$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097387398460866561/0/3230332e3136362e3138382e302f32342d3234203d3e20313338343231.roa File: 3230332e3136362e3138382e302f32342d3234203d3e20313338343231.roa (raw, json) Hash identifier: WvFgghg9fFFyAy3Jy7S8A3EQMAWQl7P4hb8z9hnB24Y= Subject key identifier: DF:67:B1:E0:12:20:FC:9B:02:D5:75:FA:E0:E6:EC:0B:AA:56:51:E1 Certificate issuer: /CN=9A8AFA7F033956E0425F15B1070A606F5F3E424E Certificate serial: 3B952CC4475D8E2C9AD18CAA8E1DF237ED9315F8 Authority key identifier: 9A:8A:FA:7F:03:39:56:E0:42:5F:15:B1:07:0A:60:6F:5F:3E:42:4E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9A8AFA7F033956E0425F15B1070A606F5F3E424E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097387398460866561/0/3230332e3136362e3138382e302f32342d3234203d3e20313338343231.roa Signing time: Thu 23 Apr 2026 03:04:15 +0000 ROA not before: Thu 23 Apr 2026 02:59:15 +0000 ROA not after: Thu 22 Apr 2027 03:04:15 +0000 asID: 138421 IP address blocks: 203.166.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097387398460866561/0/9A8AFA7F033956E0425F15B1070A606F5F3E424E.crl rsync://rpki-rps.cnnic.cn/repo/A1097387398460866561/0/9A8AFA7F033956E0425F15B1070A606F5F3E424E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9A8AFA7F033956E0425F15B1070A606F5F3E424E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 04:52:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:95:2c:c4:47:5d:8e:2c:9a:d1:8c:aa:8e:1d:f2:37:ed:93:15:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A8AFA7F033956E0425F15B1070A606F5F3E424E Validity Not Before: Apr 23 02:59:15 2026 GMT Not After : Apr 22 03:04:15 2027 GMT Subject: CN=DF67B1E01220FC9B02D575FAE0E6EC0BAA5651E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:db:76:f4:a5:5c:a2:d9:c4:3b:ba:46:45:b7: 68:1f:6c:74:2f:09:05:83:23:fe:52:ff:e1:fd:fb: 4c:33:67:2d:b1:c0:96:c8:f1:1b:c4:42:d4:63:f4: 05:91:3b:fd:f3:9d:f2:d8:3f:52:17:5e:08:89:85: 39:0c:fa:0a:8d:b6:28:0d:35:bf:c4:17:47:42:b7: e5:72:56:57:fe:52:43:5f:3e:b5:35:d9:d3:09:1f: c8:cc:02:d6:d4:9c:b1:4f:14:a6:72:de:47:12:49: 48:a3:b0:89:12:7f:13:22:29:4d:1b:a9:11:14:11: 15:8f:5f:7f:72:10:72:7b:e9:3f:e2:ca:74:50:95: 19:21:d6:ca:a5:c1:5e:68:12:f2:c9:85:7f:14:c1: b3:9d:46:ef:e7:fd:f2:2f:35:42:50:1a:7c:bf:ba: f8:86:14:8b:cd:6e:6d:35:cc:97:0a:58:c3:76:54: ff:f2:0b:9e:ab:cc:3d:95:73:6b:b1:18:ee:62:3e: 34:2f:93:1c:32:9d:1e:56:16:df:c8:2c:ce:c3:64: a1:49:62:02:28:09:b2:52:af:78:27:90:48:0f:80: 80:cf:c9:cd:d0:ed:89:0d:82:54:54:91:a4:3a:14: d1:6f:13:f3:ef:22:c5:ef:41:9d:de:64:37:25:c8: a1:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:67:B1:E0:12:20:FC:9B:02:D5:75:FA:E0:E6:EC:0B:AA:56:51:E1 X509v3 Authority Key Identifier: keyid:9A:8A:FA:7F:03:39:56:E0:42:5F:15:B1:07:0A:60:6F:5F:3E:42:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097387398460866561/0/9A8AFA7F033956E0425F15B1070A606F5F3E424E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9A8AFA7F033956E0425F15B1070A606F5F3E424E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097387398460866561/0/3230332e3136362e3138382e302f32342d3234203d3e20313338343231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.166.188.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:73:ad:7f:97:db:ec:3e:98:2e:12:94:f8:8d:f3:b6:2c:11: 5f:5c:40:73:7d:69:98:da:30:84:fc:2e:b3:3b:75:0e:ce:e7: 50:9c:47:74:8f:9a:12:00:9a:cb:f4:44:4e:e9:dd:62:21:30: 15:54:af:2d:eb:54:b6:f6:47:a3:99:a1:c2:d9:65:fc:f6:bf: 59:bf:57:dc:0c:67:ad:24:01:7f:96:db:7d:68:85:5b:4d:ea: 6d:ef:5f:fd:b2:17:50:50:c1:7f:62:ca:ee:4b:40:24:cb:a1: 6f:e3:97:1e:4d:71:c8:63:57:c9:e5:28:88:2a:67:40:eb:d6: 34:3e:ab:40:06:a9:67:e7:f1:ab:50:f7:80:14:3b:63:e7:9b: dc:12:b6:37:7b:a6:3a:54:29:35:ba:78:79:f4:c8:d1:0c:d7: db:c9:49:f5:d2:ca:05:69:89:a2:52:25:13:42:db:44:f7:4f: aa:49:10:c7:a1:bd:cf:96:52:ed:6a:34:1e:08:88:f9:67:73: 47:3a:b7:0a:80:ed:93:35:5e:22:ad:59:c8:76:67:1f:42:9a: 18:fc:8a:53:09:43:82:62:92:03:8d:aa:eb:63:d5:4d:ae:0e: c3:d3:cc:59:1c:99:b3:5b:8d:97:22:ad:a5:26:d9:09:cd:4c: de:c5:df:d7 -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUO5UsxEddjiya0Yyqjh3yN+2TFfgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE4QUZBN0YwMzM5NTZFMDQyNUYxNUIxMDcwQTYwNkY1 RjNFNDI0RTAeFw0yNjA0MjMwMjU5MTVaFw0yNzA0MjIwMzA0MTVaMDMxMTAvBgNV BAMTKERGNjdCMUUwMTIyMEZDOUIwMkQ1NzVGQUUwRTZFQzBCQUE1NjUxRTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/23b0pVyi2cQ7ukZFt2gfbHQv CQWDI/5S/+H9+0wzZy2xwJbI8RvEQtRj9AWRO/3znfLYP1IXXgiJhTkM+gqNtigN Nb/EF0dCt+VyVlf+UkNfPrU12dMJH8jMAtbUnLFPFKZy3kcSSUijsIkSfxMiKU0b qREUERWPX39yEHJ76T/iynRQlRkh1sqlwV5oEvLJhX8UwbOdRu/n/fIvNUJQGny/ uviGFIvNbm01zJcKWMN2VP/yC56rzD2Vc2uxGO5iPjQvkxwynR5WFt/ILM7DZKFJ YgIoCbJSr3gnkEgPgIDPyc3Q7YkNglRUkaQ6FNFvE/PvIsXvQZ3eZDclyKFRAgMB AAGjggIaMIICFjAdBgNVHQ4EFgQU32ex4BIg/JsC1XX64ObsC6pWUeEwHwYDVR0j BBgwFoAUmor6fwM5VuBCXxWxBwpgb18+Qk4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzM4NzM5ODQ2MDg2NjU2MS8wLzlBOEFGQTdGMDMzOTU2RTA0MjVGMTVCMTA3MEE2 MDZGNUYzRTQyNEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOUE4QUZBN0YwMzM5NTZFMDQyNUYxNUIxMDcwQTYwNkY1RjNFNDI0RS5jZXIw gZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMDk3Mzg3Mzk4NDYwODY2NTYxLzAvMzIzMDMzMmUz MTM2MzYyZTMxMzgzODJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzODM0MzIz MS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMumvDANBgkqhkiG9w0BAQsFAAOCAQEAH3Otf5fb7D6YLhKU +I3ztiwRX1xAc31pmNowhPwuszt1Ds7nUJxHdI+aEgCay/RETundYiEwFVSvLetU tvZHo5mhwtll/Pa/Wb9X3AxnrSQBf5bbfWiFW03qbe9f/bIXUFDBf2LK7ktAJMuh b+OXHk1xyGNXyeUoiCpnQOvWND6rQAapZ+fxq1D3gBQ7Y+eb3BK2N3umOlQpNbp4 efTI0QzX28lJ9dLKBWmJolIlE0LbRPdPqkkQx6G9z5ZS7Wo0HgiI+WdzRzq3CoDt kzVeIq1ZyHZnH0KaGPyKUwlDgmKSA42q62PVTa4Ow9PMWRyZs1uNlyKtpSbZCc1M 3sXf1w== -----END CERTIFICATE-----Generated at Mon Apr 27 11:02:05 2026 by rpki-client