$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095887880083013635/0/3230322e3133362e3232302e302f32342d3234203d3e203137363231.roa File: 3230322e3133362e3232302e302f32342d3234203d3e203137363231.roa (raw, json) Hash identifier: AWmE9yewJh0fhz6Pfas9ClXLsdjyofQ7PMvv9lZQdis= Subject key identifier: 53:C7:D9:C0:6E:20:86:F6:D5:A5:5E:FF:29:12:19:5B:8E:F4:90:80 Certificate issuer: /CN=BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F Certificate serial: 5A785A9379F18DF1DB2F1FE00C95FFDD5A6EDEC1 Authority key identifier: BA:46:61:FF:AF:7B:AA:7A:94:8C:DA:87:F6:61:C5:BB:F7:54:BF:3F Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095887880083013635/0/3230322e3133362e3232302e302f32342d3234203d3e203137363231.roa Signing time: Mon 13 Apr 2026 02:50:26 +0000 ROA not before: Mon 13 Apr 2026 02:45:26 +0000 ROA not after: Mon 12 Apr 2027 02:50:26 +0000 asID: 17621 IP address blocks: 202.136.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095887880083013635/0/BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F.crl rsync://rpki-rps.cnnic.cn/repo/A1095887880083013635/0/BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 06:58:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:78:5a:93:79:f1:8d:f1:db:2f:1f:e0:0c:95:ff:dd:5a:6e:de:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F Validity Not Before: Apr 13 02:45:26 2026 GMT Not After : Apr 12 02:50:26 2027 GMT Subject: CN=53C7D9C06E2086F6D5A55EFF2912195B8EF49080 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:68:fb:5c:b5:07:a2:e0:dd:96:a2:d5:3e:87: 0b:02:7b:53:dc:7e:7c:e9:4f:d2:00:c1:3c:2a:0e: 9c:c2:1a:9d:f1:05:79:dd:85:c0:55:20:24:0c:8e: 8c:06:9f:a4:a0:1f:0f:2b:d2:fd:ce:e9:69:f7:b5: 00:56:38:d9:3c:c4:e2:d6:43:f5:e1:6d:a2:65:73: c3:9d:94:df:16:c4:9f:0b:dc:21:32:b3:3f:fd:80: aa:99:44:21:6c:0f:14:8c:dd:b7:9f:41:bd:50:8f: a2:c4:91:c1:c0:58:90:d3:68:ff:ee:d7:ae:95:0c: bc:a1:4a:aa:6a:b4:b4:7d:06:1d:6b:2c:38:b3:df: c4:47:11:88:9c:74:08:10:8e:b0:3d:bd:e5:b3:86: 56:bc:e2:10:43:dc:ff:3f:c6:7a:d5:8d:ee:30:c7: 98:c6:02:fc:e3:e5:99:26:e9:62:10:c2:bb:0d:d4: 79:ff:2b:dd:66:40:84:40:a2:af:0f:9b:5d:ca:a1: e1:b4:0d:c5:1a:e3:db:7d:ae:76:21:84:68:ee:a4: 98:cd:52:5b:f1:b2:bf:d5:3b:25:f3:b9:58:6a:63: 13:56:3e:ca:96:b0:1a:1a:5c:ad:c3:ad:b4:d3:29: 20:57:0a:23:27:4a:e2:14:5f:45:c2:18:0d:7a:c8: 56:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:C7:D9:C0:6E:20:86:F6:D5:A5:5E:FF:29:12:19:5B:8E:F4:90:80 X509v3 Authority Key Identifier: keyid:BA:46:61:FF:AF:7B:AA:7A:94:8C:DA:87:F6:61:C5:BB:F7:54:BF:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095887880083013635/0/BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095887880083013635/0/3230322e3133362e3232302e302f32342d3234203d3e203137363231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.136.220.0/24 Signature Algorithm: sha256WithRSAEncryption 20:2c:4d:b7:b8:9a:cc:a0:57:1c:35:4a:28:1c:20:ff:de:51: e5:bf:63:2c:d8:12:6e:3c:ab:3d:d6:27:bf:da:17:94:8a:47: 41:e5:6b:1b:20:2e:ad:57:ac:49:5d:d0:e2:81:e6:e9:67:9f: d6:43:56:b4:5c:01:f0:39:35:69:7e:c1:44:47:c5:be:de:c0: 11:66:31:f1:e1:c4:4f:ce:a1:0b:8b:ec:30:14:00:7c:c5:db: 44:77:ad:20:47:3e:cb:aa:82:c3:66:82:e6:07:ab:82:f1:ed: 58:3f:b1:0a:81:83:be:eb:ee:13:11:a4:77:b0:2f:b7:b2:f7: 68:18:69:e0:d8:03:c9:33:51:9e:cb:a6:01:cb:95:77:1e:6e: 93:b0:6c:c3:2d:72:24:44:39:f2:ef:d2:c0:9b:f7:ae:9a:7c: b7:bd:8d:d0:5d:93:19:35:45:a2:b6:1c:a4:a1:50:a5:8b:8c: 3e:4a:6d:13:1b:77:f8:b7:35:39:52:5f:96:fc:80:68:e1:df: 4e:89:f7:1c:b5:97:e5:54:76:b7:e6:13:4a:fa:74:b2:4a:6c: a4:43:5d:12:67:b0:d3:8a:2b:5e:4a:95:3c:44:c7:dc:1b:7f: e0:fe:1f:39:44:83:c0:f7:e4:d5:d6:80:a4:a7:2b:1b:d2:24: 6c:e0:af:96 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUWnhak3nxjfHbLx/gDJX/3Vpu3sEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkE0NjYxRkZBRjdCQUE3QTk0OENEQTg3RjY2MUM1QkJG NzU0QkYzRjAeFw0yNjA0MTMwMjQ1MjZaFw0yNzA0MTIwMjUwMjZaMDMxMTAvBgNV BAMTKDUzQzdEOUMwNkUyMDg2RjZENUE1NUVGRjI5MTIxOTVCOEVGNDkwODAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXaPtctQei4N2WotU+hwsCe1Pc fnzpT9IAwTwqDpzCGp3xBXndhcBVICQMjowGn6SgHw8r0v3O6Wn3tQBWONk8xOLW Q/XhbaJlc8OdlN8WxJ8L3CEysz/9gKqZRCFsDxSM3befQb1Qj6LEkcHAWJDTaP/u 166VDLyhSqpqtLR9Bh1rLDiz38RHEYicdAgQjrA9veWzhla84hBD3P8/xnrVje4w x5jGAvzj5Zkm6WIQwrsN1Hn/K91mQIRAoq8Pm13KoeG0DcUa49t9rnYhhGjupJjN Ulvxsr/VOyXzuVhqYxNWPsqWsBoaXK3DrbTTKSBXCiMnSuIUX0XCGA16yFbTAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUU8fZwG4ghvbVpV7/KRIZW470kIAwHwYDVR0j BBgwFoAUukZh/697qnqUjNqH9mHFu/dUvz8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTg4Nzg4MDA4MzAxMzYzNS8wL0JBNDY2MUZGQUY3QkFBN0E5NDhDREE4N0Y2NjFD NUJCRjc1NEJGM0YuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQkE0NjYxRkZBRjdCQUE3QTk0OENEQTg3RjY2MUM1QkJGNzU0QkYzRi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTU4ODc4ODAwODMwMTM2MzUvMC8zMjMwMzIyZTMx MzMzNjJlMzIzMjMwMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzNzM2MzIzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAMqI3DANBgkqhkiG9w0BAQsFAAOCAQEAICxNt7iazKBXHDVKKBwg /95R5b9jLNgSbjyrPdYnv9oXlIpHQeVrGyAurVesSV3Q4oHm6Wef1kNWtFwB8Dk1 aX7BREfFvt7AEWYx8eHET86hC4vsMBQAfMXbRHetIEc+y6qCw2aC5gergvHtWD+x CoGDvuvuExGkd7Avt7L3aBhp4NgDyTNRnsumAcuVdx5uk7Bswy1yJEQ58u/SwJv3 rpp8t72N0F2TGTVForYcpKFQpYuMPkptExt3+Lc1OVJflvyAaOHfTon3HLWX5VR2 t+YTSvp0skpspENdEmew04orXkqVPETH3Bt/4P4fOUSDwPfk1daApKcrG9IkbOCv lg== -----END CERTIFICATE-----Generated at Mon Apr 13 13:54:30 2026 by rpki-client