f7:15:bc:35:cd:88: f6:78:c3:28:e0:da:62:0b:89:4c:cf:5a:29:92:90: cf:e5:7f:2c:cf:c4:03:e7:6e:22:75:a6:76:24:0f: 57:d7:bf:7b:58:c9:01:b7:e8:55:50:5e:91:f1:14: f4:d7:05:7f:7e:4c:9b:b9:b8:40:e5:13:dd:12:9e: 5d:22:01:09:23:17:12:81:51:88:b2:df:c0:c3:fd: 5e:f3:dd:e3:ea:3e:c9:6e:37:42:5c:2b:3b:05:6e: 12:21:c5:18:47:4b:8f:63:6a:e6:4f:13:4a:5b:24: 93:31:35:61:4e:c2:77:4b:0b:03:67:8e:e2:6a:a3: 0b:34:d8:76:f4:ef:73:39:f4:fd:af:50:f2:c2:e1: e3:0c:2c:ac:8d:fe:4b:ee:de:55:3d:32:01:fa:53: 55:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:85:F5:3B:A7:8F:6B:FC:2C:42:D1:91:EA:47:1D:65:87:82:87:EE X509v3 Authority Key Identifier: keyid:51:17:9D:67:5C:3C:B5:6A:2D:44:AA:60:FA:2B:93:30:A0:C0:66:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096276598698606595/0/51179D675C3CB56A2D44AA60FA2B9330A0C06680.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/51179D675C3CB56A2D44AA60FA2B9330A0C06680.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096276598698606595/0/3137352e32352e36302e302f32322d3232203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.25.60.0/22 Signature Algorithm: sha256WithRSAEncryption 70:bd:8f:72:e2:2f:3f:9c:a7:e5:9e:98:40:9d:5d:ea:34:c5: e9:1a:98:f1:e6:5e:96:78:66:43:ac:9b:8a:95:06:26:84:c1: 2c:74:da:f2:c3:31:e1:e4:33:fc:4f:46:2b:8c:77:55:46:8f: f0:4a:d4:21:cd:97:7e:94:40:35:91:a6:6b:ea:d7:d0:f7:e9: 22:de:f9:31:f7:bf:dc:0c:98:64:13:24:87:51:f4:71:48:e4: b9:5c:7c:ac:de:15:44:ba:b0:11:a8:44:35:54:c8:be:1e:70: a6:37:d1:ce:8a:9a:4b:66:01:51:c1:9d:48:ff:13:7e:8c:94: 83:6f:29:68:c9:5c:3a:4a:3d:67:97:b5:4f:86:06:19:9c:2d: 04:93:a2:f0:76:4e:f5:f2:d4:67:64:6c:02:33:74:d8:10:b7: be:51:78:3b:e6:21:de:5f:d0:df:6a:b8:e9:dd:c8:db:f9:09: 7e:2c:0d:46:e6:dc:0c:eb:f1:69:c7:6c:bb:72:d5:6f:8f:9c: 3f:b3:51:a0:92:f4:1e:ee:01:2f:36:c9:13:71:7a:d8:69:7a: d1:5e:da:04:18:f4:bd:32:53:f8:e1:78:57:c6:32:56:06:53: c0:a1:f8:32:75:27:50:cd:22:b9:24:68:75:3d:7d:fd:47:18: a2:6d:cc:33 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUQoAx6nKfJcr5BvSRAemfgUs7X3cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTExNzlENjc1QzNDQjU2QTJENDRBQTYwRkEyQjkzMzBB MEMwNjY4MDAeFw0yNjA0MTQwNjM2NTVaFw0yNzA0MTMwNjQxNTVaMDMxMTAvBgNV BAMTKDY4ODVGNTNCQTc4RjZCRkMyQzQyRDE5MUVBNDcxRDY1ODc4Mjg3RUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7G4xJkLKJ9S2Msr/6uc+dXuH+ y+vq4ePIn7Ssa4pwzavT7fh3b/yQb0nM1OEQr8KJWDev8FwcaPxnVV4lvvWSDGbq /u3/3itVAIIt1eu+v2+2gIH/DpJC1wgTGjNE0L6wjfcVvDXNiPZ4wyjg2mILiUzP WimSkM/lfyzPxAPnbiJ1pnYkD1fXv3tYyQG36FVQXpHxFPTXBX9+TJu5uEDlE90S nl0iAQkjFxKBUYiy38DD/V7z3ePqPsluN0JcKzsFbhIhxRhHS49jauZPE0pbJJMx NWFOwndLCwNnjuJqows02Hb073M59P2vUPLC4eMMLKyN/kvu3lU9MgH6U1XZAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUaIX1O6ePa/wsQtGR6kcdZYeCh+4wHwYDVR0j BBgwFoAUURedZ1w8tWotRKpg+iuTMKDAZoAwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjI3NjU5ODY5ODYwNjU5NS8wLzUxMTc5RDY3NUMzQ0I1NkEyRDQ0QUE2MEZBMkI5 MzMwQTBDMDY2ODAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTExNzlENjc1QzNDQjU2QTJENDRBQTYwRkEyQjkzMzBBMEMwNjY4MC5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk2Mjc2NTk4Njk4NjA2NTk1LzAvMzEzNzM1MmUzMjM1 MmUzNjMwMmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzQzODMwMzgucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAKvGTwwDQYJKoZIhvcNAQELBQADggEBAHC9j3LiLz+cp+WemECdXeo0xekamPHm XpZ4ZkOsm4qVBiaEwSx02vLDMeHkM/xPRiuMd1VGj/BK1CHNl36UQDWRpmvq19D3 6SLe+TH3v9wMmGQTJIdR9HFI5LlcfKzeFUS6sBGoRDVUyL4ecKY30c6KmktmAVHB nUj/E36MlINvKWjJXDpKPWeXtU+GBhmcLQSTovB2TvXy1GdkbAIzdNgQt75ReDvm Id5f0N9quOndyNv5CX4sDUbm3Azr8WnHbLty1W+PnD+zUaCS9B7uAS82yRNxethp etFe2gQY9L0yU/jheFfGMlYGU8Ch+DJ1J1DNIrkkaHU9ff1HGKJtzDM= -----END CERTIFICATE-----Generated at Fri Apr 17 17:58:53 2026 by rpki-client