$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097060105137946625/0/3231392e3233352e3230382e302f32302d3230203d3e203538383334.roa File: 3231392e3233352e3230382e302f32302d3230203d3e203538383334.roa (raw, json) Hash identifier: jkg6tUZ7+qXk3FouI03XOahA6TPu6n/Kjb5AdiASdbY= Subject key identifier: 9D:59:5A:3C:8D:E6:68:FF:36:C8:C3:69:BC:11:2A:46:12:34:53:AF Certificate issuer: /CN=53B0CEC9D00981686264164126DB6F3385680024 Certificate serial: 25234892F873B8EA1D7334B0A880D0C3AD9B89C0 Authority key identifier: 53:B0:CE:C9:D0:09:81:68:62:64:16:41:26:DB:6F:33:85:68:00:24 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/53B0CEC9D00981686264164126DB6F3385680024.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097060105137946625/0/3231392e3233352e3230382e302f32302d3230203d3e203538383334.roa Signing time: Fri 17 Apr 2026 01:28:27 +0000 ROA not before: Fri 17 Apr 2026 01:23:27 +0000 ROA not after: Fri 16 Apr 2027 01:28:27 +0000 asID: 58834 IP address blocks: 219.235.208.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097060105137946625/0/53B0CEC9D00981686264164126DB6F3385680024.crl rsync://rpki-rps.cnnic.cn/repo/A1097060105137946625/0/53B0CEC9D00981686264164126DB6F3385680024.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/53B0CEC9D00981686264164126DB6F3385680024.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 17:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:23:48:92:f8:73:b8:ea:1d:73:34:b0:a8:80:d0:c3:ad:9b:89:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53B0CEC9D00981686264164126DB6F3385680024 Validity Not Before: Apr 17 01:23:27 2026 GMT Not After : Apr 16 01:28:27 2027 GMT Subject: CN=9D595A3C8DE668FF36C8C369BC112A46123453AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:8e:d3:30:c1:a2:2a:3c:d6:fc:7f:30:ba:b6: 5c:d9:56:03:68:09:e3:67:17:13:f5:b9:41:f5:25: 54:43:8c:7f:72:86:85:ab:f0:c6:b5:98:3e:b5:3c: 01:be:5c:61:d9:6d:31:16:fc:4d:41:77:a4:fc:5b: 91:7e:42:0b:a6:9a:e4:31:d6:a8:b5:11:78:4d:ec: b2:b3:7d:20:d7:bd:f8:46:f6:43:05:b2:20:f2:64: 8c:19:2c:20:bc:3a:f1:7c:e7:84:0f:8d:78:e6:e8: d3:f7:aa:14:a0:76:3c:bf:ed:a5:ee:55:6e:3c:4d: f1:7a:03:fd:6e:c0:43:12:75:4b:d8:21:89:5d:17: 0a:0a:e4:8c:25:0e:a4:ed:ec:8a:74:66:08:2f:ff: 54:53:86:df:a9:dc:79:95:06:e0:24:10:8c:0c:6e: 65:8c:e4:31:63:7e:f6:0d:6d:08:9c:77:aa:6f:50: ef:0e:80:b4:e9:59:31:9d:f4:36:88:bf:a7:8c:07: 2d:f6:91:00:60:b0:73:1c:81:5d:a9:08:63:12:51: 93:41:5c:d5:f0:07:6b:a0:32:5a:a3:73:17:d4:b1: 0a:9d:d1:6d:6d:23:e4:ae:bf:f0:f8:52:67:a7:aa: e6:ad:d1:29:ce:7e:53:09:3f:c2:e7:a2:60:c0:81: 81:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:59:5A:3C:8D:E6:68:FF:36:C8:C3:69:BC:11:2A:46:12:34:53:AF X509v3 Authority Key Identifier: keyid:53:B0:CE:C9:D0:09:81:68:62:64:16:41:26:DB:6F:33:85:68:00:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097060105137946625/0/53B0CEC9D00981686264164126DB6F3385680024.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/53B0CEC9D00981686264164126DB6F3385680024.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097060105137946625/0/3231392e3233352e3230382e302f32302d3230203d3e203538383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 219.235.208.0/20 Signature Algorithm: sha256WithRSAEncryption 5d:2b:d5:6e:1f:99:49:60:6a:13:38:85:72:82:70:f1:29:c7: fa:de:92:d6:5c:73:98:b7:5a:15:7c:fc:7b:32:18:ca:75:9d: 9a:d0:0d:f7:c3:35:c0:84:af:95:9e:83:e4:46:37:71:5d:76: 66:c0:70:92:eb:bc:95:81:7c:ec:6a:80:88:77:16:fa:8a:ea: 3f:80:5b:2b:d7:4b:1c:bf:5e:c2:97:8e:7c:1a:35:17:f0:25: 85:89:e3:f1:9e:7b:a9:21:58:76:ad:7b:fb:74:13:d2:b5:75: f6:be:62:3e:3d:a8:6a:ad:87:03:e1:82:e4:2d:f4:7e:d8:7f: 96:bc:22:4f:fe:f0:20:0a:b5:41:b5:e0:bd:ab:d3:f3:d1:14: 90:2e:41:0a:31:bf:e7:f2:e6:15:23:4a:ca:38:70:95:9e:b5: c8:39:39:dd:9c:9e:e7:43:5a:c3:e0:d3:6d:95:04:d5:f2:66: b5:9a:a8:3d:51:e9:ea:2a:20:2f:a6:fa:57:56:fa:5b:a5:6f: 49:e6:0c:34:ee:db:3c:85:b4:9b:b0:b0:70:cb:9b:3d:2e:a4: f4:31:e3:a0:9a:63:9a:75:0c:76:ae:77:42:9e:79:1c:a0:29: b9:6f:ff:a7:dd:75:1f:27:4a:84:7f:b1:4e:d8:4a:d5:ae:b1: b9:0b:8d:55 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUJSNIkvhzuOodczSwqIDQw62bicAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTNCMENFQzlEMDA5ODE2ODYyNjQxNjQxMjZEQjZGMzM4 NTY4MDAyNDAeFw0yNjA0MTcwMTIzMjdaFw0yNzA0MTYwMTI4MjdaMDMxMTAvBgNV BAMTKDlENTk1QTNDOERFNjY4RkYzNkM4QzM2OUJDMTEyQTQ2MTIzNDUzQUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsjtMwwaIqPNb8fzC6tlzZVgNo CeNnFxP1uUH1JVRDjH9yhoWr8Ma1mD61PAG+XGHZbTEW/E1Bd6T8W5F+QgummuQx 1qi1EXhN7LKzfSDXvfhG9kMFsiDyZIwZLCC8OvF854QPjXjm6NP3qhSgdjy/7aXu VW48TfF6A/1uwEMSdUvYIYldFwoK5IwlDqTt7Ip0Zggv/1RTht+p3HmVBuAkEIwM bmWM5DFjfvYNbQicd6pvUO8OgLTpWTGd9DaIv6eMBy32kQBgsHMcgV2pCGMSUZNB XNXwB2ugMlqjcxfUsQqd0W1tI+Suv/D4Umenquat0SnOflMJP8LnomDAgYHnAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUnVlaPI3maP82yMNpvBEqRhI0U68wHwYDVR0j BBgwFoAUU7DOydAJgWhiZBZBJttvM4VoACQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzA2MDEwNTEzNzk0NjYyNS8wLzUzQjBDRUM5RDAwOTgxNjg2MjY0MTY0MTI2REI2 RjMzODU2ODAwMjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTNCMENFQzlEMDA5ODE2ODYyNjQxNjQxMjZEQjZGMzM4NTY4MDAyNC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTcwNjAxMDUxMzc5NDY2MjUvMC8zMjMxMzkyZTMy MzMzNTJlMzIzMDM4MmUzMDJmMzIzMDJkMzIzMDIwM2QzZTIwMzUzODM4MzMzNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEBNvr0DANBgkqhkiG9w0BAQsFAAOCAQEAXSvVbh+ZSWBqEziFcoJw 8SnH+t6S1lxzmLdaFXz8ezIYynWdmtAN98M1wISvlZ6D5EY3cV12ZsBwkuu8lYF8 7GqAiHcW+orqP4BbK9dLHL9ewpeOfBo1F/AlhYnj8Z57qSFYdq17+3QT0rV19r5i Pj2oaq2HA+GC5C30fth/lrwiT/7wIAq1QbXgvavT89EUkC5BCjG/5/LmFSNKyjhw lZ61yDk53Zye50Naw+DTbZUE1fJmtZqoPVHp6iogL6b6V1b6W6VvSeYMNO7bPIW0 m7CwcMubPS6k9DHjoJpjmnUMdq53Qp55HKApuW//p911HydKhH+xTthK1a6xuQuN VQ== -----END CERTIFICATE-----Generated at Sat Apr 18 02:42:38 2026 by rpki-client