$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097161405301260290/0/3232332e3235352e3233392e302f32342d3234203d3e203536303030.roa File: 3232332e3235352e3233392e302f32342d3234203d3e203536303030.roa (raw, json) Hash identifier: hOx7RICfLL6wLfEZuyeFfup3kP4OhsdcyjT0B7ETRfw= Subject key identifier: 46:55:AB:B8:66:1B:DA:EE:4E:22:1F:A5:B3:ED:56:B7:4D:8C:8D:FD Certificate issuer: /CN=86543D1F2F4A32A976AD0690E9A23AA2D621AC7D Certificate serial: 1CA2842282FB8FAECA7D5CBDAB090D309AD1E475 Authority key identifier: 86:54:3D:1F:2F:4A:32:A9:76:AD:06:90:E9:A2:3A:A2:D6:21:AC:7D Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/86543D1F2F4A32A976AD0690E9A23AA2D621AC7D.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097161405301260290/0/3232332e3235352e3233392e302f32342d3234203d3e203536303030.roa Signing time: Thu 16 Apr 2026 14:09:57 +0000 ROA not before: Thu 16 Apr 2026 14:04:57 +0000 ROA not after: Thu 15 Apr 2027 14:09:57 +0000 asID: 56000 IP address blocks: 223.255.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097161405301260290/0/86543D1F2F4A32A976AD0690E9A23AA2D621AC7D.crl rsync://rpki-rps.cnnic.cn/repo/A1097161405301260290/0/86543D1F2F4A32A976AD0690E9A23AA2D621AC7D.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/86543D1F2F4A32A976AD0690E9A23AA2D621AC7D.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 11:47:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:a2:84:22:82:fb:8f:ae:ca:7d:5c:bd:ab:09:0d:30:9a:d1:e4:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86543D1F2F4A32A976AD0690E9A23AA2D621AC7D Validity Not Before: Apr 16 14:04:57 2026 GMT Not After : Apr 15 14:09:57 2027 GMT Subject: CN=4655ABB8661BDAEE4E221FA5B3ED56B74D8C8DFD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:bb:35:de:e6:31:f2:69:f2:93:da:d6:7e:48: 6b:7f:a0:59:f7:0c:8d:e6:0c:4f:cd:82:8a:69:37: 42:dd:df:72:9f:90:e1:2b:fa:81:bb:7d:13:72:78: 23:72:31:d7:f6:de:3c:19:22:9c:35:d8:d2:45:58: 02:b6:93:4a:fb:88:00:31:48:8f:4b:b5:32:84:13: 81:44:68:02:8b:6e:41:a7:32:ee:2b:33:28:9d:74: 46:07:c8:19:79:40:9c:fd:75:0c:4c:2b:af:4a:cd: 92:ad:49:dc:e1:5f:03:24:b1:6d:c5:ab:ff:c5:07: 6f:f6:d0:f4:94:94:35:e8:8c:82:4b:34:ba:6f:2b: 1b:e4:fb:ae:a4:c6:23:c2:65:ef:20:d9:26:30:14: bb:b2:aa:00:3a:0d:83:ef:bc:2d:5f:98:16:7f:4f: a6:95:9e:23:01:4b:4c:05:12:62:34:81:3c:a4:d9: 68:c6:1d:f3:9a:34:1d:e6:5b:9c:60:34:e6:72:ed: 58:3a:51:40:76:5d:59:c8:c1:37:f3:d5:16:f7:2c: a5:2e:8b:b6:d3:61:bc:3c:25:db:72:d3:8a:7e:9f: 99:2c:8c:df:29:51:1c:1b:73:13:e5:10:7e:4c:f7: 1f:9a:25:e1:4f:ab:c2:52:68:02:43:1d:97:5f:14: 58:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:55:AB:B8:66:1B:DA:EE:4E:22:1F:A5:B3:ED:56:B7:4D:8C:8D:FD X509v3 Authority Key Identifier: keyid:86:54:3D:1F:2F:4A:32:A9:76:AD:06:90:E9:A2:3A:A2:D6:21:AC:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097161405301260290/0/86543D1F2F4A32A976AD0690E9A23AA2D621AC7D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/86543D1F2F4A32A976AD0690E9A23AA2D621AC7D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097161405301260290/0/3232332e3235352e3233392e302f32342d3234203d3e203536303030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.255.239.0/24 Signature Algorithm: sha256WithRSAEncryption 48:d0:3f:1d:89:ae:70:8c:d2:e9:00:29:63:7a:38:e4:8d:ab: 7c:07:b4:02:33:9c:39:88:96:1d:78:ed:aa:ca:47:0a:a2:6b: 50:2c:c9:36:98:92:06:25:62:57:90:26:c1:c4:c8:fd:f1:b0: 3b:29:f7:d8:d1:e3:c1:51:80:4e:c9:98:19:e7:ca:67:44:e9: 4a:d2:ae:5f:f1:cf:0b:ec:c1:19:0d:11:2f:5f:38:26:ce:a4: 11:3a:67:f8:3d:ed:56:36:db:fb:89:9a:d9:ce:e4:a7:d6:84: 06:d3:fd:0b:b2:9e:06:2d:02:42:ef:88:3c:ed:27:80:34:69: 5f:c5:91:f5:81:e0:54:45:66:10:bd:ac:79:28:23:48:f8:1a: fc:a9:a7:57:dc:20:f2:3c:a8:ba:73:ed:25:4b:34:fa:fa:14: 2b:37:7a:82:1f:c9:c6:8a:a4:57:74:b4:11:3f:17:d3:81:24: 2f:f1:9e:3c:68:15:9e:e2:22:10:d1:f7:0b:31:a9:4c:0e:77: b4:86:05:c9:42:c1:27:01:f6:0f:e1:65:5d:4d:be:56:43:32: af:6c:e7:25:9b:f5:a8:5a:88:d9:5f:21:3a:b5:bb:55:64:1b: 9f:2c:6d:2d:fe:cd:ee:9e:7c:22:21:f8:7e:48:50:da:0b:95: a6:fb:54:c0 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUHKKEIoL7j67KfVy9qwkNMJrR5HUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODY1NDNEMUYyRjRBMzJBOTc2QUQwNjkwRTlBMjNBQTJE NjIxQUM3RDAeFw0yNjA0MTYxNDA0NTdaFw0yNzA0MTUxNDA5NTdaMDMxMTAvBgNV BAMTKDQ2NTVBQkI4NjYxQkRBRUU0RTIyMUZBNUIzRUQ1NkI3NEQ4QzhERkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCluzXe5jHyafKT2tZ+SGt/oFn3 DI3mDE/NgoppN0Ld33KfkOEr+oG7fRNyeCNyMdf23jwZIpw12NJFWAK2k0r7iAAx SI9LtTKEE4FEaAKLbkGnMu4rMyiddEYHyBl5QJz9dQxMK69KzZKtSdzhXwMksW3F q//FB2/20PSUlDXojIJLNLpvKxvk+66kxiPCZe8g2SYwFLuyqgA6DYPvvC1fmBZ/ T6aVniMBS0wFEmI0gTyk2WjGHfOaNB3mW5xgNOZy7Vg6UUB2XVnIwTfz1Rb3LKUu i7bTYbw8Jdty04p+n5ksjN8pURwbcxPlEH5M9x+aJeFPq8JSaAJDHZdfFFhnAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQURlWruGYb2u5OIh+ls+1Wt02Mjf0wHwYDVR0j BBgwFoAUhlQ9Hy9KMql2rQaQ6aI6otYhrH0wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzE2MTQwNTMwMTI2MDI5MC8wLzg2NTQzRDFGMkY0QTMyQTk3NkFEMDY5MEU5QTIz QUEyRDYyMUFDN0QuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvODY1NDNEMUYyRjRBMzJBOTc2QUQwNjkwRTlBMjNBQTJENjIxQUM3RC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTcxNjE0MDUzMDEyNjAyOTAvMC8zMjMyMzMyZTMy MzUzNTJlMzIzMzM5MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzUzNjMwMzAzMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAN//7zANBgkqhkiG9w0BAQsFAAOCAQEASNA/HYmucIzS6QApY3o4 5I2rfAe0AjOcOYiWHXjtqspHCqJrUCzJNpiSBiViV5AmwcTI/fGwOyn32NHjwVGA TsmYGefKZ0TpStKuX/HPC+zBGQ0RL184Js6kETpn+D3tVjbb+4ma2c7kp9aEBtP9 C7KeBi0CQu+IPO0ngDRpX8WR9YHgVEVmEL2seSgjSPga/KmnV9wg8jyounPtJUs0 +voUKzd6gh/JxoqkV3S0ET8X04EkL/GePGgVnuIiENH3CzGpTA53tIYFyULBJwH2 D+FlXU2+VkMyr2znJZv1qFqI2V8hOrW7VWQbnyxtLf7N7p58IiH4fkhQ2guVpvtU wA== -----END CERTIFICATE-----Generated at Sat Apr 18 01:20:52 2026 by rpki-client