$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1101689704551546887/0/3230322e3134382e39362e302f31392d3139203d3e203138323339.roa File: 3230322e3134382e39362e302f31392d3139203d3e203138323339.roa (raw, json) Hash identifier: JWBK8+Rdiy6uwBsyhbapdOBX2mjcYjJT67ezz3rHKhE= Subject key identifier: D8:39:B5:76:DE:AA:ED:84:AA:AE:49:DA:83:A6:30:C6:AF:8C:D8:E8 Certificate issuer: /CN=95B08F18D0CF8E4AFAD49A08A907521317F19024 Certificate serial: 28D99EBF01BCF06287FCD7F985B44E55B38C0C18 Authority key identifier: 95:B0:8F:18:D0:CF:8E:4A:FA:D4:9A:08:A9:07:52:13:17:F1:90:24 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/95B08F18D0CF8E4AFAD49A08A907521317F19024.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1101689704551546887/0/3230322e3134382e39362e302f31392d3139203d3e203138323339.roa Signing time: Wed 29 Apr 2026 02:07:55 +0000 ROA not before: Wed 29 Apr 2026 02:02:55 +0000 ROA not after: Wed 28 Apr 2027 02:07:55 +0000 asID: 18239 IP address blocks: 202.148.96.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1101689704551546887/0/95B08F18D0CF8E4AFAD49A08A907521317F19024.crl rsync://rpki-rps.cnnic.cn/repo/A1101689704551546887/0/95B08F18D0CF8E4AFAD49A08A907521317F19024.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/95B08F18D0CF8E4AFAD49A08A907521317F19024.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:d9:9e:bf:01:bc:f0:62:87:fc:d7:f9:85:b4:4e:55:b3:8c:0c:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95B08F18D0CF8E4AFAD49A08A907521317F19024 Validity Not Before: Apr 29 02:02:55 2026 GMT Not After : Apr 28 02:07:55 2027 GMT Subject: CN=D839B576DEAAED84AAAE49DA83A630C6AF8CD8E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:0d:91:d1:ee:c3:61:bc:92:c7:e1:31:e4:9d: 4f:66:ae:c4:f0:40:a0:f9:a1:ab:54:a1:44:0e:1a: 31:84:b4:ba:29:9b:c2:c7:60:8c:19:9c:38:f5:c3: fd:19:ec:37:ab:23:d0:52:20:eb:94:22:bf:f6:9e: d1:b4:4c:4e:9a:ce:a5:b9:9a:86:dc:6e:a7:ea:c0: 2a:9d:df:05:d2:ef:ad:11:ab:55:de:a3:1b:90:32: 44:73:02:96:b7:10:97:78:ff:4c:72:78:04:c5:bf: 70:5f:b2:35:ae:7f:ad:6e:c8:95:ed:ad:29:67:10: 47:d3:d3:ee:89:c7:a6:36:af:2b:3b:44:2d:38:93: e3:e7:93:7d:43:80:99:db:a6:90:83:4c:8b:4a:92: 03:29:cc:fc:3b:71:28:3d:85:51:2a:f9:8f:2e:93: 23:4f:0d:29:75:bb:73:7a:11:78:ed:80:0e:7f:eb: d0:f3:eb:28:f9:f1:cc:50:b4:ec:62:5b:9e:06:dd: 57:8d:df:35:84:02:a4:52:f3:29:1c:6a:9d:07:41: 48:8b:d7:f8:18:89:a4:99:bb:bc:19:19:bb:e7:00: 6a:7d:65:bb:1f:53:f4:ad:0d:20:50:09:78:7f:bb: 3c:6f:cd:24:62:93:70:63:2e:6d:5c:4a:79:6a:f9: a1:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:39:B5:76:DE:AA:ED:84:AA:AE:49:DA:83:A6:30:C6:AF:8C:D8:E8 X509v3 Authority Key Identifier: keyid:95:B0:8F:18:D0:CF:8E:4A:FA:D4:9A:08:A9:07:52:13:17:F1:90:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1101689704551546887/0/95B08F18D0CF8E4AFAD49A08A907521317F19024.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/95B08F18D0CF8E4AFAD49A08A907521317F19024.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1101689704551546887/0/3230322e3134382e39362e302f31392d3139203d3e203138323339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.96.0/19 Signature Algorithm: sha256WithRSAEncryption 4a:21:1b:7c:76:e6:71:6c:31:33:20:ac:b4:cd:61:2e:c6:f7: 81:76:97:ce:d8:ae:d2:d3:1e:6d:47:b8:6b:0b:a1:4f:5a:c7: ed:68:28:72:38:63:ae:36:e4:3a:09:ca:fa:1f:6b:32:8f:3c: e2:d5:e6:2b:bc:c2:cb:ea:dd:94:f3:c4:8b:9e:4b:ee:0b:f6: 77:67:a2:e2:17:a1:47:f2:86:7a:42:0b:9d:e6:59:ac:e5:6f: db:99:67:51:23:26:0c:8a:63:bb:41:4a:2c:e3:93:14:49:0b: 59:0b:3c:e8:38:2a:f1:55:d2:1d:1f:af:4b:b5:9e:79:d6:1d: 6e:f9:11:63:9e:7b:8d:e0:e3:bb:46:a7:62:a8:6c:db:73:72: 9e:ae:88:93:13:d9:b2:8c:23:d3:ee:4c:90:1c:65:72:c3:88: 6c:fa:ba:06:0b:c4:5d:b7:1d:ac:55:8d:20:37:6f:02:a9:cd: 4e:49:a7:c7:57:fd:6d:e4:c2:1a:9c:6b:98:64:53:ca:bd:c8: b4:c3:06:23:19:c6:41:d0:39:e0:54:75:b7:4d:0d:82:48:73: c5:e3:66:03:7a:52:d4:8c:ca:42:47:a1:95:1c:ea:ea:f2:a4: b1:00:09:d8:34:90:c3:d5:03:a1:ea:c7:64:81:2d:d5:06:61: 02:d5:aa:1f -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUKNmevwG88GKH/Nf5hbROVbOMDBgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTVCMDhGMThEMENGOEU0QUZBRDQ5QTA4QTkwNzUyMTMx N0YxOTAyNDAeFw0yNjA0MjkwMjAyNTVaFw0yNzA0MjgwMjA3NTVaMDMxMTAvBgNV BAMTKEQ4MzlCNTc2REVBQUVEODRBQUFFNDlEQTgzQTYzMEM2QUY4Q0Q4RTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoDZHR7sNhvJLH4THknU9mrsTw QKD5oatUoUQOGjGEtLopm8LHYIwZnDj1w/0Z7DerI9BSIOuUIr/2ntG0TE6azqW5 mobcbqfqwCqd3wXS760Rq1XeoxuQMkRzApa3EJd4/0xyeATFv3BfsjWuf61uyJXt rSlnEEfT0+6Jx6Y2rys7RC04k+Pnk31DgJnbppCDTItKkgMpzPw7cSg9hVEq+Y8u kyNPDSl1u3N6EXjtgA5/69Dz6yj58cxQtOxiW54G3VeN3zWEAqRS8ykcap0HQUiL 1/gYiaSZu7wZGbvnAGp9ZbsfU/StDSBQCXh/uzxvzSRik3BjLm1cSnlq+aFBAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQU2Dm1dt6q7YSqrknag6Ywxq+M2OgwHwYDVR0j BBgwFoAUlbCPGNDPjkr61JoIqQdSExfxkCQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw MTY4OTcwNDU1MTU0Njg4Ny8wLzk1QjA4RjE4RDBDRjhFNEFGQUQ0OUEwOEE5MDc1 MjEzMTdGMTkwMjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTVCMDhGMThEMENGOEU0QUZBRDQ5QTA4QTkwNzUyMTMxN0YxOTAyNC5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTEwMTY4OTcwNDU1MTU0Njg4Ny8wLzMyMzAzMjJlMzEz NDM4MmUzOTM2MmUzMDJmMzEzOTJkMzEzOTIwM2QzZTIwMzEzODMyMzMzOS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEBcqUYDANBgkqhkiG9w0BAQsFAAOCAQEASiEbfHbmcWwxMyCstM1hLsb3 gXaXztiu0tMebUe4awuhT1rH7WgocjhjrjbkOgnK+h9rMo884tXmK7zCy+rdlPPE i55L7gv2d2ei4hehR/KGekILneZZrOVv25lnUSMmDIpju0FKLOOTFEkLWQs86Dgq 8VXSHR+vS7WeedYdbvkRY557jeDju0anYqhs23Nynq6IkxPZsowj0+5MkBxlcsOI bPq6BgvEXbcdrFWNIDdvAqnNTkmnx1f9beTCGpxrmGRTyr3ItMMGIxnGQdA54FR1 t00NgkhzxeNmA3pS1IzKQkehlRzq6vKksQAJ2DSQw9UDoerHZIEt1QZhAtWqHw== -----END CERTIFICATE-----Generated at Wed May 13 21:32:07 2026 by rpki-client