$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097387398460866561/0/3230332e3136362e3137322e302f32342d3234203d3e20313338343231.roa File: 3230332e3136362e3137322e302f32342d3234203d3e20313338343231.roa (raw, json) Hash identifier: m+QXVVRq+pnGZVYYxBadcn/jh4lkl6Fil80uFXW8zDE= Subject key identifier: 2B:70:EA:8B:65:49:92:CF:BF:8B:42:80:3B:BA:B2:F6:CA:E7:14:85 Certificate issuer: /CN=9A8AFA7F033956E0425F15B1070A606F5F3E424E Certificate serial: 60CFA25A863E0EFEE78156B987DE91956F0293E7 Authority key identifier: 9A:8A:FA:7F:03:39:56:E0:42:5F:15:B1:07:0A:60:6F:5F:3E:42:4E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9A8AFA7F033956E0425F15B1070A606F5F3E424E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097387398460866561/0/3230332e3136362e3137322e302f32342d3234203d3e20313338343231.roa Signing time: Thu 23 Apr 2026 03:04:14 +0000 ROA not before: Thu 23 Apr 2026 02:59:14 +0000 ROA not after: Thu 22 Apr 2027 03:04:14 +0000 asID: 138421 IP address blocks: 203.166.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097387398460866561/0/9A8AFA7F033956E0425F15B1070A606F5F3E424E.crl rsync://rpki-rps.cnnic.cn/repo/A1097387398460866561/0/9A8AFA7F033956E0425F15B1070A606F5F3E424E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9A8AFA7F033956E0425F15B1070A606F5F3E424E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 04:52:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:cf:a2:5a:86:3e:0e:fe:e7:81:56:b9:87:de:91:95:6f:02:93:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A8AFA7F033956E0425F15B1070A606F5F3E424E Validity Not Before: Apr 23 02:59:14 2026 GMT Not After : Apr 22 03:04:14 2027 GMT Subject: CN=2B70EA8B654992CFBF8B42803BBAB2F6CAE71485 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:00:ef:31:e1:c8:6f:fb:eb:51:0f:cf:e3:ba: b9:3a:79:be:fe:1a:3c:d8:f0:1a:d6:01:40:49:27: 21:eb:4d:39:9a:6f:35:62:05:1f:fa:4e:42:4d:d7: 2e:5b:5e:f1:53:ac:c0:4e:92:6d:88:03:15:72:46: 45:a0:78:b7:c3:7a:ff:21:73:07:a0:c4:67:cc:12: fb:89:a7:e7:a6:c8:bd:1f:da:cc:c4:1f:f5:cf:81: 64:c0:87:34:be:a9:6e:b3:e5:d1:ad:c7:c8:ec:a2: a9:10:d0:56:99:3a:31:43:07:09:cf:64:ba:90:8a: 3e:ba:1f:0f:d0:65:fd:f7:29:dd:2e:50:fe:c6:39: 10:28:4e:40:e7:19:93:28:db:9a:53:6f:43:59:e7: ce:44:8c:a8:b0:0d:ff:94:4a:ae:b5:a5:db:c5:13: 24:29:02:1d:c9:b2:91:38:81:b4:bf:26:b7:13:b4: 01:da:19:c9:6f:bd:6f:eb:f1:d7:01:48:2d:00:b7: e4:ee:33:34:c2:f2:09:2d:cf:15:59:a1:20:e1:ae: d7:63:8e:53:67:10:a7:5d:4c:7a:e1:a2:ea:88:cc: 36:2a:bd:99:b1:8a:c5:0f:b6:14:1b:49:0f:ff:ca: 84:59:a4:43:dd:79:64:c5:72:d7:f8:c1:f2:4b:6c: 31:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:70:EA:8B:65:49:92:CF:BF:8B:42:80:3B:BA:B2:F6:CA:E7:14:85 X509v3 Authority Key Identifier: keyid:9A:8A:FA:7F:03:39:56:E0:42:5F:15:B1:07:0A:60:6F:5F:3E:42:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097387398460866561/0/9A8AFA7F033956E0425F15B1070A606F5F3E424E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9A8AFA7F033956E0425F15B1070A606F5F3E424E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097387398460866561/0/3230332e3136362e3137322e302f32342d3234203d3e20313338343231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.166.172.0/24 Signature Algorithm: sha256WithRSAEncryption aa:91:db:cd:07:87:d1:af:1e:f3:18:30:ea:94:6f:87:73:5a: 3a:c5:29:97:b3:d1:15:d7:8c:f3:bf:18:f0:38:4b:cf:76:13: 3e:56:8b:32:9a:e4:48:f4:a3:d6:3a:c9:78:5c:82:47:35:10: b8:2e:cd:84:6d:78:5f:49:93:41:e4:f6:64:e8:8a:f1:93:47: 5a:7a:6e:69:55:b0:f3:62:51:12:b5:4a:43:65:2c:85:5d:ec: f0:38:88:1b:4c:fb:bc:4e:80:41:22:b2:29:2e:ee:db:6c:1a: b7:76:ec:3d:bf:4a:cc:20:a9:9b:35:2b:4f:f5:45:56:d8:1a: 57:6b:a0:ee:a2:6a:0d:38:85:35:11:8c:23:93:ef:6f:79:a2: 79:d0:62:05:81:22:67:72:fd:1b:5a:e5:81:91:19:b3:fc:d7: c6:b3:56:b7:11:2a:38:fd:64:99:fe:31:c9:49:b1:d6:bb:2d: 82:db:44:33:d1:db:e1:b8:4b:c8:2a:63:e2:9e:27:29:56:a2: c7:0d:4b:31:22:7a:5a:39:f1:a8:b9:dd:22:0f:da:a7:c1:28: ac:b1:65:2e:87:9d:2a:41:0d:8c:c1:8c:57:53:1c:b3:f2:65: 39:a3:48:37:4e:65:2f:cc:e5:81:ce:2e:d4:1e:be:0e:19:ed: b4:90:e3:6c -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUYM+iWoY+Dv7ngVa5h96RlW8Ck+cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE4QUZBN0YwMzM5NTZFMDQyNUYxNUIxMDcwQTYwNkY1 RjNFNDI0RTAeFw0yNjA0MjMwMjU5MTRaFw0yNzA0MjIwMzA0MTRaMDMxMTAvBgNV BAMTKDJCNzBFQThCNjU0OTkyQ0ZCRjhCNDI4MDNCQkFCMkY2Q0FFNzE0ODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFAO8x4chv++tRD8/jurk6eb7+ GjzY8BrWAUBJJyHrTTmabzViBR/6TkJN1y5bXvFTrMBOkm2IAxVyRkWgeLfDev8h cwegxGfMEvuJp+emyL0f2szEH/XPgWTAhzS+qW6z5dGtx8jsoqkQ0FaZOjFDBwnP ZLqQij66Hw/QZf33Kd0uUP7GORAoTkDnGZMo25pTb0NZ585EjKiwDf+USq61pdvF EyQpAh3JspE4gbS/JrcTtAHaGclvvW/r8dcBSC0At+TuMzTC8gktzxVZoSDhrtdj jlNnEKddTHrhouqIzDYqvZmxisUPthQbSQ//yoRZpEPdeWTFctf4wfJLbDG5AgMB AAGjggIaMIICFjAdBgNVHQ4EFgQUK3Dqi2VJks+/i0KAO7qy9srnFIUwHwYDVR0j BBgwFoAUmor6fwM5VuBCXxWxBwpgb18+Qk4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzM4NzM5ODQ2MDg2NjU2MS8wLzlBOEFGQTdGMDMzOTU2RTA0MjVGMTVCMTA3MEE2 MDZGNUYzRTQyNEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOUE4QUZBN0YwMzM5NTZFMDQyNUYxNUIxMDcwQTYwNkY1RjNFNDI0RS5jZXIw gZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMDk3Mzg3Mzk4NDYwODY2NTYxLzAvMzIzMDMzMmUz MTM2MzYyZTMxMzczMjJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzODM0MzIz MS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMumrDANBgkqhkiG9w0BAQsFAAOCAQEAqpHbzQeH0a8e8xgw 6pRvh3NaOsUpl7PRFdeM878Y8DhLz3YTPlaLMprkSPSj1jrJeFyCRzUQuC7NhG14 X0mTQeT2ZOiK8ZNHWnpuaVWw82JRErVKQ2UshV3s8DiIG0z7vE6AQSKyKS7u22wa t3bsPb9KzCCpmzUrT/VFVtgaV2ug7qJqDTiFNRGMI5Pvb3miedBiBYEiZ3L9G1rl gZEZs/zXxrNWtxEqOP1kmf4xyUmx1rstgttEM9Hb4bhLyCpj4p4nKVaixw1LMSJ6 WjnxqLndIg/ap8EorLFlLoedKkENjMGMV1Mcs/JlOaNIN05lL8zlgc4u1B6+Dhnt tJDjbA== -----END CERTIFICATE-----Generated at Mon Apr 27 11:01:03 2026 by rpki-client