$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097055396041850881/0/3232332e3230332e332e302f32342d3234203d3e2034383437.roa File: 3232332e3230332e332e302f32342d3234203d3e2034383437.roa (raw, json) Hash identifier: Nil7JLeQjElsHiaOmQwmchmXdc4t7mWYvIW9mPoUlcE= Subject key identifier: 45:72:5D:73:5E:A4:06:E4:B7:73:DB:E3:86:94:D1:CF:55:F8:4A:96 Certificate issuer: /CN=781D62BD536F03A2F82FAC3F719DE5B3B5F19551 Certificate serial: 368DEF15BC6D5A49215C9B6E3ACB5A911C8BFC56 Authority key identifier: 78:1D:62:BD:53:6F:03:A2:F8:2F:AC:3F:71:9D:E5:B3:B5:F1:95:51 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/781D62BD536F03A2F82FAC3F719DE5B3B5F19551.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097055396041850881/0/3232332e3230332e332e302f32342d3234203d3e2034383437.roa Signing time: Tue 19 May 2026 05:36:39 +0000 ROA not before: Tue 19 May 2026 05:31:39 +0000 ROA not after: Tue 18 May 2027 05:36:39 +0000 asID: 4847 IP address blocks: 223.203.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097055396041850881/0/781D62BD536F03A2F82FAC3F719DE5B3B5F19551.crl rsync://rpki-rps.cnnic.cn/repo/A1097055396041850881/0/781D62BD536F03A2F82FAC3F719DE5B3B5F19551.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/781D62BD536F03A2F82FAC3F719DE5B3B5F19551.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 15:28:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:8d:ef:15:bc:6d:5a:49:21:5c:9b:6e:3a:cb:5a:91:1c:8b:fc:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=781D62BD536F03A2F82FAC3F719DE5B3B5F19551 Validity Not Before: May 19 05:31:39 2026 GMT Not After : May 18 05:36:39 2027 GMT Subject: CN=45725D735EA406E4B773DBE38694D1CF55F84A96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:72:bf:b7:01:9b:d2:a8:5d:af:3a:6c:1e:f1: cf:14:7f:5f:e5:6b:06:dc:4a:db:d6:b9:87:3a:13: 1e:77:36:d5:68:aa:1f:2b:5e:e7:87:9b:ef:45:53: 57:1e:19:5a:8b:b0:54:2a:9b:d9:f9:3a:e4:0a:72: 5c:96:a5:31:71:d2:b7:1a:86:15:fa:68:96:7d:86: 50:8f:bb:86:99:5e:72:ce:10:03:5d:9f:d3:ec:47: c5:e3:79:31:83:62:fc:3f:7e:7c:cc:cc:ed:68:c6: 7b:6f:d3:7c:a8:27:36:a7:63:67:aa:28:ed:e8:bd: 03:0f:38:59:86:5e:1e:f1:22:c8:d4:9d:31:4c:99: d7:83:ab:47:2e:10:b0:83:2b:19:1a:96:68:ef:63: 03:de:09:bb:19:a1:08:bc:8c:f7:42:4f:2b:ea:20: 2f:0b:5e:58:ea:35:a1:09:ff:93:34:d5:ac:e6:ed: 11:99:c8:c4:3c:53:5c:db:1f:44:c5:6c:df:ee:6b: 05:03:0f:f4:50:c5:fb:da:a1:ae:4b:af:23:7b:6c: ab:cf:90:18:49:ec:ee:86:45:18:f6:05:2a:75:df: 86:d3:43:09:38:fc:75:11:7e:04:f1:30:e3:40:9e: e8:c3:d3:75:9d:3e:8f:76:27:63:3f:5e:b1:7f:c8: 46:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:72:5D:73:5E:A4:06:E4:B7:73:DB:E3:86:94:D1:CF:55:F8:4A:96 X509v3 Authority Key Identifier: keyid:78:1D:62:BD:53:6F:03:A2:F8:2F:AC:3F:71:9D:E5:B3:B5:F1:95:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097055396041850881/0/781D62BD536F03A2F82FAC3F719DE5B3B5F19551.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/781D62BD536F03A2F82FAC3F719DE5B3B5F19551.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097055396041850881/0/3232332e3230332e332e302f32342d3234203d3e2034383437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.203.3.0/24 Signature Algorithm: sha256WithRSAEncryption 74:42:dc:1a:8c:79:77:99:8f:2f:b8:aa:e7:4e:7e:95:43:40: bc:4b:f3:d7:82:8f:d8:ae:ca:5c:fd:e8:2b:33:69:de:47:f1: 87:eb:85:e5:06:11:05:93:fc:f5:c7:ce:dc:6a:63:e7:1a:c7: ae:03:b3:41:8a:e4:fe:93:83:29:0b:06:8c:79:ce:90:01:dd: 64:c9:57:8e:fd:bf:de:5c:3e:41:6c:73:0f:a4:b3:71:43:f3: dc:43:d1:cf:21:5c:55:c1:e2:25:b2:8b:07:81:cd:21:80:b8: d4:0d:08:73:e3:7c:8e:c1:f1:0a:53:c4:30:27:b4:01:7a:d0: 85:ca:a8:61:dd:d6:fc:aa:c0:13:df:ed:91:72:2d:d3:08:bd: a1:8d:ef:78:bc:d3:4a:ec:74:fb:0e:46:c1:04:39:18:98:f8: 35:cf:fd:49:e4:3f:0a:bf:df:c2:de:5f:30:2e:84:45:9a:bd: a6:3f:05:a9:1b:7a:20:f5:96:a2:04:b9:b5:0b:3f:20:0b:e4: 64:f6:95:df:d7:78:1e:9f:14:dc:60:65:0b:06:b5:c9:9a:c1: 4e:16:60:be:88:0e:b6:59:10:4d:e3:7a:32:dc:65:f3:1b:3f: 4b:d9:09:cb:fa:f9:55:9c:b3:ab:2a:72:93:06:37:d0:fd:d1: d4:8e:01:f5 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUNo3vFbxtWkkhXJtuOstakRyL/FYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzgxRDYyQkQ1MzZGMDNBMkY4MkZBQzNGNzE5REU1QjNC NUYxOTU1MTAeFw0yNjA1MTkwNTMxMzlaFw0yNzA1MTgwNTM2MzlaMDMxMTAvBgNV BAMTKDQ1NzI1RDczNUVBNDA2RTRCNzczREJFMzg2OTREMUNGNTVGODRBOTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgcr+3AZvSqF2vOmwe8c8Uf1/l awbcStvWuYc6Ex53NtVoqh8rXueHm+9FU1ceGVqLsFQqm9n5OuQKclyWpTFx0rca hhX6aJZ9hlCPu4aZXnLOEANdn9PsR8XjeTGDYvw/fnzMzO1oxntv03yoJzanY2eq KO3ovQMPOFmGXh7xIsjUnTFMmdeDq0cuELCDKxkalmjvYwPeCbsZoQi8jPdCTyvq IC8LXljqNaEJ/5M01azm7RGZyMQ8U1zbH0TFbN/uawUDD/RQxfvaoa5LryN7bKvP kBhJ7O6GRRj2BSp134bTQwk4/HURfgTxMONAnujD03WdPo92J2M/XrF/yEaxAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQURXJdc16kBuS3c9vjhpTRz1X4SpYwHwYDVR0j BBgwFoAUeB1ivVNvA6L4L6w/cZ3ls7XxlVEwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzA1NTM5NjA0MTg1MDg4MS8wLzc4MUQ2MkJENTM2RjAzQTJGODJGQUMzRjcxOURF NUIzQjVGMTk1NTEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNzgxRDYyQkQ1MzZGMDNBMkY4MkZBQzNGNzE5REU1QjNCNUYxOTU1MS5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk3MDU1Mzk2MDQxODUwODgxLzAvMzIzMjMzMmUzMjMw MzMyZTMzMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzQzODM0Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BADfywMwDQYJKoZIhvcNAQELBQADggEBAHRC3BqMeXeZjy+4qudOfpVDQLxL89eC j9iuylz96Cszad5H8YfrheUGEQWT/PXHztxqY+cax64Ds0GK5P6TgykLBox5zpAB 3WTJV479v95cPkFscw+ks3FD89xD0c8hXFXB4iWyiweBzSGAuNQNCHPjfI7B8QpT xDAntAF60IXKqGHd1vyqwBPf7ZFyLdMIvaGN73i800rsdPsORsEEORiY+DXP/Unk Pwq/38LeXzAuhEWavaY/BakbeiD1lqIEubULPyAL5GT2ld/XeB6fFNxgZQsGtcma wU4WYL6IDrZZEE3jejLcZfMbP0vZCcv6+VWcs6sqcpMGN9D90dSOAfU= -----END CERTIFICATE-----Generated at Fri May 29 22:56:37 2026 by rpki-client