$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096996979474432002/0/3231312e3135352e3136302e302f32312d3332203d3e2034383038.roa File: 3231312e3135352e3136302e302f32312d3332203d3e2034383038.roa (raw, json) Hash identifier: hPusrnjhYJm8+TZ/gEk8IBFbZqCjOYQH0MPwt972ygo= Subject key identifier: 15:69:7E:4A:36:99:C1:B8:7A:92:F1:A2:A0:5C:5E:92:7E:7C:BC:98 Certificate issuer: /CN=874FA1B711DC9AFDC5C0CFC20E6E74499209C59B Certificate serial: 2029635F0FFAB7AB803BDF1FB34C1718BF30BDA6 Authority key identifier: 87:4F:A1:B7:11:DC:9A:FD:C5:C0:CF:C2:0E:6E:74:49:92:09:C5:9B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/874FA1B711DC9AFDC5C0CFC20E6E74499209C59B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096996979474432002/0/3231312e3135352e3136302e302f32312d3332203d3e2034383038.roa Signing time: Thu 16 Apr 2026 03:30:38 +0000 ROA not before: Thu 16 Apr 2026 03:25:38 +0000 ROA not after: Thu 15 Apr 2027 03:30:38 +0000 asID: 4808 IP address blocks: 211.155.160.0/21 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096996979474432002/0/874FA1B711DC9AFDC5C0CFC20E6E74499209C59B.crl rsync://rpki-rps.cnnic.cn/repo/A1096996979474432002/0/874FA1B711DC9AFDC5C0CFC20E6E74499209C59B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/874FA1B711DC9AFDC5C0CFC20E6E74499209C59B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 13:52:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:29:63:5f:0f:fa:b7:ab:80:3b:df:1f:b3:4c:17:18:bf:30:bd:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=874FA1B711DC9AFDC5C0CFC20E6E74499209C59B Validity Not Before: Apr 16 03:25:38 2026 GMT Not After : Apr 15 03:30:38 2027 GMT Subject: CN=15697E4A3699C1B87A92F1A2A05C5E927E7CBC98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:17:31:23:d5:f4:de:db:10:e5:2f:07:a9:04: 23:bf:70:de:84:b9:0d:71:ae:89:34:6b:c9:c4:29: 5e:1b:64:a9:2a:d7:18:a1:ae:3e:4d:9d:f5:fd:16: 15:c8:e8:95:52:bc:c4:fa:43:c8:87:a8:9b:bd:bb: 50:0b:59:2b:99:1a:1b:af:8c:dd:73:a3:01:8c:40: 97:bc:a7:bd:48:45:b4:33:da:de:d2:37:eb:02:bc: 4b:e5:af:f4:9d:4b:71:d7:52:91:aa:f1:4d:69:3d: 50:b6:61:e5:aa:d9:88:6a:cb:1b:83:36:77:1e:d8: 53:d6:22:95:9b:ea:0d:c3:1e:f3:92:de:27:1f:6a: 8c:f1:52:c7:34:6e:06:05:46:a9:f8:25:19:cf:6a: b2:07:60:46:01:40:a5:27:5e:9b:2c:7e:62:ec:15: c2:12:60:e2:8e:ee:ac:b2:50:0f:e3:16:60:3f:cb: d6:be:9b:1a:8c:31:46:16:d1:24:81:0d:bd:3a:bc: 45:6a:f7:98:ec:07:0d:17:c8:69:e5:1d:b7:c3:30: 3e:3c:14:a9:0c:10:7a:14:2d:b1:4c:d2:a7:72:67: 23:4d:cf:bc:84:d8:b8:9f:84:51:f3:2f:ad:85:9c: 3c:12:4e:be:80:ea:0c:50:7e:a8:8b:44:05:8f:d5: ed:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:69:7E:4A:36:99:C1:B8:7A:92:F1:A2:A0:5C:5E:92:7E:7C:BC:98 X509v3 Authority Key Identifier: keyid:87:4F:A1:B7:11:DC:9A:FD:C5:C0:CF:C2:0E:6E:74:49:92:09:C5:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096996979474432002/0/874FA1B711DC9AFDC5C0CFC20E6E74499209C59B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/874FA1B711DC9AFDC5C0CFC20E6E74499209C59B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096996979474432002/0/3231312e3135352e3136302e302f32312d3332203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 211.155.160.0/21 Signature Algorithm: sha256WithRSAEncryption 3a:60:79:d4:3b:c0:ac:e1:d6:0e:eb:75:8f:a3:21:44:a4:8e: 15:ca:e4:87:74:27:c2:82:7a:f7:13:28:fb:de:90:ca:37:cf: 8c:fb:f0:c6:ec:ab:fb:71:a6:dc:14:a6:7c:30:ab:99:ac:14: a1:fd:69:9e:a5:11:a9:b0:18:e0:08:ea:c9:ca:cf:43:d4:7c: 1b:37:cc:57:ab:9d:20:b6:ba:31:3e:33:ef:1e:af:a3:dd:65: d7:c2:ad:b7:2d:12:9c:47:a0:a4:99:5c:7c:7d:5a:35:3e:ba: fc:a8:30:d6:64:a5:87:dd:1d:a7:85:d8:a3:07:5f:8a:7f:81: 89:01:2a:12:1e:36:3a:a5:37:36:cb:b5:71:80:6a:50:28:cb: fc:1d:40:26:0f:c3:3b:cf:04:ea:62:0b:c1:b9:38:5b:de:6c: d7:f2:a0:58:0f:4a:6e:fd:84:d6:32:ca:64:fd:79:38:05:0f: 32:30:91:a3:2a:bb:23:45:60:df:c9:99:3e:c2:f2:de:73:36: 1c:a1:ce:0c:80:b0:c2:c9:e7:4a:b5:24:bd:f6:d5:ae:8c:cb: 8d:7a:2f:49:7a:e0:3f:d8:6f:28:31:a2:a6:a0:03:6e:d6:f7: a7:95:88:35:cb:6d:04:48:81:33:95:cf:ff:9d:b9:fd:de:8e: 92:7f:79:6e -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUICljXw/6t6uAO98fs0wXGL8wvaYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODc0RkExQjcxMURDOUFGREM1QzBDRkMyMEU2RTc0NDk5 MjA5QzU5QjAeFw0yNjA0MTYwMzI1MzhaFw0yNzA0MTUwMzMwMzhaMDMxMTAvBgNV BAMTKDE1Njk3RTRBMzY5OUMxQjg3QTkyRjFBMkEwNUM1RTkyN0U3Q0JDOTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDFzEj1fTe2xDlLwepBCO/cN6E uQ1xrok0a8nEKV4bZKkq1xihrj5NnfX9FhXI6JVSvMT6Q8iHqJu9u1ALWSuZGhuv jN1zowGMQJe8p71IRbQz2t7SN+sCvEvlr/SdS3HXUpGq8U1pPVC2YeWq2YhqyxuD Nnce2FPWIpWb6g3DHvOS3icfaozxUsc0bgYFRqn4JRnParIHYEYBQKUnXpssfmLs FcISYOKO7qyyUA/jFmA/y9a+mxqMMUYW0SSBDb06vEVq95jsBw0XyGnlHbfDMD48 FKkMEHoULbFM0qdyZyNNz7yE2LifhFHzL62FnDwSTr6A6gxQfqiLRAWP1e1HAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUFWl+SjaZwbh6kvGioFxekn58vJgwHwYDVR0j BBgwFoAUh0+htxHcmv3FwM/CDm50SZIJxZswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 Njk5Njk3OTQ3NDQzMjAwMi8wLzg3NEZBMUI3MTFEQzlBRkRDNUMwQ0ZDMjBFNkU3 NDQ5OTIwOUM1OUIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvODc0RkExQjcxMURDOUFGREM1QzBDRkMyMEU2RTc0NDk5MjA5QzU5Qi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5Njk5Njk3OTQ3NDQzMjAwMi8wLzMyMzEzMTJlMzEz NTM1MmUzMTM2MzAyZTMwMmYzMjMxMmQzMzMyMjAzZDNlMjAzNDM4MzAzOC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEA9OboDANBgkqhkiG9w0BAQsFAAOCAQEAOmB51DvArOHWDut1j6MhRKSO Fcrkh3QnwoJ69xMo+96QyjfPjPvwxuyr+3Gm3BSmfDCrmawUof1pnqURqbAY4Ajq ycrPQ9R8GzfMV6udILa6MT4z7x6vo91l18Ktty0SnEegpJlcfH1aNT66/Kgw1mSl h90dp4XYowdfin+BiQEqEh42OqU3Nsu1cYBqUCjL/B1AJg/DO88E6mILwbk4W95s 1/KgWA9Kbv2E1jLKZP15OAUPMjCRoyq7I0Vg38mZPsLy3nM2HKHODICwwsnnSrUk vfbVrozLjXovSXrgP9hvKDGipqADbtb3p5WINcttBEiBM5XP/525/d6Okn95bg== -----END CERTIFICATE-----Generated at Fri Apr 17 19:25:33 2026 by rpki-client