$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094884727254482947/0/3230322e3137332e31352e302f32342d3234203d3e203338333435.roa File: 3230322e3137332e31352e302f32342d3234203d3e203338333435.roa (raw, json) Hash identifier: gQVtksVwJXxkoH35GzPsWQl8JAxfFdVpD+KE2o4huI8= Subject key identifier: D5:42:47:01:84:9F:70:C6:F7:56:E1:EC:28:B4:35:20:2B:54:80:C3 Certificate issuer: /CN=A48290B7B4443542D0460FD49BDF1B444360AE86 Certificate serial: 60BC073D1C50221F19400047F5FD1B1F0897FD7D Authority key identifier: A4:82:90:B7:B4:44:35:42:D0:46:0F:D4:9B:DF:1B:44:43:60:AE:86 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A48290B7B4443542D0460FD49BDF1B444360AE86.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094884727254482947/0/3230322e3137332e31352e302f32342d3234203d3e203338333435.roa Signing time: Fri 10 Apr 2026 08:05:14 +0000 ROA not before: Fri 10 Apr 2026 08:00:14 +0000 ROA not after: Fri 09 Apr 2027 08:05:14 +0000 asID: 38345 IP address blocks: 202.173.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094884727254482947/0/A48290B7B4443542D0460FD49BDF1B444360AE86.crl rsync://rpki-rps.cnnic.cn/repo/A1094884727254482947/0/A48290B7B4443542D0460FD49BDF1B444360AE86.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A48290B7B4443542D0460FD49BDF1B444360AE86.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 12:09:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:bc:07:3d:1c:50:22:1f:19:40:00:47:f5:fd:1b:1f:08:97:fd:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A48290B7B4443542D0460FD49BDF1B444360AE86 Validity Not Before: Apr 10 08:00:14 2026 GMT Not After : Apr 9 08:05:14 2027 GMT Subject: CN=D5424701849F70C6F756E1EC28B435202B5480C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:71:c8:16:01:5c:70:ed:2f:cc:e1:2f:fc:a5: 95:4c:e4:5c:19:2a:a0:b7:d1:78:9c:a6:c5:70:ba: 3f:4e:12:47:82:31:17:da:72:ab:90:74:8e:d3:b0: b0:e5:ed:47:6b:29:25:69:b8:af:a5:1d:40:21:5c: c1:66:7a:47:0f:42:14:a1:48:15:19:55:b5:c7:88: cf:17:2a:56:44:0b:27:a1:2b:90:d8:ef:19:1e:16: a9:88:7e:a0:21:18:2f:7f:cc:7f:97:09:26:c2:7b: e8:a2:28:34:94:fa:dc:5c:9c:d1:34:d9:4c:53:cc: 90:de:7c:f8:ee:0e:63:e4:b8:bd:4f:b0:97:07:c1: b7:65:1c:b8:9c:a3:c8:82:82:85:94:51:2e:31:1f: fe:aa:96:4b:ff:57:64:9c:d0:dc:9d:d5:39:05:51: 9a:9f:53:ec:ab:6c:b4:67:78:06:6a:d1:b3:c8:b1: 1a:6a:0b:03:f9:90:9b:94:b0:f7:80:ec:62:b1:3b: 11:54:82:33:b5:bb:da:90:05:28:c3:97:4f:00:3b: 25:43:62:9d:7b:2c:02:26:a1:34:7b:59:e0:3c:59: 3f:7e:8e:42:5f:3f:1a:be:13:70:4b:96:30:4a:e2: 7a:04:1f:c0:53:bf:f4:a9:d7:41:fd:3b:f9:57:fb: 71:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:42:47:01:84:9F:70:C6:F7:56:E1:EC:28:B4:35:20:2B:54:80:C3 X509v3 Authority Key Identifier: keyid:A4:82:90:B7:B4:44:35:42:D0:46:0F:D4:9B:DF:1B:44:43:60:AE:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094884727254482947/0/A48290B7B4443542D0460FD49BDF1B444360AE86.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A48290B7B4443542D0460FD49BDF1B444360AE86.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094884727254482947/0/3230322e3137332e31352e302f32342d3234203d3e203338333435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.173.15.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:86:9d:e3:88:c9:ee:fe:c5:4b:fe:a6:62:ce:c1:ab:76:83: cb:46:66:4d:35:4f:b2:c9:93:85:e2:05:5d:14:db:c5:79:e5: 28:a5:f5:93:8c:f7:f8:5b:47:fa:59:6b:40:77:14:5e:53:26: 8c:82:9b:f6:6f:a5:f6:97:79:c4:3a:a3:2e:12:ac:6d:3d:2b: 70:47:b6:23:87:d6:ea:05:18:3d:bb:f1:35:9e:cf:de:02:db: ba:5c:3c:57:73:07:61:6b:24:aa:f8:45:7c:d7:6c:01:34:b1: 12:d4:76:2d:60:97:ff:c7:b0:6c:d0:44:ae:6b:a4:01:65:e7: 80:64:10:c3:5c:d7:1f:7f:95:0b:87:07:d2:4f:8e:4c:43:ea: 44:c8:1a:ef:c6:9a:c5:6d:7a:3c:81:53:3c:06:95:9b:b3:97: 7f:c2:07:94:ac:86:8a:e1:1d:4e:92:8b:2b:23:fb:29:c3:03: 73:1e:d6:2c:d6:ab:1d:bf:fb:19:37:ae:d4:f1:13:62:05:ac: f9:0b:10:63:50:5c:ff:f8:02:cd:9d:2d:62:33:5b:2b:b3:d8: e0:1d:05:cd:f2:b2:5e:17:49:fb:09:3a:39:95:f5:4c:47:6a: 76:b4:83:ec:46:0c:67:f4:19:f7:8d:32:8b:1b:ca:ed:ca:44: 0f:a0:96:86 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUYLwHPRxQIh8ZQABH9f0bHwiX/X0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTQ4MjkwQjdCNDQ0MzU0MkQwNDYwRkQ0OUJERjFCNDQ0 MzYwQUU4NjAeFw0yNjA0MTAwODAwMTRaFw0yNzA0MDkwODA1MTRaMDMxMTAvBgNV BAMTKEQ1NDI0NzAxODQ5RjcwQzZGNzU2RTFFQzI4QjQzNTIwMkI1NDgwQzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGccgWAVxw7S/M4S/8pZVM5FwZ KqC30XicpsVwuj9OEkeCMRfacquQdI7TsLDl7UdrKSVpuK+lHUAhXMFmekcPQhSh SBUZVbXHiM8XKlZECyehK5DY7xkeFqmIfqAhGC9/zH+XCSbCe+iiKDSU+txcnNE0 2UxTzJDefPjuDmPkuL1PsJcHwbdlHLico8iCgoWUUS4xH/6qlkv/V2Sc0Nyd1TkF UZqfU+yrbLRneAZq0bPIsRpqCwP5kJuUsPeA7GKxOxFUgjO1u9qQBSjDl08AOyVD Yp17LAImoTR7WeA8WT9+jkJfPxq+E3BLljBK4noEH8BTv/Sp10H9O/lX+3FxAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQU1UJHAYSfcMb3VuHsKLQ1ICtUgMMwHwYDVR0j BBgwFoAUpIKQt7RENULQRg/Um98bRENgroYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDg4NDcyNzI1NDQ4Mjk0Ny8wL0E0ODI5MEI3QjQ0NDM1NDJEMDQ2MEZENDlCREYx QjQ0NDM2MEFFODYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQTQ4MjkwQjdCNDQ0MzU0MkQwNDYwRkQ0OUJERjFCNDQ0MzYwQUU4Ni5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NDg4NDcyNzI1NDQ4Mjk0Ny8wLzMyMzAzMjJlMzEz NzMzMmUzMTM1MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzMzODMzMzQzNS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAMqtDzANBgkqhkiG9w0BAQsFAAOCAQEAbIad44jJ7v7FS/6mYs7Bq3aD y0ZmTTVPssmTheIFXRTbxXnlKKX1k4z3+FtH+llrQHcUXlMmjIKb9m+l9pd5xDqj LhKsbT0rcEe2I4fW6gUYPbvxNZ7P3gLbulw8V3MHYWskqvhFfNdsATSxEtR2LWCX /8ewbNBErmukAWXngGQQw1zXH3+VC4cH0k+OTEPqRMga78aaxW16PIFTPAaVm7OX f8IHlKyGiuEdTpKLKyP7KcMDcx7WLNarHb/7GTeu1PETYgWs+QsQY1Bc//gCzZ0t YjNbK7PY4B0FzfKyXhdJ+wk6OZX1TEdqdrSD7EYMZ/QZ940yixvK7cpED6CWhg== -----END CERTIFICATE-----Generated at Mon Apr 13 12:24:34 2026 by rpki-client