$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094815969324302337/0/3232302e3131332e3135302e302f32332d3233203d3e203137363233.roa File: 3232302e3131332e3135302e302f32332d3233203d3e203137363233.roa (raw, json) Hash identifier: yR9GjOxSxF0tLRL9IyRLOW/eHpWd/7/3kUPR3gybnus= Subject key identifier: 4F:7C:E0:33:79:16:C7:9D:2E:BB:B1:DC:1D:56:5A:3E:7F:A6:28:33 Certificate issuer: /CN=32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5 Certificate serial: 0ECA71863528D8A6A5B4E9E5DFFAAACE76C848D3 Authority key identifier: 32:C6:BE:DB:CA:2F:53:4D:41:32:20:06:E3:9A:6E:51:B1:A9:A9:D5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/3232302e3131332e3135302e302f32332d3233203d3e203137363233.roa Signing time: Fri 10 Apr 2026 03:00:39 +0000 ROA not before: Fri 10 Apr 2026 02:55:39 +0000 ROA not after: Fri 09 Apr 2027 03:00:39 +0000 asID: 17623 IP address blocks: 220.113.150.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.crl rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 08:13:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:ca:71:86:35:28:d8:a6:a5:b4:e9:e5:df:fa:aa:ce:76:c8:48:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5 Validity Not Before: Apr 10 02:55:39 2026 GMT Not After : Apr 9 03:00:39 2027 GMT Subject: CN=4F7CE0337916C79D2EBBB1DC1D565A3E7FA62833 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:fe:37:2a:32:3a:80:13:88:03:ab:ef:c0:04: 90:b7:2d:dd:b9:3b:81:19:81:c0:47:3a:3d:3c:b1: 71:d0:4d:8d:54:e3:ec:c8:a4:1c:bc:98:55:c7:69: 2e:92:4e:bf:c7:8c:6b:21:45:59:25:d6:01:b5:0c: 66:3e:16:2b:92:d4:f7:dd:4b:eb:ce:38:97:9e:ac: 60:50:ea:1c:8f:2c:a8:95:87:21:e6:be:35:52:e3: 67:b8:51:30:fb:15:30:67:94:80:5d:0f:07:2a:0b: be:ee:8a:46:35:27:d5:98:a5:c6:79:db:45:81:d3: 03:f1:53:64:0a:a0:14:5d:a1:e3:5e:23:c5:50:09: 57:c2:ba:65:7a:14:cc:1c:b2:41:36:ff:f2:50:77: 72:76:70:9c:e5:a9:57:c6:08:ef:2c:37:b7:5c:a2: 69:bb:4f:18:cb:55:3e:fd:f2:07:c7:38:a0:6f:3f: 36:90:29:8a:b9:4f:f3:7e:c3:56:64:37:9d:89:5d: cd:24:82:b6:b3:d5:0b:f3:ce:44:5a:01:8f:c5:cd: 9d:6b:de:0f:4d:52:8f:c1:e3:33:1c:f5:ac:cc:61: f2:f2:95:28:34:c9:93:68:41:58:2f:e6:ce:09:8a: 7b:7e:d7:bc:7b:d3:10:19:c7:43:7d:4c:3f:22:e6: e4:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:7C:E0:33:79:16:C7:9D:2E:BB:B1:DC:1D:56:5A:3E:7F:A6:28:33 X509v3 Authority Key Identifier: keyid:32:C6:BE:DB:CA:2F:53:4D:41:32:20:06:E3:9A:6E:51:B1:A9:A9:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/3232302e3131332e3135302e302f32332d3233203d3e203137363233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 220.113.150.0/23 Signature Algorithm: sha256WithRSAEncryption 23:2b:c5:67:34:3a:95:43:47:fe:45:32:e6:53:6b:ba:61:a3: 53:02:fe:ae:e0:55:8a:f2:d0:4a:6c:39:82:f9:67:07:1e:c0: 0d:9c:9b:2a:be:fb:cb:24:7b:d5:79:e7:3d:ec:37:58:aa:1d: 94:7a:f9:ea:13:ea:24:7f:70:d0:83:ae:25:91:71:48:ca:96: 81:a8:2d:af:54:d3:4f:04:46:4a:cd:15:b9:2d:59:10:03:99: cf:2e:a2:c0:e6:ae:d5:8d:c7:33:59:09:06:fe:20:c2:49:eb: b0:b9:6d:51:1d:41:c1:50:19:f5:89:ec:bd:de:20:f1:a3:e4: 1b:42:a9:1a:e5:23:9f:6d:eb:d5:25:dd:dd:ce:12:18:6f:eb: f3:0a:36:d1:12:a6:b3:a8:72:09:9c:e7:14:c7:5d:3e:a7:9c: 87:32:67:30:9b:c8:f2:3b:b1:39:43:d0:e4:2a:04:d1:e3:a9: ed:7c:12:3e:b7:e9:c9:34:b1:ea:2c:a4:f8:03:9c:14:5d:09: 8a:56:d9:67:01:1f:d8:03:2d:5a:a3:7a:84:6f:b0:1b:31:7a: db:13:43:4b:17:c7:81:85:0f:87:67:a9:a9:3c:45:68:f1:30: cf:39:99:74:9c:a3:77:4c:36:91:cd:27:6c:d9:c5:ff:09:c7: 08:fa:ba:58 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUDspxhjUo2KaltOnl3/qqznbISNMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzJDNkJFREJDQTJGNTM0RDQxMzIyMDA2RTM5QTZFNTFC MUE5QTlENTAeFw0yNjA0MTAwMjU1MzlaFw0yNzA0MDkwMzAwMzlaMDMxMTAvBgNV BAMTKDRGN0NFMDMzNzkxNkM3OUQyRUJCQjFEQzFENTY1QTNFN0ZBNjI4MzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC//jcqMjqAE4gDq+/ABJC3Ld25 O4EZgcBHOj08sXHQTY1U4+zIpBy8mFXHaS6STr/HjGshRVkl1gG1DGY+FiuS1Pfd S+vOOJeerGBQ6hyPLKiVhyHmvjVS42e4UTD7FTBnlIBdDwcqC77uikY1J9WYpcZ5 20WB0wPxU2QKoBRdoeNeI8VQCVfCumV6FMwcskE2//JQd3J2cJzlqVfGCO8sN7dc omm7TxjLVT798gfHOKBvPzaQKYq5T/N+w1ZkN52JXc0kgraz1QvzzkRaAY/FzZ1r 3g9NUo/B4zMc9azMYfLylSg0yZNoQVgv5s4Jint+17x70xAZx0N9TD8i5uQdAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUT3zgM3kWx50uu7HcHVZaPn+mKDMwHwYDVR0j BBgwFoAUMsa+28ovU01BMiAG45puUbGpqdUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDgxNTk2OTMyNDMwMjMzNy8wLzMyQzZCRURCQ0EyRjUzNEQ0MTMyMjAwNkUzOUE2 RTUxQjFBOUE5RDUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMzJDNkJFREJDQTJGNTM0RDQxMzIyMDA2RTM5QTZFNTFCMUE5QTlENS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTQ4MTU5NjkzMjQzMDIzMzcvMC8zMjMyMzAyZTMx MzEzMzJlMzEzNTMwMmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzEzNzM2MzIzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAdxxljANBgkqhkiG9w0BAQsFAAOCAQEAIyvFZzQ6lUNH/kUy5lNr umGjUwL+ruBVivLQSmw5gvlnBx7ADZybKr77yyR71XnnPew3WKodlHr56hPqJH9w 0IOuJZFxSMqWgagtr1TTTwRGSs0VuS1ZEAOZzy6iwOau1Y3HM1kJBv4gwknrsLlt UR1BwVAZ9Ynsvd4g8aPkG0KpGuUjn23r1SXd3c4SGG/r8wo20RKms6hyCZznFMdd PqechzJnMJvI8juxOUPQ5CoE0eOp7XwSPrfpyTSx6iyk+AOcFF0JilbZZwEf2AMt WqN6hG+wGzF62xNDSxfHgYUPh2epqTxFaPEwzzmZdJyjd0w2kc0nbNnF/wnHCPq6 WA== -----END CERTIFICATE-----Generated at Mon Apr 13 13:53:28 2026 by rpki-client