$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094815969324302337/0/3232302e3131322e3139352e302f32342d3234203d3e2030.roa File: 3232302e3131322e3139352e302f32342d3234203d3e2030.roa (raw, json) Hash identifier: 7dczx81jAL29LmQNekOfzl53IVx1yWv22xnT4R3q9Yk= Subject key identifier: 5C:B5:11:19:1D:99:95:B8:CB:EE:69:82:B1:A8:47:E5:FC:96:D9:B4 Certificate issuer: /CN=32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5 Certificate serial: 090CC53A6C7C6D6831D4FC1DF30A2D8149DAC4AE Authority key identifier: 32:C6:BE:DB:CA:2F:53:4D:41:32:20:06:E3:9A:6E:51:B1:A9:A9:D5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/3232302e3131322e3139352e302f32342d3234203d3e2030.roa Signing time: Fri 10 Apr 2026 03:40:29 +0000 ROA not before: Fri 10 Apr 2026 03:35:29 +0000 ROA not after: Fri 09 Apr 2027 03:40:29 +0000 asID: 0 IP address blocks: 220.112.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.crl rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 08:13:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:0c:c5:3a:6c:7c:6d:68:31:d4:fc:1d:f3:0a:2d:81:49:da:c4:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5 Validity Not Before: Apr 10 03:35:29 2026 GMT Not After : Apr 9 03:40:29 2027 GMT Subject: CN=5CB511191D9995B8CBEE6982B1A847E5FC96D9B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:94:d4:31:65:55:0b:ab:ce:a7:08:93:e7:96: fc:0d:42:cc:e1:40:f7:25:cd:19:a7:00:fb:e5:4d: 8a:47:d8:c7:9e:9d:5c:68:26:dc:47:34:7d:2e:bc: a2:b0:c9:38:03:3e:e3:37:6c:1e:a9:23:21:48:43: a0:b2:94:24:f5:8f:bd:03:16:a6:23:40:0d:23:71: 90:e6:d2:3e:08:02:45:50:54:2c:f4:4f:5a:a6:6c: e4:6f:88:3b:6b:58:1a:42:c1:d5:30:8e:b0:43:0d: d5:af:8a:a1:00:55:47:b2:57:b7:7e:3e:e9:03:f8: bf:8b:44:c8:60:ae:e5:0c:d6:ef:ae:1d:f7:9b:6d: 26:7f:cd:0c:03:b4:63:9a:40:fc:ba:83:41:61:4e: 08:fd:2e:49:25:b6:96:d0:6f:f9:4b:a6:dd:b3:0d: 30:60:15:dd:8e:8b:07:bb:1b:c9:6b:88:bd:57:5c: b9:fb:45:a5:db:ec:6d:34:f2:01:1b:2e:47:54:8b: 13:60:92:c8:37:77:bf:76:2d:27:93:55:ec:da:04: 12:3b:46:5f:9c:84:4b:e1:de:ad:6f:78:0e:b2:4b: 6b:6c:6a:06:04:0c:0d:3e:71:97:c5:ee:5e:92:39: 18:fe:8c:ac:0a:03:6f:b5:d5:e6:ea:d7:1f:a8:63: 4d:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:B5:11:19:1D:99:95:B8:CB:EE:69:82:B1:A8:47:E5:FC:96:D9:B4 X509v3 Authority Key Identifier: keyid:32:C6:BE:DB:CA:2F:53:4D:41:32:20:06:E3:9A:6E:51:B1:A9:A9:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/3232302e3131322e3139352e302f32342d3234203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 220.112.195.0/24 Signature Algorithm: sha256WithRSAEncryption 44:69:d3:e8:a2:66:0c:6b:f9:89:5b:99:13:ff:1e:35:7c:dc: 13:ad:39:5e:73:40:a5:b0:d4:d7:25:d6:78:10:89:43:17:86: 59:8a:38:3c:69:c5:6e:f3:5f:b6:41:8e:d2:c4:59:20:16:a9: 88:e0:5c:70:df:01:cd:d8:05:a9:7a:42:01:fb:e7:b9:45:f3: b5:12:15:ec:58:66:c2:65:cc:c7:eb:24:a4:a4:7c:e4:ab:b7: 92:b4:a5:67:05:23:29:96:de:68:64:ab:d3:81:58:a0:ea:d5: a6:e7:a5:6e:cb:b9:d7:d6:c5:32:ce:14:f9:12:ef:30:17:da: 54:89:6a:74:79:8e:7b:f6:ad:fc:51:53:3d:3e:be:d6:9c:78: 0a:50:fd:ec:d3:d0:49:fa:c9:20:29:c5:f9:12:4d:0a:91:4d: f5:10:19:40:76:09:d3:98:49:18:cb:b8:c0:ef:42:75:36:69: ea:e6:f3:91:2e:8f:99:7d:09:aa:30:cc:34:15:8d:7f:0f:61: 87:ef:28:60:5e:c9:da:90:d8:1d:c7:8f:c0:6a:55:ba:57:e4: 6a:6e:7e:ce:0e:88:c4:5b:af:fc:ff:ac:9f:bc:aa:6e:c1:64: 10:7b:5b:3e:e5:78:e5:0a:6b:0c:d6:dc:64:d0:29:e8:98:28: 39:fe:53:d1 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgIUCQzFOmx8bWgx1Pwd8wotgUnaxK4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzJDNkJFREJDQTJGNTM0RDQxMzIyMDA2RTM5QTZFNTFC MUE5QTlENTAeFw0yNjA0MTAwMzM1MjlaFw0yNzA0MDkwMzQwMjlaMDMxMTAvBgNV BAMTKDVDQjUxMTE5MUQ5OTk1QjhDQkVFNjk4MkIxQTg0N0U1RkM5NkQ5QjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3lNQxZVULq86nCJPnlvwNQszh QPclzRmnAPvlTYpH2MeenVxoJtxHNH0uvKKwyTgDPuM3bB6pIyFIQ6CylCT1j70D FqYjQA0jcZDm0j4IAkVQVCz0T1qmbORviDtrWBpCwdUwjrBDDdWviqEAVUeyV7d+ PukD+L+LRMhgruUM1u+uHfebbSZ/zQwDtGOaQPy6g0FhTgj9LkkltpbQb/lLpt2z DTBgFd2Oiwe7G8lriL1XXLn7RaXb7G008gEbLkdUixNgksg3d792LSeTVezaBBI7 Rl+chEvh3q1veA6yS2tsagYEDA0+cZfF7l6SORj+jKwKA2+11ebq1x+oY02FAgMB AAGjggINMIICCTAdBgNVHQ4EFgQUXLURGR2ZlbjL7mmCsahH5fyW2bQwHwYDVR0j BBgwFoAUMsa+28ovU01BMiAG45puUbGpqdUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDgxNTk2OTMyNDMwMjMzNy8wLzMyQzZCRURCQ0EyRjUzNEQ0MTMyMjAwNkUzOUE2 RTUxQjFBOUE5RDUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMzJDNkJFREJDQTJGNTM0RDQxMzIyMDA2RTM5QTZFNTFCMUE5QTlENS5jZXIw gYYGCCsGAQUFBwELBHoweDB2BggrBgEFBQcwC4ZqcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk0ODE1OTY5MzI0MzAyMzM3LzAvMzIzMjMwMmUzMTMx MzIyZTMxMzkzNTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMwLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA 3HDDMA0GCSqGSIb3DQEBCwUAA4IBAQBEadPoomYMa/mJW5kT/x41fNwTrTlec0Cl sNTXJdZ4EIlDF4ZZijg8acVu81+2QY7SxFkgFqmI4Fxw3wHN2AWpekIB++e5RfO1 EhXsWGbCZczH6ySkpHzkq7eStKVnBSMplt5oZKvTgVig6tWm56Vuy7nX1sUyzhT5 Eu8wF9pUiWp0eY579q38UVM9Pr7WnHgKUP3s09BJ+skgKcX5Ek0KkU31EBlAdgnT mEkYy7jA70J1Nmnq5vORLo+ZfQmqMMw0FY1/D2GH7yhgXsnakNgdx4/AalW6V+Rq bn7ODojEW6/8/6yfvKpuwWQQe1s+5XjlCmsM1txk0CnomCg5/lPR -----END CERTIFICATE-----Generated at Mon Apr 13 12:24:19 2026 by rpki-client