$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094815969324302337/0/3232302e3131332e3135322e302f32342d3234203d3e203137363233.roa File: 3232302e3131332e3135322e302f32342d3234203d3e203137363233.roa (raw, json) Hash identifier: cOBfO0B53MuTbwUSYmw5PnsWI4eIgETijobx0ifCdFM= Subject key identifier: 6A:44:2A:5D:31:D7:38:31:36:C2:1D:74:E0:AF:24:99:DA:46:A7:23 Certificate issuer: /CN=32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5 Certificate serial: 7EB12E5829D721136D63BA09491B5CF24886B51B Authority key identifier: 32:C6:BE:DB:CA:2F:53:4D:41:32:20:06:E3:9A:6E:51:B1:A9:A9:D5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/3232302e3131332e3135322e302f32342d3234203d3e203137363233.roa Signing time: Fri 10 Apr 2026 03:00:38 +0000 ROA not before: Fri 10 Apr 2026 02:55:38 +0000 ROA not after: Fri 09 Apr 2027 03:00:38 +0000 asID: 17623 IP address blocks: 220.113.152.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.crl rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 08:13:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:b1:2e:58:29:d7:21:13:6d:63:ba:09:49:1b:5c:f2:48:86:b5:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5 Validity Not Before: Apr 10 02:55:38 2026 GMT Not After : Apr 9 03:00:38 2027 GMT Subject: CN=6A442A5D31D7383136C21D74E0AF2499DA46A723 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:a6:cb:47:74:26:73:17:e8:9e:91:14:16:41: 30:9d:56:23:a6:de:1c:44:5f:c1:0a:c9:93:ae:48: ed:56:29:01:16:e8:89:60:3a:24:15:76:7d:a3:1f: 15:0b:1d:e0:44:28:67:3c:a6:0f:c4:ee:a6:84:70: 8b:0b:ee:3f:55:82:18:7a:14:5e:7a:10:d5:42:de: 2c:28:fa:e6:f1:73:f9:53:3b:76:b4:83:de:0d:eb: 2c:f6:bc:74:bf:36:0b:35:10:cf:96:57:67:96:2b: 05:d8:76:f5:7d:ce:9c:83:1d:5b:05:8e:4f:58:ed: 35:85:10:09:66:73:f6:b8:4b:f6:f6:11:18:40:35: 34:42:a5:d4:27:d3:1d:63:db:b9:7b:f2:02:a2:fc: 6a:bf:b6:1e:9a:e9:9d:0e:79:59:81:19:98:ee:12: a6:a4:0d:4b:8c:a5:44:37:a3:82:38:c4:f1:c2:4f: c0:e5:6f:2c:37:af:1f:2d:9b:ca:52:e2:c6:48:a7: 98:59:61:04:6d:02:a2:1d:66:5d:1f:34:d3:48:1b: aa:18:ad:a9:6f:5d:4a:bf:70:0c:d6:70:b8:23:4f: 15:7e:dc:63:9b:2a:49:cc:5d:94:37:39:4c:1e:2b: 3d:73:78:00:67:b7:60:d6:34:01:15:62:36:44:37: 7c:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:44:2A:5D:31:D7:38:31:36:C2:1D:74:E0:AF:24:99:DA:46:A7:23 X509v3 Authority Key Identifier: keyid:32:C6:BE:DB:CA:2F:53:4D:41:32:20:06:E3:9A:6E:51:B1:A9:A9:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/3232302e3131332e3135322e302f32342d3234203d3e203137363233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 220.113.152.0/24 Signature Algorithm: sha256WithRSAEncryption 56:b6:c5:0e:f4:8c:2f:75:5f:47:51:5d:1f:71:0c:a0:d5:97: 49:40:84:ae:02:08:2c:7b:48:f0:8d:19:27:30:eb:ef:e9:f1: 25:b3:0a:88:04:57:31:24:b3:1a:da:67:07:06:c9:8e:36:8d: 4f:77:0a:28:11:cc:c7:35:20:49:22:3a:e7:ef:42:e5:17:73: e2:9e:1d:74:a8:b6:9f:c7:d0:aa:37:cf:17:58:f5:9d:06:64: 95:55:a5:9e:08:86:e8:f9:59:26:58:cb:b7:6f:78:2b:f4:bd: 63:72:38:31:60:e9:e1:12:83:7e:ae:dd:56:83:06:70:4d:9f: ea:52:7a:aa:22:08:2d:0f:2a:4a:68:f7:0e:df:0b:eb:ec:cd: cd:16:7a:19:58:e6:ec:9b:8f:ce:13:cc:94:a0:49:90:1f:49: 99:ff:3b:d3:fc:57:89:c3:9e:48:71:4f:41:db:ee:ea:27:01: dd:b1:63:a0:e3:6a:e7:ff:8f:00:24:c8:3a:6b:00:79:db:87: f4:ba:85:25:48:24:b1:2c:54:74:a1:b6:14:a8:57:d2:f7:39: 9d:9d:ad:32:e1:61:fe:4b:42:72:bf:9a:d3:a5:c7:a9:c2:8a: 66:b9:fb:48:d2:91:14:58:2a:4f:a3:02:bc:d7:05:45:6f:6a: 77:4d:ef:64 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUfrEuWCnXIRNtY7oJSRtc8kiGtRswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzJDNkJFREJDQTJGNTM0RDQxMzIyMDA2RTM5QTZFNTFC MUE5QTlENTAeFw0yNjA0MTAwMjU1MzhaFw0yNzA0MDkwMzAwMzhaMDMxMTAvBgNV BAMTKDZBNDQyQTVEMzFENzM4MzEzNkMyMUQ3NEUwQUYyNDk5REE0NkE3MjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfpstHdCZzF+iekRQWQTCdViOm 3hxEX8EKyZOuSO1WKQEW6IlgOiQVdn2jHxULHeBEKGc8pg/E7qaEcIsL7j9Vghh6 FF56ENVC3iwo+ubxc/lTO3a0g94N6yz2vHS/Ngs1EM+WV2eWKwXYdvV9zpyDHVsF jk9Y7TWFEAlmc/a4S/b2ERhANTRCpdQn0x1j27l78gKi/Gq/th6a6Z0OeVmBGZju EqakDUuMpUQ3o4I4xPHCT8Dlbyw3rx8tm8pS4sZIp5hZYQRtAqIdZl0fNNNIG6oY ralvXUq/cAzWcLgjTxV+3GObKknMXZQ3OUweKz1zeABnt2DWNAEVYjZEN3zhAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUakQqXTHXODE2wh104K8kmdpGpyMwHwYDVR0j BBgwFoAUMsa+28ovU01BMiAG45puUbGpqdUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDgxNTk2OTMyNDMwMjMzNy8wLzMyQzZCRURCQ0EyRjUzNEQ0MTMyMjAwNkUzOUE2 RTUxQjFBOUE5RDUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMzJDNkJFREJDQTJGNTM0RDQxMzIyMDA2RTM5QTZFNTFCMUE5QTlENS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTQ4MTU5NjkzMjQzMDIzMzcvMC8zMjMyMzAyZTMx MzEzMzJlMzEzNTMyMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzNzM2MzIzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEANxxmDANBgkqhkiG9w0BAQsFAAOCAQEAVrbFDvSML3VfR1FdH3EM oNWXSUCErgIILHtI8I0ZJzDr7+nxJbMKiARXMSSzGtpnBwbJjjaNT3cKKBHMxzUg SSI65+9C5Rdz4p4ddKi2n8fQqjfPF1j1nQZklVWlngiG6PlZJljLt294K/S9Y3I4 MWDp4RKDfq7dVoMGcE2f6lJ6qiIILQ8qSmj3Dt8L6+zNzRZ6GVjm7JuPzhPMlKBJ kB9Jmf870/xXicOeSHFPQdvu6icB3bFjoONq5/+PACTIOmsAeduH9LqFJUgksSxU dKG2FKhX0vc5nZ2tMuFh/ktCcr+a06XHqcKKZrn7SNKRFFgqT6MCvNcFRW9qd03v ZA== -----END CERTIFICATE-----Generated at Mon Apr 13 12:24:26 2026 by rpki-client