$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097387398460866561/0/3230332e3136362e3136312e302f32342d3234203d3e20313338343231.roa File: 3230332e3136362e3136312e302f32342d3234203d3e20313338343231.roa (raw, json) Hash identifier: +ZUvV31m6HWJsQhb7Hj/dahoq9brtrbMO+TGlvGeU9A= Subject key identifier: B7:F2:E8:1A:09:D0:8B:5B:47:BA:D4:5E:AF:B9:89:7B:1B:27:B1:24 Certificate issuer: /CN=9A8AFA7F033956E0425F15B1070A606F5F3E424E Certificate serial: 1CD64E70B786074A677EB7B083333E316C7142FC Authority key identifier: 9A:8A:FA:7F:03:39:56:E0:42:5F:15:B1:07:0A:60:6F:5F:3E:42:4E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9A8AFA7F033956E0425F15B1070A606F5F3E424E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097387398460866561/0/3230332e3136362e3136312e302f32342d3234203d3e20313338343231.roa Signing time: Fri 24 Apr 2026 01:24:08 +0000 ROA not before: Fri 24 Apr 2026 01:19:08 +0000 ROA not after: Fri 23 Apr 2027 01:24:08 +0000 asID: 138421 IP address blocks: 203.166.161.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097387398460866561/0/9A8AFA7F033956E0425F15B1070A606F5F3E424E.crl rsync://rpki-rps.cnnic.cn/repo/A1097387398460866561/0/9A8AFA7F033956E0425F15B1070A606F5F3E424E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9A8AFA7F033956E0425F15B1070A606F5F3E424E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 04:52:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:d6:4e:70:b7:86:07:4a:67:7e:b7:b0:83:33:3e:31:6c:71:42:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A8AFA7F033956E0425F15B1070A606F5F3E424E Validity Not Before: Apr 24 01:19:08 2026 GMT Not After : Apr 23 01:24:08 2027 GMT Subject: CN=B7F2E81A09D08B5B47BAD45EAFB9897B1B27B124 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:61:c1:d1:9c:8a:86:52:de:dc:f7:cb:20:35: af:90:d3:45:36:ef:5d:f6:b3:04:c2:0e:32:06:9c: 4c:8b:bb:fe:ca:b0:98:84:52:f4:c8:f7:6a:69:d8: 68:78:ab:38:14:6c:e4:10:29:34:db:44:17:99:2d: 3a:0f:c8:40:77:d8:9d:c4:c3:54:0f:ec:4b:ed:29: 41:1d:47:64:d0:f4:4d:a9:2c:37:10:2e:9f:c1:29: 9e:db:87:21:98:df:58:c2:1f:ec:54:f0:48:a1:7e: 0d:ea:fd:b1:c4:1e:14:66:8e:4f:e0:4d:e5:ab:cb: b7:7f:c8:10:eb:ac:7e:06:a9:fe:c7:61:17:b8:33: 3b:39:b4:da:99:f2:3d:b8:ad:22:4e:ae:fd:24:5b: 40:2b:3a:6d:e7:d3:c1:59:c4:3d:0a:01:a0:22:7a: 84:99:ec:e4:56:99:41:8e:20:d9:1a:b3:8a:9a:55: 75:c1:4c:a7:aa:c5:1a:0e:70:dc:09:b8:59:ac:21: 52:8c:c1:a6:21:f6:2a:45:66:48:b1:06:66:98:0f: 8b:02:35:86:48:ef:4d:18:6b:54:97:77:5a:53:2b: 36:23:45:dc:85:4e:2a:b1:a7:a0:8a:ec:41:f6:8d: f6:f8:90:6b:62:40:0d:fd:50:1e:00:4f:e1:15:80: e6:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:F2:E8:1A:09:D0:8B:5B:47:BA:D4:5E:AF:B9:89:7B:1B:27:B1:24 X509v3 Authority Key Identifier: keyid:9A:8A:FA:7F:03:39:56:E0:42:5F:15:B1:07:0A:60:6F:5F:3E:42:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097387398460866561/0/9A8AFA7F033956E0425F15B1070A606F5F3E424E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9A8AFA7F033956E0425F15B1070A606F5F3E424E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097387398460866561/0/3230332e3136362e3136312e302f32342d3234203d3e20313338343231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.166.161.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:67:7f:dd:18:f5:ee:fe:3f:54:4d:bb:67:ec:0c:19:13:66: af:00:ad:05:f8:db:b7:2e:51:e6:7a:e6:ac:0a:35:21:f0:a9: d1:35:7d:f7:67:16:92:e3:50:08:dc:37:be:b3:1d:2f:f8:fd: 75:ac:a8:82:37:87:bf:0a:53:f1:f0:6a:e9:44:08:d2:1d:b6: 9d:2c:07:d0:ba:38:32:92:13:d3:94:05:10:24:a7:0d:18:80: aa:b2:c6:e4:00:97:f5:bb:c1:d4:b1:dd:ee:c9:1d:23:72:5f: f4:9d:c7:f4:a1:21:ba:74:95:1c:2b:d4:3f:c9:a2:44:f9:42: c0:52:a3:02:ae:8b:8c:03:85:52:d4:c6:5d:05:a3:d3:8c:49: 61:8a:d9:ad:e7:e4:02:41:af:01:33:8b:1b:54:d0:9b:86:cb: 6f:f8:d0:4e:74:1a:5b:79:29:d8:ad:cc:89:b8:d3:2b:e9:0e: fe:d7:68:76:fe:a1:da:d9:89:73:b8:28:24:7c:99:82:d6:93: e8:33:2a:34:b5:2c:04:1d:13:c2:70:4a:62:06:1b:13:6c:a3: 50:e0:9f:a1:1d:fd:c1:c4:63:f7:ac:ef:18:91:6a:80:06:6f: 48:d5:c0:ee:e4:25:bc:9f:ba:4e:c4:5f:c9:1a:28:5a:ee:74: 25:c7:13:d1 -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUHNZOcLeGB0pnfrewgzM+MWxxQvwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE4QUZBN0YwMzM5NTZFMDQyNUYxNUIxMDcwQTYwNkY1 RjNFNDI0RTAeFw0yNjA0MjQwMTE5MDhaFw0yNzA0MjMwMTI0MDhaMDMxMTAvBgNV BAMTKEI3RjJFODFBMDlEMDhCNUI0N0JBRDQ1RUFGQjk4OTdCMUIyN0IxMjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoYcHRnIqGUt7c98sgNa+Q00U2 7132swTCDjIGnEyLu/7KsJiEUvTI92pp2Gh4qzgUbOQQKTTbRBeZLToPyEB32J3E w1QP7EvtKUEdR2TQ9E2pLDcQLp/BKZ7bhyGY31jCH+xU8Eihfg3q/bHEHhRmjk/g TeWry7d/yBDrrH4Gqf7HYRe4Mzs5tNqZ8j24rSJOrv0kW0ArOm3n08FZxD0KAaAi eoSZ7ORWmUGOINkas4qaVXXBTKeqxRoOcNwJuFmsIVKMwaYh9ipFZkixBmaYD4sC NYZI700Ya1SXd1pTKzYjRdyFTiqxp6CK7EH2jfb4kGtiQA39UB4AT+EVgObZAgMB AAGjggIaMIICFjAdBgNVHQ4EFgQUt/LoGgnQi1tHutRer7mJexsnsSQwHwYDVR0j BBgwFoAUmor6fwM5VuBCXxWxBwpgb18+Qk4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzM4NzM5ODQ2MDg2NjU2MS8wLzlBOEFGQTdGMDMzOTU2RTA0MjVGMTVCMTA3MEE2 MDZGNUYzRTQyNEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOUE4QUZBN0YwMzM5NTZFMDQyNUYxNUIxMDcwQTYwNkY1RjNFNDI0RS5jZXIw gZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMDk3Mzg3Mzk4NDYwODY2NTYxLzAvMzIzMDMzMmUz MTM2MzYyZTMxMzYzMTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzODM0MzIz MS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMumoTANBgkqhkiG9w0BAQsFAAOCAQEAL2d/3Rj17v4/VE27 Z+wMGRNmrwCtBfjbty5R5nrmrAo1IfCp0TV992cWkuNQCNw3vrMdL/j9dayogjeH vwpT8fBq6UQI0h22nSwH0Lo4MpIT05QFECSnDRiAqrLG5ACX9bvB1LHd7skdI3Jf 9J3H9KEhunSVHCvUP8miRPlCwFKjAq6LjAOFUtTGXQWj04xJYYrZrefkAkGvATOL G1TQm4bLb/jQTnQaW3kp2K3MibjTK+kO/tdodv6h2tmJc7goJHyZgtaT6DMqNLUs BB0TwnBKYgYbE2yjUOCfoR39wcRj96zvGJFqgAZvSNXA7uQlvJ+6TsRfyRooWu50 JccT0Q== -----END CERTIFICATE-----Generated at Mon Apr 27 11:01:04 2026 by rpki-client