$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097387398460866561/0/3230332e3136362e3138372e302f32342d3234203d3e20313338343231.roa File: 3230332e3136362e3138372e302f32342d3234203d3e20313338343231.roa (raw, json) Hash identifier: DmPzkj2ONNmY/aE+/swnRzAMwTlM99eK/2yhU8YPFwM= Subject key identifier: BE:A1:8D:F4:63:E8:64:5C:33:78:76:8B:17:AC:40:A9:AF:9C:4F:D6 Certificate issuer: /CN=9A8AFA7F033956E0425F15B1070A606F5F3E424E Certificate serial: 62E8D3EF6AF53291FFC1BEC296D69DCC80E50FEF Authority key identifier: 9A:8A:FA:7F:03:39:56:E0:42:5F:15:B1:07:0A:60:6F:5F:3E:42:4E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9A8AFA7F033956E0425F15B1070A606F5F3E424E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097387398460866561/0/3230332e3136362e3138372e302f32342d3234203d3e20313338343231.roa Signing time: Thu 23 Apr 2026 03:04:14 +0000 ROA not before: Thu 23 Apr 2026 02:59:14 +0000 ROA not after: Thu 22 Apr 2027 03:04:14 +0000 asID: 138421 IP address blocks: 203.166.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097387398460866561/0/9A8AFA7F033956E0425F15B1070A606F5F3E424E.crl rsync://rpki-rps.cnnic.cn/repo/A1097387398460866561/0/9A8AFA7F033956E0425F15B1070A606F5F3E424E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9A8AFA7F033956E0425F15B1070A606F5F3E424E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 04:52:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:e8:d3:ef:6a:f5:32:91:ff:c1:be:c2:96:d6:9d:cc:80:e5:0f:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A8AFA7F033956E0425F15B1070A606F5F3E424E Validity Not Before: Apr 23 02:59:14 2026 GMT Not After : Apr 22 03:04:14 2027 GMT Subject: CN=BEA18DF463E8645C3378768B17AC40A9AF9C4FD6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:4c:1a:bc:0c:16:3b:09:c3:5c:89:08:87:8e: ce:e8:ca:54:2c:75:f3:c6:aa:72:a2:33:e7:92:20: f8:3e:ff:d5:6a:76:1a:c5:d3:47:30:9f:ae:33:c4: 7e:4a:73:26:d9:21:e4:09:27:32:3b:60:dd:d2:4b: 0f:30:01:01:f6:51:b9:82:4e:2f:50:1f:2b:55:6a: 2f:af:ee:7b:1a:47:86:ce:28:c2:c5:22:04:a8:07: fc:11:36:ef:9e:3c:46:af:9f:34:9c:0f:94:38:d2: f1:58:f6:70:fa:5b:18:b9:1e:00:c3:83:00:c5:d0: ce:e1:c8:de:0f:34:8d:41:a1:c4:5c:bc:2b:2c:cb: 43:c1:fb:3f:22:56:ac:94:20:40:0f:21:6a:1d:a7: 6d:39:78:cf:7a:95:dd:fa:bb:c8:8e:30:32:d0:8f: 1a:88:2e:21:0a:06:f8:95:39:b1:2f:79:79:c1:e5: 99:da:09:6d:e2:c9:27:05:f4:6e:b1:04:6a:d1:7f: 82:00:fd:44:10:ed:3b:f5:33:9c:63:14:26:41:1b: 6e:c3:fc:b6:31:59:c9:5e:fa:db:df:81:8d:2f:d3: fb:07:be:9b:d3:7a:25:2d:62:8f:8b:eb:2a:fd:cd: f9:d7:5a:3a:2f:02:c0:00:a9:9a:bb:6d:bc:0c:34: 54:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:A1:8D:F4:63:E8:64:5C:33:78:76:8B:17:AC:40:A9:AF:9C:4F:D6 X509v3 Authority Key Identifier: keyid:9A:8A:FA:7F:03:39:56:E0:42:5F:15:B1:07:0A:60:6F:5F:3E:42:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097387398460866561/0/9A8AFA7F033956E0425F15B1070A606F5F3E424E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9A8AFA7F033956E0425F15B1070A606F5F3E424E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097387398460866561/0/3230332e3136362e3138372e302f32342d3234203d3e20313338343231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.166.187.0/24 Signature Algorithm: sha256WithRSAEncryption 13:6a:22:da:cc:1f:de:86:45:67:f0:9a:8d:e1:11:32:b3:00: 25:45:99:4b:56:1e:53:8e:64:21:76:34:33:64:0e:cf:07:86: d6:fc:74:62:63:c1:45:82:6b:ea:ea:14:99:bc:63:16:25:02: bd:00:33:43:59:91:de:52:cb:0b:c6:1d:f2:26:3c:cd:f2:83: 77:e8:2a:3c:9c:bf:89:21:4f:93:fc:4c:47:cb:cb:5c:80:93: 62:3b:8f:ef:af:6f:19:ff:35:b8:d5:e2:c1:77:68:ad:a7:90: 13:f7:51:b8:0c:21:c4:e6:02:95:e3:05:af:c4:b0:4c:ea:79: 50:99:4f:36:cc:82:c1:f5:65:92:70:eb:49:dd:51:b5:03:e7: 3c:fa:a7:d0:8e:8c:67:97:05:8a:3a:87:82:85:07:67:01:69: 47:19:8b:f9:5f:c6:8e:9a:56:e8:f5:51:16:e7:a7:bc:71:33: 4e:8d:2f:3f:69:f8:ab:69:ec:f9:c2:99:5d:5c:f9:20:18:c8: 91:ec:40:6e:6b:3d:9d:eb:85:eb:e7:66:40:f6:dc:36:24:50: 2e:dd:db:8d:3b:b2:bb:28:b0:bb:e5:05:7a:98:f2:ab:f1:d4: 5c:6b:44:bd:94:b8:ee:4f:1c:c4:90:30:e3:bb:38:3b:e9:a7: 36:65:09:ce -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUYujT72r1MpH/wb7CltadzIDlD+8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE4QUZBN0YwMzM5NTZFMDQyNUYxNUIxMDcwQTYwNkY1 RjNFNDI0RTAeFw0yNjA0MjMwMjU5MTRaFw0yNzA0MjIwMzA0MTRaMDMxMTAvBgNV BAMTKEJFQTE4REY0NjNFODY0NUMzMzc4NzY4QjE3QUM0MEE5QUY5QzRGRDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0TBq8DBY7CcNciQiHjs7oylQs dfPGqnKiM+eSIPg+/9VqdhrF00cwn64zxH5KcybZIeQJJzI7YN3SSw8wAQH2UbmC Ti9QHytVai+v7nsaR4bOKMLFIgSoB/wRNu+ePEavnzScD5Q40vFY9nD6Wxi5HgDD gwDF0M7hyN4PNI1BocRcvCssy0PB+z8iVqyUIEAPIWodp205eM96ld36u8iOMDLQ jxqILiEKBviVObEveXnB5ZnaCW3iyScF9G6xBGrRf4IA/UQQ7Tv1M5xjFCZBG27D /LYxWcle+tvfgY0v0/sHvpvTeiUtYo+L6yr9zfnXWjovAsAAqZq7bbwMNFT3AgMB AAGjggIaMIICFjAdBgNVHQ4EFgQUvqGN9GPoZFwzeHaLF6xAqa+cT9YwHwYDVR0j BBgwFoAUmor6fwM5VuBCXxWxBwpgb18+Qk4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzM4NzM5ODQ2MDg2NjU2MS8wLzlBOEFGQTdGMDMzOTU2RTA0MjVGMTVCMTA3MEE2 MDZGNUYzRTQyNEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOUE4QUZBN0YwMzM5NTZFMDQyNUYxNUIxMDcwQTYwNkY1RjNFNDI0RS5jZXIw gZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMDk3Mzg3Mzk4NDYwODY2NTYxLzAvMzIzMDMzMmUz MTM2MzYyZTMxMzgzNzJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzODM0MzIz MS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMumuzANBgkqhkiG9w0BAQsFAAOCAQEAE2oi2swf3oZFZ/Ca jeERMrMAJUWZS1YeU45kIXY0M2QOzweG1vx0YmPBRYJr6uoUmbxjFiUCvQAzQ1mR 3lLLC8Yd8iY8zfKDd+gqPJy/iSFPk/xMR8vLXICTYjuP769vGf81uNXiwXdoraeQ E/dRuAwhxOYCleMFr8SwTOp5UJlPNsyCwfVlknDrSd1RtQPnPPqn0I6MZ5cFijqH goUHZwFpRxmL+V/GjppW6PVRFuenvHEzTo0vP2n4q2ns+cKZXVz5IBjIkexAbms9 neuF6+dmQPbcNiRQLt3bjTuyuyiwu+UFepjyq/HUXGtEvZS47k8cxJAw47s4O+mn NmUJzg== -----END CERTIFICATE-----Generated at Mon Apr 27 11:02:06 2026 by rpki-client