$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094815969324302337/0/3231312e3136322e36342e302f32302d3230203d3e203137363233.roa File: 3231312e3136322e36342e302f32302d3230203d3e203137363233.roa (raw, json) Hash identifier: WCTSpSOGWrMk2N3SWhjF1qeIWBzn3/omB++Tj2tGsBU= Subject key identifier: D8:92:B4:6F:70:81:FB:F0:02:87:8E:14:D4:3E:0E:35:F7:60:18:07 Certificate issuer: /CN=32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5 Certificate serial: 42B83CA959D1DD26263E4D2C6DD8ACE7C0B8D225 Authority key identifier: 32:C6:BE:DB:CA:2F:53:4D:41:32:20:06:E3:9A:6E:51:B1:A9:A9:D5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/3231312e3136322e36342e302f32302d3230203d3e203137363233.roa Signing time: Fri 10 Apr 2026 03:00:39 +0000 ROA not before: Fri 10 Apr 2026 02:55:39 +0000 ROA not after: Fri 09 Apr 2027 03:00:39 +0000 asID: 17623 IP address blocks: 211.162.64.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.crl rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 08:13:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:b8:3c:a9:59:d1:dd:26:26:3e:4d:2c:6d:d8:ac:e7:c0:b8:d2:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5 Validity Not Before: Apr 10 02:55:39 2026 GMT Not After : Apr 9 03:00:39 2027 GMT Subject: CN=D892B46F7081FBF002878E14D43E0E35F7601807 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:5f:b5:c1:33:c7:68:fc:0b:cb:0c:7e:b1:59: ea:03:30:21:18:54:4c:52:17:ac:d4:65:5a:69:82: b1:f3:e2:eb:03:aa:e2:bf:0d:73:69:8c:ca:4d:f5: 14:c6:98:0c:8b:40:fd:a3:5f:72:55:16:b1:76:10: 6f:4f:fe:32:1b:59:99:86:3a:83:b4:f9:60:57:66: 63:f8:66:ad:7f:2d:2b:e3:98:bf:f6:7e:88:bc:a1: db:c2:16:8b:53:28:28:50:9c:e7:e0:0d:ca:ce:b0: 8c:88:29:1e:7b:ef:01:f8:07:81:ff:c9:ed:67:ce: 62:56:a6:9a:5a:ed:aa:6a:e0:e5:ad:b5:c7:1f:c1: 47:17:30:31:ef:f9:d3:0a:78:0f:4a:0d:d7:c0:e0: f6:2c:71:3c:2d:81:e1:7e:89:54:23:d0:f6:15:9d: af:f7:a9:dc:fd:25:8e:ee:55:1b:51:ee:aa:17:28: cf:00:29:ad:0d:c1:47:74:a2:23:7e:7f:f3:5a:1b: 2b:c0:a3:89:4a:20:d2:80:f0:95:a9:0a:00:5f:c5: 0d:3d:31:5e:b2:ac:42:20:8e:10:06:39:65:b2:03: ef:f8:dc:15:7e:65:74:70:d2:04:3f:21:39:f1:75: aa:d3:de:bf:9a:07:ea:e4:fc:c4:98:1c:21:0d:8d: c3:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:92:B4:6F:70:81:FB:F0:02:87:8E:14:D4:3E:0E:35:F7:60:18:07 X509v3 Authority Key Identifier: keyid:32:C6:BE:DB:CA:2F:53:4D:41:32:20:06:E3:9A:6E:51:B1:A9:A9:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/3231312e3136322e36342e302f32302d3230203d3e203137363233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 211.162.64.0/20 Signature Algorithm: sha256WithRSAEncryption ae:15:42:a7:79:c5:22:46:12:4a:9b:fc:01:13:75:db:66:8a: 0e:82:f8:c9:46:62:67:ed:ec:4c:8f:40:b0:26:36:24:b2:b8: 6d:67:5a:a8:cf:db:fa:9c:ba:b1:bd:e3:5e:90:3e:c4:d6:0a: c0:85:7b:ad:19:ef:b3:64:9f:f5:3f:95:05:f6:70:50:ae:56: 93:74:77:40:8a:6b:09:24:c1:f4:ec:05:a1:5c:34:be:39:d8: fe:b8:0e:18:21:99:bf:29:d0:c0:46:0f:41:cf:c1:e3:6f:7d: 68:61:a0:5d:de:6f:71:1c:38:8f:b7:d1:e6:7a:7d:d3:61:ec: b0:e1:52:25:16:ea:5b:89:9a:fb:96:38:64:21:d2:c9:5a:df: bb:82:a7:ab:1e:95:2f:8f:8f:cc:d2:0a:c7:26:7d:d1:07:93: 67:63:3a:b3:c1:0e:1b:74:7c:e2:43:0a:4c:70:a2:ec:68:09: e0:4b:37:41:3a:41:cb:bb:78:c5:02:52:5d:ce:2d:12:ed:ae: f3:ee:45:fd:5c:76:7e:93:b0:9d:0d:72:f3:76:eb:7a:d0:55: 1f:4a:a7:a7:25:15:ed:0e:31:dd:94:f6:bd:80:94:fc:0b:5b: c8:37:4b:a0:d0:26:10:c8:50:22:9e:c1:c2:37:1a:d3:2d:2f: e6:91:89:8c -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUQrg8qVnR3SYmPk0sbdis58C40iUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzJDNkJFREJDQTJGNTM0RDQxMzIyMDA2RTM5QTZFNTFC MUE5QTlENTAeFw0yNjA0MTAwMjU1MzlaFw0yNzA0MDkwMzAwMzlaMDMxMTAvBgNV BAMTKEQ4OTJCNDZGNzA4MUZCRjAwMjg3OEUxNEQ0M0UwRTM1Rjc2MDE4MDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKX7XBM8do/AvLDH6xWeoDMCEY VExSF6zUZVppgrHz4usDquK/DXNpjMpN9RTGmAyLQP2jX3JVFrF2EG9P/jIbWZmG OoO0+WBXZmP4Zq1/LSvjmL/2foi8odvCFotTKChQnOfgDcrOsIyIKR577wH4B4H/ ye1nzmJWpppa7apq4OWttccfwUcXMDHv+dMKeA9KDdfA4PYscTwtgeF+iVQj0PYV na/3qdz9JY7uVRtR7qoXKM8AKa0NwUd0oiN+f/NaGyvAo4lKINKA8JWpCgBfxQ09 MV6yrEIgjhAGOWWyA+/43BV+ZXRw0gQ/ITnxdarT3r+aB+rk/MSYHCENjcM/AgMB AAGjggIUMIICEDAdBgNVHQ4EFgQU2JK0b3CB+/ACh44U1D4ONfdgGAcwHwYDVR0j BBgwFoAUMsa+28ovU01BMiAG45puUbGpqdUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDgxNTk2OTMyNDMwMjMzNy8wLzMyQzZCRURCQ0EyRjUzNEQ0MTMyMjAwNkUzOUE2 RTUxQjFBOUE5RDUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMzJDNkJFREJDQTJGNTM0RDQxMzIyMDA2RTM5QTZFNTFCMUE5QTlENS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NDgxNTk2OTMyNDMwMjMzNy8wLzMyMzEzMTJlMzEz NjMyMmUzNjM0MmUzMDJmMzIzMDJkMzIzMDIwM2QzZTIwMzEzNzM2MzIzMy5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEBNOiQDANBgkqhkiG9w0BAQsFAAOCAQEArhVCp3nFIkYSSpv8ARN122aK DoL4yUZiZ+3sTI9AsCY2JLK4bWdaqM/b+py6sb3jXpA+xNYKwIV7rRnvs2Sf9T+V BfZwUK5Wk3R3QIprCSTB9OwFoVw0vjnY/rgOGCGZvynQwEYPQc/B4299aGGgXd5v cRw4j7fR5np902HssOFSJRbqW4ma+5Y4ZCHSyVrfu4Knqx6VL4+PzNIKxyZ90QeT Z2M6s8EOG3R84kMKTHCi7GgJ4Es3QTpBy7t4xQJSXc4tEu2u8+5F/Vx2fpOwnQ1y 83bretBVH0qnpyUV7Q4x3ZT2vYCU/AtbyDdLoNAmEMhQIp7Bwjca0y0v5pGJjA== -----END CERTIFICATE-----Generated at Mon Apr 13 12:24:19 2026 by rpki-client