$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096704593695342593/1/31342e3230342e32302e302f32322d3232203d3e2034383337.roa File: 31342e3230342e32302e302f32322d3232203d3e2034383337.roa (raw, json) Hash identifier: cS84L3kpY6d51GH4oBbeVLHgzf4uzePH06qCeqVpz1s= Subject key identifier: F1:F3:BA:48:12:6D:AF:EA:7E:78:F7:9D:5A:47:1D:2A:47:86:17:48 Certificate issuer: /CN=A9143CB30000/serialNumber=8A1B4E4A63295F18B4F06FFF6AD02C3165BF9925 Certificate serial: 4AF01339973CF9AE08C9FF7EC9AF07AA3EE58FF2 Authority key identifier: 8A:1B:4E:4A:63:29:5F:18:B4:F0:6F:FF:6A:D0:2C:31:65:BF:99:25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihtOSmMpXxi08G__atAsMWW_mSU.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096704593695342593/1/31342e3230342e32302e302f32322d3232203d3e2034383337.roa Signing time: Wed 13 May 2026 02:50:07 +0000 ROA not before: Wed 13 May 2026 02:45:07 +0000 ROA not after: Wed 12 May 2027 02:50:07 +0000 asID: 4837 IP address blocks: 14.204.20.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096704593695342593/1/8A1B4E4A63295F18B4F06FFF6AD02C3165BF9925.crl rsync://rpki-rps.cnnic.cn/repo/A1096704593695342593/1/8A1B4E4A63295F18B4F06FFF6AD02C3165BF9925.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihtOSmMpXxi08G__atAsMWW_mSU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:f0:13:39:97:3c:f9:ae:08:c9:ff:7e:c9:af:07:aa:3e:e5:8f:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143CB30000, serialNumber=8A1B4E4A63295F18B4F06FFF6AD02C3165BF9925 Validity Not Before: May 13 02:45:07 2026 GMT Not After : May 12 02:50:07 2027 GMT Subject: CN=F1F3BA48126DAFEA7E78F79D5A471D2A47861748 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:8e:9d:77:84:3d:a9:7f:3a:cf:62:6f:6d:7a: 7a:42:32:78:10:12:e2:35:22:f0:e0:83:bd:53:10: 45:a5:1d:25:4f:f1:52:07:ac:e2:4a:40:b0:83:c3: 63:65:37:b6:ba:21:cd:e8:2e:b5:7a:6d:53:33:06: d9:34:22:5f:c4:92:81:d5:2b:6f:7e:48:bb:64:01: aa:a2:fe:f8:7c:b3:2a:92:a6:bd:f3:b9:d9:33:46: 5b:e3:b4:09:95:8c:96:08:d7:bf:66:51:62:55:82: a9:37:8d:53:14:e6:95:d8:3e:f3:23:d9:0d:a7:94: b0:d6:fe:ab:a3:b1:57:ef:c7:36:86:42:34:3b:71: 74:69:f5:55:f3:79:f8:01:a9:de:e9:33:43:cd:a5: 09:d1:aa:d8:bf:a1:db:02:f8:34:d3:5b:ea:2b:3e: 83:a3:72:32:53:aa:59:83:c8:86:d8:7b:d2:82:1e: b0:08:00:d1:6c:83:ea:14:10:ec:54:02:7f:d7:ea: e4:34:ea:8b:33:d8:09:ff:bb:12:5d:2f:53:3c:8b: 1a:e6:c1:da:cf:fc:fe:19:4c:63:76:cf:bf:9d:6c: 16:ee:47:38:27:77:94:15:25:24:6f:d6:e4:ab:a3: 37:66:2e:18:28:c7:20:e8:0c:ed:e8:07:6c:77:d7: a9:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:F3:BA:48:12:6D:AF:EA:7E:78:F7:9D:5A:47:1D:2A:47:86:17:48 X509v3 Authority Key Identifier: keyid:8A:1B:4E:4A:63:29:5F:18:B4:F0:6F:FF:6A:D0:2C:31:65:BF:99:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096704593695342593/1/8A1B4E4A63295F18B4F06FFF6AD02C3165BF9925.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihtOSmMpXxi08G__atAsMWW_mSU.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096704593695342593/1/31342e3230342e32302e302f32322d3232203d3e2034383337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 14.204.20.0/22 Signature Algorithm: sha256WithRSAEncryption a1:46:63:c0:9b:82:4d:94:ce:0b:0f:45:84:ca:62:29:e9:ff: 7a:c2:05:54:bd:99:17:5d:46:2a:6b:8a:79:9b:4e:4f:ef:30: d6:18:9f:b0:1c:e7:52:74:ad:bc:dd:49:c8:6a:1d:00:a0:30: e1:07:7f:1b:d4:10:39:19:37:4f:3a:d7:96:c1:17:71:5b:22: 0f:5b:62:8e:2f:bc:eb:d1:b4:e9:a5:1b:c1:c9:e8:1f:e1:21: 2a:74:19:01:ed:ec:0d:f1:e9:00:0f:48:8a:cb:f4:5a:d4:99: ac:e6:7a:9b:2e:d6:40:9f:d3:78:36:d2:4c:f9:65:e6:c6:3d: 7f:fe:b1:3b:35:31:8d:64:9d:35:6b:74:92:39:ef:a3:99:18: 2d:b6:84:c8:11:c9:f3:e1:65:8e:8f:0a:9f:26:65:a4:6c:6c: 5c:ed:32:69:6a:d7:b1:88:30:86:11:e3:87:e1:5f:60:83:a2: 98:dc:f1:99:79:21:dc:a4:f9:51:4f:87:fc:fc:2d:ba:73:96: 5c:5d:ee:5a:64:35:7a:ab:d5:52:47:88:ae:f7:9e:ef:f4:e0: 2e:2e:39:57:0e:ec:8b:2d:0e:63:bc:e9:55:45:c5:ec:9b:34: b9:fb:b3:b8:d8:45:4c:50:2c:45:18:4d:c3:c5:fd:0f:ed:d3: 70:9f:cf:6a -----BEGIN CERTIFICATE----- MIIFHDCCBASgAwIBAgIUSvATOZc8+a4Iyf9+ya8Hqj7lj/IwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNDNDQjMwMDAwMTEwLwYDVQQFEyg4QTFCNEU0QTYz Mjk1RjE4QjRGMDZGRkY2QUQwMkMzMTY1QkY5OTI1MB4XDTI2MDUxMzAyNDUwN1oX DTI3MDUxMjAyNTAwN1owMzExMC8GA1UEAxMoRjFGM0JBNDgxMjZEQUZFQTdFNzhG NzlENUE0NzFEMkE0Nzg2MTc0ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALGOnXeEPal/Os9ib216ekIyeBAS4jUi8OCDvVMQRaUdJU/xUges4kpAsIPD Y2U3trohzegutXptUzMG2TQiX8SSgdUrb35Iu2QBqqL++HyzKpKmvfO52TNGW+O0 CZWMlgjXv2ZRYlWCqTeNUxTmldg+8yPZDaeUsNb+q6OxV+/HNoZCNDtxdGn1VfN5 +AGp3ukzQ82lCdGq2L+h2wL4NNNb6is+g6NyMlOqWYPIhth70oIesAgA0WyD6hQQ 7FQCf9fq5DTqizPYCf+7El0vUzyLGubB2s/8/hlMY3bPv51sFu5HOCd3lBUlJG/W 5KujN2YuGCjHIOgM7egHbHfXqYECAwEAAaOCAg8wggILMB0GA1UdDgQWBBTx87pI Em2v6n54951aRx0qR4YXSDAfBgNVHSMEGDAWgBSKG05KYylfGLTwb/9q0CwxZb+Z JTAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk2NzA0NTkzNjk1MzQyNTkzLzEvOEExQjRF NEE2MzI5NUYxOEI0RjA2RkZGNkFEMDJDMzE2NUJGOTkyNS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvaWh0T1NtTXBY eGkwOEdfX2F0QXNNV1dfbVNVLmNlcjCBiAYIKwYBBQUHAQsEfDB6MHgGCCsGAQUF BzALhmxyc3luYzovL3Jwa2ktcnBzLmNubmljLmNuL3JlcG8vQTEwOTY3MDQ1OTM2 OTUzNDI1OTMvMS8zMTM0MmUzMjMwMzQyZTMyMzAyZTMwMmYzMjMyMmQzMjMyMjAz ZDNlMjAzNDM4MzMzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggr BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAg7MFDANBgkqhkiG9w0BAQsFAAOCAQEA oUZjwJuCTZTOCw9FhMpiKen/esIFVL2ZF11GKmuKeZtOT+8w1hifsBznUnStvN1J yGodAKAw4Qd/G9QQORk3TzrXlsEXcVsiD1tiji+869G06aUbwcnoH+EhKnQZAe3s DfHpAA9Iisv0WtSZrOZ6my7WQJ/TeDbSTPll5sY9f/6xOzUxjWSdNWt0kjnvo5kY LbaEyBHJ8+Fljo8KnyZlpGxsXO0yaWrXsYgwhhHjh+FfYIOimNzxmXkh3KT5UU+H /PwtunOWXF3uWmQ1eqvVUkeIrvee7/TgLi45Vw7siy0OY7zpVUXF7Js0ufuzuNhF TFAsRRhNw8X9D+3TcJ/Pag== -----END CERTIFICATE-----Generated at Wed May 13 07:46:39 2026 by rpki-client