$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097055396041850881/0/3232332e3230322e3133322e302f32342d3234203d3e2034383038.roa File: 3232332e3230322e3133322e302f32342d3234203d3e2034383038.roa (raw, json) Hash identifier: Y27euMv6vsbnMvOTUe3tRasu4+4hUJtuFaxHmwWwIOs= Subject key identifier: 69:FC:FC:F7:31:DE:5E:3C:E0:13:05:76:7A:17:09:0D:70:3C:34:10 Certificate issuer: /CN=781D62BD536F03A2F82FAC3F719DE5B3B5F19551 Certificate serial: 54BA3DC878CDC59D47EA9F3430C58E41F587F42A Authority key identifier: 78:1D:62:BD:53:6F:03:A2:F8:2F:AC:3F:71:9D:E5:B3:B5:F1:95:51 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/781D62BD536F03A2F82FAC3F719DE5B3B5F19551.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097055396041850881/0/3232332e3230322e3133322e302f32342d3234203d3e2034383038.roa Signing time: Tue 19 May 2026 02:29:57 +0000 ROA not before: Tue 19 May 2026 02:24:57 +0000 ROA not after: Tue 18 May 2027 02:29:57 +0000 asID: 4808 IP address blocks: 223.202.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097055396041850881/0/781D62BD536F03A2F82FAC3F719DE5B3B5F19551.crl rsync://rpki-rps.cnnic.cn/repo/A1097055396041850881/0/781D62BD536F03A2F82FAC3F719DE5B3B5F19551.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/781D62BD536F03A2F82FAC3F719DE5B3B5F19551.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 15:28:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:ba:3d:c8:78:cd:c5:9d:47:ea:9f:34:30:c5:8e:41:f5:87:f4:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=781D62BD536F03A2F82FAC3F719DE5B3B5F19551 Validity Not Before: May 19 02:24:57 2026 GMT Not After : May 18 02:29:57 2027 GMT Subject: CN=69FCFCF731DE5E3CE01305767A17090D703C3410 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:a9:42:5b:53:bf:b8:ca:92:67:25:cc:14:09: 7d:58:ac:b3:e8:9c:a3:dd:54:2e:49:66:f8:09:99: 4e:71:5f:b4:a0:ca:7b:7e:a3:57:c3:4a:65:72:a5: ee:77:1e:f0:50:3a:35:b3:be:ca:46:60:9a:ae:94: 8c:6d:9a:3e:cd:a7:80:fb:03:49:d3:de:8d:17:94: 06:88:37:a0:d0:5a:ed:88:b2:7b:14:28:f7:48:16: e6:46:32:88:83:5f:86:56:9b:0f:94:a0:78:c9:f9: ff:d5:18:b9:b3:27:c9:68:ee:39:90:d1:06:0b:18: b7:03:db:5a:b2:7c:f1:14:cf:ca:30:b2:f6:74:5a: f1:0b:b5:d6:7c:87:8c:da:86:0d:cf:71:a3:a5:71: 04:be:79:61:f9:74:b2:62:8d:11:91:03:86:cb:73: 35:b7:fc:ee:37:df:70:e4:ec:21:90:a7:58:1f:cf: a7:37:8b:e4:ce:bc:1d:8a:9a:d0:4e:bb:a4:ac:8b: 09:a2:47:d5:42:f0:f9:37:ac:4c:b0:52:58:3a:de: dd:47:6e:ce:dd:ec:06:bd:de:ce:51:5c:36:a3:9f: 9a:8e:ee:aa:d8:ee:9d:f5:54:b5:bf:15:55:db:36: 3b:e6:d9:51:23:b4:b7:e0:76:38:c5:56:1a:6c:b5: b1:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:FC:FC:F7:31:DE:5E:3C:E0:13:05:76:7A:17:09:0D:70:3C:34:10 X509v3 Authority Key Identifier: keyid:78:1D:62:BD:53:6F:03:A2:F8:2F:AC:3F:71:9D:E5:B3:B5:F1:95:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097055396041850881/0/781D62BD536F03A2F82FAC3F719DE5B3B5F19551.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/781D62BD536F03A2F82FAC3F719DE5B3B5F19551.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097055396041850881/0/3232332e3230322e3133322e302f32342d3234203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.202.132.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:21:7c:bf:7a:fd:d9:6d:9d:13:02:9e:fa:5d:6f:7b:8f:24: 40:45:37:02:bf:6e:cc:f8:a3:c6:43:f2:79:3b:72:96:84:30: c5:0f:4e:6d:c2:12:5d:06:9a:dd:d5:5b:f3:9a:a6:20:2b:a6: 94:05:10:cf:ba:c3:0e:42:a0:3a:fa:4e:27:96:b9:ca:00:b7: 6d:96:6a:46:15:27:fd:78:d8:d3:12:89:88:0c:80:11:33:3f: 2e:be:c3:4f:01:ab:b5:60:29:ea:49:26:e9:b3:4f:1f:69:d2: 98:cf:29:5b:36:4d:b1:82:d3:8b:24:6a:73:d0:f8:09:dd:1a: 2b:d9:27:3c:d3:c6:73:2f:c6:c7:f8:10:7c:2a:ec:eb:66:ae: b8:e8:28:3c:20:99:cb:26:9c:84:99:b1:d5:36:10:38:81:00: b0:9b:a2:d2:5a:b4:2f:f1:b8:4e:48:e9:af:02:fe:49:49:f7: b9:16:90:eb:6e:cc:04:7c:55:2c:a3:77:30:7d:9c:48:03:86: 46:17:ef:f7:25:8f:b5:88:d2:6e:89:8b:98:ac:48:da:51:1b: 8c:01:c7:a9:7f:e9:86:1a:d3:e9:eb:ab:d9:b7:41:81:3e:c7: 25:a7:a9:a8:de:57:2a:63:37:b2:75:60:5c:97:ab:e4:a6:58: 7b:a2:db:0e -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUVLo9yHjNxZ1H6p80MMWOQfWH9CowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzgxRDYyQkQ1MzZGMDNBMkY4MkZBQzNGNzE5REU1QjNC NUYxOTU1MTAeFw0yNjA1MTkwMjI0NTdaFw0yNzA1MTgwMjI5NTdaMDMxMTAvBgNV BAMTKDY5RkNGQ0Y3MzFERTVFM0NFMDEzMDU3NjdBMTcwOTBENzAzQzM0MTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0qUJbU7+4ypJnJcwUCX1YrLPo nKPdVC5JZvgJmU5xX7Sgynt+o1fDSmVype53HvBQOjWzvspGYJqulIxtmj7Np4D7 A0nT3o0XlAaIN6DQWu2IsnsUKPdIFuZGMoiDX4ZWmw+UoHjJ+f/VGLmzJ8lo7jmQ 0QYLGLcD21qyfPEUz8owsvZ0WvELtdZ8h4zahg3PcaOlcQS+eWH5dLJijRGRA4bL czW3/O4333Dk7CGQp1gfz6c3i+TOvB2KmtBOu6SsiwmiR9VC8Pk3rEywUlg63t1H bs7d7Aa93s5RXDajn5qO7qrY7p31VLW/FVXbNjvm2VEjtLfgdjjFVhpstbHVAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUafz89zHeXjzgEwV2ehcJDXA8NBAwHwYDVR0j BBgwFoAUeB1ivVNvA6L4L6w/cZ3ls7XxlVEwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzA1NTM5NjA0MTg1MDg4MS8wLzc4MUQ2MkJENTM2RjAzQTJGODJGQUMzRjcxOURF NUIzQjVGMTk1NTEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNzgxRDYyQkQ1MzZGMDNBMkY4MkZBQzNGNzE5REU1QjNCNUYxOTU1MS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NzA1NTM5NjA0MTg1MDg4MS8wLzMyMzIzMzJlMzIz MDMyMmUzMTMzMzIyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNDM4MzAzOC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAN/KhDANBgkqhkiG9w0BAQsFAAOCAQEAjiF8v3r92W2dEwKe+l1ve48k QEU3Ar9uzPijxkPyeTtyloQwxQ9ObcISXQaa3dVb85qmICumlAUQz7rDDkKgOvpO J5a5ygC3bZZqRhUn/XjY0xKJiAyAETM/Lr7DTwGrtWAp6kkm6bNPH2nSmM8pWzZN sYLTiyRqc9D4Cd0aK9knPNPGcy/Gx/gQfCrs62auuOgoPCCZyyachJmx1TYQOIEA sJui0lq0L/G4TkjprwL+SUn3uRaQ627MBHxVLKN3MH2cSAOGRhfv9yWPtYjSbomL mKxI2lEbjAHHqX/phhrT6eur2bdBgT7HJaepqN5XKmM3snVgXJer5KZYe6LbDg== -----END CERTIFICATE-----Generated at Fri May 29 23:53:45 2026 by rpki-client