$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1104586358095085577/0/3231312e3136362e31372e302f32342d3234203d3e2039333839.roa File: 3231312e3136362e31372e302f32342d3234203d3e2039333839.roa (raw, json) Hash identifier: 2IHj9wu4iq6lGOmtkajUevl+KSX7rcVZFWbGYXnRa4A= Subject key identifier: 38:6B:67:72:F9:B0:94:43:81:EC:9E:18:0F:E9:4E:95:18:BF:A1:5D Certificate issuer: /CN=38E427977484F36F3F0A45288D6DF64F3A7FCB09 Certificate serial: 50F08CB9A238D58555CD413EEA0689D67747921B Authority key identifier: 38:E4:27:97:74:84:F3:6F:3F:0A:45:28:8D:6D:F6:4F:3A:7F:CB:09 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/38E427977484F36F3F0A45288D6DF64F3A7FCB09.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1104586358095085577/0/3231312e3136362e31372e302f32342d3234203d3e2039333839.roa Signing time: Thu 07 May 2026 02:11:36 +0000 ROA not before: Thu 07 May 2026 02:06:36 +0000 ROA not after: Thu 06 May 2027 02:11:36 +0000 asID: 9389 IP address blocks: 211.166.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1104586358095085577/0/38E427977484F36F3F0A45288D6DF64F3A7FCB09.crl rsync://rpki-rps.cnnic.cn/repo/A1104586358095085577/0/38E427977484F36F3F0A45288D6DF64F3A7FCB09.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/38E427977484F36F3F0A45288D6DF64F3A7FCB09.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 07:28:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:f0:8c:b9:a2:38:d5:85:55:cd:41:3e:ea:06:89:d6:77:47:92:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38E427977484F36F3F0A45288D6DF64F3A7FCB09 Validity Not Before: May 7 02:06:36 2026 GMT Not After : May 6 02:11:36 2027 GMT Subject: CN=386B6772F9B0944381EC9E180FE94E9518BFA15D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:1f:a0:9e:52:1a:f1:f7:29:3e:2a:c7:06:37: f7:22:2d:f7:2c:6a:07:4a:68:9d:74:79:bf:75:a3: 5f:9b:32:af:9c:1d:eb:82:be:e8:87:43:59:28:92: a9:be:9f:59:db:9c:38:b7:5b:72:ae:c8:10:e1:77: 47:32:ce:2b:67:39:e8:fd:ce:df:2a:88:7f:8f:3e: 9c:50:9f:97:8a:0c:8d:07:91:b9:f4:75:2a:d8:51: f0:91:d4:52:63:d5:99:f9:b0:d2:43:a6:db:93:09: 2a:e3:e1:6b:28:e4:c1:33:83:cc:61:8a:ae:ac:7a: dc:76:83:d6:d4:63:5b:31:2c:b7:9b:c3:59:e0:62: 12:f7:59:c4:0c:45:52:9f:a4:72:4a:81:06:55:f5: 52:93:18:c4:0b:b1:f5:5a:d3:90:78:f2:57:bf:e7: ac:e9:31:39:aa:34:e3:5f:df:45:c7:cb:f8:3d:77: 83:ab:84:bd:6b:1f:aa:27:a2:4a:31:c0:de:bd:c0: 79:ce:51:68:b7:ca:47:6a:3f:3d:1e:a3:6d:4b:09: 46:ee:44:27:5e:d2:9e:20:1e:02:3f:09:53:b7:57: 38:48:31:f0:02:4f:29:d4:3a:06:da:44:27:b4:47: 74:8f:b4:b7:d1:52:81:69:99:f4:02:8c:a6:1e:70: f9:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:6B:67:72:F9:B0:94:43:81:EC:9E:18:0F:E9:4E:95:18:BF:A1:5D X509v3 Authority Key Identifier: keyid:38:E4:27:97:74:84:F3:6F:3F:0A:45:28:8D:6D:F6:4F:3A:7F:CB:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1104586358095085577/0/38E427977484F36F3F0A45288D6DF64F3A7FCB09.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/38E427977484F36F3F0A45288D6DF64F3A7FCB09.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1104586358095085577/0/3231312e3136362e31372e302f32342d3234203d3e2039333839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 211.166.17.0/24 Signature Algorithm: sha256WithRSAEncryption 76:9a:01:d7:1e:9d:4c:e5:b8:47:dd:59:25:3c:8e:08:cb:28: f5:89:ed:e2:54:2d:23:6b:d6:5d:d6:2d:43:a8:a0:22:0f:b7: 38:b7:48:a6:29:71:59:46:41:4e:07:de:2b:4b:be:ee:f2:ac: f6:df:60:71:ef:fa:dc:24:5e:c0:e8:83:dd:d1:6d:14:ce:7f: b9:78:2d:4b:52:f3:fb:4a:e7:b3:40:2c:26:26:20:39:f2:30: f5:a5:c8:56:7f:58:3d:29:7d:21:38:ee:5a:b5:71:ad:7f:d3: 25:ac:04:03:18:70:bd:9d:ed:d7:3f:a8:7d:0a:35:95:f1:8c: 0a:b7:91:5c:d8:d1:3e:f9:45:0b:b4:85:7c:41:51:6f:d6:4e: c0:cf:0f:2d:45:d0:88:79:62:c6:f8:c3:68:b5:d1:be:85:3d: 28:ab:d4:84:86:9d:8d:8f:84:2e:93:8a:1a:da:26:f0:b9:98: 55:33:7d:53:86:9e:83:aa:3d:03:b9:5f:97:92:57:a7:ad:d3: d2:86:1f:e6:c9:40:95:82:be:77:fd:66:a8:0f:c1:2f:e2:fb: f3:4c:d0:c2:d2:a7:34:da:67:08:b2:a5:1f:fb:6f:26:80:50: 76:78:94:a7:ab:b8:81:05:bd:14:ff:0e:4e:bf:aa:26:d1:8f: a0:88:3d:3c -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUUPCMuaI41YVVzUE+6gaJ1ndHkhswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzhFNDI3OTc3NDg0RjM2RjNGMEE0NTI4OEQ2REY2NEYz QTdGQ0IwOTAeFw0yNjA1MDcwMjA2MzZaFw0yNzA1MDYwMjExMzZaMDMxMTAvBgNV BAMTKDM4NkI2NzcyRjlCMDk0NDM4MUVDOUUxODBGRTk0RTk1MThCRkExNUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVH6CeUhrx9yk+KscGN/ciLfcs agdKaJ10eb91o1+bMq+cHeuCvuiHQ1kokqm+n1nbnDi3W3KuyBDhd0cyzitnOej9 zt8qiH+PPpxQn5eKDI0Hkbn0dSrYUfCR1FJj1Zn5sNJDptuTCSrj4Wso5MEzg8xh iq6setx2g9bUY1sxLLebw1ngYhL3WcQMRVKfpHJKgQZV9VKTGMQLsfVa05B48le/ 56zpMTmqNONf30XHy/g9d4OrhL1rH6onokoxwN69wHnOUWi3ykdqPz0eo21LCUbu RCde0p4gHgI/CVO3VzhIMfACTynUOgbaRCe0R3SPtLfRUoFpmfQCjKYecPkPAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUOGtncvmwlEOB7J4YD+lOlRi/oV0wHwYDVR0j BBgwFoAUOOQnl3SE828/CkUojW32Tzp/ywkwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw NDU4NjM1ODA5NTA4NTU3Ny8wLzM4RTQyNzk3NzQ4NEYzNkYzRjBBNDUyODhENkRG NjRGM0E3RkNCMDkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMzhFNDI3OTc3NDg0RjM2RjNGMEE0NTI4OEQ2REY2NEYzQTdGQ0IwOS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTA0NTg2MzU4MDk1MDg1NTc3LzAvMzIzMTMxMmUzMTM2 MzYyZTMxMzcyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzOTMzMzgzOS5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEANOmETANBgkqhkiG9w0BAQsFAAOCAQEAdpoB1x6dTOW4R91ZJTyOCMso9Ynt 4lQtI2vWXdYtQ6igIg+3OLdIpilxWUZBTgfeK0u+7vKs9t9gce/63CRewOiD3dFt FM5/uXgtS1Lz+0rns0AsJiYgOfIw9aXIVn9YPSl9ITjuWrVxrX/TJawEAxhwvZ3t 1z+ofQo1lfGMCreRXNjRPvlFC7SFfEFRb9ZOwM8PLUXQiHlixvjDaLXRvoU9KKvU hIadjY+ELpOKGtom8LmYVTN9U4aeg6o9A7lfl5JXp63T0oYf5slAlYK+d/1mqA/B L+L780zQwtKnNNpnCLKlH/tvJoBQdniUp6u4gQW9FP8OTr+qJtGPoIg9PA== -----END CERTIFICATE-----Generated at Wed May 13 11:50:46 2026 by rpki-client