$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1104968095178424325/0/3230322e3138392e302e302f32322d3232203d3e2030.roa File: 3230322e3138392e302e302f32322d3232203d3e2030.roa (raw, json) Hash identifier: eGONjzo8uSWbtDzYQe2V6Q+IAVLW43fp8m2gPK9MrYI= Subject key identifier: 03:8D:F6:04:45:FA:71:5E:64:B8:9F:ED:B5:D7:A7:F0:B8:F6:7C:5E Certificate issuer: /CN=921E7CCEFADC9A05BFBE8A8B9EED4C95D4BA75EB Certificate serial: 5E30AEF87D0888EE03705A8342DEC6E269252A60 Authority key identifier: 92:1E:7C:CE:FA:DC:9A:05:BF:BE:8A:8B:9E:ED:4C:95:D4:BA:75:EB Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/921E7CCEFADC9A05BFBE8A8B9EED4C95D4BA75EB.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1104968095178424325/0/3230322e3138392e302e302f32322d3232203d3e2030.roa Signing time: Wed 20 May 2026 04:10:38 +0000 ROA not before: Wed 20 May 2026 04:05:38 +0000 ROA not after: Wed 19 May 2027 04:10:38 +0000 asID: 0 IP address blocks: 202.189.0.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1104968095178424325/0/921E7CCEFADC9A05BFBE8A8B9EED4C95D4BA75EB.crl rsync://rpki-rps.cnnic.cn/repo/A1104968095178424325/0/921E7CCEFADC9A05BFBE8A8B9EED4C95D4BA75EB.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/921E7CCEFADC9A05BFBE8A8B9EED4C95D4BA75EB.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 May 2026 02:27:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:30:ae:f8:7d:08:88:ee:03:70:5a:83:42:de:c6:e2:69:25:2a:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=921E7CCEFADC9A05BFBE8A8B9EED4C95D4BA75EB Validity Not Before: May 20 04:05:38 2026 GMT Not After : May 19 04:10:38 2027 GMT Subject: CN=038DF60445FA715E64B89FEDB5D7A7F0B8F67C5E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:1e:9b:c1:52:e9:ad:59:66:c4:d6:d4:5f:d5: 5d:94:a9:3e:07:48:fa:17:c8:3d:c5:30:4b:e1:94: 69:7c:33:5c:39:c3:7d:f8:28:2f:4f:64:01:6a:38: 07:00:44:48:ab:ab:68:ae:05:38:c8:6f:76:88:5b: 6b:7a:ef:90:bb:5a:65:8d:8e:f3:fb:a5:5b:15:0d: 09:d2:d8:f9:b4:9e:01:c8:9a:09:61:88:87:a8:58: 9f:9a:76:08:89:d6:31:93:cc:46:90:a9:c7:50:a5: 0d:ac:af:b4:4b:d7:69:a4:81:e9:72:e0:0a:f6:be: 86:d0:f3:6a:05:74:4e:82:85:5c:06:63:b8:c3:1d: 55:0b:e4:5d:dd:02:dd:ca:ba:e3:fa:e0:2a:70:70: c9:1f:a2:a5:cb:3c:e7:ca:5d:9c:35:72:1e:75:b4: 8f:46:c6:7c:58:bf:01:62:38:fa:8b:ca:60:15:fa: 70:dd:88:dc:2f:c9:14:0a:f9:51:8b:68:b7:e5:8d: b3:76:55:fd:d3:77:52:60:42:c4:4e:b1:b6:ac:c2: 36:c0:41:6c:c0:e6:a1:78:93:93:16:a4:7d:ef:ba: 64:e6:9b:62:aa:15:4e:77:94:32:08:c5:c9:44:1e: 2d:17:86:7d:77:3c:6a:42:8c:3e:02:06:da:ee:96: 46:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:8D:F6:04:45:FA:71:5E:64:B8:9F:ED:B5:D7:A7:F0:B8:F6:7C:5E X509v3 Authority Key Identifier: keyid:92:1E:7C:CE:FA:DC:9A:05:BF:BE:8A:8B:9E:ED:4C:95:D4:BA:75:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1104968095178424325/0/921E7CCEFADC9A05BFBE8A8B9EED4C95D4BA75EB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/921E7CCEFADC9A05BFBE8A8B9EED4C95D4BA75EB.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1104968095178424325/0/3230322e3138392e302e302f32322d3232203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.189.0.0/22 Signature Algorithm: sha256WithRSAEncryption 60:a9:c2:13:97:59:a0:55:42:87:2b:14:ca:f7:23:43:2f:d4: 77:45:2b:44:5d:5a:8d:3a:6a:bb:10:91:d3:33:19:75:21:62: 0b:78:83:d2:73:25:ec:64:5f:ea:f2:99:aa:a7:80:72:85:9d: 9a:97:62:30:19:b2:6e:1e:51:e5:cc:8a:12:f7:fa:3b:3f:82: 42:9d:ba:0b:eb:a2:4c:7d:02:1b:94:a2:0f:6f:ce:b6:db:da: a6:9e:e7:1d:0b:70:97:22:ea:a7:cd:11:e5:c4:ec:88:bb:9a: 2a:ff:92:47:91:ef:72:22:bb:e8:71:bb:2c:0c:c4:ad:c7:37: a7:20:de:18:32:47:25:32:ab:a5:67:ec:79:08:a9:c2:a0:aa: 8b:ca:69:1a:b2:1d:33:49:88:3f:6f:89:bd:bb:85:26:a2:d0: f1:5f:1f:fd:30:f3:aa:79:b1:86:f8:3b:12:fe:00:52:95:bd: 86:82:91:d4:3d:68:ab:61:a4:89:f8:d6:35:74:6f:8a:af:67: 08:c9:34:59:87:6a:01:a5:4d:35:9e:78:8b:7c:ac:c4:60:bf: 3a:9f:bb:ab:42:4d:37:ae:32:6c:94:9a:57:8e:0f:e9:e4:7d: 36:15:60:fb:d2:91:ef:2e:15:91:76:b6:f6:9f:a8:a3:fd:24: f0:60:35:fa -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgIUXjCu+H0IiO4DcFqDQt7G4mklKmAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIxRTdDQ0VGQURDOUEwNUJGQkU4QThCOUVFRDRDOTVE NEJBNzVFQjAeFw0yNjA1MjAwNDA1MzhaFw0yNzA1MTkwNDEwMzhaMDMxMTAvBgNV BAMTKDAzOERGNjA0NDVGQTcxNUU2NEI4OUZFREI1RDdBN0YwQjhGNjdDNUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfHpvBUumtWWbE1tRf1V2UqT4H SPoXyD3FMEvhlGl8M1w5w334KC9PZAFqOAcAREirq2iuBTjIb3aIW2t675C7WmWN jvP7pVsVDQnS2Pm0ngHImglhiIeoWJ+adgiJ1jGTzEaQqcdQpQ2sr7RL12mkgely 4Ar2vobQ82oFdE6ChVwGY7jDHVUL5F3dAt3KuuP64CpwcMkfoqXLPOfKXZw1ch51 tI9GxnxYvwFiOPqLymAV+nDdiNwvyRQK+VGLaLfljbN2Vf3Td1JgQsROsbaswjbA QWzA5qF4k5MWpH3vumTmm2KqFU53lDIIxclEHi0Xhn13PGpCjD4CBtrulkaxAgMB AAGjggIJMIICBTAdBgNVHQ4EFgQUA432BEX6cV5kuJ/ttden8Lj2fF4wHwYDVR0j BBgwFoAUkh58zvrcmgW/voqLnu1MldS6deswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw NDk2ODA5NTE3ODQyNDMyNS8wLzkyMUU3Q0NFRkFEQzlBMDVCRkJFOEE4QjlFRUQ0 Qzk1RDRCQTc1RUIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTIxRTdDQ0VGQURDOUEwNUJGQkU4QThCOUVFRDRDOTVENEJBNzVFQi5jZXIw gYIGCCsGAQUFBwELBHYwdDByBggrBgEFBQcwC4ZmcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTA0OTY4MDk1MTc4NDI0MzI1LzAvMzIzMDMyMmUzMTM4 MzkyZTMwMmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALKvQAw DQYJKoZIhvcNAQELBQADggEBAGCpwhOXWaBVQocrFMr3I0Mv1HdFK0RdWo06arsQ kdMzGXUhYgt4g9JzJexkX+rymaqngHKFnZqXYjAZsm4eUeXMihL3+js/gkKdugvr okx9AhuUog9vzrbb2qae5x0LcJci6qfNEeXE7Ii7mir/kkeR73Iiu+hxuywMxK3H N6cg3hgyRyUyq6Vn7HkIqcKgqovKaRqyHTNJiD9vib27hSai0PFfH/0w86p5sYb4 OxL+AFKVvYaCkdQ9aKthpIn41jV0b4qvZwjJNFmHagGlTTWeeIt8rMRgvzqfu6tC TTeuMmyUmleOD+nkfTYVYPvSke8uFZF2tvafqKP9JPBgNfo= -----END CERTIFICATE-----Generated at Sat May 23 03:03:29 2026 by rpki-client