$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1101689704551546887/0/3231392e3233322e3139322e302f31392d3139203d3e203138323339.roa File: 3231392e3233322e3139322e302f31392d3139203d3e203138323339.roa (raw, json) Hash identifier: 6aMfWBMMpDCsBJHesJ1xnjHna6IScpfcDFlRpDnwQ5U= Subject key identifier: D9:C5:75:02:0F:75:7E:19:52:20:87:02:CC:5A:29:8E:1B:5A:C1:4C Certificate issuer: /CN=95B08F18D0CF8E4AFAD49A08A907521317F19024 Certificate serial: 4F03FE66D2386F546AB5593971000615E7380F66 Authority key identifier: 95:B0:8F:18:D0:CF:8E:4A:FA:D4:9A:08:A9:07:52:13:17:F1:90:24 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/95B08F18D0CF8E4AFAD49A08A907521317F19024.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1101689704551546887/0/3231392e3233322e3139322e302f31392d3139203d3e203138323339.roa Signing time: Wed 29 Apr 2026 02:07:55 +0000 ROA not before: Wed 29 Apr 2026 02:02:55 +0000 ROA not after: Wed 28 Apr 2027 02:07:55 +0000 asID: 18239 IP address blocks: 219.232.192.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1101689704551546887/0/95B08F18D0CF8E4AFAD49A08A907521317F19024.crl rsync://rpki-rps.cnnic.cn/repo/A1101689704551546887/0/95B08F18D0CF8E4AFAD49A08A907521317F19024.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/95B08F18D0CF8E4AFAD49A08A907521317F19024.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:03:fe:66:d2:38:6f:54:6a:b5:59:39:71:00:06:15:e7:38:0f:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95B08F18D0CF8E4AFAD49A08A907521317F19024 Validity Not Before: Apr 29 02:02:55 2026 GMT Not After : Apr 28 02:07:55 2027 GMT Subject: CN=D9C575020F757E1952208702CC5A298E1B5AC14C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:64:f4:cb:fc:22:0a:2c:b0:e2:c4:a9:cd:a8: a2:8a:5f:9b:a7:17:78:ab:e0:23:57:59:ad:d1:5c: 7b:be:23:e0:4e:6e:96:e2:42:a8:cf:65:1a:60:4f: 83:ef:de:5e:09:f3:e4:7f:b2:96:ff:d4:43:7b:30: 81:c6:f5:75:38:bf:a9:17:ab:71:45:ca:9b:f8:a8: 71:fc:2b:20:76:e4:73:a6:bc:c0:14:b6:b4:c5:16: 97:22:2a:56:1c:17:59:5b:c0:09:1f:c2:ba:f4:36: b6:a7:28:0a:71:c2:38:69:55:67:b9:4b:26:43:04: 8d:82:c0:85:23:7c:43:7e:e9:b7:8f:1a:43:81:6b: 85:9a:28:6c:b8:7c:62:ae:f9:92:85:0a:60:a2:76: e3:14:43:1f:7d:aa:9a:0d:e0:d2:68:6e:07:04:06: 93:c2:58:09:6f:bc:24:08:de:8f:dc:67:f2:5c:c7: c4:f7:81:c0:d1:e5:22:da:2e:7a:f3:79:9a:c4:53: 60:75:9a:74:80:c1:ef:b2:73:a3:74:87:9f:b3:61: ca:4b:50:eb:45:42:51:ee:b9:8b:99:fd:ee:b1:a5: 92:6e:2a:9c:c4:b2:91:ac:a1:6e:95:9a:f5:ce:6b: 9a:fd:15:c4:8a:4d:84:14:55:e6:fb:26:cc:ec:88: d3:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:C5:75:02:0F:75:7E:19:52:20:87:02:CC:5A:29:8E:1B:5A:C1:4C X509v3 Authority Key Identifier: keyid:95:B0:8F:18:D0:CF:8E:4A:FA:D4:9A:08:A9:07:52:13:17:F1:90:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1101689704551546887/0/95B08F18D0CF8E4AFAD49A08A907521317F19024.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/95B08F18D0CF8E4AFAD49A08A907521317F19024.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1101689704551546887/0/3231392e3233322e3139322e302f31392d3139203d3e203138323339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 219.232.192.0/19 Signature Algorithm: sha256WithRSAEncryption 19:d8:dd:5d:eb:0c:fb:a2:e2:f9:c5:a1:83:28:c3:29:36:a5: 72:44:fa:56:0f:d8:a4:27:1b:c8:da:a2:64:5c:70:e2:b3:7d: 27:2b:38:39:3f:22:fd:e7:67:40:5b:7e:5f:02:b2:6e:69:4f: a2:43:e2:37:ae:38:04:7a:2a:3c:12:8e:b3:9c:53:64:18:a7: 3f:c9:51:80:12:73:69:31:80:40:97:03:63:72:d8:3c:28:29: 1d:a3:a0:70:c9:aa:84:5a:81:78:62:a8:ad:cd:ed:3e:4c:be: c5:68:44:d1:59:d2:b9:dd:b8:4b:5a:0d:0a:e2:4a:26:e9:a9: cd:7d:e6:b4:b5:aa:41:31:ff:82:fe:70:bd:3a:12:64:5c:62: b5:c7:d4:d5:4c:9c:51:0b:d6:47:d1:89:9c:7b:85:d8:c6:23: 7b:12:89:0f:ae:29:ad:37:a0:e5:d0:aa:eb:b7:ee:1f:35:3a: a1:7d:e5:8d:15:2c:db:51:1a:d7:88:85:2f:e1:5d:45:62:e7: f1:29:18:cd:4f:93:58:90:31:61:a5:62:4e:da:9b:0e:3b:19: f4:2f:b8:f3:d8:b7:10:f3:38:24:7b:51:e6:0b:7c:68:c3:d1: 2f:e2:37:fc:2e:2b:09:83:93:a4:2a:aa:42:91:76:c5:3f:13: ce:de:54:a9 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUTwP+ZtI4b1RqtVk5cQAGFec4D2YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTVCMDhGMThEMENGOEU0QUZBRDQ5QTA4QTkwNzUyMTMx N0YxOTAyNDAeFw0yNjA0MjkwMjAyNTVaFw0yNzA0MjgwMjA3NTVaMDMxMTAvBgNV BAMTKEQ5QzU3NTAyMEY3NTdFMTk1MjIwODcwMkNDNUEyOThFMUI1QUMxNEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSZPTL/CIKLLDixKnNqKKKX5un F3ir4CNXWa3RXHu+I+BObpbiQqjPZRpgT4Pv3l4J8+R/spb/1EN7MIHG9XU4v6kX q3FFypv4qHH8KyB25HOmvMAUtrTFFpciKlYcF1lbwAkfwrr0NranKApxwjhpVWe5 SyZDBI2CwIUjfEN+6bePGkOBa4WaKGy4fGKu+ZKFCmCiduMUQx99qpoN4NJobgcE BpPCWAlvvCQI3o/cZ/Jcx8T3gcDR5SLaLnrzeZrEU2B1mnSAwe+yc6N0h5+zYcpL UOtFQlHuuYuZ/e6xpZJuKpzEspGsoW6VmvXOa5r9FcSKTYQUVeb7JszsiNPPAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQU2cV1Ag91fhlSIIcCzFopjhtawUwwHwYDVR0j BBgwFoAUlbCPGNDPjkr61JoIqQdSExfxkCQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw MTY4OTcwNDU1MTU0Njg4Ny8wLzk1QjA4RjE4RDBDRjhFNEFGQUQ0OUEwOEE5MDc1 MjEzMTdGMTkwMjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTVCMDhGMThEMENGOEU0QUZBRDQ5QTA4QTkwNzUyMTMxN0YxOTAyNC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTExMDE2ODk3MDQ1NTE1NDY4ODcvMC8zMjMxMzkyZTMy MzMzMjJlMzEzOTMyMmUzMDJmMzEzOTJkMzEzOTIwM2QzZTIwMzEzODMyMzMzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEBdvowDANBgkqhkiG9w0BAQsFAAOCAQEAGdjdXesM+6Li+cWhgyjD KTalckT6Vg/YpCcbyNqiZFxw4rN9Jys4OT8i/ednQFt+XwKybmlPokPiN644BHoq PBKOs5xTZBinP8lRgBJzaTGAQJcDY3LYPCgpHaOgcMmqhFqBeGKorc3tPky+xWhE 0VnSud24S1oNCuJKJumpzX3mtLWqQTH/gv5wvToSZFxitcfU1UycUQvWR9GJnHuF 2MYjexKJD64prTeg5dCq67fuHzU6oX3ljRUs21Ea14iFL+FdRWLn8SkYzU+TWJAx YaViTtqbDjsZ9C+489i3EPM4JHtR5gt8aMPRL+I3/C4rCYOTpCqqQpF2xT8Tzt5U qQ== -----END CERTIFICATE-----Generated at Wed May 13 21:32:11 2026 by rpki-client