$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1104968095178424325/0/3230322e3138392e332e302f32342d3234203d3e2034383437.roa File: 3230322e3138392e332e302f32342d3234203d3e2034383437.roa (raw, json) Hash identifier: 8ExX38dFJsGKMnDEN9NFSJMsrj0Y6q940RyHgciWJpw= Subject key identifier: 10:42:1F:EB:01:49:BA:08:63:72:4B:A1:AF:19:77:C5:D3:4A:4B:63 Certificate issuer: /CN=921E7CCEFADC9A05BFBE8A8B9EED4C95D4BA75EB Certificate serial: 6D05CA677D312EFE0C9E563B0976E715E0ABC78C Authority key identifier: 92:1E:7C:CE:FA:DC:9A:05:BF:BE:8A:8B:9E:ED:4C:95:D4:BA:75:EB Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/921E7CCEFADC9A05BFBE8A8B9EED4C95D4BA75EB.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1104968095178424325/0/3230322e3138392e332e302f32342d3234203d3e2034383437.roa Signing time: Wed 20 May 2026 03:53:23 +0000 ROA not before: Wed 20 May 2026 03:48:23 +0000 ROA not after: Wed 19 May 2027 03:53:23 +0000 asID: 4847 IP address blocks: 202.189.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1104968095178424325/0/921E7CCEFADC9A05BFBE8A8B9EED4C95D4BA75EB.crl rsync://rpki-rps.cnnic.cn/repo/A1104968095178424325/0/921E7CCEFADC9A05BFBE8A8B9EED4C95D4BA75EB.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/921E7CCEFADC9A05BFBE8A8B9EED4C95D4BA75EB.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 May 2026 02:27:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:05:ca:67:7d:31:2e:fe:0c:9e:56:3b:09:76:e7:15:e0:ab:c7:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=921E7CCEFADC9A05BFBE8A8B9EED4C95D4BA75EB Validity Not Before: May 20 03:48:23 2026 GMT Not After : May 19 03:53:23 2027 GMT Subject: CN=10421FEB0149BA0863724BA1AF1977C5D34A4B63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:c3:24:d8:0c:a7:14:2c:18:5d:aa:ce:69:2b: 20:73:4a:31:86:af:d6:48:a2:4f:f4:38:22:74:89: ae:23:c4:80:3a:a3:d1:32:8e:81:e4:d1:30:9a:b9: 11:a8:95:c3:d5:6f:24:fa:fe:c8:8e:8e:b6:64:05: ab:9f:d6:7c:53:22:6a:91:67:7f:cf:14:bb:fd:d5: e1:68:9c:61:10:e0:29:25:8f:27:8e:7d:cc:30:01: 1b:df:66:33:86:00:3f:7a:a4:f7:69:d8:0b:67:c4: 4e:ef:77:f2:32:f3:60:0d:1d:cc:96:40:83:9c:06: 59:5d:db:68:db:8a:a2:4b:9e:e8:f4:67:25:d3:9e: ce:77:a8:f0:90:96:b1:92:c6:a3:dc:ee:a9:59:a3: 31:35:74:35:0b:34:d7:a0:ba:9d:2b:83:62:56:c7: 4e:25:fd:45:56:07:e9:a4:dc:ca:48:6e:b3:bb:7a: 2a:60:b4:a3:17:53:25:a9:b4:9e:1f:d9:b9:23:b6: 43:23:7e:2a:d0:91:86:d3:16:8f:ab:df:79:d3:48: dc:96:82:46:eb:be:49:75:8c:51:b7:9d:61:80:b3: c9:94:c8:d7:be:a0:dd:1a:62:be:64:01:cf:aa:7f: d2:b7:0e:a0:e0:64:cd:0b:7a:1d:7e:d4:2e:f5:99: 18:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:42:1F:EB:01:49:BA:08:63:72:4B:A1:AF:19:77:C5:D3:4A:4B:63 X509v3 Authority Key Identifier: keyid:92:1E:7C:CE:FA:DC:9A:05:BF:BE:8A:8B:9E:ED:4C:95:D4:BA:75:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1104968095178424325/0/921E7CCEFADC9A05BFBE8A8B9EED4C95D4BA75EB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/921E7CCEFADC9A05BFBE8A8B9EED4C95D4BA75EB.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1104968095178424325/0/3230322e3138392e332e302f32342d3234203d3e2034383437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.189.3.0/24 Signature Algorithm: sha256WithRSAEncryption 85:1c:5b:ab:3b:67:06:8d:dc:af:76:29:79:eb:e7:79:c5:59: 7d:8a:8a:f0:6c:5a:26:35:e3:e7:2d:d7:d5:36:2f:5a:1e:10: 6f:0c:55:e1:27:ac:fb:0d:f0:97:af:40:f8:66:a8:ba:0c:bd: b6:86:0b:f3:8c:51:da:2d:2b:20:05:a2:81:7e:e6:0b:e9:e7: a2:ff:55:7d:99:86:6c:38:d0:07:98:bd:22:dc:48:52:81:eb: 40:9d:54:24:98:31:7b:ce:76:63:eb:3d:78:a8:fc:8b:c9:fb: b8:dc:f7:12:be:fd:05:04:6d:35:c5:2b:3b:d1:b4:5d:8e:e0: 35:98:25:fd:2f:6a:64:14:1a:18:ea:53:81:52:24:ed:3b:89: e2:0f:d3:c5:28:25:d0:1e:2d:df:7e:94:46:fe:44:1d:fe:ae: 4a:51:b4:2a:a0:e1:9d:60:27:5f:44:d0:87:ec:4d:cd:f1:37: e8:ac:51:30:89:61:11:97:63:74:5a:4a:ef:8c:59:6d:c0:7a: 9b:d4:91:f1:60:aa:84:d1:1d:1a:54:3d:d1:50:96:ea:67:e2: 59:55:f8:5f:da:38:35:89:95:75:d1:88:a4:d0:82:52:77:dc: 42:22:14:37:71:17:a0:9c:ab:0e:28:f0:e4:95:43:c4:02:ef: 53:d7:80:d3 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUbQXKZ30xLv4MnlY7CXbnFeCrx4wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIxRTdDQ0VGQURDOUEwNUJGQkU4QThCOUVFRDRDOTVE NEJBNzVFQjAeFw0yNjA1MjAwMzQ4MjNaFw0yNzA1MTkwMzUzMjNaMDMxMTAvBgNV BAMTKDEwNDIxRkVCMDE0OUJBMDg2MzcyNEJBMUFGMTk3N0M1RDM0QTRCNjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDrwyTYDKcULBhdqs5pKyBzSjGG r9ZIok/0OCJ0ia4jxIA6o9EyjoHk0TCauRGolcPVbyT6/siOjrZkBauf1nxTImqR Z3/PFLv91eFonGEQ4CkljyeOfcwwARvfZjOGAD96pPdp2AtnxE7vd/Iy82ANHcyW QIOcBlld22jbiqJLnuj0ZyXTns53qPCQlrGSxqPc7qlZozE1dDULNNegup0rg2JW x04l/UVWB+mk3MpIbrO7eipgtKMXUyWptJ4f2bkjtkMjfirQkYbTFo+r33nTSNyW gkbrvkl1jFG3nWGAs8mUyNe+oN0aYr5kAc+qf9K3DqDgZM0Leh1+1C71mRgzAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUEEIf6wFJughjckuhrxl3xdNKS2MwHwYDVR0j BBgwFoAUkh58zvrcmgW/voqLnu1MldS6deswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw NDk2ODA5NTE3ODQyNDMyNS8wLzkyMUU3Q0NFRkFEQzlBMDVCRkJFOEE4QjlFRUQ0 Qzk1RDRCQTc1RUIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTIxRTdDQ0VGQURDOUEwNUJGQkU4QThCOUVFRDRDOTVENEJBNzVFQi5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTA0OTY4MDk1MTc4NDI0MzI1LzAvMzIzMDMyMmUzMTM4 MzkyZTMzMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzQzODM0Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BADKvQMwDQYJKoZIhvcNAQELBQADggEBAIUcW6s7ZwaN3K92KXnr53nFWX2KivBs WiY14+ct19U2L1oeEG8MVeEnrPsN8JevQPhmqLoMvbaGC/OMUdotKyAFooF+5gvp 56L/VX2Zhmw40AeYvSLcSFKB60CdVCSYMXvOdmPrPXio/IvJ+7jc9xK+/QUEbTXF KzvRtF2O4DWYJf0vamQUGhjqU4FSJO07ieIP08UoJdAeLd9+lEb+RB3+rkpRtCqg 4Z1gJ19E0IfsTc3xN+isUTCJYRGXY3RaSu+MWW3AepvUkfFgqoTRHRpUPdFQlupn 4llV+F/aODWJlXXRiKTQglJ33EIiFDdxF6Ccqw4o8OSVQ8QC71PXgNM= -----END CERTIFICATE-----Generated at Sat May 23 04:30:03 2026 by rpki-client