$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097083532355829763/0/3132342e3139362e34332e302f32342d3234203d3e203233383438.roa File: 3132342e3139362e34332e302f32342d3234203d3e203233383438.roa (raw, json) Hash identifier: v7cKU6y11YcJPY7auhs+ENHftdnLFSFTXTAJS0gSIo8= Subject key identifier: 9C:31:51:87:89:5D:D0:2E:05:C8:F4:4A:14:12:C5:44:B8:57:C3:00 Certificate issuer: /CN=EDA884A79748D57EB49366704CB6A8110E27042D Certificate serial: 25295A359E35FD53A9F2A3A8A6DC31917812BC46 Authority key identifier: ED:A8:84:A7:97:48:D5:7E:B4:93:66:70:4C:B6:A8:11:0E:27:04:2D Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/EDA884A79748D57EB49366704CB6A8110E27042D.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097083532355829763/0/3132342e3139362e34332e302f32342d3234203d3e203233383438.roa Signing time: Thu 16 Apr 2026 09:13:35 +0000 ROA not before: Thu 16 Apr 2026 09:08:35 +0000 ROA not after: Thu 15 Apr 2027 09:13:35 +0000 asID: 23848 IP address blocks: 124.196.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097083532355829763/0/EDA884A79748D57EB49366704CB6A8110E27042D.crl rsync://rpki-rps.cnnic.cn/repo/A1097083532355829763/0/EDA884A79748D57EB49366704CB6A8110E27042D.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/EDA884A79748D57EB49366704CB6A8110E27042D.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 05:50:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:29:5a:35:9e:35:fd:53:a9:f2:a3:a8:a6:dc:31:91:78:12:bc:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EDA884A79748D57EB49366704CB6A8110E27042D Validity Not Before: Apr 16 09:08:35 2026 GMT Not After : Apr 15 09:13:35 2027 GMT Subject: CN=9C315187895DD02E05C8F44A1412C544B857C300 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:fd:cf:7e:51:2f:5e:dc:4e:0f:98:39:68:1a: 9b:2d:aa:00:87:bb:9c:56:37:56:c2:a7:06:b4:39: 39:23:3b:7e:e9:24:9d:96:61:54:a1:97:8a:b4:f5: 66:1b:51:07:75:5f:74:42:6b:38:7f:cd:1e:05:8f: 72:33:8c:b9:b1:8b:a8:ee:65:76:90:25:61:f8:9f: 79:84:d6:0a:32:0b:a8:ca:86:69:bc:9f:2d:ce:fb: d5:ff:93:59:1e:74:07:98:c0:0a:4d:e6:d2:8b:84: 42:4c:3d:d3:c7:f2:e3:02:e8:5a:da:e5:06:15:be: 39:0d:09:8a:32:82:0f:ed:1d:46:46:6c:fa:c2:7f: c5:87:e1:a1:69:17:28:3b:e7:62:a5:e3:ca:26:ce: 51:b7:3e:43:bc:fd:c5:9d:38:90:54:07:db:c5:8a: 9b:6d:bd:08:d3:e1:19:04:00:fc:2a:bc:b1:43:cf: 46:52:fe:61:c6:0e:f0:13:22:a6:2a:26:51:36:86: 33:20:74:84:11:6d:fc:f3:fe:91:ef:7b:61:0f:66: 6b:e6:05:87:b8:0f:e6:4c:9b:d9:75:02:76:e8:89: 78:49:39:db:6b:1e:81:80:82:e5:8d:33:32:0e:72: e1:4f:76:53:72:42:3b:3d:81:00:83:e6:27:a6:cd: 7f:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:31:51:87:89:5D:D0:2E:05:C8:F4:4A:14:12:C5:44:B8:57:C3:00 X509v3 Authority Key Identifier: keyid:ED:A8:84:A7:97:48:D5:7E:B4:93:66:70:4C:B6:A8:11:0E:27:04:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097083532355829763/0/EDA884A79748D57EB49366704CB6A8110E27042D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/EDA884A79748D57EB49366704CB6A8110E27042D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097083532355829763/0/3132342e3139362e34332e302f32342d3234203d3e203233383438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 124.196.43.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:50:24:f8:0c:9e:ed:bf:37:84:3b:aa:8b:f4:c8:ec:bb:53: df:5c:9a:0f:c1:10:d3:fd:59:66:dd:b2:c9:7f:d8:cf:68:7d: 64:d0:fa:e1:44:6d:a8:05:37:eb:a7:8d:b7:94:72:69:d2:66: c6:d0:ca:cc:1e:cc:3f:de:7b:1d:d8:f4:2f:e5:61:47:50:99: 0f:01:a6:e2:d1:f5:32:9b:eb:1c:c5:1c:4f:02:3b:d1:7d:3a: 04:57:57:dd:21:03:6b:db:ff:0a:a9:be:45:53:a2:66:48:91: 3c:d0:05:19:97:10:08:49:3d:8a:71:2f:35:4d:3a:a4:1d:7a: c5:61:f1:20:ce:49:14:f6:15:32:07:25:cd:95:6f:2c:37:86: 0b:66:df:64:1b:82:a3:3f:a3:28:b2:6d:39:ae:5c:4d:a9:0a: bf:ee:2f:29:93:45:e2:9a:93:26:f8:2c:cc:d7:e0:bc:09:82: 1f:46:10:a8:37:a5:2c:d7:5f:7e:04:6c:2f:62:e6:30:bb:87: 5f:53:b7:87:37:84:91:43:f0:2d:01:1b:5e:be:8c:e3:5e:1f: e4:78:e7:da:3a:4e:66:d6:bc:d9:e3:37:4f:7b:45:08:68:e5: c6:c5:00:34:cd:58:d1:d1:5d:0b:2b:b7:73:31:c7:46:ac:23: 3a:4f:7c:d9 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUJSlaNZ41/VOp8qOoptwxkXgSvEYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRURBODg0QTc5NzQ4RDU3RUI0OTM2NjcwNENCNkE4MTEw RTI3MDQyRDAeFw0yNjA0MTYwOTA4MzVaFw0yNzA0MTUwOTEzMzVaMDMxMTAvBgNV BAMTKDlDMzE1MTg3ODk1REQwMkUwNUM4RjQ0QTE0MTJDNTQ0Qjg1N0MzMDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCd/c9+US9e3E4PmDloGpstqgCH u5xWN1bCpwa0OTkjO37pJJ2WYVShl4q09WYbUQd1X3RCazh/zR4Fj3IzjLmxi6ju ZXaQJWH4n3mE1goyC6jKhmm8ny3O+9X/k1kedAeYwApN5tKLhEJMPdPH8uMC6Fra 5QYVvjkNCYoygg/tHUZGbPrCf8WH4aFpFyg752Kl48omzlG3PkO8/cWdOJBUB9vF ipttvQjT4RkEAPwqvLFDz0ZS/mHGDvATIqYqJlE2hjMgdIQRbfzz/pHve2EPZmvm BYe4D+ZMm9l1AnboiXhJOdtrHoGAguWNMzIOcuFPdlNyQjs9gQCD5iemzX+nAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUnDFRh4ld0C4FyPRKFBLFRLhXwwAwHwYDVR0j BBgwFoAU7aiEp5dI1X60k2ZwTLaoEQ4nBC0wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzA4MzUzMjM1NTgyOTc2My8wL0VEQTg4NEE3OTc0OEQ1N0VCNDkzNjY3MDRDQjZB ODExMEUyNzA0MkQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRURBODg0QTc5NzQ4RDU3RUI0OTM2NjcwNENCNkE4MTEwRTI3MDQyRC5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NzA4MzUzMjM1NTgyOTc2My8wLzMxMzIzNDJlMzEz OTM2MmUzNDMzMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzMzM4MzQzOC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAHzEKzANBgkqhkiG9w0BAQsFAAOCAQEAfVAk+Aye7b83hDuqi/TI7LtT 31yaD8EQ0/1ZZt2yyX/Yz2h9ZND64URtqAU366eNt5RyadJmxtDKzB7MP957Hdj0 L+VhR1CZDwGm4tH1MpvrHMUcTwI70X06BFdX3SEDa9v/Cqm+RVOiZkiRPNAFGZcQ CEk9inEvNU06pB16xWHxIM5JFPYVMgclzZVvLDeGC2bfZBuCoz+jKLJtOa5cTakK v+4vKZNF4pqTJvgszNfgvAmCH0YQqDelLNdffgRsL2LmMLuHX1O3hzeEkUPwLQEb Xr6M414f5Hjn2jpOZta82eM3T3tFCGjlxsUANM1Y0dFdCyu3czHHRqwjOk982Q== -----END CERTIFICATE-----Generated at Fri Apr 17 23:25:56 2026 by rpki-client