$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1104586358095085577/0/3135302e3234322e3136342e302f32322d3232203d3e2030.roa File: 3135302e3234322e3136342e302f32322d3232203d3e2030.roa (raw, json) Hash identifier: DogWWVRwVnu9txVmVA8RRnx3JvnZ7bquYonXrNXNkiQ= Subject key identifier: 27:3E:5E:0E:59:79:EE:76:12:BC:21:84:4A:A0:C7:81:FB:92:E1:23 Certificate issuer: /CN=38E427977484F36F3F0A45288D6DF64F3A7FCB09 Certificate serial: 4488810DC3F4436DB321EA952850DA869E014C22 Authority key identifier: 38:E4:27:97:74:84:F3:6F:3F:0A:45:28:8D:6D:F6:4F:3A:7F:CB:09 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/38E427977484F36F3F0A45288D6DF64F3A7FCB09.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1104586358095085577/0/3135302e3234322e3136342e302f32322d3232203d3e2030.roa Signing time: Thu 07 May 2026 02:21:21 +0000 ROA not before: Thu 07 May 2026 02:16:21 +0000 ROA not after: Thu 06 May 2027 02:21:21 +0000 asID: 0 IP address blocks: 150.242.164.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1104586358095085577/0/38E427977484F36F3F0A45288D6DF64F3A7FCB09.crl rsync://rpki-rps.cnnic.cn/repo/A1104586358095085577/0/38E427977484F36F3F0A45288D6DF64F3A7FCB09.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/38E427977484F36F3F0A45288D6DF64F3A7FCB09.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 14:12:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:88:81:0d:c3:f4:43:6d:b3:21:ea:95:28:50:da:86:9e:01:4c:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38E427977484F36F3F0A45288D6DF64F3A7FCB09 Validity Not Before: May 7 02:16:21 2026 GMT Not After : May 6 02:21:21 2027 GMT Subject: CN=273E5E0E5979EE7612BC21844AA0C781FB92E123 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:3c:12:63:79:c5:11:28:25:15:f8:12:9f:4e: 02:d8:10:cd:e7:67:9e:9c:ea:0f:a1:2c:ee:0b:97: e5:23:8e:82:ae:ce:8a:c1:f8:cd:9f:30:28:9d:53: 41:51:b8:c1:11:c1:d4:e2:eb:10:71:3a:a1:cc:e6: 2e:34:71:d8:c4:4d:cc:ae:b4:75:ec:6f:20:31:35: 7b:51:a7:2c:d3:a3:4a:2e:7e:d9:71:66:bf:96:e6: 9e:b0:ee:1a:6a:60:c7:d6:d0:1a:2e:46:d7:f9:60: ad:b0:78:1c:af:d1:5d:a5:1b:7c:00:a8:4b:4f:ba: e6:3f:45:5e:db:c9:c7:15:f5:bb:6a:97:a0:6c:46: db:69:93:e5:2d:0e:b5:a1:56:39:4c:38:57:14:63: c3:74:2a:96:84:dc:20:ea:c6:b1:e9:58:80:60:21: 21:9c:96:9f:b0:30:ad:9c:a2:42:64:bf:66:bb:72: 9b:11:0f:f2:18:e0:8f:9c:d5:58:ca:8c:e2:af:b4: 3a:3c:b3:47:5e:68:31:0f:91:46:51:d0:d2:dd:76: 45:60:15:7b:77:00:2f:2d:6f:fa:94:dd:7c:fb:bb: 98:0b:4d:f2:76:a9:cd:4a:43:5d:cc:fa:52:a2:8f: 14:a1:ea:da:05:37:95:f2:8b:0f:13:6e:4d:55:60: f3:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:3E:5E:0E:59:79:EE:76:12:BC:21:84:4A:A0:C7:81:FB:92:E1:23 X509v3 Authority Key Identifier: keyid:38:E4:27:97:74:84:F3:6F:3F:0A:45:28:8D:6D:F6:4F:3A:7F:CB:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1104586358095085577/0/38E427977484F36F3F0A45288D6DF64F3A7FCB09.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/38E427977484F36F3F0A45288D6DF64F3A7FCB09.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1104586358095085577/0/3135302e3234322e3136342e302f32322d3232203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.242.164.0/22 Signature Algorithm: sha256WithRSAEncryption 96:75:66:d0:a7:4b:68:05:fa:5c:35:c9:34:a3:91:0f:32:9c: b5:b5:52:ee:1b:c6:39:35:44:a4:da:55:39:89:60:32:ed:7d: d5:4f:16:fc:0f:07:88:05:ac:01:0a:14:a4:0b:00:9a:62:51: 81:9d:8d:28:b7:a8:63:44:c0:0b:57:bd:b2:5a:3e:09:0d:d8: a6:57:4e:cd:b8:e6:db:0e:a7:ff:36:e2:6a:96:3e:be:69:14: 73:2f:2e:50:af:e3:a3:d4:ac:7a:34:62:80:36:32:f4:85:41: 74:0e:09:c2:2c:9f:49:a1:3a:e7:b9:5c:db:b9:f0:95:7d:66: 67:dd:0a:48:0a:80:41:6f:71:9f:4a:41:a5:68:9e:9e:0e:c1: 6d:0d:88:d0:63:42:a8:cf:47:65:eb:ff:98:1a:e8:cf:55:c9: 16:9d:bd:aa:30:94:9d:f0:b8:93:f3:8b:2d:e4:db:0b:08:34: 88:91:37:c1:35:1e:6e:33:da:38:db:7f:ac:2b:90:5f:24:ec: f9:9d:bf:d7:ad:55:37:95:a9:c3:30:fd:e1:0a:41:b8:3c:bd: 70:78:39:21:64:41:1b:b8:d5:1d:d2:a4:dc:ed:3f:dd:74:90: 29:7f:3e:85:43:53:51:70:fb:b1:5b:5f:3a:42:f0:b4:2d:38: 25:64:2d:8f -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgIURIiBDcP0Q22zIeqVKFDahp4BTCIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzhFNDI3OTc3NDg0RjM2RjNGMEE0NTI4OEQ2REY2NEYz QTdGQ0IwOTAeFw0yNjA1MDcwMjE2MjFaFw0yNzA1MDYwMjIxMjFaMDMxMTAvBgNV BAMTKDI3M0U1RTBFNTk3OUVFNzYxMkJDMjE4NDRBQTBDNzgxRkI5MkUxMjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCRPBJjecURKCUV+BKfTgLYEM3n Z56c6g+hLO4Ll+UjjoKuzorB+M2fMCidU0FRuMERwdTi6xBxOqHM5i40cdjETcyu tHXsbyAxNXtRpyzTo0ouftlxZr+W5p6w7hpqYMfW0BouRtf5YK2weByv0V2lG3wA qEtPuuY/RV7byccV9btql6BsRttpk+UtDrWhVjlMOFcUY8N0KpaE3CDqxrHpWIBg ISGclp+wMK2cokJkv2a7cpsRD/IY4I+c1VjKjOKvtDo8s0deaDEPkUZR0NLddkVg FXt3AC8tb/qU3Xz7u5gLTfJ2qc1KQ13M+lKijxSh6toFN5Xyiw8Tbk1VYPNjAgMB AAGjggINMIICCTAdBgNVHQ4EFgQUJz5eDll57nYSvCGESqDHgfuS4SMwHwYDVR0j BBgwFoAUOOQnl3SE828/CkUojW32Tzp/ywkwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw NDU4NjM1ODA5NTA4NTU3Ny8wLzM4RTQyNzk3NzQ4NEYzNkYzRjBBNDUyODhENkRG NjRGM0E3RkNCMDkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMzhFNDI3OTc3NDg0RjM2RjNGMEE0NTI4OEQ2REY2NEYzQTdGQ0IwOS5jZXIw gYYGCCsGAQUFBwELBHoweDB2BggrBgEFBQcwC4ZqcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTA0NTg2MzU4MDk1MDg1NTc3LzAvMzEzNTMwMmUzMjM0 MzIyZTMxMzYzNDJlMzAyZjMyMzIyZDMyMzIyMDNkM2UyMDMwLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQC lvKkMA0GCSqGSIb3DQEBCwUAA4IBAQCWdWbQp0toBfpcNck0o5EPMpy1tVLuG8Y5 NUSk2lU5iWAy7X3VTxb8DweIBawBChSkCwCaYlGBnY0ot6hjRMALV72yWj4JDdim V07NuObbDqf/NuJqlj6+aRRzLy5Qr+Oj1Kx6NGKANjL0hUF0DgnCLJ9JoTrnuVzb ufCVfWZn3QpICoBBb3GfSkGlaJ6eDsFtDYjQY0Koz0dl6/+YGujPVckWnb2qMJSd 8LiT84st5NsLCDSIkTfBNR5uM9o423+sK5BfJOz5nb/XrVU3lanDMP3hCkG4PL1w eDkhZEEbuNUd0qTc7T/ddJApfz6FQ1NRcPuxW186QvC0LTglZC2P -----END CERTIFICATE-----Generated at Wed May 13 06:58:20 2026 by rpki-client