$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094815969324302337/0/3232302e3131322e392e302f32342d3234203d3e2030.roa File: 3232302e3131322e392e302f32342d3234203d3e2030.roa (raw, json) Hash identifier: 5Jr0KEdUPoZp22tuvfW2Od6laP/maz3T8IpygZdfdjo= Subject key identifier: 81:DF:F9:3F:9A:78:FF:C1:FD:AC:D9:80:61:A8:E9:73:2F:AE:8C:42 Certificate issuer: /CN=32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5 Certificate serial: 1310F4432B9DFC17C0AAA6497C83E09CEBC1C131 Authority key identifier: 32:C6:BE:DB:CA:2F:53:4D:41:32:20:06:E3:9A:6E:51:B1:A9:A9:D5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/3232302e3131322e392e302f32342d3234203d3e2030.roa Signing time: Fri 10 Apr 2026 03:40:28 +0000 ROA not before: Fri 10 Apr 2026 03:35:28 +0000 ROA not after: Fri 09 Apr 2027 03:40:28 +0000 asID: 0 IP address blocks: 220.112.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.crl rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 08:13:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:10:f4:43:2b:9d:fc:17:c0:aa:a6:49:7c:83:e0:9c:eb:c1:c1:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5 Validity Not Before: Apr 10 03:35:28 2026 GMT Not After : Apr 9 03:40:28 2027 GMT Subject: CN=81DFF93F9A78FFC1FDACD98061A8E9732FAE8C42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:9c:99:63:07:25:52:a1:e9:e0:8c:9f:03:c5: a0:1e:e8:71:6c:8f:ae:33:5a:e7:02:8c:ef:a0:29: a2:c5:eb:99:24:b0:7a:90:ce:cd:cd:0c:7d:01:aa: 2f:b2:ae:22:4f:71:88:44:a9:c3:1c:24:27:77:da: a6:19:bf:13:a9:00:97:5a:4b:88:70:fb:0e:98:56: fa:03:b2:03:34:b8:79:c9:0f:ec:23:30:56:0e:bb: a6:2c:46:80:3e:a1:f4:30:56:bc:d6:f4:3e:5e:53: 66:ce:7d:b1:06:cb:b5:75:a4:20:d3:4b:73:ed:f3: bb:2a:58:36:71:7f:aa:e8:8d:20:4d:b1:ff:ef:25: 91:74:9c:74:7d:24:bf:e1:f7:5f:b6:5c:0f:17:1f: c9:1f:36:57:c8:11:13:1f:f1:07:7d:89:1a:d5:be: 70:19:da:05:9c:67:57:ad:50:ae:5e:91:dd:36:86: 30:42:06:ab:10:ea:50:0b:61:b1:06:cd:47:71:6f: 56:44:c8:bb:32:71:0e:92:3b:c6:d7:85:3b:c0:d6: 09:33:90:82:63:70:6b:65:10:e1:f6:9e:49:75:b4: fd:a2:97:d3:6f:ca:de:64:a4:c8:2f:ce:8c:90:73: 1b:e7:ce:b1:34:15:55:26:15:c8:ec:b6:57:df:e9: 08:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:DF:F9:3F:9A:78:FF:C1:FD:AC:D9:80:61:A8:E9:73:2F:AE:8C:42 X509v3 Authority Key Identifier: keyid:32:C6:BE:DB:CA:2F:53:4D:41:32:20:06:E3:9A:6E:51:B1:A9:A9:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/3232302e3131322e392e302f32342d3234203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 220.112.9.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:31:29:55:de:ff:c9:9c:42:29:b4:b5:91:7e:16:ce:fe:45: 62:b9:40:74:fe:75:98:8d:d2:83:bf:70:51:7e:98:af:4a:a8: 19:93:4e:53:14:99:4e:3c:13:2c:a1:d2:42:ae:e6:09:a2:07: 06:75:36:db:03:25:8a:5e:37:fb:d8:be:8e:ea:4e:fb:4a:d5: 75:f6:6a:ae:01:c7:5c:ab:5d:e9:c4:c8:2d:c5:74:95:01:3d: d5:d6:52:f6:ec:e9:79:f7:a7:ac:f6:ba:96:b0:6d:1c:8d:29: fb:8c:1f:69:7b:38:af:b9:c1:02:f3:f4:ba:e7:12:e7:08:c4: 5d:9e:44:57:6f:a8:33:1a:8f:51:e9:1d:f4:c6:93:71:7a:40: 50:6e:dc:30:e0:0a:74:60:8e:75:06:45:05:56:81:25:12:1e: d1:1a:69:70:96:4a:c4:d2:7c:31:5b:0f:3e:8f:76:b5:3f:e1: c2:f6:9a:07:6d:11:d7:97:03:04:3a:21:2f:29:60:c4:e7:71: 0a:c3:c7:65:71:b0:f4:fb:68:8d:03:98:39:f4:95:f4:35:77: 09:ac:e7:5d:95:02:92:04:f0:7e:ed:7a:84:1b:89:10:94:18: dd:99:e3:38:7f:cc:5e:1a:97:69:41:6f:14:cb:72:5d:0d:6a: 1c:2d:c4:39 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgIUExD0Qyud/BfAqqZJfIPgnOvBwTEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzJDNkJFREJDQTJGNTM0RDQxMzIyMDA2RTM5QTZFNTFC MUE5QTlENTAeFw0yNjA0MTAwMzM1MjhaFw0yNzA0MDkwMzQwMjhaMDMxMTAvBgNV BAMTKDgxREZGOTNGOUE3OEZGQzFGREFDRDk4MDYxQThFOTczMkZBRThDNDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3nJljByVSoengjJ8DxaAe6HFs j64zWucCjO+gKaLF65kksHqQzs3NDH0Bqi+yriJPcYhEqcMcJCd32qYZvxOpAJda S4hw+w6YVvoDsgM0uHnJD+wjMFYOu6YsRoA+ofQwVrzW9D5eU2bOfbEGy7V1pCDT S3Pt87sqWDZxf6rojSBNsf/vJZF0nHR9JL/h91+2XA8XH8kfNlfIERMf8Qd9iRrV vnAZ2gWcZ1etUK5ekd02hjBCBqsQ6lALYbEGzUdxb1ZEyLsycQ6SO8bXhTvA1gkz kIJjcGtlEOH2nkl1tP2il9Nvyt5kpMgvzoyQcxvnzrE0FVUmFcjstlff6QgLAgMB AAGjggIJMIICBTAdBgNVHQ4EFgQUgd/5P5p4/8H9rNmAYajpcy+ujEIwHwYDVR0j BBgwFoAUMsa+28ovU01BMiAG45puUbGpqdUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDgxNTk2OTMyNDMwMjMzNy8wLzMyQzZCRURCQ0EyRjUzNEQ0MTMyMjAwNkUzOUE2 RTUxQjFBOUE5RDUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMzJDNkJFREJDQTJGNTM0RDQxMzIyMDA2RTM5QTZFNTFCMUE5QTlENS5jZXIw gYIGCCsGAQUFBwELBHYwdDByBggrBgEFBQcwC4ZmcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk0ODE1OTY5MzI0MzAyMzM3LzAvMzIzMjMwMmUzMTMx MzIyZTM5MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADccAkw DQYJKoZIhvcNAQELBQADggEBAF4xKVXe/8mcQim0tZF+Fs7+RWK5QHT+dZiN0oO/ cFF+mK9KqBmTTlMUmU48Eyyh0kKu5gmiBwZ1NtsDJYpeN/vYvo7qTvtK1XX2aq4B x1yrXenEyC3FdJUBPdXWUvbs6Xn3p6z2upawbRyNKfuMH2l7OK+5wQLz9LrnEucI xF2eRFdvqDMaj1HpHfTGk3F6QFBu3DDgCnRgjnUGRQVWgSUSHtEaaXCWSsTSfDFb Dz6PdrU/4cL2mgdtEdeXAwQ6IS8pYMTncQrDx2VxsPT7aI0DmDn0lfQ1dwms512V ApIE8H7teoQbiRCUGN2Z4zh/zF4al2lBbxTLcl0NahwtxDk= -----END CERTIFICATE-----Generated at Mon Apr 13 12:23:28 2026 by rpki-client