$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097036124037054466/0/3131302e3137322e3232382e302f32322d3232203d3e2030.roa File: 3131302e3137322e3232382e302f32322d3232203d3e2030.roa (raw, json) Hash identifier: a1oUsyAvQL4WYW3ySM/NPmmAkiHTv+gn4YkINCBdJwE= Subject key identifier: 57:4F:58:AF:55:47:CC:26:1A:74:2D:6E:93:CA:C8:60:FE:C1:04:2B Certificate issuer: /CN=9A2CDAA966FD96CBECCC40BCFC3DE1B223263C22 Certificate serial: 2D0C26D4AF443D100B745D839D5B8997DDCDFE86 Authority key identifier: 9A:2C:DA:A9:66:FD:96:CB:EC:CC:40:BC:FC:3D:E1:B2:23:26:3C:22 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9A2CDAA966FD96CBECCC40BCFC3DE1B223263C22.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097036124037054466/0/3131302e3137322e3232382e302f32322d3232203d3e2030.roa Signing time: Thu 16 Apr 2026 05:55:34 +0000 ROA not before: Thu 16 Apr 2026 05:50:34 +0000 ROA not after: Thu 15 Apr 2027 05:55:34 +0000 asID: 0 IP address blocks: 110.172.228.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097036124037054466/0/9A2CDAA966FD96CBECCC40BCFC3DE1B223263C22.crl rsync://rpki-rps.cnnic.cn/repo/A1097036124037054466/0/9A2CDAA966FD96CBECCC40BCFC3DE1B223263C22.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9A2CDAA966FD96CBECCC40BCFC3DE1B223263C22.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 17 Apr 2026 07:08:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:0c:26:d4:af:44:3d:10:0b:74:5d:83:9d:5b:89:97:dd:cd:fe:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A2CDAA966FD96CBECCC40BCFC3DE1B223263C22 Validity Not Before: Apr 16 05:50:34 2026 GMT Not After : Apr 15 05:55:34 2027 GMT Subject: CN=574F58AF5547CC261A742D6E93CAC860FEC1042B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:68:2d:42:28:83:63:56:bf:87:a9:fb:8b:45: 20:f9:2e:73:ca:33:61:b5:b6:98:4f:ca:b8:cf:4c: 0e:da:00:88:9e:3c:69:22:e3:c6:99:64:fc:2e:94: 54:58:3f:ac:74:d1:09:94:de:46:1c:09:ff:ea:26: c1:78:93:17:91:c4:42:61:f2:1c:09:cb:f5:33:b9: 00:45:b9:4f:6b:e1:aa:ff:8c:90:d0:27:f8:d4:63: 7b:fd:e2:3e:48:85:b0:e7:f3:24:ca:55:4b:7d:19: 82:ae:d7:b8:87:73:59:2f:50:0f:c5:f0:37:8a:48: 71:37:f4:f4:71:db:84:eb:52:a7:71:ec:a2:00:a0: f4:24:ea:8c:8c:a8:94:7a:7f:21:c3:ba:15:98:0f: 61:91:55:93:a8:a7:24:b6:fa:c7:5a:af:c0:e4:06: 15:4c:cf:5f:9f:63:43:52:7a:b3:01:d1:4f:a4:dc: 70:a1:dc:3f:30:96:12:69:d1:35:7f:02:11:0e:cd: 07:e3:f1:1d:7f:62:46:bb:61:33:ab:a5:72:c2:0b: 46:9f:9b:fb:81:d9:7c:e9:ce:e2:c8:25:90:f6:62: 98:41:39:a7:c8:3f:7a:e1:53:1a:0f:e8:30:0e:6d: a3:18:38:de:8e:cf:d2:60:42:1f:fd:29:40:9a:5e: 5e:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:4F:58:AF:55:47:CC:26:1A:74:2D:6E:93:CA:C8:60:FE:C1:04:2B X509v3 Authority Key Identifier: keyid:9A:2C:DA:A9:66:FD:96:CB:EC:CC:40:BC:FC:3D:E1:B2:23:26:3C:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097036124037054466/0/9A2CDAA966FD96CBECCC40BCFC3DE1B223263C22.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9A2CDAA966FD96CBECCC40BCFC3DE1B223263C22.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097036124037054466/0/3131302e3137322e3232382e302f32322d3232203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.172.228.0/22 Signature Algorithm: sha256WithRSAEncryption 8d:fe:9c:e0:df:37:3a:cb:ae:9a:2d:55:5e:f0:ad:3e:c9:92: df:78:0f:8a:f9:88:56:38:c4:6d:54:fa:9d:25:58:b1:17:70: 04:46:a4:09:fa:3d:55:13:8c:80:16:7c:0c:0e:37:42:10:9a: 24:36:bd:b9:2e:8b:c8:ea:1e:28:29:bd:9d:5a:d5:95:23:e9: 16:63:80:87:76:a7:c3:73:51:ee:aa:24:0d:26:87:ef:9d:1b: ab:80:e6:e5:61:9f:ea:d6:14:05:e3:b6:b5:21:9a:62:93:8c: 14:d4:f7:ca:a4:e3:f9:87:71:78:fe:27:9c:b3:ba:e9:75:4b: 81:ec:85:56:6f:c4:f7:26:68:11:4f:41:19:7b:11:0a:31:0a: e6:fb:95:11:e8:13:09:16:92:2f:7a:15:17:8f:83:b1:6a:2d: d4:0f:bf:63:15:89:52:56:3f:59:03:7a:ec:3a:65:5b:b6:aa: 43:e8:49:ab:d8:df:0e:e7:00:e2:22:23:28:b4:1a:79:41:ab: 8c:0a:76:20:7c:8f:4a:d3:5c:78:6b:fe:a5:a8:e9:21:8e:3c: f4:2f:3b:72:34:93:81:82:97:19:4c:35:1b:11:e0:33:a1:81: 28:15:46:13:27:de:bb:de:ef:0e:10:ec:eb:24:70:14:7d:83: 23:1f:9d:cc -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgIULQwm1K9EPRALdF2DnVuJl93N/oYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUEyQ0RBQTk2NkZEOTZDQkVDQ0M0MEJDRkMzREUxQjIy MzI2M0MyMjAeFw0yNjA0MTYwNTUwMzRaFw0yNzA0MTUwNTU1MzRaMDMxMTAvBgNV BAMTKDU3NEY1OEFGNTU0N0NDMjYxQTc0MkQ2RTkzQ0FDODYwRkVDMTA0MkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDuaC1CKINjVr+HqfuLRSD5LnPK M2G1tphPyrjPTA7aAIiePGki48aZZPwulFRYP6x00QmU3kYcCf/qJsF4kxeRxEJh 8hwJy/UzuQBFuU9r4ar/jJDQJ/jUY3v94j5IhbDn8yTKVUt9GYKu17iHc1kvUA/F 8DeKSHE39PRx24TrUqdx7KIAoPQk6oyMqJR6fyHDuhWYD2GRVZOopyS2+sdar8Dk BhVMz1+fY0NSerMB0U+k3HCh3D8wlhJp0TV/AhEOzQfj8R1/Yka7YTOrpXLCC0af m/uB2XzpzuLIJZD2YphBOafIP3rhUxoP6DAObaMYON6Oz9JgQh/9KUCaXl7jAgMB AAGjggINMIICCTAdBgNVHQ4EFgQUV09Yr1VHzCYadC1uk8rIYP7BBCswHwYDVR0j BBgwFoAUmizaqWb9lsvszEC8/D3hsiMmPCIwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzAzNjEyNDAzNzA1NDQ2Ni8wLzlBMkNEQUE5NjZGRDk2Q0JFQ0NDNDBCQ0ZDM0RF MUIyMjMyNjNDMjIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOUEyQ0RBQTk2NkZEOTZDQkVDQ0M0MEJDRkMzREUxQjIyMzI2M0MyMi5jZXIw gYYGCCsGAQUFBwELBHoweDB2BggrBgEFBQcwC4ZqcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk3MDM2MTI0MDM3MDU0NDY2LzAvMzEzMTMwMmUzMTM3 MzIyZTMyMzIzODJlMzAyZjMyMzIyZDMyMzIyMDNkM2UyMDMwLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQC bqzkMA0GCSqGSIb3DQEBCwUAA4IBAQCN/pzg3zc6y66aLVVe8K0+yZLfeA+K+YhW OMRtVPqdJVixF3AERqQJ+j1VE4yAFnwMDjdCEJokNr25LovI6h4oKb2dWtWVI+kW Y4CHdqfDc1HuqiQNJofvnRurgOblYZ/q1hQF47a1IZpik4wU1PfKpOP5h3F4/iec s7rpdUuB7IVWb8T3JmgRT0EZexEKMQrm+5UR6BMJFpIvehUXj4Oxai3UD79jFYlS Vj9ZA3rsOmVbtqpD6Emr2N8O5wDiIiMotBp5QauMCnYgfI9K01x4a/6lqOkhjjz0 LztyNJOBgpcZTDUbEeAzoYEoFUYTJ9673u8OEOzrJHAUfYMjH53M -----END CERTIFICATE-----Generated at Thu Apr 16 22:36:07 2026 by rpki-client