$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095887880083013635/0/3230322e3133362e3231392e302f32342d3234203d3e2030.roa File: 3230322e3133362e3231392e302f32342d3234203d3e2030.roa (raw, json) Hash identifier: eb+lsP1zS4a52kp7rQjQfcngt6O8DL6ngxHMW6QjVVI= Subject key identifier: 12:EE:E2:8D:E9:A7:F6:14:94:B6:9C:25:C1:82:12:F3:6A:15:FC:7E Certificate issuer: /CN=BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F Certificate serial: 762D0D1AA1E697407B4C18BF91574EE4156FDD0F Authority key identifier: BA:46:61:FF:AF:7B:AA:7A:94:8C:DA:87:F6:61:C5:BB:F7:54:BF:3F Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095887880083013635/0/3230322e3133362e3231392e302f32342d3234203d3e2030.roa Signing time: Mon 13 Apr 2026 02:58:09 +0000 ROA not before: Mon 13 Apr 2026 02:53:09 +0000 ROA not after: Mon 12 Apr 2027 02:58:09 +0000 asID: 0 IP address blocks: 202.136.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095887880083013635/0/BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F.crl rsync://rpki-rps.cnnic.cn/repo/A1095887880083013635/0/BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 06:58:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:2d:0d:1a:a1:e6:97:40:7b:4c:18:bf:91:57:4e:e4:15:6f:dd:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F Validity Not Before: Apr 13 02:53:09 2026 GMT Not After : Apr 12 02:58:09 2027 GMT Subject: CN=12EEE28DE9A7F61494B69C25C18212F36A15FC7E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:49:a5:61:54:85:f9:df:d9:a5:42:24:ff:3e: 23:56:4f:ac:62:ce:64:71:8b:fc:25:65:96:af:4d: f9:78:f9:2e:e8:77:0f:0e:95:90:93:61:4e:42:66: a5:2f:58:d7:8b:d7:eb:a3:38:3a:05:f2:6e:e8:ef: f1:18:c2:a6:0e:10:d6:a3:e9:ba:69:3c:aa:7c:ad: 57:c4:e3:b2:07:b3:df:6d:31:0a:06:05:2f:69:f5: d0:ca:a2:69:5a:cd:f3:ef:62:5c:8b:02:7d:25:36: 99:5b:ce:f7:ea:c6:9b:85:bf:43:6e:4c:f8:ce:00: 34:c6:4b:c9:dc:b5:16:dd:30:a8:16:e0:84:2e:b5: d1:bc:dd:52:80:ba:70:c3:6f:59:43:10:7e:e1:18: 4f:d1:95:89:58:ff:90:bb:b2:08:51:63:ba:c1:da: eb:b0:5a:47:9f:81:ec:47:18:66:f3:db:a2:30:11: 03:fc:c1:50:57:c8:26:f8:07:97:c0:64:6f:f8:9c: e3:a3:0f:5f:6e:17:72:1a:76:a8:02:56:73:75:c0: a3:72:47:17:85:05:93:50:0a:71:f4:6a:64:8a:8e: 67:15:2d:ec:5e:93:f9:dd:67:51:dc:aa:2a:9e:4f: 56:36:aa:49:b0:bf:70:ab:93:e6:cd:42:36:69:d9: 5f:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:EE:E2:8D:E9:A7:F6:14:94:B6:9C:25:C1:82:12:F3:6A:15:FC:7E X509v3 Authority Key Identifier: keyid:BA:46:61:FF:AF:7B:AA:7A:94:8C:DA:87:F6:61:C5:BB:F7:54:BF:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095887880083013635/0/BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095887880083013635/0/3230322e3133362e3231392e302f32342d3234203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.136.219.0/24 Signature Algorithm: sha256WithRSAEncryption 82:54:b7:fe:e9:67:44:8d:2a:f6:b5:29:b3:57:e1:1c:3c:7a: 0d:03:5c:fa:4d:b1:f0:3d:19:2a:2d:62:f8:c5:04:c0:17:8a: ff:d5:3d:7d:25:47:1d:ff:ab:7c:cf:11:0a:d8:dc:0c:e2:13: a8:6f:02:aa:3a:76:50:72:01:b1:12:5e:00:b6:e0:4b:6e:0b: 1a:2f:15:b8:9f:17:ce:cb:ae:f8:aa:f4:e5:7f:2a:b4:57:c8: 29:6b:58:85:22:0d:bb:66:72:88:b4:1e:e5:95:39:f9:f9:6f: c3:55:da:2f:ba:9d:e3:2c:75:8e:8f:b5:c6:89:98:43:3d:a3: c8:d7:ff:43:5f:05:79:ae:9b:88:6e:7f:3f:d9:a1:11:74:ec: f3:4d:4e:f8:09:81:6d:ac:81:34:1d:13:82:7b:60:fc:29:e7: 0a:b6:30:2e:f0:69:91:2b:be:c7:cf:94:ce:aa:0f:70:a1:2f: 98:cd:84:f2:dc:42:02:ee:1f:ec:4a:b0:d9:1f:0e:03:a2:04: 42:fa:ee:91:96:4d:c2:bc:2e:8a:9b:dc:9c:5b:14:3f:c3:0f: db:9a:18:5a:e7:c7:77:1e:61:50:c6:51:6b:82:b7:56:36:49: 45:de:1d:33:a8:13:a7:06:74:b9:3c:d1:24:6b:c1:69:b2:7a: 33:64:b1:54 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgIUdi0NGqHml0B7TBi/kVdO5BVv3Q8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkE0NjYxRkZBRjdCQUE3QTk0OENEQTg3RjY2MUM1QkJG NzU0QkYzRjAeFw0yNjA0MTMwMjUzMDlaFw0yNzA0MTIwMjU4MDlaMDMxMTAvBgNV BAMTKDEyRUVFMjhERTlBN0Y2MTQ5NEI2OUMyNUMxODIxMkYzNkExNUZDN0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7SaVhVIX539mlQiT/PiNWT6xi zmRxi/wlZZavTfl4+S7odw8OlZCTYU5CZqUvWNeL1+ujODoF8m7o7/EYwqYOENaj 6bppPKp8rVfE47IHs99tMQoGBS9p9dDKomlazfPvYlyLAn0lNplbzvfqxpuFv0Nu TPjOADTGS8nctRbdMKgW4IQutdG83VKAunDDb1lDEH7hGE/RlYlY/5C7sghRY7rB 2uuwWkefgexHGGbz26IwEQP8wVBXyCb4B5fAZG/4nOOjD19uF3IadqgCVnN1wKNy RxeFBZNQCnH0amSKjmcVLexek/ndZ1HcqiqeT1Y2qkmwv3Crk+bNQjZp2V/xAgMB AAGjggINMIICCTAdBgNVHQ4EFgQUEu7ijemn9hSUtpwlwYIS82oV/H4wHwYDVR0j BBgwFoAUukZh/697qnqUjNqH9mHFu/dUvz8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTg4Nzg4MDA4MzAxMzYzNS8wL0JBNDY2MUZGQUY3QkFBN0E5NDhDREE4N0Y2NjFD NUJCRjc1NEJGM0YuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQkE0NjYxRkZBRjdCQUE3QTk0OENEQTg3RjY2MUM1QkJGNzU0QkYzRi5jZXIw gYYGCCsGAQUFBwELBHoweDB2BggrBgEFBQcwC4ZqcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk1ODg3ODgwMDgzMDEzNjM1LzAvMzIzMDMyMmUzMTMz MzYyZTMyMzEzOTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMwLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA yojbMA0GCSqGSIb3DQEBCwUAA4IBAQCCVLf+6WdEjSr2tSmzV+EcPHoNA1z6TbHw PRkqLWL4xQTAF4r/1T19JUcd/6t8zxEK2NwM4hOobwKqOnZQcgGxEl4AtuBLbgsa LxW4nxfOy674qvTlfyq0V8gpa1iFIg27ZnKItB7llTn5+W/DVdovup3jLHWOj7XG iZhDPaPI1/9DXwV5rpuIbn8/2aERdOzzTU74CYFtrIE0HROCe2D8KecKtjAu8GmR K77Hz5TOqg9woS+YzYTy3EIC7h/sSrDZHw4DogRC+u6Rlk3CvC6Km9ycWxQ/ww/b mhha58d3HmFQxlFrgrdWNklF3h0zqBOnBnS5PNEka8FpsnozZLFU -----END CERTIFICATE-----Generated at Mon Apr 13 12:24:12 2026 by rpki-client