$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095887880083013635/0/3230322e3133362e3230382e302f32322d3232203d3e2034383132.roa File: 3230322e3133362e3230382e302f32322d3232203d3e2034383132.roa (raw, json) Hash identifier: OmiSIjODLWcoDnY4QUVBhclHnKvfmJsqsRP35eLApYo= Subject key identifier: 0F:17:A6:40:9D:1A:00:D6:69:72:B2:ED:E4:7B:E9:57:AC:F8:E6:A8 Certificate issuer: /CN=BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F Certificate serial: 4462FA4B8BB32903FDFC2061ACB47E14332FCA18 Authority key identifier: BA:46:61:FF:AF:7B:AA:7A:94:8C:DA:87:F6:61:C5:BB:F7:54:BF:3F Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095887880083013635/0/3230322e3133362e3230382e302f32322d3232203d3e2034383132.roa Signing time: Mon 13 Apr 2026 02:50:26 +0000 ROA not before: Mon 13 Apr 2026 02:45:26 +0000 ROA not after: Mon 12 Apr 2027 02:50:26 +0000 asID: 4812 IP address blocks: 202.136.208.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095887880083013635/0/BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F.crl rsync://rpki-rps.cnnic.cn/repo/A1095887880083013635/0/BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 06:58:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:62:fa:4b:8b:b3:29:03:fd:fc:20:61:ac:b4:7e:14:33:2f:ca:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F Validity Not Before: Apr 13 02:45:26 2026 GMT Not After : Apr 12 02:50:26 2027 GMT Subject: CN=0F17A6409D1A00D66972B2EDE47BE957ACF8E6A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:38:f2:71:bd:50:ff:ca:b8:3d:e1:4d:d7:c1: 36:63:ef:cc:76:07:1b:94:fb:7b:7d:2d:ba:a6:45: 4a:a4:30:b0:40:80:2b:32:8b:bc:f6:78:72:89:6f: c1:fb:ec:5b:62:85:b8:ff:34:a1:77:c3:fd:91:ee: 05:b6:d4:5a:6b:20:a9:6f:e6:b7:65:bf:fd:fa:04: f8:e1:17:24:3e:75:e2:95:93:96:d0:1e:ce:3e:d6: c9:77:c6:71:3d:33:00:fc:00:2d:ca:08:8c:66:39: e0:8a:37:1d:e6:cb:d2:d0:70:46:2a:6b:6b:d8:a9: 10:70:1d:18:4c:68:ff:56:7f:07:90:aa:7a:63:b5: d8:23:10:1c:a8:33:91:61:59:20:62:43:ed:4b:2c: e4:fc:a4:63:1d:07:6b:a5:e3:26:45:9f:42:6a:40: af:be:77:49:ce:ee:65:0b:ab:a9:9b:81:98:f9:45: cd:98:45:e1:52:47:78:0a:ab:68:77:0f:85:59:9a: f9:42:b4:04:7a:b1:b7:1a:ac:c5:10:64:65:f7:5e: 30:f0:77:2f:9e:e2:f0:80:0d:da:2d:0c:96:47:e5: 40:46:9f:f1:78:69:e8:16:f7:b2:1a:ac:76:49:bf: 24:47:2f:3c:90:5b:41:40:7b:4f:7b:93:ce:fd:0d: bb:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:17:A6:40:9D:1A:00:D6:69:72:B2:ED:E4:7B:E9:57:AC:F8:E6:A8 X509v3 Authority Key Identifier: keyid:BA:46:61:FF:AF:7B:AA:7A:94:8C:DA:87:F6:61:C5:BB:F7:54:BF:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095887880083013635/0/BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095887880083013635/0/3230322e3133362e3230382e302f32322d3232203d3e2034383132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.136.208.0/22 Signature Algorithm: sha256WithRSAEncryption ac:a9:73:39:cc:ab:5c:7f:a9:a3:03:d0:2c:a5:ed:cc:c7:86: dc:c8:46:ab:dd:cb:b0:d0:35:35:76:68:e5:74:e4:3a:eb:a4: b1:ab:ce:81:78:cc:2f:1c:a7:e2:c6:c3:98:52:59:fe:07:66: 5f:fe:0b:88:c5:0f:ae:4c:0f:60:69:92:e2:00:5b:24:da:a3: 8e:9f:bb:7e:84:7e:7d:af:e6:4a:84:87:f9:cf:d4:54:9b:97: a6:c9:ef:22:be:96:c4:7e:c3:0e:da:78:49:55:02:43:55:0a: d2:3c:e2:fe:b2:37:1e:87:3e:f6:24:c2:df:04:4c:7f:80:7c: 54:6e:45:fc:20:9d:c0:72:5c:fe:e9:6a:20:d2:08:89:9c:fd: 81:32:ec:fe:dd:7d:d5:e6:07:3c:51:8d:67:26:d2:86:3d:86: d5:8e:48:e0:19:9b:e6:2d:63:dc:a6:d4:f5:7d:31:31:21:00: a4:c9:d8:ca:f0:b8:f7:64:f9:e6:9b:cd:eb:88:59:e5:44:e2: 18:b3:1a:a3:fe:c6:f3:0e:4f:82:eb:45:83:93:cc:80:63:2b: 4b:5a:5c:f8:a1:87:97:a6:d2:f5:c2:f6:36:fb:da:80:11:54: db:ee:9a:9a:ff:24:d6:56:59:41:e3:8f:a6:41:82:6f:e5:af: fa:7a:9d:47 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIURGL6S4uzKQP9/CBhrLR+FDMvyhgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkE0NjYxRkZBRjdCQUE3QTk0OENEQTg3RjY2MUM1QkJG NzU0QkYzRjAeFw0yNjA0MTMwMjQ1MjZaFw0yNzA0MTIwMjUwMjZaMDMxMTAvBgNV BAMTKDBGMTdBNjQwOUQxQTAwRDY2OTcyQjJFREU0N0JFOTU3QUNGOEU2QTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBOPJxvVD/yrg94U3XwTZj78x2 BxuU+3t9LbqmRUqkMLBAgCsyi7z2eHKJb8H77Ftihbj/NKF3w/2R7gW21FprIKlv 5rdlv/36BPjhFyQ+deKVk5bQHs4+1sl3xnE9MwD8AC3KCIxmOeCKNx3my9LQcEYq a2vYqRBwHRhMaP9WfweQqnpjtdgjEByoM5FhWSBiQ+1LLOT8pGMdB2ul4yZFn0Jq QK++d0nO7mULq6mbgZj5Rc2YReFSR3gKq2h3D4VZmvlCtAR6sbcarMUQZGX3XjDw dy+e4vCADdotDJZH5UBGn/F4aegW97IarHZJvyRHLzyQW0FAe097k879DbtdAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUDxemQJ0aANZpcrLt5HvpV6z45qgwHwYDVR0j BBgwFoAUukZh/697qnqUjNqH9mHFu/dUvz8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTg4Nzg4MDA4MzAxMzYzNS8wL0JBNDY2MUZGQUY3QkFBN0E5NDhDREE4N0Y2NjFD NUJCRjc1NEJGM0YuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQkE0NjYxRkZBRjdCQUE3QTk0OENEQTg3RjY2MUM1QkJGNzU0QkYzRi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NTg4Nzg4MDA4MzAxMzYzNS8wLzMyMzAzMjJlMzEz MzM2MmUzMjMwMzgyZTMwMmYzMjMyMmQzMjMyMjAzZDNlMjAzNDM4MzEzMi5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAsqI0DANBgkqhkiG9w0BAQsFAAOCAQEArKlzOcyrXH+powPQLKXtzMeG 3MhGq93LsNA1NXZo5XTkOuuksavOgXjMLxyn4sbDmFJZ/gdmX/4LiMUPrkwPYGmS 4gBbJNqjjp+7foR+fa/mSoSH+c/UVJuXpsnvIr6WxH7DDtp4SVUCQ1UK0jzi/rI3 Hoc+9iTC3wRMf4B8VG5F/CCdwHJc/ulqINIIiZz9gTLs/t191eYHPFGNZybShj2G 1Y5I4Bmb5i1j3KbU9X0xMSEApMnYyvC492T55pvN64hZ5UTiGLMao/7G8w5PgutF g5PMgGMrS1pc+KGHl6bS9cL2NvvagBFU2+6amv8k1lZZQeOPpkGCb+Wv+nqdRw== -----END CERTIFICATE-----Generated at Mon Apr 13 13:54:29 2026 by rpki-client