$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065588335524773889/0/3230322e35382e3132322e302f32332d3234203d3e20323031373730.roa File: 3230322e35382e3132322e302f32332d3234203d3e20323031373730.roa (raw, json) Hash identifier: 5NGoXcmWBSZlt4orHbWrVsP+901E+bfp7xhJL2KYqes= Subject key identifier: E7:95:0D:00:62:87:1E:F7:38:94:69:04:BB:BE:D1:E4:EC:50:1D:A4 Certificate issuer: /CN=3FBBE29A78A758AE284D0D641BCDBB0756033CC9 Certificate serial: 7FBCBE9BE2A17CE8C66CE153EC4C7E7F927FBD6C Authority key identifier: 3F:BB:E2:9A:78:A7:58:AE:28:4D:0D:64:1B:CD:BB:07:56:03:3C:C9 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3FBBE29A78A758AE284D0D641BCDBB0756033CC9.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065588335524773889/0/3230322e35382e3132322e302f32332d3234203d3e20323031373730.roa Signing time: Tue 10 Feb 2026 15:16:36 +0000 ROA not before: Tue 10 Feb 2026 15:11:36 +0000 ROA not after: Tue 09 Feb 2027 15:16:36 +0000 asID: 201770 IP address blocks: 202.58.122.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065588335524773889/0/3FBBE29A78A758AE284D0D641BCDBB0756033CC9.crl rsync://rpki-rps.cnnic.cn/repo/A1065588335524773889/0/3FBBE29A78A758AE284D0D641BCDBB0756033CC9.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3FBBE29A78A758AE284D0D641BCDBB0756033CC9.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Feb 2026 04:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:bc:be:9b:e2:a1:7c:e8:c6:6c:e1:53:ec:4c:7e:7f:92:7f:bd:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3FBBE29A78A758AE284D0D641BCDBB0756033CC9 Validity Not Before: Feb 10 15:11:36 2026 GMT Not After : Feb 9 15:16:36 2027 GMT Subject: CN=E7950D0062871EF738946904BBBED1E4EC501DA4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:72:f7:d4:50:da:7e:f0:23:da:c1:bc:c9:cc: 3e:fe:bc:3b:b7:b1:23:47:c6:78:d2:0c:8e:e6:ad: 06:ba:06:05:ed:ee:ff:f7:f0:56:54:64:15:88:76: 1d:94:f3:4f:9d:b7:53:41:24:d7:a1:47:68:42:24: b2:21:59:94:e3:1d:ad:9a:95:84:76:c6:6a:58:ed: e3:9f:ac:75:9f:41:90:7c:6e:0a:4f:82:74:69:2a: 8a:3f:d0:f4:bc:aa:c3:9b:04:9b:0a:cb:5e:dd:d6: 50:34:e8:0e:87:d9:5f:19:72:3e:38:30:aa:47:87: 41:5f:a4:3c:6e:eb:ba:ea:d1:ff:9c:81:1b:0a:6a: 7f:40:39:e8:f7:d3:fd:17:23:ae:fb:af:c3:02:aa: c1:93:05:16:36:b8:41:a9:fe:93:15:d8:d1:4f:2b: f4:07:58:ce:d2:52:7b:c4:f1:75:8b:d3:08:bf:e9: d3:6a:30:64:6f:c0:38:1c:d4:90:ea:9f:03:13:27: a3:07:98:e0:d9:f9:1e:fd:c2:33:7b:92:0a:2e:6e: 2e:13:ad:4e:06:b6:d1:80:65:03:d6:8d:d3:9b:fd: 7d:7e:b1:79:da:5a:46:b5:29:2f:c0:93:97:d7:ce: ef:d8:df:2d:21:d7:5a:ef:92:67:cb:43:b2:a0:d1: d4:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:95:0D:00:62:87:1E:F7:38:94:69:04:BB:BE:D1:E4:EC:50:1D:A4 X509v3 Authority Key Identifier: keyid:3F:BB:E2:9A:78:A7:58:AE:28:4D:0D:64:1B:CD:BB:07:56:03:3C:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065588335524773889/0/3FBBE29A78A758AE284D0D641BCDBB0756033CC9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3FBBE29A78A758AE284D0D641BCDBB0756033CC9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065588335524773889/0/3230322e35382e3132322e302f32332d3234203d3e20323031373730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.58.122.0/23 Signature Algorithm: sha256WithRSAEncryption 79:69:17:07:bb:80:fc:78:d1:9e:12:e1:e5:53:f9:55:c9:87: 50:48:cb:7e:f2:36:bd:7c:88:bf:2c:ee:85:80:b9:1e:d3:af: 43:75:d4:da:bb:12:6a:3c:88:c7:a5:80:69:f0:af:31:68:01: 78:46:3f:dd:12:d0:7f:ee:16:93:64:02:05:95:8f:ff:93:71: 76:71:f2:21:17:a5:2a:95:12:0e:1d:29:a4:57:2a:f7:dd:c4: 41:84:e5:dd:46:82:49:e2:da:36:ef:b8:69:e4:f1:44:f2:f8: 7e:59:3a:d2:8c:7f:1f:a9:53:c6:c9:ee:6b:d7:13:86:5d:bb: 99:08:ec:69:17:05:f4:95:c4:97:b7:c9:d4:29:d2:a4:3a:84: 63:47:04:b2:c8:e6:c8:2e:20:32:65:7d:93:0b:b8:aa:a8:30: 5d:df:1b:42:51:fa:99:e3:e1:d8:32:50:3f:2b:a0:39:c7:bf: 47:de:b7:54:f4:d7:37:dc:1e:db:40:c7:c8:b6:13:e4:ad:60: 2a:22:e5:5c:08:1e:54:ad:9b:74:82:7f:17:62:bb:de:e8:e3: dd:a9:75:1d:d7:96:97:7c:ce:1b:34:72:e2:2f:26:3e:41:63: a8:62:87:df:49:4b:a5:6b:43:6c:55:56:7c:00:80:a6:69:7d: c1:06:86:2f -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUf7y+m+KhfOjGbOFT7Ex+f5J/vWwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0ZCQkUyOUE3OEE3NThBRTI4NEQwRDY0MUJDREJCMDc1 NjAzM0NDOTAeFw0yNjAyMTAxNTExMzZaFw0yNzAyMDkxNTE2MzZaMDMxMTAvBgNV BAMTKEU3OTUwRDAwNjI4NzFFRjczODk0NjkwNEJCQkVEMUU0RUM1MDFEQTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8cvfUUNp+8CPawbzJzD7+vDu3 sSNHxnjSDI7mrQa6BgXt7v/38FZUZBWIdh2U80+dt1NBJNehR2hCJLIhWZTjHa2a lYR2xmpY7eOfrHWfQZB8bgpPgnRpKoo/0PS8qsObBJsKy17d1lA06A6H2V8Zcj44 MKpHh0FfpDxu67rq0f+cgRsKan9AOej30/0XI677r8MCqsGTBRY2uEGp/pMV2NFP K/QHWM7SUnvE8XWL0wi/6dNqMGRvwDgc1JDqnwMTJ6MHmODZ+R79wjN7kgoubi4T rU4GttGAZQPWjdOb/X1+sXnaWka1KS/Ak5fXzu/Y3y0h11rvkmfLQ7Kg0dQ3AgMB AAGjggIXMIICEzAdBgNVHQ4EFgQU55UNAGKHHvc4lGkEu77R5OxQHaQwHwYDVR0j BBgwFoAUP7vimninWK4oTQ1kG827B1YDPMkwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4ODMzNTUyNDc3Mzg4OS8wLzNGQkJFMjlBNzhBNzU4QUUyODREMEQ2NDFCQ0RC QjA3NTYwMzNDQzkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvM0ZCQkUyOUE3OEE3NThBRTI4NEQwRDY0MUJDREJCMDc1NjAzM0NDOS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1ODgzMzU1MjQ3NzM4ODkvMC8zMjMwMzIyZTM1 MzgyZTMxMzIzMjJlMzAyZjMyMzMyZDMyMzQyMDNkM2UyMDMyMzAzMTM3MzczMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAco6ejANBgkqhkiG9w0BAQsFAAOCAQEAeWkXB7uA/HjRnhLh5VP5 VcmHUEjLfvI2vXyIvyzuhYC5HtOvQ3XU2rsSajyIx6WAafCvMWgBeEY/3RLQf+4W k2QCBZWP/5NxdnHyIRelKpUSDh0ppFcq993EQYTl3UaCSeLaNu+4aeTxRPL4flk6 0ox/H6lTxsnua9cThl27mQjsaRcF9JXEl7fJ1CnSpDqEY0cEssjmyC4gMmV9kwu4 qqgwXd8bQlH6mePh2DJQPyugOce/R963VPTXN9we20DHyLYT5K1gKiLlXAgeVK2b dIJ/F2K73ujj3al1HdeWl3zOGzRy4i8mPkFjqGKH30lLpWtDbFVWfACApml9wQaG Lw== -----END CERTIFICATE-----Generated at Mon Feb 23 03:56:37 2026 by rpki-client