$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576723372113922/0/3230322e3138312e3132302e302f32322d3234203d3e203338323833.roa File: 3230322e3138312e3132302e302f32322d3234203d3e203338323833.roa (raw, json) Hash identifier: Pvhq0MNX71+2FeXOPm3xCG02eVb+HZbN2KTNPTKcDAc= Subject key identifier: E4:76:9C:6E:70:78:9F:E1:90:6F:5F:DF:6F:54:D0:70:AF:F3:92:F5 Certificate issuer: /CN=A19672206A9DA7DF429536C9BFFADA94A8EBA70E Certificate serial: 5A5711BA093ADA51AF86DAD673D73D6DC8AA60B8 Authority key identifier: A1:96:72:20:6A:9D:A7:DF:42:95:36:C9:BF:FA:DA:94:A8:EB:A7:0E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A19672206A9DA7DF429536C9BFFADA94A8EBA70E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576723372113922/0/3230322e3138312e3132302e302f32322d3234203d3e203338323833.roa Signing time: Sun 19 Apr 2026 09:33:00 +0000 ROA not before: Sun 19 Apr 2026 09:28:00 +0000 ROA not after: Sun 18 Apr 2027 09:33:00 +0000 asID: 38283 IP address blocks: 202.181.120.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576723372113922/0/A19672206A9DA7DF429536C9BFFADA94A8EBA70E.crl rsync://rpki-rps.cnnic.cn/repo/A1065576723372113922/0/A19672206A9DA7DF429536C9BFFADA94A8EBA70E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A19672206A9DA7DF429536C9BFFADA94A8EBA70E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 01:26:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:57:11:ba:09:3a:da:51:af:86:da:d6:73:d7:3d:6d:c8:aa:60:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A19672206A9DA7DF429536C9BFFADA94A8EBA70E Validity Not Before: Apr 19 09:28:00 2026 GMT Not After : Apr 18 09:33:00 2027 GMT Subject: CN=E4769C6E70789FE1906F5FDF6F54D070AFF392F5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:18:ea:4c:a1:3f:72:0e:ed:e3:a9:9f:c7:cd: 0d:e3:8b:70:bc:60:8a:0b:b6:05:4c:5e:eb:e2:60: 8f:57:93:77:21:63:01:03:b3:5a:1a:aa:9b:70:69: b4:3a:09:e9:e2:4e:12:cd:5b:1a:64:28:41:cc:64: 74:a7:3b:70:f5:06:de:ed:8d:55:82:2f:b5:3e:6c: ea:c7:91:d0:b0:8b:c0:74:d7:f7:70:d9:aa:90:d8: 34:b9:79:4b:5b:96:be:5d:ff:60:e2:13:3b:94:32: f5:a3:e5:4d:c6:81:47:a1:60:e6:20:08:0c:39:23: f9:d9:56:ba:51:e1:6b:5c:34:cc:0b:74:0f:67:39: 4d:a2:d5:6a:6a:4d:bf:e5:67:86:1a:ba:d9:f2:65: c4:c6:bf:f8:af:49:2f:47:14:f0:32:fe:12:ef:f5: e5:c3:c5:b8:72:92:4d:d9:10:23:ad:a9:7e:0c:03: 9e:a7:30:06:02:a5:7f:38:a5:1e:3b:86:05:05:d5: db:77:52:8e:59:06:30:34:61:ad:b9:6f:70:55:e9: a6:32:d8:91:b8:28:b2:94:7e:90:43:ce:7a:92:bc: 3d:95:40:9f:de:9d:02:1d:ed:db:bb:4c:1b:3b:72: 3f:63:c2:ab:f0:ab:69:73:cf:ea:13:eb:99:46:38: 4a:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:76:9C:6E:70:78:9F:E1:90:6F:5F:DF:6F:54:D0:70:AF:F3:92:F5 X509v3 Authority Key Identifier: keyid:A1:96:72:20:6A:9D:A7:DF:42:95:36:C9:BF:FA:DA:94:A8:EB:A7:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576723372113922/0/A19672206A9DA7DF429536C9BFFADA94A8EBA70E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A19672206A9DA7DF429536C9BFFADA94A8EBA70E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576723372113922/0/3230322e3138312e3132302e302f32322d3234203d3e203338323833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.181.120.0/22 Signature Algorithm: sha256WithRSAEncryption 9c:54:42:a2:51:ca:64:0d:90:00:33:03:34:0f:7b:70:c0:37: 25:86:80:1a:65:66:b1:51:5c:75:a5:5d:bc:fe:9b:32:ee:d6: cd:07:c9:6d:82:16:c4:d8:bb:29:42:45:4a:e5:d5:ff:2e:a1: de:20:a5:67:51:ee:db:1d:8d:01:af:33:32:80:5f:ca:eb:91: 3e:79:ea:fd:99:2c:25:1c:df:2c:2a:be:5f:1d:94:71:96:bf: 47:2e:d9:1f:93:f1:a9:bc:2d:47:9c:ee:77:0c:bb:36:02:58: 41:02:06:fa:cf:d9:a8:de:dc:90:90:e2:f7:0c:5f:95:30:8e: ae:55:87:8d:cd:d1:75:fa:03:ec:21:35:3a:a9:1b:a8:b0:09: 3b:55:1a:af:91:1d:64:10:e1:cb:b8:04:16:6b:33:7c:52:59: 4f:08:b4:ab:4c:b1:9f:63:57:39:c1:75:05:1d:a8:48:66:93: 65:90:4a:7e:db:67:16:13:4f:4d:45:50:b4:cb:87:ea:73:b8: 1f:d8:f4:00:73:4f:68:ea:25:e9:a9:0e:68:10:25:4a:f8:95: a6:61:8e:77:d5:1b:da:25:43:26:36:9b:25:89:e5:51:1a:c4: c1:b1:30:03:6b:bc:65:03:58:a5:14:aa:7e:0e:ad:f5:48:ef: 29:60:38:24 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUWlcRugk62lGvhtrWc9c9bciqYLgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTE5NjcyMjA2QTlEQTdERjQyOTUzNkM5QkZGQURBOTRB OEVCQTcwRTAeFw0yNjA0MTkwOTI4MDBaFw0yNzA0MTgwOTMzMDBaMDMxMTAvBgNV BAMTKEU0NzY5QzZFNzA3ODlGRTE5MDZGNUZERjZGNTREMDcwQUZGMzkyRjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRGOpMoT9yDu3jqZ/HzQ3ji3C8 YIoLtgVMXuviYI9Xk3chYwEDs1oaqptwabQ6CeniThLNWxpkKEHMZHSnO3D1Bt7t jVWCL7U+bOrHkdCwi8B01/dw2aqQ2DS5eUtblr5d/2DiEzuUMvWj5U3GgUehYOYg CAw5I/nZVrpR4WtcNMwLdA9nOU2i1WpqTb/lZ4YautnyZcTGv/ivSS9HFPAy/hLv 9eXDxbhykk3ZECOtqX4MA56nMAYCpX84pR47hgUF1dt3Uo5ZBjA0Ya25b3BV6aYy 2JG4KLKUfpBDznqSvD2VQJ/enQId7du7TBs7cj9jwqvwq2lzz+oT65lGOErxAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQU5HacbnB4n+GQb1/fb1TQcK/zkvUwHwYDVR0j BBgwFoAUoZZyIGqdp99ClTbJv/ralKjrpw4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjcyMzM3MjExMzkyMi8wL0ExOTY3MjIwNkE5REE3REY0Mjk1MzZDOUJGRkFE QTk0QThFQkE3MEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQTE5NjcyMjA2QTlEQTdERjQyOTUzNkM5QkZGQURBOTRBOEVCQTcwRS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzY3MjMzNzIxMTM5MjIvMC8zMjMwMzIyZTMx MzgzMTJlMzEzMjMwMmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzMzODMyMzgzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAsq1eDANBgkqhkiG9w0BAQsFAAOCAQEAnFRColHKZA2QADMDNA97 cMA3JYaAGmVmsVFcdaVdvP6bMu7WzQfJbYIWxNi7KUJFSuXV/y6h3iClZ1Hu2x2N Aa8zMoBfyuuRPnnq/ZksJRzfLCq+Xx2UcZa/Ry7ZH5PxqbwtR5zudwy7NgJYQQIG +s/ZqN7ckJDi9wxflTCOrlWHjc3RdfoD7CE1OqkbqLAJO1Uar5EdZBDhy7gEFmsz fFJZTwi0q0yxn2NXOcF1BR2oSGaTZZBKfttnFhNPTUVQtMuH6nO4H9j0AHNPaOol 6akOaBAlSviVpmGOd9Ub2iVDJjabJYnlURrEwbEwA2u8ZQNYpRSqfg6t9UjvKWA4 JA== -----END CERTIFICATE-----Generated at Mon Apr 27 13:54:38 2026 by rpki-client