$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097161405301260290/0/3232332e3235352e3233372e302f32342d3234203d3e203536303030.roa File: 3232332e3235352e3233372e302f32342d3234203d3e203536303030.roa (raw, json) Hash identifier: qUwf0o69H6ppCY6mm1AEhhtTQQ3The81VFkirYuq60I= Subject key identifier: 56:F7:B7:AE:7B:CA:E3:B9:B4:F8:0C:72:A7:A3:F0:30:79:EF:25:A6 Certificate issuer: /CN=86543D1F2F4A32A976AD0690E9A23AA2D621AC7D Certificate serial: 557C166CE6010E8B6DE599730FEFA5C6346BB021 Authority key identifier: 86:54:3D:1F:2F:4A:32:A9:76:AD:06:90:E9:A2:3A:A2:D6:21:AC:7D Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/86543D1F2F4A32A976AD0690E9A23AA2D621AC7D.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097161405301260290/0/3232332e3235352e3233372e302f32342d3234203d3e203536303030.roa Signing time: Thu 16 Apr 2026 14:09:57 +0000 ROA not before: Thu 16 Apr 2026 14:04:57 +0000 ROA not after: Thu 15 Apr 2027 14:09:57 +0000 asID: 56000 IP address blocks: 223.255.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097161405301260290/0/86543D1F2F4A32A976AD0690E9A23AA2D621AC7D.crl rsync://rpki-rps.cnnic.cn/repo/A1097161405301260290/0/86543D1F2F4A32A976AD0690E9A23AA2D621AC7D.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/86543D1F2F4A32A976AD0690E9A23AA2D621AC7D.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 11:47:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:7c:16:6c:e6:01:0e:8b:6d:e5:99:73:0f:ef:a5:c6:34:6b:b0:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86543D1F2F4A32A976AD0690E9A23AA2D621AC7D Validity Not Before: Apr 16 14:04:57 2026 GMT Not After : Apr 15 14:09:57 2027 GMT Subject: CN=56F7B7AE7BCAE3B9B4F80C72A7A3F03079EF25A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:14:91:53:2a:4e:c4:7d:f8:84:14:0f:d4:8e: ac:26:8b:b3:78:04:02:75:aa:f5:37:03:01:a5:94: 9a:e2:7f:57:c7:c9:71:c2:01:a7:5f:9d:02:76:f8: b5:b5:40:9c:29:d4:73:d1:58:e0:5d:01:35:06:c1: 3e:76:78:a0:c6:c2:59:b7:49:b5:e9:49:31:dc:3f: 3e:03:b6:a8:f3:f5:2d:2f:15:36:67:6c:25:a8:9e: b3:54:ea:b2:f9:61:b3:e7:0b:86:fa:f2:6d:b2:95: 34:eb:39:3b:b1:d9:cb:3c:1a:dc:e5:a6:78:49:54: 47:4d:2a:6f:c2:5b:2d:c0:34:d4:c3:50:43:61:6c: ff:e1:b6:de:b4:a1:4e:3e:a6:7b:0a:32:0a:cc:3b: 32:2e:bd:15:29:43:62:dd:4c:26:cc:b6:30:22:12: 5f:dc:be:5d:4b:9b:1e:52:27:6d:1d:92:b4:c2:58: 12:f4:c9:f1:bb:bc:47:9a:bb:c1:1e:ba:d3:1e:d4: ae:8f:e9:a4:d0:69:c1:67:65:e1:5e:0b:44:77:34: 8d:e6:e9:ca:13:9a:58:91:59:3f:68:b5:b3:b3:c6: ac:af:72:2e:3e:70:5e:29:12:36:ee:d6:6f:2e:d8: 45:02:b3:dd:f9:e5:00:3a:ee:24:d1:30:88:59:d5: 91:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:F7:B7:AE:7B:CA:E3:B9:B4:F8:0C:72:A7:A3:F0:30:79:EF:25:A6 X509v3 Authority Key Identifier: keyid:86:54:3D:1F:2F:4A:32:A9:76:AD:06:90:E9:A2:3A:A2:D6:21:AC:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097161405301260290/0/86543D1F2F4A32A976AD0690E9A23AA2D621AC7D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/86543D1F2F4A32A976AD0690E9A23AA2D621AC7D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097161405301260290/0/3232332e3235352e3233372e302f32342d3234203d3e203536303030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.255.237.0/24 Signature Algorithm: sha256WithRSAEncryption 89:c6:09:1c:02:e7:62:2c:1a:2d:4c:1e:24:72:50:ac:fe:27: 75:b3:27:ba:e6:ea:ae:1e:11:39:5e:5e:03:bd:8d:37:64:f0: 9a:b2:2b:45:0c:9e:24:63:99:d8:4c:91:35:3b:89:56:87:cb: f5:de:c2:8b:ca:63:5a:76:e0:bf:c1:6c:b4:8c:7f:48:f9:4d: bd:76:90:b7:1d:42:c8:3a:a4:c6:c2:e7:f4:28:21:83:4b:5b: cb:d6:84:3c:6e:60:01:3d:e4:f4:4d:4a:77:61:54:3e:6d:a2: d1:d9:d1:86:e8:ce:87:df:49:b3:5a:53:c4:eb:b5:bd:e1:d4: b5:4e:44:67:06:60:0e:04:3a:ba:45:05:37:6f:91:c9:27:5d: f5:89:71:ee:21:29:11:4b:71:09:83:34:9a:f1:e8:7a:0e:fb: 24:00:80:2c:07:33:b9:5c:c1:db:3c:94:84:a3:45:9c:28:12: 8b:39:2e:a4:5e:b3:56:50:9e:b7:5e:1a:e5:d2:a6:5f:23:5f: b8:a0:e6:48:c1:78:f4:8d:c8:83:45:af:d5:e7:b6:a9:e3:f9: d1:d7:4d:a6:ab:a1:17:2d:ae:b1:fa:75:ad:a1:6a:06:41:ed: ad:ec:1b:41:3f:d5:b6:70:db:d2:89:10:97:73:1a:a2:64:dc: 46:59:45:7e -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUVXwWbOYBDott5ZlzD++lxjRrsCEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODY1NDNEMUYyRjRBMzJBOTc2QUQwNjkwRTlBMjNBQTJE NjIxQUM3RDAeFw0yNjA0MTYxNDA0NTdaFw0yNzA0MTUxNDA5NTdaMDMxMTAvBgNV BAMTKDU2RjdCN0FFN0JDQUUzQjlCNEY4MEM3MkE3QTNGMDMwNzlFRjI1QTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYFJFTKk7EffiEFA/Ujqwmi7N4 BAJ1qvU3AwGllJrif1fHyXHCAadfnQJ2+LW1QJwp1HPRWOBdATUGwT52eKDGwlm3 SbXpSTHcPz4Dtqjz9S0vFTZnbCWonrNU6rL5YbPnC4b68m2ylTTrOTux2cs8Gtzl pnhJVEdNKm/CWy3ANNTDUENhbP/htt60oU4+pnsKMgrMOzIuvRUpQ2LdTCbMtjAi El/cvl1Lmx5SJ20dkrTCWBL0yfG7vEeau8EeutMe1K6P6aTQacFnZeFeC0R3NI3m 6coTmliRWT9otbOzxqyvci4+cF4pEjbu1m8u2EUCs9355QA67iTRMIhZ1ZFNAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUVve3rnvK47m0+Axyp6PwMHnvJaYwHwYDVR0j BBgwFoAUhlQ9Hy9KMql2rQaQ6aI6otYhrH0wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzE2MTQwNTMwMTI2MDI5MC8wLzg2NTQzRDFGMkY0QTMyQTk3NkFEMDY5MEU5QTIz QUEyRDYyMUFDN0QuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvODY1NDNEMUYyRjRBMzJBOTc2QUQwNjkwRTlBMjNBQTJENjIxQUM3RC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTcxNjE0MDUzMDEyNjAyOTAvMC8zMjMyMzMyZTMy MzUzNTJlMzIzMzM3MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzUzNjMwMzAzMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAN//7TANBgkqhkiG9w0BAQsFAAOCAQEAicYJHALnYiwaLUweJHJQ rP4ndbMnuubqrh4ROV5eA72NN2TwmrIrRQyeJGOZ2EyRNTuJVofL9d7Ci8pjWnbg v8FstIx/SPlNvXaQtx1CyDqkxsLn9Cghg0tby9aEPG5gAT3k9E1Kd2FUPm2i0dnR hujOh99Js1pTxOu1veHUtU5EZwZgDgQ6ukUFN2+RySdd9Ylx7iEpEUtxCYM0mvHo eg77JACALAczuVzB2zyUhKNFnCgSizkupF6zVlCet14a5dKmXyNfuKDmSMF49I3I g0Wv1ee2qeP50ddNpquhFy2usfp1raFqBkHtrewbQT/VtnDb0okQl3MaomTcRllF fg== -----END CERTIFICATE-----Generated at Sat Apr 18 01:20:51 2026 by rpki-client