$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097055396041850881/0/3232332e3230332e392e302f32342d3234203d3e2034383038.roa File: 3232332e3230332e392e302f32342d3234203d3e2034383038.roa (raw, json) Hash identifier: Lkq04LfXFBWzQyHd7Pwj7wz6bXTOV4/5955jnJsHfeQ= Subject key identifier: 57:6B:B5:01:09:4B:CC:AA:F2:53:6A:56:52:7A:2F:9C:A9:65:64:46 Certificate issuer: /CN=781D62BD536F03A2F82FAC3F719DE5B3B5F19551 Certificate serial: 41EE05C6F445085510F7ACD3E26C629B94238C30 Authority key identifier: 78:1D:62:BD:53:6F:03:A2:F8:2F:AC:3F:71:9D:E5:B3:B5:F1:95:51 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/781D62BD536F03A2F82FAC3F719DE5B3B5F19551.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097055396041850881/0/3232332e3230332e392e302f32342d3234203d3e2034383038.roa Signing time: Tue 19 May 2026 02:29:56 +0000 ROA not before: Tue 19 May 2026 02:24:56 +0000 ROA not after: Tue 18 May 2027 02:29:56 +0000 asID: 4808 IP address blocks: 223.203.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097055396041850881/0/781D62BD536F03A2F82FAC3F719DE5B3B5F19551.crl rsync://rpki-rps.cnnic.cn/repo/A1097055396041850881/0/781D62BD536F03A2F82FAC3F719DE5B3B5F19551.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/781D62BD536F03A2F82FAC3F719DE5B3B5F19551.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 15:28:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:ee:05:c6:f4:45:08:55:10:f7:ac:d3:e2:6c:62:9b:94:23:8c:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=781D62BD536F03A2F82FAC3F719DE5B3B5F19551 Validity Not Before: May 19 02:24:56 2026 GMT Not After : May 18 02:29:56 2027 GMT Subject: CN=576BB501094BCCAAF2536A56527A2F9CA9656446 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:50:ed:0c:93:85:3e:96:3c:58:a1:b1:30:1c: d7:4e:c8:33:24:ab:9f:e1:a9:28:57:65:3b:18:68: 2f:d9:52:ad:c6:78:c0:39:56:14:12:c0:0c:7f:53: d4:9f:68:78:9f:f0:4a:7e:6b:67:1c:74:5c:7d:38: 19:39:56:c5:44:1e:1d:5a:ea:46:65:b5:22:cf:63: 48:26:3e:f5:0f:a8:ba:0d:73:46:49:29:1e:b4:55: 33:99:e0:3d:1a:96:73:7e:63:91:22:2d:fa:ea:74: 6c:c1:32:e7:1d:0b:05:0d:8b:e5:1b:53:a6:83:b3: 86:55:ad:df:ff:6f:a6:8b:e5:06:29:c4:47:81:ce: b1:a8:26:12:f6:af:4e:1b:5d:78:8a:e7:2a:3c:a6: b9:cb:ab:3f:79:96:a4:81:a2:8e:63:72:d3:94:c9: 27:85:8c:f1:f2:7d:55:04:1a:cc:af:d0:95:53:22: 4b:0b:fd:5f:2f:dc:77:7d:bf:54:12:1c:69:e0:15: 5c:ef:70:99:a7:d9:4e:7b:30:0e:7c:0c:54:9b:b9: 02:be:89:1e:60:0a:f2:72:e2:6f:a4:79:e4:6d:f5: 59:10:50:80:da:49:ae:c1:45:15:2b:12:55:43:90: ec:65:a3:7d:28:48:0d:cd:7d:8a:8a:f6:ce:38:4d: e6:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:6B:B5:01:09:4B:CC:AA:F2:53:6A:56:52:7A:2F:9C:A9:65:64:46 X509v3 Authority Key Identifier: keyid:78:1D:62:BD:53:6F:03:A2:F8:2F:AC:3F:71:9D:E5:B3:B5:F1:95:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097055396041850881/0/781D62BD536F03A2F82FAC3F719DE5B3B5F19551.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/781D62BD536F03A2F82FAC3F719DE5B3B5F19551.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097055396041850881/0/3232332e3230332e392e302f32342d3234203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.203.9.0/24 Signature Algorithm: sha256WithRSAEncryption 43:54:06:19:af:3d:28:54:d4:72:80:01:6c:ae:fb:33:96:21: e6:9b:a0:2e:5c:fd:22:2a:d8:40:53:87:8e:95:ca:d5:4d:8d: 53:b9:a2:4e:33:c2:ed:ae:a0:f0:eb:60:86:16:fc:27:a5:5f: 77:cc:bf:69:60:70:8b:ae:1a:8a:56:e0:99:8a:60:28:ff:e5: 24:55:2a:54:53:9e:cc:07:ea:05:c6:33:6d:56:59:74:7e:87: 28:12:31:76:06:23:02:4e:f3:df:b1:b7:78:7c:95:1c:48:ab: f2:69:dc:2d:8a:53:92:40:be:82:c1:0e:e1:8b:2d:12:ea:de: f8:f5:cb:4a:ce:73:cb:d0:c2:e3:aa:53:8d:98:65:47:cd:17: 3e:c1:b4:79:3e:1c:55:bf:34:23:0e:75:5c:7d:bf:4a:23:8d: e1:47:4c:5d:06:de:0c:fb:5d:ee:8f:62:f9:58:a0:9c:97:50: e4:8b:96:ca:c1:2e:6b:2d:cd:73:19:af:f6:60:35:36:96:96: c9:d3:36:2b:96:63:77:59:bb:6e:e5:09:b1:0e:fa:81:30:84: d4:6d:e4:d7:7c:03:94:28:90:73:81:61:3a:a6:d9:a0:7e:a0: 60:8e:ac:23:41:19:f1:df:d6:ac:26:86:69:dc:ee:e6:ee:31: e7:eb:03:35 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUQe4FxvRFCFUQ96zT4mxim5QjjDAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzgxRDYyQkQ1MzZGMDNBMkY4MkZBQzNGNzE5REU1QjNC NUYxOTU1MTAeFw0yNjA1MTkwMjI0NTZaFw0yNzA1MTgwMjI5NTZaMDMxMTAvBgNV BAMTKDU3NkJCNTAxMDk0QkNDQUFGMjUzNkE1NjUyN0EyRjlDQTk2NTY0NDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuUO0Mk4U+ljxYobEwHNdOyDMk q5/hqShXZTsYaC/ZUq3GeMA5VhQSwAx/U9SfaHif8Ep+a2ccdFx9OBk5VsVEHh1a 6kZltSLPY0gmPvUPqLoNc0ZJKR60VTOZ4D0alnN+Y5EiLfrqdGzBMucdCwUNi+Ub U6aDs4ZVrd//b6aL5QYpxEeBzrGoJhL2r04bXXiK5yo8prnLqz95lqSBoo5jctOU ySeFjPHyfVUEGsyv0JVTIksL/V8v3Hd9v1QSHGngFVzvcJmn2U57MA58DFSbuQK+ iR5gCvJy4m+keeRt9VkQUIDaSa7BRRUrElVDkOxlo30oSA3NfYqK9s44TeZFAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUV2u1AQlLzKryU2pWUnovnKllZEYwHwYDVR0j BBgwFoAUeB1ivVNvA6L4L6w/cZ3ls7XxlVEwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzA1NTM5NjA0MTg1MDg4MS8wLzc4MUQ2MkJENTM2RjAzQTJGODJGQUMzRjcxOURF NUIzQjVGMTk1NTEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNzgxRDYyQkQ1MzZGMDNBMkY4MkZBQzNGNzE5REU1QjNCNUYxOTU1MS5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk3MDU1Mzk2MDQxODUwODgxLzAvMzIzMjMzMmUzMjMw MzMyZTM5MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzQzODMwMzgucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BADfywkwDQYJKoZIhvcNAQELBQADggEBAENUBhmvPShU1HKAAWyu+zOWIeaboC5c /SIq2EBTh46VytVNjVO5ok4zwu2uoPDrYIYW/CelX3fMv2lgcIuuGopW4JmKYCj/ 5SRVKlRTnswH6gXGM21WWXR+hygSMXYGIwJO89+xt3h8lRxIq/Jp3C2KU5JAvoLB DuGLLRLq3vj1y0rOc8vQwuOqU42YZUfNFz7BtHk+HFW/NCMOdVx9v0ojjeFHTF0G 3gz7Xe6PYvlYoJyXUOSLlsrBLmstzXMZr/ZgNTaWlsnTNiuWY3dZu27lCbEO+oEw hNRt5Nd8A5QokHOBYTqm2aB+oGCOrCNBGfHf1qwmhmnc7ubuMefrAzU= -----END CERTIFICATE-----Generated at Fri May 29 22:56:33 2026 by rpki-client