$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095963215377989635/0/3232332e3232332e3230342e302f32342d3234203d3e2039383038.roa File: 3232332e3232332e3230342e302f32342d3234203d3e2039383038.roa (raw, json) Hash identifier: ohsy0gg74xaHwXCbJPw4jvIT8siLizTDMiaXD3mhQKE= Subject key identifier: A2:9C:B0:FB:63:5C:C4:3F:FF:F9:D7:51:AE:95:87:92:D9:97:69:5F Certificate issuer: /CN=C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6 Certificate serial: 711C242FFFB1FA92FB4A45B3E61D2A17D1883786 Authority key identifier: C2:CA:12:03:9A:28:07:0B:0F:BB:EA:FD:E7:FF:C0:5E:1F:8E:6C:C6 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/3232332e3232332e3230342e302f32342d3234203d3e2039383038.roa Signing time: Mon 13 Apr 2026 07:01:30 +0000 ROA not before: Mon 13 Apr 2026 06:56:30 +0000 ROA not after: Mon 12 Apr 2027 07:01:30 +0000 asID: 9808 IP address blocks: 223.223.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.crl rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 08:42:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:1c:24:2f:ff:b1:fa:92:fb:4a:45:b3:e6:1d:2a:17:d1:88:37:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6 Validity Not Before: Apr 13 06:56:30 2026 GMT Not After : Apr 12 07:01:30 2027 GMT Subject: CN=A29CB0FB635CC43FFFF9D751AE958792D997695F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:be:49:65:49:b2:4e:83:0a:87:b9:69:36:58: 07:ed:02:4b:1e:43:a6:6f:37:a0:64:31:68:36:49: f2:67:33:5d:32:a9:41:99:8e:d6:51:46:42:ed:16: 3b:38:50:99:0c:32:03:99:57:f5:5b:5a:dd:92:5d: 3f:77:54:39:b1:b3:21:63:c9:d5:76:35:f8:70:06: fc:5e:d5:ca:57:93:4e:08:ea:67:1f:2e:63:0d:80: 3a:b0:33:35:9e:86:36:74:0c:1b:c3:f9:25:d6:03: f4:97:e2:1c:89:6b:6f:94:1b:b6:37:59:49:4c:d3: 23:b4:b7:22:31:d5:d9:f8:42:c9:38:2f:a0:03:72: 84:6c:dc:9a:ed:6b:88:ad:c6:3d:0f:88:95:15:b7: 6c:d7:f2:dc:b1:39:eb:3b:d9:78:02:9d:06:d3:24: c0:29:1f:a1:ea:c9:48:76:23:cf:83:69:53:ae:8c: 5f:e3:67:8f:05:b9:8c:ff:2e:a1:de:9a:fb:d7:26: 0c:e3:93:ff:46:a9:a8:cb:45:09:a7:99:be:c0:51: 0c:6b:a9:1e:1a:14:8e:c4:49:6c:9a:11:16:7b:e9: d3:09:32:65:37:0c:5f:90:de:cb:ad:c3:03:81:d1: be:64:7b:5c:58:22:48:49:4a:cb:e6:84:89:cd:7f: 92:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:9C:B0:FB:63:5C:C4:3F:FF:F9:D7:51:AE:95:87:92:D9:97:69:5F X509v3 Authority Key Identifier: keyid:C2:CA:12:03:9A:28:07:0B:0F:BB:EA:FD:E7:FF:C0:5E:1F:8E:6C:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/3232332e3232332e3230342e302f32342d3234203d3e2039383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.223.204.0/24 Signature Algorithm: sha256WithRSAEncryption b5:45:67:28:bd:e6:8e:1d:d0:6f:a2:c2:da:10:0c:cf:8a:2a: b2:a3:87:0c:f7:91:30:0c:f8:0b:a6:ff:bb:ec:1e:97:d3:86: c1:d2:5b:52:6c:db:fc:7f:12:23:e0:1e:f0:6c:87:65:d8:1b: 28:fa:2d:f7:94:2a:47:81:e8:30:67:13:c8:e3:b9:20:81:f5: ad:2b:93:74:1b:34:a9:56:71:6c:5f:99:35:84:e4:27:64:67: bc:ba:6a:bd:8e:5c:20:9d:b3:76:93:68:76:e0:59:0c:d1:a1: d1:ef:ee:ee:e9:df:b2:ab:dc:af:75:05:0b:bb:79:f3:25:fc: a5:c7:8a:89:d9:1c:1d:27:c8:48:6c:c7:a5:68:14:47:48:b3: f3:e1:b3:38:27:da:59:01:69:48:ed:97:5a:e4:c7:0c:ea:c1: a5:1a:f0:79:90:50:a1:74:86:ea:44:79:8c:de:ae:86:e2:7e: b2:72:70:30:d5:e6:92:92:89:ef:dc:56:bd:8a:28:7b:59:8e: 9f:df:cf:8e:80:91:4b:b9:df:f0:43:d3:44:7d:81:7c:05:bd: d3:63:f6:9b:0c:b9:f7:e3:20:b3:2f:97:8b:ac:1e:7d:c1:34: de:07:16:28:50:ae:24:60:b3:90:4c:36:d9:f2:61:a5:b9:57: 76:17:66:6a -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUcRwkL/+x+pL7SkWz5h0qF9GIN4YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzJDQTEyMDM5QTI4MDcwQjBGQkJFQUZERTdGRkMwNUUx RjhFNkNDNjAeFw0yNjA0MTMwNjU2MzBaFw0yNzA0MTIwNzAxMzBaMDMxMTAvBgNV BAMTKEEyOUNCMEZCNjM1Q0M0M0ZGRkY5RDc1MUFFOTU4NzkyRDk5NzY5NUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjvkllSbJOgwqHuWk2WAftAkse Q6ZvN6BkMWg2SfJnM10yqUGZjtZRRkLtFjs4UJkMMgOZV/VbWt2SXT93VDmxsyFj ydV2NfhwBvxe1cpXk04I6mcfLmMNgDqwMzWehjZ0DBvD+SXWA/SX4hyJa2+UG7Y3 WUlM0yO0tyIx1dn4Qsk4L6ADcoRs3Jrta4itxj0PiJUVt2zX8tyxOes72XgCnQbT JMApH6HqyUh2I8+DaVOujF/jZ48FuYz/LqHemvvXJgzjk/9GqajLRQmnmb7AUQxr qR4aFI7ESWyaERZ76dMJMmU3DF+Q3sutwwOB0b5ke1xYIkhJSsvmhInNf5KLAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUopyw+2NcxD//+ddRrpWHktmXaV8wHwYDVR0j BBgwFoAUwsoSA5ooBwsPu+r95//AXh+ObMYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTk2MzIxNTM3Nzk4OTYzNS8wL0MyQ0ExMjAzOUEyODA3MEIwRkJCRUFGREU3RkZD MDVFMUY4RTZDQzYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQzJDQTEyMDM5QTI4MDcwQjBGQkJFQUZERTdGRkMwNUUxRjhFNkNDNi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NTk2MzIxNTM3Nzk4OTYzNS8wLzMyMzIzMzJlMzIz MjMzMmUzMjMwMzQyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzOTM4MzAzOC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAN/fzDANBgkqhkiG9w0BAQsFAAOCAQEAtUVnKL3mjh3Qb6LC2hAMz4oq sqOHDPeRMAz4C6b/u+wel9OGwdJbUmzb/H8SI+Ae8GyHZdgbKPot95QqR4HoMGcT yOO5IIH1rSuTdBs0qVZxbF+ZNYTkJ2RnvLpqvY5cIJ2zdpNoduBZDNGh0e/u7unf sqvcr3UFC7t58yX8pceKidkcHSfISGzHpWgUR0iz8+GzOCfaWQFpSO2XWuTHDOrB pRrweZBQoXSG6kR5jN6uhuJ+snJwMNXmkpKJ79xWvYooe1mOn9/PjoCRS7nf8EPT RH2BfAW902P2mwy59+Mgsy+Xi6wefcE03gcWKFCuJGCzkEw22fJhpblXdhdmag== -----END CERTIFICATE-----Generated at Mon Apr 13 15:24:39 2026 by rpki-client