$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097387398460866561/0/3230332e3136362e3136352e302f32342d3234203d3e20313338343231.roa File: 3230332e3136362e3136352e302f32342d3234203d3e20313338343231.roa (raw, json) Hash identifier: 3edwUZcx4xVEyYiBLeffA6+bSkvvkeLPADHbe6Flqic= Subject key identifier: 67:82:B8:FC:FB:7F:05:EB:ED:23:14:6F:3A:E6:62:B8:26:B6:BC:E1 Certificate issuer: /CN=9A8AFA7F033956E0425F15B1070A606F5F3E424E Certificate serial: 40FE7DA30B1EBB9F6611AD00319CF45B45955A3A Authority key identifier: 9A:8A:FA:7F:03:39:56:E0:42:5F:15:B1:07:0A:60:6F:5F:3E:42:4E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9A8AFA7F033956E0425F15B1070A606F5F3E424E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097387398460866561/0/3230332e3136362e3136352e302f32342d3234203d3e20313338343231.roa Signing time: Thu 23 Apr 2026 03:04:15 +0000 ROA not before: Thu 23 Apr 2026 02:59:15 +0000 ROA not after: Thu 22 Apr 2027 03:04:15 +0000 asID: 138421 IP address blocks: 203.166.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097387398460866561/0/9A8AFA7F033956E0425F15B1070A606F5F3E424E.crl rsync://rpki-rps.cnnic.cn/repo/A1097387398460866561/0/9A8AFA7F033956E0425F15B1070A606F5F3E424E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9A8AFA7F033956E0425F15B1070A606F5F3E424E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 04:52:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:fe:7d:a3:0b:1e:bb:9f:66:11:ad:00:31:9c:f4:5b:45:95:5a:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A8AFA7F033956E0425F15B1070A606F5F3E424E Validity Not Before: Apr 23 02:59:15 2026 GMT Not After : Apr 22 03:04:15 2027 GMT Subject: CN=6782B8FCFB7F05EBED23146F3AE662B826B6BCE1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:2d:55:2c:c1:4c:bc:65:6c:53:a1:6b:0d:49: 2b:52:29:8d:6b:9a:f9:56:d4:53:3d:3f:60:ce:06: fd:17:22:47:f7:90:34:2e:9c:cb:92:04:f5:ee:52: b3:eb:48:4e:38:09:78:60:e8:b5:b9:f5:d8:49:2e: 6c:17:48:73:b5:a4:67:e1:37:c4:db:83:0d:6d:70: a8:17:7a:24:37:67:89:2e:ec:9b:62:63:db:20:93: e3:d0:d4:17:6d:f8:df:9b:d9:a4:2d:72:96:f0:02: 30:9a:8c:1b:c5:f4:a2:d0:e7:6e:4b:87:60:8e:97: aa:16:eb:a0:9f:25:2d:f0:93:9a:a5:7a:8a:cf:ae: 57:61:3e:c4:5b:c8:62:a4:8a:bb:d6:22:0b:13:12: e5:ec:aa:6c:65:fe:05:04:b7:ec:ac:ca:6f:d8:43: bc:01:01:d6:43:8a:d4:5e:f5:85:30:24:8e:28:4c: b4:07:a1:f5:f7:d7:be:ac:58:aa:2a:f2:15:89:40: 19:3e:79:32:79:4a:2f:84:22:a9:c2:0b:20:13:02: ef:1a:21:26:e0:a1:06:f9:77:aa:20:65:b5:87:fe: da:7b:ca:07:03:2d:47:e8:a7:0b:c9:ed:d6:2d:da: f8:ba:e7:22:66:77:e2:c3:64:b0:71:6e:c0:62:aa: e1:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:82:B8:FC:FB:7F:05:EB:ED:23:14:6F:3A:E6:62:B8:26:B6:BC:E1 X509v3 Authority Key Identifier: keyid:9A:8A:FA:7F:03:39:56:E0:42:5F:15:B1:07:0A:60:6F:5F:3E:42:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097387398460866561/0/9A8AFA7F033956E0425F15B1070A606F5F3E424E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9A8AFA7F033956E0425F15B1070A606F5F3E424E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097387398460866561/0/3230332e3136362e3136352e302f32342d3234203d3e20313338343231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.166.165.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:eb:65:b1:0c:01:6a:5b:3d:d3:72:fa:d6:6c:1c:c2:9f:ea: 5d:0f:af:be:80:01:4b:5f:c1:13:54:35:be:26:94:86:a0:bb: e2:05:cb:f0:9f:bf:ec:8a:ab:9a:ed:b2:38:a6:6c:e9:19:26: ec:ed:8a:f7:97:87:e0:77:fc:99:0e:81:59:cb:07:a6:9b:d9: 82:90:0d:88:3e:e0:7f:dc:ba:df:82:36:f2:4d:8f:fa:7e:8f: d8:a0:6c:b9:85:e6:27:5a:ed:10:6c:04:0b:a1:9e:6b:7d:9f: f0:e7:20:ba:84:f6:81:c6:89:bf:04:6c:b1:1b:34:4b:28:cf: 1c:6b:97:cb:28:a6:31:ba:e7:cd:3d:77:35:d1:ff:c8:97:64: ff:98:35:51:64:54:80:37:44:31:4f:9f:0c:a6:d1:bb:f2:b9: e4:48:48:19:e4:25:0e:8f:02:97:da:47:e6:81:20:d6:5a:ae: 68:d3:01:17:36:9f:82:70:e0:6d:ce:8f:54:99:b5:7c:df:26: 92:da:81:6e:f0:f7:53:7f:66:ba:0d:44:b3:42:75:7d:e3:bd: b3:56:4a:d3:12:09:a5:5d:67:f2:bc:b1:64:45:18:de:81:61: c7:f0:f6:25:b8:29:ba:68:98:71:fb:b2:38:32:8d:a1:d0:83: 38:5e:6e:55 -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUQP59owseu59mEa0AMZz0W0WVWjowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE4QUZBN0YwMzM5NTZFMDQyNUYxNUIxMDcwQTYwNkY1 RjNFNDI0RTAeFw0yNjA0MjMwMjU5MTVaFw0yNzA0MjIwMzA0MTVaMDMxMTAvBgNV BAMTKDY3ODJCOEZDRkI3RjA1RUJFRDIzMTQ2RjNBRTY2MkI4MjZCNkJDRTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQLVUswUy8ZWxToWsNSStSKY1r mvlW1FM9P2DOBv0XIkf3kDQunMuSBPXuUrPrSE44CXhg6LW59dhJLmwXSHO1pGfh N8Tbgw1tcKgXeiQ3Z4ku7JtiY9sgk+PQ1Bdt+N+b2aQtcpbwAjCajBvF9KLQ525L h2COl6oW66CfJS3wk5qleorPrldhPsRbyGKkirvWIgsTEuXsqmxl/gUEt+ysym/Y Q7wBAdZDitRe9YUwJI4oTLQHofX3176sWKoq8hWJQBk+eTJ5Si+EIqnCCyATAu8a ISbgoQb5d6ogZbWH/tp7ygcDLUfopwvJ7dYt2vi65yJmd+LDZLBxbsBiquFjAgMB AAGjggIaMIICFjAdBgNVHQ4EFgQUZ4K4/Pt/BevtIxRvOuZiuCa2vOEwHwYDVR0j BBgwFoAUmor6fwM5VuBCXxWxBwpgb18+Qk4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzM4NzM5ODQ2MDg2NjU2MS8wLzlBOEFGQTdGMDMzOTU2RTA0MjVGMTVCMTA3MEE2 MDZGNUYzRTQyNEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOUE4QUZBN0YwMzM5NTZFMDQyNUYxNUIxMDcwQTYwNkY1RjNFNDI0RS5jZXIw gZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMDk3Mzg3Mzk4NDYwODY2NTYxLzAvMzIzMDMzMmUz MTM2MzYyZTMxMzYzNTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzODM0MzIz MS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMumpTANBgkqhkiG9w0BAQsFAAOCAQEAn+tlsQwBals903L6 1mwcwp/qXQ+vvoABS1/BE1Q1viaUhqC74gXL8J+/7Iqrmu2yOKZs6Rkm7O2K95eH 4Hf8mQ6BWcsHppvZgpANiD7gf9y634I28k2P+n6P2KBsuYXmJ1rtEGwEC6Gea32f 8OcguoT2gcaJvwRssRs0SyjPHGuXyyimMbrnzT13NdH/yJdk/5g1UWRUgDdEMU+f DKbRu/K55EhIGeQlDo8Cl9pH5oEg1lquaNMBFzafgnDgbc6PVJm1fN8mktqBbvD3 U39mug1Es0J1feO9s1ZK0xIJpV1n8ryxZEUY3oFhx/D2JbgpumiYcfuyODKNodCD OF5uVQ== -----END CERTIFICATE-----Generated at Mon Apr 27 11:01:03 2026 by rpki-client