$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094815969324302337/0/3232302e3131322e3139372e302f32342d3234203d3e2030.roa File: 3232302e3131322e3139372e302f32342d3234203d3e2030.roa (raw, json) Hash identifier: gVYnNNr+qpR3UQleGl4/Gj6MHiEI9yAb5eVP0E3xgi8= Subject key identifier: 1F:F8:EE:9F:AB:4F:8F:FE:E0:28:08:20:A3:AF:A2:5A:1D:D8:93:0F Certificate issuer: /CN=32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5 Certificate serial: 09E5421548570F3A42244AF9187AA24C325551B3 Authority key identifier: 32:C6:BE:DB:CA:2F:53:4D:41:32:20:06:E3:9A:6E:51:B1:A9:A9:D5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/3232302e3131322e3139372e302f32342d3234203d3e2030.roa Signing time: Fri 10 Apr 2026 03:40:29 +0000 ROA not before: Fri 10 Apr 2026 03:35:29 +0000 ROA not after: Fri 09 Apr 2027 03:40:29 +0000 asID: 0 IP address blocks: 220.112.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.crl rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 08:13:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:e5:42:15:48:57:0f:3a:42:24:4a:f9:18:7a:a2:4c:32:55:51:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5 Validity Not Before: Apr 10 03:35:29 2026 GMT Not After : Apr 9 03:40:29 2027 GMT Subject: CN=1FF8EE9FAB4F8FFEE0280820A3AFA25A1DD8930F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b7:c0:4f:66:93:8e:58:49:5b:5b:66:d9:e3: 5d:1f:cf:d0:81:ff:d9:4a:b9:9f:bb:3f:80:87:96: 90:75:3f:b7:cc:23:97:c4:f1:34:9e:54:69:31:13: 75:1e:a2:5b:0c:50:53:6f:1d:03:d5:54:2a:9c:14: 1a:e2:3e:e9:6f:f2:b9:dd:c7:7e:c0:cc:6d:13:66: fc:5c:5e:4b:f7:c6:a5:f1:31:b7:86:75:33:90:fc: 9b:5a:ac:77:84:cc:25:14:ad:cc:ba:37:62:2f:55: 2d:14:9a:f0:95:a1:94:ae:7a:1f:ac:08:29:e5:27: a8:05:fd:9b:b0:0d:53:c4:82:df:7d:5f:4a:94:07: a6:9e:28:b5:8e:8c:4a:61:85:65:3c:e4:90:93:a6: f5:80:af:da:f3:29:bb:c5:f1:a2:3e:9b:62:bc:52: 55:02:e7:ab:08:14:73:3b:63:7d:9c:9b:6f:d2:46: 96:65:84:b4:7a:99:ab:72:1b:75:ca:02:bf:68:95: 13:aa:34:e6:77:cb:8b:81:82:0d:5d:9f:06:56:8c: d4:bc:4b:54:f6:3b:be:cc:6e:89:2a:c6:4a:c6:dd: e9:4f:66:71:14:04:01:53:c3:e6:65:99:00:0f:31: 6b:48:6a:e2:f7:53:e3:7a:c5:f6:5f:0c:03:43:3c: fe:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:F8:EE:9F:AB:4F:8F:FE:E0:28:08:20:A3:AF:A2:5A:1D:D8:93:0F X509v3 Authority Key Identifier: keyid:32:C6:BE:DB:CA:2F:53:4D:41:32:20:06:E3:9A:6E:51:B1:A9:A9:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/3232302e3131322e3139372e302f32342d3234203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 220.112.197.0/24 Signature Algorithm: sha256WithRSAEncryption 83:82:3f:97:af:20:54:7c:7a:9f:ac:37:83:34:a9:59:6f:97: c5:6f:03:12:53:ee:89:29:ba:d9:29:64:25:77:ed:df:f8:84: 57:21:bf:14:a5:c3:7c:d1:b3:c5:45:1e:33:bc:77:da:29:c9: 94:54:fc:2e:f5:93:e9:99:48:24:63:cf:57:67:ce:3e:69:53: 4b:d6:7e:74:45:d4:50:2e:b2:e1:e5:40:86:e1:ed:66:df:98: cd:44:86:2c:19:89:cb:b1:78:2c:51:43:92:1a:69:e1:0a:14: 24:d5:58:71:e6:96:50:e6:28:a2:83:2f:44:90:be:4f:21:0d: be:84:3e:9b:71:eb:10:5b:f2:af:c7:47:c4:69:67:0c:13:8e: c5:be:e4:5c:4a:12:1a:05:b9:ea:ec:ca:8c:d3:9b:d4:3f:00: e0:24:e8:61:63:48:1f:d4:b6:2b:aa:cc:46:b6:fd:b7:cd:42: b1:7e:c7:93:a3:c1:ea:fb:93:65:92:83:77:38:fe:dc:ee:20: 42:3a:10:3c:15:78:4c:1f:12:44:54:16:9e:43:67:5b:cf:24: a4:35:2e:3b:24:df:35:56:6d:c3:82:8c:30:be:c4:f5:4d:94: 33:95:f4:fd:f7:d7:36:5b:bf:97:e4:3f:cb:f6:6a:47:b2:f8: f6:ec:4c:98 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgIUCeVCFUhXDzpCJEr5GHqiTDJVUbMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzJDNkJFREJDQTJGNTM0RDQxMzIyMDA2RTM5QTZFNTFC MUE5QTlENTAeFw0yNjA0MTAwMzM1MjlaFw0yNzA0MDkwMzQwMjlaMDMxMTAvBgNV BAMTKDFGRjhFRTlGQUI0RjhGRkVFMDI4MDgyMEEzQUZBMjVBMUREODkzMEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIt8BPZpOOWElbW2bZ410fz9CB /9lKuZ+7P4CHlpB1P7fMI5fE8TSeVGkxE3UeolsMUFNvHQPVVCqcFBriPulv8rnd x37AzG0TZvxcXkv3xqXxMbeGdTOQ/JtarHeEzCUUrcy6N2IvVS0UmvCVoZSueh+s CCnlJ6gF/ZuwDVPEgt99X0qUB6aeKLWOjEphhWU85JCTpvWAr9rzKbvF8aI+m2K8 UlUC56sIFHM7Y32cm2/SRpZlhLR6matyG3XKAr9olROqNOZ3y4uBgg1dnwZWjNS8 S1T2O77MbokqxkrG3elPZnEUBAFTw+ZlmQAPMWtIauL3U+N6xfZfDANDPP7LAgMB AAGjggINMIICCTAdBgNVHQ4EFgQUH/jun6tPj/7gKAggo6+iWh3Ykw8wHwYDVR0j BBgwFoAUMsa+28ovU01BMiAG45puUbGpqdUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDgxNTk2OTMyNDMwMjMzNy8wLzMyQzZCRURCQ0EyRjUzNEQ0MTMyMjAwNkUzOUE2 RTUxQjFBOUE5RDUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMzJDNkJFREJDQTJGNTM0RDQxMzIyMDA2RTM5QTZFNTFCMUE5QTlENS5jZXIw gYYGCCsGAQUFBwELBHoweDB2BggrBgEFBQcwC4ZqcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk0ODE1OTY5MzI0MzAyMzM3LzAvMzIzMjMwMmUzMTMx MzIyZTMxMzkzNzJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMwLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA 3HDFMA0GCSqGSIb3DQEBCwUAA4IBAQCDgj+XryBUfHqfrDeDNKlZb5fFbwMSU+6J KbrZKWQld+3f+IRXIb8UpcN80bPFRR4zvHfaKcmUVPwu9ZPpmUgkY89XZ84+aVNL 1n50RdRQLrLh5UCG4e1m35jNRIYsGYnLsXgsUUOSGmnhChQk1Vhx5pZQ5iiigy9E kL5PIQ2+hD6bcesQW/Kvx0fEaWcME47FvuRcShIaBbnq7MqM05vUPwDgJOhhY0gf 1LYrqsxGtv23zUKxfseTo8Hq+5NlkoN3OP7c7iBCOhA8FXhMHxJEVBaeQ2dbzySk NS47JN81Vm3DgowwvsT1TZQzlfT999c2W7+X5D/L9mpHsvj27EyY -----END CERTIFICATE-----Generated at Mon Apr 13 12:24:21 2026 by rpki-client