$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199947812867/0/3230332e38382e3139322e302f32302d3230203d3e20313334373733.roa File: 3230332e38382e3139322e302f32302d3230203d3e20313334373733.roa (raw, json) Hash identifier: BbEangG7q0DKjkEXoGrTf8o3uBJ9f7zMli0CsAzqT+U= Subject key identifier: BA:24:AA:48:0D:8D:D0:13:4D:F1:B4:B6:FE:46:7E:04:06:BC:00:11 Certificate issuer: /CN=F329F518724FAC695E33F5C78532CBF56BF4243D Certificate serial: 166CE94ACABE7AA47DB4C05D0F9774C3CE15FA44 Authority key identifier: F3:29:F5:18:72:4F:AC:69:5E:33:F5:C7:85:32:CB:F5:6B:F4:24:3D Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/F329F518724FAC695E33F5C78532CBF56BF4243D.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199947812867/0/3230332e38382e3139322e302f32302d3230203d3e20313334373733.roa Signing time: Tue 14 Apr 2026 03:17:09 +0000 ROA not before: Tue 14 Apr 2026 03:12:09 +0000 ROA not after: Tue 13 Apr 2027 03:17:09 +0000 asID: 134773 IP address blocks: 203.88.192.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199947812867/0/F329F518724FAC695E33F5C78532CBF56BF4243D.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199947812867/0/F329F518724FAC695E33F5C78532CBF56BF4243D.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/F329F518724FAC695E33F5C78532CBF56BF4243D.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 08:55:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:6c:e9:4a:ca:be:7a:a4:7d:b4:c0:5d:0f:97:74:c3:ce:15:fa:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F329F518724FAC695E33F5C78532CBF56BF4243D Validity Not Before: Apr 14 03:12:09 2026 GMT Not After : Apr 13 03:17:09 2027 GMT Subject: CN=BA24AA480D8DD0134DF1B4B6FE467E0406BC0011 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:bf:fd:82:1b:42:6c:17:1a:34:e6:f6:77:e4: d3:72:51:50:d4:ea:c3:b9:72:e6:d1:e7:35:ef:4b: b3:f3:3b:58:3b:eb:02:28:b6:83:0c:8e:4e:bf:66: 9e:c1:0d:82:68:c8:f9:a4:1a:05:98:34:56:15:4c: 48:fd:77:19:56:84:5e:13:4c:87:ec:23:ae:4d:33: 99:31:6d:fb:7f:97:9b:a4:a9:d1:d4:55:9a:4c:2f: 05:d8:88:b9:31:66:5d:43:91:82:98:6d:a9:f8:8c: 27:7f:80:c9:c3:82:59:62:3e:14:f1:da:f9:ab:ae: 43:40:34:7a:7e:f2:5d:83:43:de:f8:34:3d:44:5b: c7:3e:e0:17:de:45:2f:37:c1:2f:b5:e5:a6:52:c4: 84:c8:db:46:55:2d:90:a8:30:d7:5f:ca:40:b4:63: 4e:f7:46:26:b7:1b:ba:d3:de:b1:87:13:59:fa:4d: cb:f2:9d:3d:9c:50:75:51:97:2d:5c:5d:34:3d:05: 13:8b:7d:e8:9b:9a:e2:75:05:cb:f5:bf:a5:df:28: 5a:d5:41:af:fa:76:83:3b:df:9d:11:28:75:75:86: 28:9f:65:db:ac:a0:db:fb:ee:e0:c7:33:a7:ab:9f: a6:fb:55:54:d2:3b:1c:ab:2d:f1:e8:27:32:5e:08: 28:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:24:AA:48:0D:8D:D0:13:4D:F1:B4:B6:FE:46:7E:04:06:BC:00:11 X509v3 Authority Key Identifier: keyid:F3:29:F5:18:72:4F:AC:69:5E:33:F5:C7:85:32:CB:F5:6B:F4:24:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947812867/0/F329F518724FAC695E33F5C78532CBF56BF4243D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/F329F518724FAC695E33F5C78532CBF56BF4243D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947812867/0/3230332e38382e3139322e302f32302d3230203d3e20313334373733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.88.192.0/20 Signature Algorithm: sha256WithRSAEncryption 05:64:4f:1d:13:66:43:8d:67:35:1a:db:a0:aa:cf:f0:c2:2e: e9:e0:e7:2f:d4:73:71:9b:b2:9a:d8:de:df:7b:85:a7:1f:bd: 65:fd:63:4a:c5:4f:e4:52:c5:fc:d7:33:b1:29:b6:62:6f:1a: b4:ce:12:52:8a:96:9c:33:99:f1:9b:4e:71:16:98:8a:48:24: e3:1f:a9:2e:58:1f:c3:68:b3:b8:a2:1f:99:0a:a2:3e:e8:ac: ca:c0:55:7d:c9:39:97:f0:71:eb:64:39:00:b0:ca:e4:e1:bc: 88:fc:4c:87:ae:88:14:3a:11:3a:da:16:11:6a:53:a9:a7:8d: fc:68:e1:5b:52:a5:1d:a5:2e:0b:8e:ba:a8:10:da:94:c4:37: c8:0c:4d:f3:d7:18:52:c5:e2:d6:27:a6:80:f1:75:3a:c7:f4: ed:bd:08:5a:74:69:e7:9e:3c:55:44:0a:16:e1:c1:1a:86:9c: 36:cc:60:14:75:f8:18:5d:e7:84:ec:22:63:82:7b:21:23:67: 12:d1:6c:9b:0b:63:d8:6b:08:cf:3d:f3:17:de:e8:e4:bb:b8: 2a:a7:ae:7b:28:21:bd:fc:c2:b8:36:f6:0e:12:3e:ee:8d:72: cd:b6:e4:89:50:b6:21:b6:b3:5d:41:54:ab:20:47:28:ed:76: bf:e4:3f:f3 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUFmzpSsq+eqR9tMBdD5d0w84V+kQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjMyOUY1MTg3MjRGQUM2OTVFMzNGNUM3ODUzMkNCRjU2 QkY0MjQzRDAeFw0yNjA0MTQwMzEyMDlaFw0yNzA0MTMwMzE3MDlaMDMxMTAvBgNV BAMTKEJBMjRBQTQ4MEQ4REQwMTM0REYxQjRCNkZFNDY3RTA0MDZCQzAwMTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDav/2CG0JsFxo05vZ35NNyUVDU 6sO5cubR5zXvS7PzO1g76wIotoMMjk6/Zp7BDYJoyPmkGgWYNFYVTEj9dxlWhF4T TIfsI65NM5kxbft/l5ukqdHUVZpMLwXYiLkxZl1DkYKYban4jCd/gMnDglliPhTx 2vmrrkNANHp+8l2DQ974ND1EW8c+4BfeRS83wS+15aZSxITI20ZVLZCoMNdfykC0 Y073Ria3G7rT3rGHE1n6TcvynT2cUHVRly1cXTQ9BROLfeibmuJ1Bcv1v6XfKFrV Qa/6doM7350RKHV1hiifZdusoNv77uDHM6ern6b7VVTSOxyrLfHoJzJeCCj7AgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUuiSqSA2N0BNN8bS2/kZ+BAa8ABEwHwYDVR0j BBgwFoAU8yn1GHJPrGleM/XHhTLL9Wv0JD0wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0NzgxMjg2Ny8wL0YzMjlGNTE4NzI0RkFDNjk1RTMzRjVDNzg1MzJD QkY1NkJGNDI0M0QuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRjMyOUY1MTg3MjRGQUM2OTVFMzNGNUM3ODUzMkNCRjU2QkY0MjQzRC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzYxOTk5NDc4MTI4NjcvMC8zMjMwMzMyZTM4 MzgyZTMxMzkzMjJlMzAyZjMyMzAyZDMyMzAyMDNkM2UyMDMxMzMzNDM3MzczMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEBMtYwDANBgkqhkiG9w0BAQsFAAOCAQEABWRPHRNmQ41nNRrboKrP 8MIu6eDnL9RzcZuymtje33uFpx+9Zf1jSsVP5FLF/NczsSm2Ym8atM4SUoqWnDOZ 8ZtOcRaYikgk4x+pLlgfw2izuKIfmQqiPuisysBVfck5l/Bx62Q5ALDK5OG8iPxM h66IFDoROtoWEWpTqaeN/GjhW1KlHaUuC466qBDalMQ3yAxN89cYUsXi1iemgPF1 Osf07b0IWnRp5548VUQKFuHBGoacNsxgFHX4GF3nhOwiY4J7ISNnEtFsmwtj2GsI zz3zF97o5Lu4KqeueyghvfzCuDb2DhI+7o1yzbbkiVC2IbazXUFUqyBHKO12v+Q/ 8w== -----END CERTIFICATE-----Generated at Fri Apr 17 17:28:41 2026 by rpki-client