$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1112658693398265875/0/3230332e3139322e31312e302f32342d3234203d3e203137373831.roa File: 3230332e3139322e31312e302f32342d3234203d3e203137373831.roa (raw, json) Hash identifier: 45xCYyRQyjhCRC0vlSjwuILRfUgMsSd1dvyBXnBRchU= Subject key identifier: 4F:11:C2:F3:C7:DA:2B:E2:4C:FE:56:10:3C:15:3B:69:74:44:14:11 Certificate issuer: /CN=24302E3FE1ECABBCBCAE52FC85F2A9B46981523D Certificate serial: 377ECE23337FDDD5E2AEEA5E8A06A131809D2982 Authority key identifier: 24:30:2E:3F:E1:EC:AB:BC:BC:AE:52:FC:85:F2:A9:B4:69:81:52:3D Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/24302E3FE1ECABBCBCAE52FC85F2A9B46981523D.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1112658693398265875/0/3230332e3139322e31312e302f32342d3234203d3e203137373831.roa Signing time: Fri 29 May 2026 08:44:00 +0000 ROA not before: Fri 29 May 2026 08:39:00 +0000 ROA not after: Fri 28 May 2027 08:44:00 +0000 asID: 17781 IP address blocks: 203.192.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1112658693398265875/0/24302E3FE1ECABBCBCAE52FC85F2A9B46981523D.crl rsync://rpki-rps.cnnic.cn/repo/A1112658693398265875/0/24302E3FE1ECABBCBCAE52FC85F2A9B46981523D.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/24302E3FE1ECABBCBCAE52FC85F2A9B46981523D.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 08:44:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:7e:ce:23:33:7f:dd:d5:e2:ae:ea:5e:8a:06:a1:31:80:9d:29:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=24302E3FE1ECABBCBCAE52FC85F2A9B46981523D Validity Not Before: May 29 08:39:00 2026 GMT Not After : May 28 08:44:00 2027 GMT Subject: CN=4F11C2F3C7DA2BE24CFE56103C153B6974441411 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:c4:59:07:b6:0c:d7:44:92:61:7c:ca:cb:ba: 54:95:fc:96:f4:86:6b:58:c4:77:ce:79:98:23:d5: b8:d0:fa:e0:66:c0:69:f2:7a:23:2d:89:5e:6d:5e: ce:29:9e:7c:91:a2:45:00:03:6f:cf:27:aa:6d:de: 55:6d:22:7c:3c:9b:3b:de:82:e8:be:32:38:94:a2: 10:d2:84:7e:cf:47:c5:56:34:1a:f7:0c:7e:0a:79: 49:87:d1:59:81:08:4b:92:2a:60:8e:94:c7:e0:ec: 1c:94:76:b7:46:d2:6c:f8:6c:b6:60:15:00:3b:ca: 64:cd:aa:8f:5c:fb:0a:a4:fd:11:f1:f1:ba:29:ce: 3b:f9:04:02:1a:99:bc:a2:f1:6a:7a:b7:f0:0f:66: 90:e8:97:9d:0c:02:70:8c:bd:cc:bc:6f:01:cd:e6: 48:a6:fe:a5:0d:d6:70:82:39:78:2f:b9:5e:62:a9: d3:fa:b3:8f:67:06:b0:0a:4b:94:9a:70:c8:8f:5e: 91:15:17:84:60:75:7b:78:ee:d8:cf:47:73:65:ef: 01:90:f8:55:f7:61:ea:d8:c9:62:f5:dc:35:50:0b: 8f:28:e4:90:64:5f:9c:ed:67:e4:53:8e:46:9e:90: 3f:46:b9:44:aa:c8:cc:bd:c0:1e:4c:68:ce:5c:ad: 0b:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:11:C2:F3:C7:DA:2B:E2:4C:FE:56:10:3C:15:3B:69:74:44:14:11 X509v3 Authority Key Identifier: keyid:24:30:2E:3F:E1:EC:AB:BC:BC:AE:52:FC:85:F2:A9:B4:69:81:52:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1112658693398265875/0/24302E3FE1ECABBCBCAE52FC85F2A9B46981523D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/24302E3FE1ECABBCBCAE52FC85F2A9B46981523D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1112658693398265875/0/3230332e3139322e31312e302f32342d3234203d3e203137373831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.192.11.0/24 Signature Algorithm: sha256WithRSAEncryption 74:77:27:cc:c8:11:33:43:d4:7d:08:b2:19:78:02:9c:bb:c5: d9:e3:48:3a:85:90:29:c7:bd:72:39:e6:81:0a:81:f0:a3:ef: b1:07:a7:2b:23:26:19:f4:9f:1e:53:45:8a:ee:e4:c7:e8:60: be:35:43:eb:5e:36:1a:d1:b7:74:b1:fa:3f:9f:5b:b6:a7:a8: c8:41:eb:b2:dc:f9:bc:9a:1c:09:0b:12:ef:db:c6:3a:69:4c: 7f:f1:8a:63:35:ea:48:b7:a8:b8:1f:ec:f9:7c:0c:b0:4d:26: 1c:da:45:eb:de:57:e8:7b:f1:c1:5c:64:aa:34:15:05:c8:29: c0:3d:fa:8d:9a:b4:e4:9f:45:e6:d5:81:8b:a0:16:fa:72:ba: 6e:ec:c3:c9:73:2b:9a:a5:19:ad:c3:21:b0:b5:88:41:f1:07: b7:72:4b:20:5b:c0:ea:21:f8:59:3c:af:21:f2:ae:7c:f2:96: b1:2f:1e:67:cb:00:48:b4:7f:0b:e3:bf:2f:e4:45:ba:b7:87: 11:34:f5:a4:50:8f:c6:e4:ca:f5:6b:0c:6b:61:47:e2:8c:d4: 4a:02:56:47:c3:71:cb:47:2f:dc:df:64:2e:11:99:2c:89:ba: 2b:b5:d4:d5:1e:b7:94:96:1c:15:08:f5:62:c6:5e:d0:8f:f9: 04:b3:0e:a5 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUN37OIzN/3dXirupeigahMYCdKYIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjQzMDJFM0ZFMUVDQUJCQ0JDQUU1MkZDODVGMkE5QjQ2 OTgxNTIzRDAeFw0yNjA1MjkwODM5MDBaFw0yNzA1MjgwODQ0MDBaMDMxMTAvBgNV BAMTKDRGMTFDMkYzQzdEQTJCRTI0Q0ZFNTYxMDNDMTUzQjY5NzQ0NDE0MTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsxFkHtgzXRJJhfMrLulSV/Jb0 hmtYxHfOeZgj1bjQ+uBmwGnyeiMtiV5tXs4pnnyRokUAA2/PJ6pt3lVtInw8mzve gui+MjiUohDShH7PR8VWNBr3DH4KeUmH0VmBCEuSKmCOlMfg7ByUdrdG0mz4bLZg FQA7ymTNqo9c+wqk/RHx8bopzjv5BAIambyi8Wp6t/APZpDol50MAnCMvcy8bwHN 5kim/qUN1nCCOXgvuV5iqdP6s49nBrAKS5SacMiPXpEVF4RgdXt47tjPR3Nl7wGQ +FX3YerYyWL13DVQC48o5JBkX5ztZ+RTjkaekD9GuUSqyMy9wB5MaM5crQtdAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUTxHC88faK+JM/lYQPBU7aXREFBEwHwYDVR0j BBgwFoAUJDAuP+Hsq7y8rlL8hfKptGmBUj0wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEx MjY1ODY5MzM5ODI2NTg3NS8wLzI0MzAyRTNGRTFFQ0FCQkNCQ0FFNTJGQzg1RjJB OUI0Njk4MTUyM0QuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjQzMDJFM0ZFMUVDQUJCQ0JDQUU1MkZDODVGMkE5QjQ2OTgxNTIzRC5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTExMjY1ODY5MzM5ODI2NTg3NS8wLzMyMzAzMzJlMzEz OTMyMmUzMTMxMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzNzM3MzgzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAMvACzANBgkqhkiG9w0BAQsFAAOCAQEAdHcnzMgRM0PUfQiyGXgCnLvF 2eNIOoWQKce9cjnmgQqB8KPvsQenKyMmGfSfHlNFiu7kx+hgvjVD6142GtG3dLH6 P59btqeoyEHrstz5vJocCQsS79vGOmlMf/GKYzXqSLeouB/s+XwMsE0mHNpF695X 6HvxwVxkqjQVBcgpwD36jZq05J9F5tWBi6AW+nK6buzDyXMrmqUZrcMhsLWIQfEH t3JLIFvA6iH4WTyvIfKufPKWsS8eZ8sASLR/C+O/L+RFureHETT1pFCPxuTK9WsM a2FH4ozUSgJWR8Nxy0cv3N9kLhGZLIm6K7XU1R63lJYcFQj1YsZe0I/5BLMOpQ== -----END CERTIFICATE-----Generated at Fri May 29 23:53:29 2026 by rpki-client