$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094815969324302337/0/3232302e3131322e35362e302f32312d3231203d3e2030.roa File: 3232302e3131322e35362e302f32312d3231203d3e2030.roa (raw, json) Hash identifier: uJWjWPZlFOD6SpWCfVRhSc7eZy0HwTv4sYhfaEYG+xY= Subject key identifier: 2D:16:73:47:1C:EB:B3:2B:31:09:A3:E2:EA:B3:D6:56:E7:2F:B2:8B Certificate issuer: /CN=32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5 Certificate serial: 2420662DDAC6FD8E715B875407CFC0711579A533 Authority key identifier: 32:C6:BE:DB:CA:2F:53:4D:41:32:20:06:E3:9A:6E:51:B1:A9:A9:D5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/3232302e3131322e35362e302f32312d3231203d3e2030.roa Signing time: Fri 10 Apr 2026 03:40:28 +0000 ROA not before: Fri 10 Apr 2026 03:35:28 +0000 ROA not after: Fri 09 Apr 2027 03:40:28 +0000 asID: 0 IP address blocks: 220.112.56.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.crl rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 08:13:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:20:66:2d:da:c6:fd:8e:71:5b:87:54:07:cf:c0:71:15:79:a5:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5 Validity Not Before: Apr 10 03:35:28 2026 GMT Not After : Apr 9 03:40:28 2027 GMT Subject: CN=2D1673471CEBB32B3109A3E2EAB3D656E72FB28B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:53:f2:76:51:38:46:00:47:cc:e2:d5:74:d4: 22:cf:76:0d:7c:40:41:00:46:e4:94:26:ad:0f:2e: 2a:49:54:51:cd:ba:fd:94:8d:25:7d:9e:42:f2:9b: 46:bc:f9:67:df:42:c0:40:cc:c5:e7:89:61:d9:02: 6e:3e:73:b0:14:7a:24:91:7b:ec:f5:ec:f4:65:66: 85:c2:07:ba:42:10:0f:83:e9:40:9e:49:c2:e1:b9: 75:fd:cf:7a:8c:e7:62:af:4a:76:71:81:21:2e:13: ba:c0:93:ab:2e:a5:1f:50:03:84:08:56:7e:83:0a: c0:53:8c:2a:bd:33:96:47:b2:21:cd:a4:8b:f4:ac: 62:bb:86:80:ae:2f:73:4b:07:aa:f5:8c:4d:13:6f: c7:14:02:52:b2:63:1e:b1:26:4d:e9:51:12:88:a8: 6f:0b:c8:31:a2:1b:6a:d2:5e:cf:b7:f7:3a:2a:c6: 30:aa:c5:29:e2:9b:46:f1:22:03:3a:b2:53:5f:64: b4:8c:c7:74:83:5d:19:82:3f:15:2e:29:39:f0:e3: 9d:57:16:2a:12:af:ad:b6:ac:91:20:80:b7:86:96: 9f:da:3d:70:52:8d:5d:8b:a3:d3:c4:52:f0:1c:07: fc:4e:69:6f:f2:09:9f:cb:81:b3:35:00:bb:d6:be: 4a:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:16:73:47:1C:EB:B3:2B:31:09:A3:E2:EA:B3:D6:56:E7:2F:B2:8B X509v3 Authority Key Identifier: keyid:32:C6:BE:DB:CA:2F:53:4D:41:32:20:06:E3:9A:6E:51:B1:A9:A9:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/3232302e3131322e35362e302f32312d3231203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 220.112.56.0/21 Signature Algorithm: sha256WithRSAEncryption 7f:f8:6d:96:02:71:ad:a5:fc:8e:8c:f2:22:9f:fc:fe:10:20: 04:0b:89:13:7a:32:76:ca:f5:93:c3:de:65:de:2c:cb:c6:5f: a8:57:9b:23:46:27:e8:41:ce:76:c1:2d:d2:08:e7:ae:35:c2: b6:f1:f8:a8:b7:23:29:ab:41:ef:1d:24:10:d9:26:83:8f:d2: 2a:22:50:96:8a:a2:bc:75:c9:38:b2:f7:43:f6:85:46:ca:21: 4a:f3:6d:b0:d9:6f:2f:76:fb:db:4a:09:41:18:0d:74:6c:4a: d4:22:b7:c5:4d:06:74:bd:da:5b:b4:71:e3:1b:0a:ba:68:70: c1:56:19:9a:53:ff:fb:63:fb:b3:be:18:50:6e:65:78:4b:f0: 55:82:a5:17:d7:46:39:e7:48:16:0c:87:5d:fb:83:f7:57:0e: 2f:c0:d0:3f:94:08:ce:f9:6b:cf:f1:58:f1:30:a5:2c:c3:af: fa:e3:e5:c9:8c:e6:50:8b:55:93:4d:5c:22:0b:1e:92:c9:df: 66:56:c2:a2:cc:67:03:62:a1:4b:4f:39:f1:e0:09:e1:b1:96: 2f:23:cf:49:61:7c:89:d0:46:4e:b5:72:8b:d6:2d:ed:7b:11: c1:08:f7:14:07:d0:ce:23:1a:c2:c9:63:2e:1f:44:5e:7e:19: b0:ce:ff:f5 -----BEGIN CERTIFICATE----- MIIFATCCA+mgAwIBAgIUJCBmLdrG/Y5xW4dUB8/AcRV5pTMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzJDNkJFREJDQTJGNTM0RDQxMzIyMDA2RTM5QTZFNTFC MUE5QTlENTAeFw0yNjA0MTAwMzM1MjhaFw0yNzA0MDkwMzQwMjhaMDMxMTAvBgNV BAMTKDJEMTY3MzQ3MUNFQkIzMkIzMTA5QTNFMkVBQjNENjU2RTcyRkIyOEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdU/J2UThGAEfM4tV01CLPdg18 QEEARuSUJq0PLipJVFHNuv2UjSV9nkLym0a8+WffQsBAzMXniWHZAm4+c7AUeiSR e+z17PRlZoXCB7pCEA+D6UCeScLhuXX9z3qM52KvSnZxgSEuE7rAk6supR9QA4QI Vn6DCsBTjCq9M5ZHsiHNpIv0rGK7hoCuL3NLB6r1jE0Tb8cUAlKyYx6xJk3pURKI qG8LyDGiG2rSXs+39zoqxjCqxSnim0bxIgM6slNfZLSMx3SDXRmCPxUuKTnw451X FioSr622rJEggLeGlp/aPXBSjV2Lo9PEUvAcB/xOaW/yCZ/LgbM1ALvWvkohAgMB AAGjggILMIICBzAdBgNVHQ4EFgQULRZzRxzrsysxCaPi6rPWVucvsoswHwYDVR0j BBgwFoAUMsa+28ovU01BMiAG45puUbGpqdUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDgxNTk2OTMyNDMwMjMzNy8wLzMyQzZCRURCQ0EyRjUzNEQ0MTMyMjAwNkUzOUE2 RTUxQjFBOUE5RDUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMzJDNkJFREJDQTJGNTM0RDQxMzIyMDA2RTM5QTZFNTFCMUE5QTlENS5jZXIw gYQGCCsGAQUFBwELBHgwdjB0BggrBgEFBQcwC4ZocnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk0ODE1OTY5MzI0MzAyMzM3LzAvMzIzMjMwMmUzMTMx MzIyZTM1MzYyZTMwMmYzMjMxMmQzMjMxMjAzZDNlMjAzMC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA9xw ODANBgkqhkiG9w0BAQsFAAOCAQEAf/htlgJxraX8jozyIp/8/hAgBAuJE3oydsr1 k8PeZd4sy8ZfqFebI0Yn6EHOdsEt0gjnrjXCtvH4qLcjKatB7x0kENkmg4/SKiJQ loqivHXJOLL3Q/aFRsohSvNtsNlvL3b720oJQRgNdGxK1CK3xU0GdL3aW7Rx4xsK umhwwVYZmlP/+2P7s74YUG5leEvwVYKlF9dGOedIFgyHXfuD91cOL8DQP5QIzvlr z/FY8TClLMOv+uPlyYzmUItVk01cIgseksnfZlbCosxnA2KhS0858eAJ4bGWLyPP SWF8idBGTrVyi9Yt7XsRwQj3FAfQziMawsljLh9EXn4ZsM7/9Q== -----END CERTIFICATE-----Generated at Mon Apr 13 12:23:27 2026 by rpki-client