$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1101689704551546887/0/3231312e3134372e3132382e302f31392d3139203d3e203138323339.roa File: 3231312e3134372e3132382e302f31392d3139203d3e203138323339.roa (raw, json) Hash identifier: LeMAOm4N8qhxkJ0uj/f0hKHJGXu+NKUzYhGKp2R3aPc= Subject key identifier: A8:68:A6:EB:20:73:B4:12:2E:56:94:B2:F8:82:6D:80:BA:C7:96:E3 Certificate issuer: /CN=95B08F18D0CF8E4AFAD49A08A907521317F19024 Certificate serial: 7B612323D64B25F5620D9FBC167D17E31DD5BC54 Authority key identifier: 95:B0:8F:18:D0:CF:8E:4A:FA:D4:9A:08:A9:07:52:13:17:F1:90:24 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/95B08F18D0CF8E4AFAD49A08A907521317F19024.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1101689704551546887/0/3231312e3134372e3132382e302f31392d3139203d3e203138323339.roa Signing time: Wed 29 Apr 2026 02:07:55 +0000 ROA not before: Wed 29 Apr 2026 02:02:55 +0000 ROA not after: Wed 28 Apr 2027 02:07:55 +0000 asID: 18239 IP address blocks: 211.147.128.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1101689704551546887/0/95B08F18D0CF8E4AFAD49A08A907521317F19024.crl rsync://rpki-rps.cnnic.cn/repo/A1101689704551546887/0/95B08F18D0CF8E4AFAD49A08A907521317F19024.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/95B08F18D0CF8E4AFAD49A08A907521317F19024.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:61:23:23:d6:4b:25:f5:62:0d:9f:bc:16:7d:17:e3:1d:d5:bc:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95B08F18D0CF8E4AFAD49A08A907521317F19024 Validity Not Before: Apr 29 02:02:55 2026 GMT Not After : Apr 28 02:07:55 2027 GMT Subject: CN=A868A6EB2073B4122E5694B2F8826D80BAC796E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:5c:d3:18:40:c3:c7:18:69:d7:ec:9f:83:61: 54:76:bf:1f:37:61:42:0a:c2:09:14:07:c3:52:17: ee:37:66:38:6d:6f:43:11:ce:28:bd:f5:b3:40:08: 8d:44:1d:f1:ad:b4:19:7f:00:72:9a:ba:e7:d7:0b: c7:62:ba:c3:90:bc:d6:c1:3b:ab:1d:e6:c1:e4:9e: 1a:30:6a:d3:3b:1f:8d:2b:44:56:cd:75:f6:9f:0e: 02:c3:7e:90:45:25:ba:f9:25:6c:c0:06:5e:05:0c: c9:d3:e1:29:fd:4a:58:71:39:28:c5:b5:e0:8e:40: 88:79:82:cf:34:46:b1:51:5d:1e:c4:72:91:1b:16: 40:62:18:9d:2a:ac:75:80:a0:a7:54:a6:0c:86:63: 66:2d:a8:da:f9:be:2b:ec:74:57:37:a8:1e:c1:b7: f3:ba:79:fd:e8:97:ca:b8:84:2b:ef:c0:b3:81:64: 47:0a:a2:47:2d:b1:64:7b:e9:54:bf:c6:59:da:f2: 12:6a:99:fb:96:de:58:d9:8c:db:dd:b6:0c:fc:b6: d3:66:03:60:ec:20:45:b5:df:38:eb:41:18:fb:7a: c4:34:21:82:f8:13:80:ba:e8:50:09:f6:02:4e:d4: dc:05:4d:ce:29:e6:0b:44:16:7d:ff:31:67:12:9e: d3:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:68:A6:EB:20:73:B4:12:2E:56:94:B2:F8:82:6D:80:BA:C7:96:E3 X509v3 Authority Key Identifier: keyid:95:B0:8F:18:D0:CF:8E:4A:FA:D4:9A:08:A9:07:52:13:17:F1:90:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1101689704551546887/0/95B08F18D0CF8E4AFAD49A08A907521317F19024.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/95B08F18D0CF8E4AFAD49A08A907521317F19024.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1101689704551546887/0/3231312e3134372e3132382e302f31392d3139203d3e203138323339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 211.147.128.0/19 Signature Algorithm: sha256WithRSAEncryption 71:9a:1b:da:11:77:e1:33:19:ba:c6:66:69:79:2e:8d:94:84: 68:6a:a0:d6:e6:48:75:6b:4f:d2:14:9f:c3:92:58:a2:ad:74: 7b:48:27:b7:10:ef:d6:67:e1:4a:86:5c:89:05:a8:32:da:eb: 1f:6e:3c:0e:43:63:8a:e7:8e:11:fb:68:a0:fd:c1:1b:3d:ed: f1:a0:36:2a:f5:4f:98:1c:de:d4:eb:c6:84:b5:94:5d:2a:08: 9f:2d:13:2c:f3:37:5b:9b:4e:32:d1:73:b9:0a:ea:65:6e:05: b0:27:99:07:83:29:df:a3:43:ae:10:61:49:4b:58:d9:17:73: f8:b6:55:92:9f:0b:5e:05:ab:80:a3:5a:9f:90:65:34:03:4c: da:b8:65:74:e7:3b:6d:7b:ae:60:c2:93:a3:96:a2:cb:1d:1d: 0a:32:6b:65:1e:a4:c7:c0:ee:10:a8:7d:2f:c3:bf:7d:31:83: 31:b6:de:13:c9:64:bf:90:eb:5f:5a:a1:72:b0:da:eb:fb:4e: 77:90:7b:4f:79:fd:ef:f2:7c:49:39:0d:33:7d:08:20:63:7f: e9:1f:51:2e:93:ea:85:a4:af:05:5f:df:21:a3:a6:51:4f:93: 4e:77:91:3d:ab:fb:71:85:ff:7c:ac:49:5c:d2:ab:74:a2:f3: bd:36:8b:3f -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUe2EjI9ZLJfViDZ+8Fn0X4x3VvFQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTVCMDhGMThEMENGOEU0QUZBRDQ5QTA4QTkwNzUyMTMx N0YxOTAyNDAeFw0yNjA0MjkwMjAyNTVaFw0yNzA0MjgwMjA3NTVaMDMxMTAvBgNV BAMTKEE4NjhBNkVCMjA3M0I0MTIyRTU2OTRCMkY4ODI2RDgwQkFDNzk2RTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDiXNMYQMPHGGnX7J+DYVR2vx83 YUIKwgkUB8NSF+43Zjhtb0MRzii99bNACI1EHfGttBl/AHKauufXC8diusOQvNbB O6sd5sHknhowatM7H40rRFbNdfafDgLDfpBFJbr5JWzABl4FDMnT4Sn9SlhxOSjF teCOQIh5gs80RrFRXR7EcpEbFkBiGJ0qrHWAoKdUpgyGY2YtqNr5vivsdFc3qB7B t/O6ef3ol8q4hCvvwLOBZEcKokctsWR76VS/xlna8hJqmfuW3ljZjNvdtgz8ttNm A2DsIEW13zjrQRj7esQ0IYL4E4C66FAJ9gJO1NwFTc4p5gtEFn3/MWcSntOjAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUqGim6yBztBIuVpSy+IJtgLrHluMwHwYDVR0j BBgwFoAUlbCPGNDPjkr61JoIqQdSExfxkCQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw MTY4OTcwNDU1MTU0Njg4Ny8wLzk1QjA4RjE4RDBDRjhFNEFGQUQ0OUEwOEE5MDc1 MjEzMTdGMTkwMjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTVCMDhGMThEMENGOEU0QUZBRDQ5QTA4QTkwNzUyMTMxN0YxOTAyNC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTExMDE2ODk3MDQ1NTE1NDY4ODcvMC8zMjMxMzEyZTMx MzQzNzJlMzEzMjM4MmUzMDJmMzEzOTJkMzEzOTIwM2QzZTIwMzEzODMyMzMzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEBdOTgDANBgkqhkiG9w0BAQsFAAOCAQEAcZob2hF34TMZusZmaXku jZSEaGqg1uZIdWtP0hSfw5JYoq10e0gntxDv1mfhSoZciQWoMtrrH248DkNjiueO EftooP3BGz3t8aA2KvVPmBze1OvGhLWUXSoIny0TLPM3W5tOMtFzuQrqZW4FsCeZ B4Mp36NDrhBhSUtY2Rdz+LZVkp8LXgWrgKNan5BlNANM2rhldOc7bXuuYMKTo5ai yx0dCjJrZR6kx8DuEKh9L8O/fTGDMbbeE8lkv5DrX1qhcrDa6/tOd5B7T3n97/J8 STkNM30IIGN/6R9RLpPqhaSvBV/fIaOmUU+TTneRPav7cYX/fKxJXNKrdKLzvTaL Pw== -----END CERTIFICATE-----Generated at Wed May 13 21:32:12 2026 by rpki-client