$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1100968758509305858/0/3231302e352e32332e302f32342d3234203d3e203137373736.roa File: 3231302e352e32332e302f32342d3234203d3e203137373736.roa (raw, json) Hash identifier: CBDq//KTrudEK43TZH478vuSA5Xz93bmjoKYQsdOi1U= Subject key identifier: DD:73:47:A7:E5:6E:DA:E0:09:5A:6A:ED:58:21:64:CF:61:25:8D:2E Certificate issuer: /CN=9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF Certificate serial: 379B4F3F7CFD6329494D5E3EB9C3F50E37D7D2DC Authority key identifier: 93:13:66:50:20:BD:F9:5D:FA:4A:AC:0E:1E:4A:9A:8E:16:F3:A7:EF Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1100968758509305858/0/3231302e352e32332e302f32342d3234203d3e203137373736.roa Signing time: Mon 27 Apr 2026 08:38:24 +0000 ROA not before: Mon 27 Apr 2026 08:33:24 +0000 ROA not after: Mon 26 Apr 2027 08:38:24 +0000 asID: 17776 IP address blocks: 210.5.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1100968758509305858/0/9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF.crl rsync://rpki-rps.cnnic.cn/repo/A1100968758509305858/0/9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:9b:4f:3f:7c:fd:63:29:49:4d:5e:3e:b9:c3:f5:0e:37:d7:d2:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF Validity Not Before: Apr 27 08:33:24 2026 GMT Not After : Apr 26 08:38:24 2027 GMT Subject: CN=DD7347A7E56EDAE0095A6AED582164CF61258D2E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:89:bc:79:f4:f6:4b:cd:06:46:9d:f4:04:fe: 7e:2a:b1:5f:82:e6:78:92:20:ae:cb:20:68:99:43: 82:a6:22:a0:8d:16:4f:a8:12:45:8d:37:a8:86:7c: bc:63:35:bf:9c:54:9c:08:49:d3:99:35:b6:bc:b6: e1:bc:a4:a3:db:e8:c0:bf:92:f1:c4:d5:e0:ed:7b: bc:9a:7a:38:c4:fa:ce:a4:ce:fd:4a:8d:2c:ab:fc: ee:3b:ce:dc:77:7b:b9:7e:78:38:b9:2f:31:37:9c: dd:91:a3:3c:5d:ca:40:ee:26:9c:e5:57:1f:78:95: 70:b2:bc:8a:50:bc:ac:67:1a:ba:b5:17:88:0e:52: 19:61:16:1c:b8:e4:45:95:96:4a:87:83:9e:45:1e: 1c:82:7e:77:c5:1e:ce:3e:93:68:9d:07:eb:d0:8e: ad:e1:ea:fb:5e:ee:66:0e:15:d0:b8:fb:c4:5b:58: 91:c0:d4:31:6a:3d:fc:bb:02:b2:c0:86:87:3f:1c: 4c:02:7e:06:cf:41:8d:b8:cc:72:d5:37:a2:2f:bd: 2b:e3:46:78:1e:6b:d5:f8:29:b4:9b:98:6a:15:89: 63:62:02:40:59:a6:1d:b9:a3:7d:b1:8d:c3:a5:33: 9d:76:52:f4:e6:ff:24:a2:53:47:a8:5b:0b:0d:71: 12:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:73:47:A7:E5:6E:DA:E0:09:5A:6A:ED:58:21:64:CF:61:25:8D:2E X509v3 Authority Key Identifier: keyid:93:13:66:50:20:BD:F9:5D:FA:4A:AC:0E:1E:4A:9A:8E:16:F3:A7:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1100968758509305858/0/9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1100968758509305858/0/3231302e352e32332e302f32342d3234203d3e203137373736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.5.23.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:68:e6:fb:b2:87:41:54:80:91:b2:ff:4b:18:87:41:2a:e1: 1d:be:2a:8e:49:62:80:f2:62:e0:97:41:41:f7:c3:c3:82:f0: 28:5d:81:9e:0c:61:9e:80:93:2c:69:ff:22:da:cb:c0:e5:93: 5d:9d:51:3f:52:ab:4a:54:27:96:66:71:7c:e2:01:50:ea:cb: 33:f8:c9:1d:d9:ac:f9:de:6f:99:68:04:60:c2:04:24:25:7c: b2:4d:29:5a:f2:ff:0c:e5:b4:40:1e:b8:de:c5:3f:e3:f9:7f: 2f:00:3f:11:5e:25:84:ea:d2:cd:ce:ce:d6:69:46:bd:af:d3: eb:fd:37:9e:f9:7d:76:9d:24:5d:62:3a:d9:25:2c:16:b1:34: bc:18:b6:6f:92:e1:7d:96:40:d8:90:70:85:8b:6d:32:bd:6d: 07:e7:6c:47:1b:a7:01:f9:2f:96:98:6b:95:5a:75:a3:87:7d: 0f:54:84:4a:94:7c:e5:11:f1:c8:b1:ea:bf:19:72:58:ba:2e: 65:4e:b6:64:05:1c:ed:87:95:a5:9d:e4:b2:9f:92:43:5d:bd: 38:9c:40:30:7f:f3:e4:09:97:2a:37:aa:72:38:f5:ad:3c:7e: b1:65:ee:4c:6f:ad:fb:da:d7:23:14:fc:c6:b2:60:3f:b9:bf: 5f:2a:54:71 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUN5tPP3z9YylJTV4+ucP1DjfX0twwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTMxMzY2NTAyMEJERjk1REZBNEFBQzBFMUU0QTlBOEUx NkYzQTdFRjAeFw0yNjA0MjcwODMzMjRaFw0yNzA0MjYwODM4MjRaMDMxMTAvBgNV BAMTKERENzM0N0E3RTU2RURBRTAwOTVBNkFFRDU4MjE2NENGNjEyNThEMkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8ibx59PZLzQZGnfQE/n4qsV+C 5niSIK7LIGiZQ4KmIqCNFk+oEkWNN6iGfLxjNb+cVJwISdOZNba8tuG8pKPb6MC/ kvHE1eDte7yaejjE+s6kzv1KjSyr/O47ztx3e7l+eDi5LzE3nN2RozxdykDuJpzl Vx94lXCyvIpQvKxnGrq1F4gOUhlhFhy45EWVlkqHg55FHhyCfnfFHs4+k2idB+vQ jq3h6vte7mYOFdC4+8RbWJHA1DFqPfy7ArLAhoc/HEwCfgbPQY24zHLVN6IvvSvj Rngea9X4KbSbmGoViWNiAkBZph25o32xjcOlM512UvTm/ySiU0eoWwsNcRJNAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQU3XNHp+Vu2uAJWmrtWCFkz2EljS4wHwYDVR0j BBgwFoAUkxNmUCC9+V36SqwOHkqajhbzp+8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw MDk2ODc1ODUwOTMwNTg1OC8wLzkzMTM2NjUwMjBCREY5NURGQTRBQUMwRTFFNEE5 QThFMTZGM0E3RUYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTMxMzY2NTAyMEJERjk1REZBNEFBQzBFMUU0QTlBOEUxNkYzQTdFRi5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTAwOTY4NzU4NTA5MzA1ODU4LzAvMzIzMTMwMmUzNTJl MzIzMzJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzczNzM3MzYucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BADSBRcwDQYJKoZIhvcNAQELBQADggEBAI1o5vuyh0FUgJGy/0sYh0Eq4R2+Ko5J YoDyYuCXQUH3w8OC8ChdgZ4MYZ6Akyxp/yLay8Dlk12dUT9Sq0pUJ5ZmcXziAVDq yzP4yR3ZrPneb5loBGDCBCQlfLJNKVry/wzltEAeuN7FP+P5fy8APxFeJYTq0s3O ztZpRr2v0+v9N575fXadJF1iOtklLBaxNLwYtm+S4X2WQNiQcIWLbTK9bQfnbEcb pwH5L5aYa5VadaOHfQ9UhEqUfOUR8cix6r8Zcli6LmVOtmQFHO2HlaWd5LKfkkNd vTicQDB/8+QJlyo3qnI49a08frFl7kxvrfva1yMU/MayYD+5v18qVHE= -----END CERTIFICATE-----Generated at Wed May 13 19:36:20 2026 by rpki-client