$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094815969324302337/0/3232302e3131322e302e302f32322d3232203d3e203137363233.roa File: 3232302e3131322e302e302f32322d3232203d3e203137363233.roa (raw, json) Hash identifier: 5PEQJWLaGQT3SOZOK3kTNhJhNNYg119tfIf+7vkBYg8= Subject key identifier: 95:57:7B:7E:38:72:23:7A:2C:50:F3:89:E6:4D:2C:A5:C3:04:1F:B7 Certificate issuer: /CN=32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5 Certificate serial: 35D8B0D412F4E47437D16A6AFF5039D90F0753E7 Authority key identifier: 32:C6:BE:DB:CA:2F:53:4D:41:32:20:06:E3:9A:6E:51:B1:A9:A9:D5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/3232302e3131322e302e302f32322d3232203d3e203137363233.roa Signing time: Fri 10 Apr 2026 03:00:39 +0000 ROA not before: Fri 10 Apr 2026 02:55:39 +0000 ROA not after: Fri 09 Apr 2027 03:00:39 +0000 asID: 17623 IP address blocks: 220.112.0.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.crl rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 08:13:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:d8:b0:d4:12:f4:e4:74:37:d1:6a:6a:ff:50:39:d9:0f:07:53:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5 Validity Not Before: Apr 10 02:55:39 2026 GMT Not After : Apr 9 03:00:39 2027 GMT Subject: CN=95577B7E3872237A2C50F389E64D2CA5C3041FB7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:c3:a7:03:f2:fa:c4:3f:64:fa:40:18:5e:37: dd:1c:8a:35:d0:bf:ab:cb:cc:ad:3e:4f:a1:e6:1d: b4:bd:3f:96:c3:f7:4f:37:8c:e2:23:cc:5c:75:83: 1e:6f:e2:f9:df:d0:bb:ce:31:4f:b0:eb:3d:d0:fc: fd:41:ad:10:2a:2d:20:10:ce:fd:2a:ef:5c:b7:a1: 17:40:51:a6:b2:74:b5:d9:26:3e:91:1e:03:b3:1d: 56:f7:e5:71:18:6e:f9:8e:f9:51:30:31:01:f2:91: 9d:9a:87:f9:ce:8e:67:8f:5b:21:fa:40:70:e4:c8: 09:07:4d:08:ab:7c:4c:d0:b4:00:8a:d0:1a:4e:41: 11:b5:7c:4d:44:b3:dc:be:26:c4:28:cc:c7:66:52: 7c:28:4c:79:a4:3b:a0:a5:14:54:a7:07:35:86:f4: 57:63:c3:ae:df:92:12:d4:de:47:8b:a8:9c:a3:b4: 77:64:5d:99:f5:04:ee:48:99:2a:60:23:9a:16:02: c1:9a:69:b1:95:33:8f:c2:d3:c4:01:4c:3f:1d:15: 12:81:d7:dc:57:21:d2:90:f6:d4:9c:de:82:2a:6f: c4:57:f8:06:35:7b:c3:a1:43:63:9b:4f:86:84:e1: 17:97:6b:45:54:b0:d3:4b:86:73:bc:a5:b3:7b:d9: 06:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:57:7B:7E:38:72:23:7A:2C:50:F3:89:E6:4D:2C:A5:C3:04:1F:B7 X509v3 Authority Key Identifier: keyid:32:C6:BE:DB:CA:2F:53:4D:41:32:20:06:E3:9A:6E:51:B1:A9:A9:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/3232302e3131322e302e302f32322d3232203d3e203137363233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 220.112.0.0/22 Signature Algorithm: sha256WithRSAEncryption 95:d1:34:07:11:4a:4d:3b:d8:6d:1e:2e:5a:5c:62:15:fe:43: 5f:a7:e4:3e:01:cc:7d:01:b3:55:7e:1e:db:ef:52:73:72:64: 0f:94:e6:73:98:2e:5b:ed:e6:6d:2b:36:32:58:08:9a:da:a6: 1a:84:c1:9d:d7:bc:67:cb:db:21:f3:89:a3:85:bc:e8:c0:56: fb:7a:16:da:98:97:b5:aa:d8:c2:dd:d0:b0:3f:c6:81:67:31: 09:44:b3:71:8d:b2:e4:c5:5e:c3:c8:f1:db:d3:47:0b:0c:ac: 81:5f:4e:82:8b:08:67:2e:24:bd:5c:13:a2:6d:6c:94:b5:96: 01:e6:15:30:f8:0e:f8:92:6b:c3:97:2e:cb:02:05:9a:bb:8d: 7e:7a:cd:40:6f:64:5e:91:9c:99:5d:c2:30:20:54:e6:31:fc: 32:d5:b8:94:f0:12:d1:ae:b1:fa:18:95:c4:95:14:29:7c:e6: 36:bb:5b:6f:e0:37:41:4a:bd:3b:57:88:0b:e8:69:12:33:0c: 7b:83:19:af:e5:17:aa:38:b9:e6:89:97:a6:3c:87:6c:9c:19: 2f:a8:85:d3:d5:07:d7:d1:5c:ac:d5:84:0b:4f:8d:e7:7e:7d: b0:b2:60:b6:6e:c4:eb:a1:cd:29:3a:73:e7:89:d5:39:aa:0a: 23:0b:06:5b -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUNdiw1BL05HQ30Wpq/1A52Q8HU+cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzJDNkJFREJDQTJGNTM0RDQxMzIyMDA2RTM5QTZFNTFC MUE5QTlENTAeFw0yNjA0MTAwMjU1MzlaFw0yNzA0MDkwMzAwMzlaMDMxMTAvBgNV BAMTKDk1NTc3QjdFMzg3MjIzN0EyQzUwRjM4OUU2NEQyQ0E1QzMwNDFGQjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEw6cD8vrEP2T6QBheN90cijXQ v6vLzK0+T6HmHbS9P5bD9083jOIjzFx1gx5v4vnf0LvOMU+w6z3Q/P1BrRAqLSAQ zv0q71y3oRdAUaaydLXZJj6RHgOzHVb35XEYbvmO+VEwMQHykZ2ah/nOjmePWyH6 QHDkyAkHTQirfEzQtACK0BpOQRG1fE1Es9y+JsQozMdmUnwoTHmkO6ClFFSnBzWG 9Fdjw67fkhLU3keLqJyjtHdkXZn1BO5ImSpgI5oWAsGaabGVM4/C08QBTD8dFRKB 19xXIdKQ9tSc3oIqb8RX+AY1e8OhQ2ObT4aE4ReXa0VUsNNLhnO8pbN72QZfAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUlVd7fjhyI3osUPOJ5k0spcMEH7cwHwYDVR0j BBgwFoAUMsa+28ovU01BMiAG45puUbGpqdUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDgxNTk2OTMyNDMwMjMzNy8wLzMyQzZCRURCQ0EyRjUzNEQ0MTMyMjAwNkUzOUE2 RTUxQjFBOUE5RDUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMzJDNkJFREJDQTJGNTM0RDQxMzIyMDA2RTM5QTZFNTFCMUE5QTlENS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk0ODE1OTY5MzI0MzAyMzM3LzAvMzIzMjMwMmUzMTMx MzIyZTMwMmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzEzNzM2MzIzMy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAtxwADANBgkqhkiG9w0BAQsFAAOCAQEAldE0BxFKTTvYbR4uWlxiFf5DX6fk PgHMfQGzVX4e2+9Sc3JkD5Tmc5guW+3mbSs2MlgImtqmGoTBnde8Z8vbIfOJo4W8 6MBW+3oW2piXtarYwt3QsD/GgWcxCUSzcY2y5MVew8jx29NHCwysgV9OgosIZy4k vVwTom1slLWWAeYVMPgO+JJrw5cuywIFmruNfnrNQG9kXpGcmV3CMCBU5jH8MtW4 lPAS0a6x+hiVxJUUKXzmNrtbb+A3QUq9O1eIC+hpEjMMe4MZr+UXqji55omXpjyH bJwZL6iF09UH19FcrNWEC0+N5359sLJgtm7E66HNKTpz54nVOaoKIwsGWw== -----END CERTIFICATE-----Generated at Mon Apr 13 12:24:14 2026 by rpki-client