$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065588553129721859/0/32372e302e3231322e302f32322d3232203d3e2030.roa File: 32372e302e3231322e302f32322d3232203d3e2030.roa (raw, json) Hash identifier: +iZTzZqG/Rk14nBbLideA4U8/BW7aonvG3f2nUwUPSc= Subject key identifier: 90:AE:BC:56:4B:0F:ED:C4:E6:CD:CA:A2:65:61:E3:C0:31:E9:04:A5 Certificate issuer: /CN=9B22C19D842E45AA84439366694E4C828C309CEE Certificate serial: 13C89FF0DBF172E8E826F725B23FC9C59F5E1F49 Authority key identifier: 9B:22:C1:9D:84:2E:45:AA:84:43:93:66:69:4E:4C:82:8C:30:9C:EE Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9B22C19D842E45AA84439366694E4C828C309CEE.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065588553129721859/0/32372e302e3231322e302f32322d3232203d3e2030.roa Signing time: Tue 16 Jun 2026 00:47:56 +0000 ROA not before: Tue 16 Jun 2026 00:42:56 +0000 ROA not after: Tue 15 Jun 2027 00:47:56 +0000 asID: 0 IP address blocks: 27.0.212.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065588553129721859/0/9B22C19D842E45AA84439366694E4C828C309CEE.crl rsync://rpki-rps.cnnic.cn/repo/A1065588553129721859/0/9B22C19D842E45AA84439366694E4C828C309CEE.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9B22C19D842E45AA84439366694E4C828C309CEE.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Jun 2026 09:40:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:c8:9f:f0:db:f1:72:e8:e8:26:f7:25:b2:3f:c9:c5:9f:5e:1f:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9B22C19D842E45AA84439366694E4C828C309CEE Validity Not Before: Jun 16 00:42:56 2026 GMT Not After : Jun 15 00:47:56 2027 GMT Subject: CN=90AEBC564B0FEDC4E6CDCAA26561E3C031E904A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:60:e5:51:6e:95:50:0b:ac:ed:44:26:24:0a: 3d:20:5c:b0:1b:ff:8f:dc:61:82:15:de:05:f8:44: 57:b0:96:6d:39:30:cd:db:4c:be:0c:52:fe:c3:a3: e1:b5:d6:d7:0c:8c:de:de:f9:f1:66:1d:a6:3e:91: 3b:f0:da:20:97:33:a5:45:8c:d1:a0:5c:f2:77:09: 13:ee:c8:3a:51:09:4a:4b:4a:52:e6:26:4b:8e:a3: d9:e2:5f:d6:0a:3c:63:4b:d7:49:1a:6c:6d:37:df: 7f:a6:eb:49:d1:dd:2e:c9:1d:fa:cd:2f:b2:6a:c8: a3:26:ba:56:72:1d:11:32:df:9b:43:ae:c2:f3:4c: 30:aa:f5:00:54:a1:0f:e7:44:c7:dc:74:37:3e:e4: 3f:95:66:dc:ea:7f:5a:36:b2:7c:f1:84:7f:07:88: 48:4e:e3:81:cd:cf:66:5c:5f:00:b9:34:79:61:4a: 0c:5b:2d:be:b9:1c:6f:0a:d7:07:5b:7e:57:a1:fd: 6c:c5:a4:ae:f0:b1:d2:25:8f:21:78:10:77:4d:d5: b2:e5:21:47:d8:3a:f0:57:49:c7:c7:47:ec:78:a3: e9:32:4c:7a:2a:07:ed:f5:15:ab:45:5b:e8:0a:b8: 46:a9:ef:51:b9:e8:20:93:61:7d:03:97:cd:a2:ca: be:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:AE:BC:56:4B:0F:ED:C4:E6:CD:CA:A2:65:61:E3:C0:31:E9:04:A5 X509v3 Authority Key Identifier: keyid:9B:22:C1:9D:84:2E:45:AA:84:43:93:66:69:4E:4C:82:8C:30:9C:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129721859/0/9B22C19D842E45AA84439366694E4C828C309CEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9B22C19D842E45AA84439366694E4C828C309CEE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129721859/0/32372e302e3231322e302f32322d3232203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.0.212.0/22 Signature Algorithm: sha256WithRSAEncryption 9d:44:1f:ab:d7:60:5c:72:b4:c1:15:9d:e8:ff:60:2d:6a:1f: 58:d8:0d:e4:bb:b2:b6:29:49:08:83:86:ab:1c:9f:a3:88:86: f6:a3:85:4e:eb:49:16:f3:53:a9:23:74:3c:64:09:0c:41:ef: 30:49:4c:c6:10:5d:92:3f:75:67:dc:9d:f0:bf:3e:da:f0:09: e7:9f:69:e3:e1:11:51:8c:49:b9:93:0e:b6:55:a1:d2:5b:0c: 23:6c:ef:aa:ea:cc:cf:d3:e8:61:74:21:c6:08:f7:24:40:93: d2:d7:8c:91:89:2d:5e:39:ed:5e:4b:18:81:05:4b:83:b3:a3: 91:e0:82:50:25:51:69:26:4c:ea:44:e3:2b:1a:0b:2c:e0:58: 4f:58:97:3f:95:e6:b8:59:da:79:cb:4b:2f:ec:eb:03:f0:f3: 26:28:a3:f8:a7:81:da:48:5f:57:b8:8f:97:84:52:df:f2:df: a0:f4:46:7c:da:a9:24:c8:0d:85:ed:e5:1b:e9:5f:c7:ef:36: b9:6a:dc:af:47:34:a9:60:d5:1d:e2:08:42:be:25:7d:60:0f: ab:f3:53:1b:23:87:37:ee:9a:68:30:30:f5:38:60:0f:e3:e4: 90:ea:d7:d3:b4:5e:ea:0e:4d:62:d2:55:46:f5:d9:92:f7:fb: 41:cd:29:ef -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgIUE8if8NvxcujoJvclsj/JxZ9eH0kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUIyMkMxOUQ4NDJFNDVBQTg0NDM5MzY2Njk0RTRDODI4 QzMwOUNFRTAeFw0yNjA2MTYwMDQyNTZaFw0yNzA2MTUwMDQ3NTZaMDMxMTAvBgNV BAMTKDkwQUVCQzU2NEIwRkVEQzRFNkNEQ0FBMjY1NjFFM0MwMzFFOTA0QTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvYOVRbpVQC6ztRCYkCj0gXLAb /4/cYYIV3gX4RFewlm05MM3bTL4MUv7Do+G11tcMjN7e+fFmHaY+kTvw2iCXM6VF jNGgXPJ3CRPuyDpRCUpLSlLmJkuOo9niX9YKPGNL10kabG0333+m60nR3S7JHfrN L7JqyKMmulZyHREy35tDrsLzTDCq9QBUoQ/nRMfcdDc+5D+VZtzqf1o2snzxhH8H iEhO44HNz2ZcXwC5NHlhSgxbLb65HG8K1wdbfleh/WzFpK7wsdIljyF4EHdN1bLl IUfYOvBXScfHR+x4o+kyTHoqB+31FatFW+gKuEap71G56CCTYX0Dl82iyr6VAgMB AAGjggIHMIICAzAdBgNVHQ4EFgQUkK68VksP7cTmzcqiZWHjwDHpBKUwHwYDVR0j BBgwFoAUmyLBnYQuRaqEQ5NmaU5MgowwnO4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4ODU1MzEyOTcyMTg1OS8wLzlCMjJDMTlEODQyRTQ1QUE4NDQzOTM2NjY5NEU0 QzgyOEMzMDlDRUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOUIyMkMxOUQ4NDJFNDVBQTg0NDM5MzY2Njk0RTRDODI4QzMwOUNFRS5jZXIw gYAGCCsGAQUFBwELBHQwcjBwBggrBgEFBQcwC4ZkcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTg4NTUzMTI5NzIxODU5LzAvMzIzNzJlMzAyZTMy MzEzMjJlMzAyZjMyMzIyZDMyMzIyMDNkM2UyMDMwLnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCGwDUMA0G CSqGSIb3DQEBCwUAA4IBAQCdRB+r12BccrTBFZ3o/2Atah9Y2A3ku7K2KUkIg4ar HJ+jiIb2o4VO60kW81OpI3Q8ZAkMQe8wSUzGEF2SP3Vn3J3wvz7a8Annn2nj4RFR jEm5kw62VaHSWwwjbO+q6szP0+hhdCHGCPckQJPS14yRiS1eOe1eSxiBBUuDs6OR 4IJQJVFpJkzqROMrGgss4FhPWJc/lea4Wdp5y0sv7OsD8PMmKKP4p4HaSF9XuI+X hFLf8t+g9EZ82qkkyA2F7eUb6V/H7za5atyvRzSpYNUd4ghCviV9YA+r81MbI4c3 7ppoMDD1OGAP4+SQ6tfTtF7qDk1i0lVG9dmS9/tBzSnv -----END CERTIFICATE-----Generated at Wed Jun 24 16:01:20 2026 by rpki-client