$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1112669904286253075/0/3230322e3134392e3232342e302f32302d3230203d3e2039383131.roa File: 3230322e3134392e3232342e302f32302d3230203d3e2039383131.roa (raw, json) Hash identifier: FeU2oExS8wELGKDhe4bjPejSoUJukgJYC6DfsdrdElA= Subject key identifier: D0:64:8F:FF:27:D2:25:C0:5B:03:DE:A7:06:62:E3:73:D9:83:30:17 Certificate issuer: /CN=48DCC10A7E92444E80655999E7C33C876CF1C5A8 Certificate serial: 0E6E4F6650DDF257FFC745B97058EE8D74F2EEA4 Authority key identifier: 48:DC:C1:0A:7E:92:44:4E:80:65:59:99:E7:C3:3C:87:6C:F1:C5:A8 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/48DCC10A7E92444E80655999E7C33C876CF1C5A8.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1112669904286253075/0/3230322e3134392e3232342e302f32302d3230203d3e2039383131.roa Signing time: Fri 29 May 2026 09:15:55 +0000 ROA not before: Fri 29 May 2026 09:10:55 +0000 ROA not after: Fri 28 May 2027 09:15:55 +0000 asID: 9811 IP address blocks: 202.149.224.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1112669904286253075/0/48DCC10A7E92444E80655999E7C33C876CF1C5A8.crl rsync://rpki-rps.cnnic.cn/repo/A1112669904286253075/0/48DCC10A7E92444E80655999E7C33C876CF1C5A8.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/48DCC10A7E92444E80655999E7C33C876CF1C5A8.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 10:30:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:6e:4f:66:50:dd:f2:57:ff:c7:45:b9:70:58:ee:8d:74:f2:ee:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=48DCC10A7E92444E80655999E7C33C876CF1C5A8 Validity Not Before: May 29 09:10:55 2026 GMT Not After : May 28 09:15:55 2027 GMT Subject: CN=D0648FFF27D225C05B03DEA70662E373D9833017 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:e0:42:64:14:86:44:a5:eb:d5:dc:27:73:c5: 85:22:f4:e5:fd:fd:76:36:81:2b:60:3f:f2:0b:0e: 72:aa:fc:26:60:d5:31:1f:43:07:58:70:61:ac:a2: 5e:4b:82:d4:86:62:86:dc:7b:02:72:d3:a9:60:5c: 67:9a:a0:52:48:79:37:a6:e7:da:6d:8a:c1:36:8f: 90:40:cc:ef:04:a8:77:a0:0a:c5:39:5d:9a:e3:68: 84:5f:64:59:e4:8b:0c:74:ef:19:23:90:53:be:42: 4a:38:76:d6:0d:83:81:26:0e:3c:11:f5:43:8b:ce: 90:79:21:46:67:6b:2f:65:aa:7e:e7:d7:97:23:60: 27:35:7c:29:bc:23:89:b2:c2:e8:e3:ae:e4:aa:eb: 9b:ef:38:4c:16:28:0d:4f:e4:45:06:12:5c:aa:ef: af:33:d3:d4:6a:c3:51:8e:36:8d:97:39:b1:7e:08: b4:49:86:1b:bf:35:5d:10:7b:c4:dd:6c:9b:01:c3: b6:83:13:a5:5d:fd:3e:c3:e5:db:99:a9:b7:43:39: df:46:da:09:3a:4f:0d:f7:62:69:12:c2:aa:dc:0e: c1:c8:4b:4c:12:f0:33:81:63:ec:8a:1e:c8:95:0d: 74:00:a0:8b:49:d8:46:b1:68:d4:e6:1d:66:a7:17: ce:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:64:8F:FF:27:D2:25:C0:5B:03:DE:A7:06:62:E3:73:D9:83:30:17 X509v3 Authority Key Identifier: keyid:48:DC:C1:0A:7E:92:44:4E:80:65:59:99:E7:C3:3C:87:6C:F1:C5:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1112669904286253075/0/48DCC10A7E92444E80655999E7C33C876CF1C5A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/48DCC10A7E92444E80655999E7C33C876CF1C5A8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1112669904286253075/0/3230322e3134392e3232342e302f32302d3230203d3e2039383131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.149.224.0/20 Signature Algorithm: sha256WithRSAEncryption 91:58:e8:4a:fd:13:27:86:dd:9f:5e:60:78:2b:0e:15:f1:e8: 57:aa:6d:e0:b8:50:26:00:94:b4:ce:b5:20:9a:e3:ba:73:e5: bb:0f:8e:3b:fc:75:3b:9a:11:0f:5c:ab:84:e9:6d:d2:bb:6e: f8:10:ff:a2:87:1f:b2:9a:c2:e5:f2:76:70:3a:46:ad:af:0d: 38:fe:07:76:e0:02:64:7e:cd:70:cb:65:8f:7b:a4:2e:0e:f7: 22:58:f8:c4:0c:7d:63:a4:fc:77:97:91:2f:16:e4:5b:e6:b0: 52:6c:47:6f:98:45:51:64:c7:42:04:ad:2c:36:f9:f8:63:8a: ad:79:09:d1:41:5f:bf:00:74:2f:e3:32:25:38:4d:7f:f0:cd: 95:f8:58:6e:7e:c3:4b:3c:50:ec:83:a5:43:31:8a:de:c1:9b: d0:2d:62:b3:78:3e:48:b1:bc:14:50:08:e0:30:c2:0b:71:86: 29:14:32:18:7e:94:f7:8a:8d:24:d9:28:d5:88:74:cc:71:4d: 52:4b:68:40:11:9b:c9:f9:e1:4a:94:c1:8c:0b:a0:9d:07:7d: 89:cd:5d:6d:7d:b4:f0:ae:80:53:c9:10:dc:e2:73:83:58:8f: 6c:a0:64:5c:b2:25:92:ea:41:a9:8c:ba:26:f9:6e:35:0d:2d: 12:d0:c5:db -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUDm5PZlDd8lf/x0W5cFjujXTy7qQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDhEQ0MxMEE3RTkyNDQ0RTgwNjU1OTk5RTdDMzNDODc2 Q0YxQzVBODAeFw0yNjA1MjkwOTEwNTVaFw0yNzA1MjgwOTE1NTVaMDMxMTAvBgNV BAMTKEQwNjQ4RkZGMjdEMjI1QzA1QjAzREVBNzA2NjJFMzczRDk4MzMwMTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDa4EJkFIZEpevV3CdzxYUi9OX9 /XY2gStgP/ILDnKq/CZg1TEfQwdYcGGsol5LgtSGYobcewJy06lgXGeaoFJIeTem 59ptisE2j5BAzO8EqHegCsU5XZrjaIRfZFnkiwx07xkjkFO+Qko4dtYNg4EmDjwR 9UOLzpB5IUZnay9lqn7n15cjYCc1fCm8I4mywujjruSq65vvOEwWKA1P5EUGElyq 768z09Rqw1GONo2XObF+CLRJhhu/NV0Qe8TdbJsBw7aDE6Vd/T7D5duZqbdDOd9G 2gk6Tw33YmkSwqrcDsHIS0wS8DOBY+yKHsiVDXQAoItJ2EaxaNTmHWanF84JAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQU0GSP/yfSJcBbA96nBmLjc9mDMBcwHwYDVR0j BBgwFoAUSNzBCn6SRE6AZVmZ58M8h2zxxagwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEx MjY2OTkwNDI4NjI1MzA3NS8wLzQ4RENDMTBBN0U5MjQ0NEU4MDY1NTk5OUU3QzMz Qzg3NkNGMUM1QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNDhEQ0MxMEE3RTkyNDQ0RTgwNjU1OTk5RTdDMzNDODc2Q0YxQzVBOC5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTExMjY2OTkwNDI4NjI1MzA3NS8wLzMyMzAzMjJlMzEz NDM5MmUzMjMyMzQyZTMwMmYzMjMwMmQzMjMwMjAzZDNlMjAzOTM4MzEzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEBMqV4DANBgkqhkiG9w0BAQsFAAOCAQEAkVjoSv0TJ4bdn15geCsOFfHo V6pt4LhQJgCUtM61IJrjunPluw+OO/x1O5oRD1yrhOlt0rtu+BD/oocfsprC5fJ2 cDpGra8NOP4HduACZH7NcMtlj3ukLg73Ilj4xAx9Y6T8d5eRLxbkW+awUmxHb5hF UWTHQgStLDb5+GOKrXkJ0UFfvwB0L+MyJThNf/DNlfhYbn7DSzxQ7IOlQzGK3sGb 0C1is3g+SLG8FFAI4DDCC3GGKRQyGH6U94qNJNko1Yh0zHFNUktoQBGbyfnhSpTB jAugnQd9ic1dbX208K6AU8kQ3OJzg1iPbKBkXLIlkupBqYy6JvluNQ0tEtDF2w== -----END CERTIFICATE-----Generated at Fri May 29 23:51:57 2026 by rpki-client