$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199947812867/0/3230332e38382e3231382e302f32342d3234203d3e20313336393539.roa File: 3230332e38382e3231382e302f32342d3234203d3e20313336393539.roa (raw, json) Hash identifier: VFP5/xNCzpBpw2DohRqTpJIv5/x54urBXz/4kb4EDr4= Subject key identifier: 35:69:6A:89:4E:47:DD:DE:B4:57:C8:79:A7:9D:95:24:A8:89:6E:DA Certificate issuer: /CN=F329F518724FAC695E33F5C78532CBF56BF4243D Certificate serial: 56C2FCF271F5A24EE35B63D34998AB258E0F5DBB Authority key identifier: F3:29:F5:18:72:4F:AC:69:5E:33:F5:C7:85:32:CB:F5:6B:F4:24:3D Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/F329F518724FAC695E33F5C78532CBF56BF4243D.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199947812867/0/3230332e38382e3231382e302f32342d3234203d3e20313336393539.roa Signing time: Tue 14 Apr 2026 03:16:11 +0000 ROA not before: Tue 14 Apr 2026 03:11:11 +0000 ROA not after: Tue 13 Apr 2027 03:16:11 +0000 asID: 136959 IP address blocks: 203.88.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199947812867/0/F329F518724FAC695E33F5C78532CBF56BF4243D.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199947812867/0/F329F518724FAC695E33F5C78532CBF56BF4243D.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/F329F518724FAC695E33F5C78532CBF56BF4243D.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 08:55:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:c2:fc:f2:71:f5:a2:4e:e3:5b:63:d3:49:98:ab:25:8e:0f:5d:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F329F518724FAC695E33F5C78532CBF56BF4243D Validity Not Before: Apr 14 03:11:11 2026 GMT Not After : Apr 13 03:16:11 2027 GMT Subject: CN=35696A894E47DDDEB457C879A79D9524A8896EDA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:af:a8:34:f7:ca:60:ce:d4:0b:0b:22:22:4b: 4c:ed:4a:fa:46:ee:d0:b9:b1:09:55:58:9e:3d:13: 51:8c:4f:07:fd:b4:bf:fc:ad:19:ee:8c:2f:89:77: 1f:c4:8a:b3:ad:61:25:e9:9e:c9:ad:43:71:23:09: 11:3a:d8:da:39:16:1c:db:e0:e0:3e:56:40:d2:7a: 3e:65:98:d7:51:c2:3e:da:43:54:c4:e2:45:87:5c: b3:07:9c:53:f8:7d:63:98:98:ca:13:4f:ef:43:5b: 16:6c:e1:d3:03:ed:80:99:3f:09:f3:33:a3:35:08: 57:10:57:a6:03:28:00:a5:64:a1:97:2a:55:3a:17: ed:87:a1:b8:f7:2a:f1:b5:fe:2c:4a:e1:d8:9a:9d: a2:73:c0:bf:c9:4b:3f:95:20:aa:e1:7c:00:5b:c2: ba:e6:ce:b7:dc:f3:de:db:52:35:d9:e3:3e:ea:cb: 5f:96:e4:b7:56:9b:c8:79:96:45:84:02:d4:20:82: 85:01:14:fb:35:67:c6:b0:24:d3:3c:30:cd:56:7f: 1e:ae:57:6d:ef:d3:88:5f:8f:b4:fc:25:20:45:89: 47:3d:2d:0b:48:fd:4c:5e:ba:1b:6d:34:1e:e5:11: 3a:78:1e:4c:d6:ab:31:48:51:39:68:70:24:5a:9d: 3d:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:69:6A:89:4E:47:DD:DE:B4:57:C8:79:A7:9D:95:24:A8:89:6E:DA X509v3 Authority Key Identifier: keyid:F3:29:F5:18:72:4F:AC:69:5E:33:F5:C7:85:32:CB:F5:6B:F4:24:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947812867/0/F329F518724FAC695E33F5C78532CBF56BF4243D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/F329F518724FAC695E33F5C78532CBF56BF4243D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947812867/0/3230332e38382e3231382e302f32342d3234203d3e20313336393539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.88.218.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:c5:94:9f:a2:ae:27:ab:94:6e:9e:1d:fd:94:23:55:5d:96: 2c:cb:78:d4:ff:3f:d4:dd:5d:0d:54:eb:b9:1a:80:2a:ed:ec: eb:84:0e:43:be:53:9a:4a:6c:9a:05:d5:00:9a:5e:9b:2b:61: 37:24:1a:a8:8a:5a:71:17:f8:b8:30:0b:58:48:b0:a6:20:51: 8f:6d:d4:32:e5:27:ec:74:0c:b5:2c:a8:b0:4f:3b:6e:ad:d3: 17:a7:eb:3f:91:d1:24:02:93:b9:b6:3a:f3:fb:4b:6f:c3:e2: 17:c9:e1:2b:93:9e:e9:97:3a:f9:e1:6d:9d:9c:f9:4d:b1:c3: bc:72:49:f4:01:a0:bb:77:ad:3d:0b:00:4a:e1:fe:88:4d:f9: cd:8c:81:0e:a0:63:29:65:14:39:a1:39:f6:f5:10:a5:6f:43: 56:e9:f1:20:bb:cc:2d:62:65:b4:a0:46:21:18:8f:4f:e3:3d: b7:f2:f5:ce:a3:bb:af:54:ea:2d:df:73:db:0f:c6:76:07:19: da:c7:88:60:07:02:b5:ec:1a:3b:82:66:57:62:83:e0:00:11: 5b:d8:a8:9e:db:35:07:99:76:e4:40:fb:18:b9:36:44:27:48: b6:88:74:33:9b:a8:1f:b4:eb:49:4d:1d:3c:6a:4c:24:79:0c: ba:5e:96:8b -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUVsL88nH1ok7jW2PTSZirJY4PXbswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjMyOUY1MTg3MjRGQUM2OTVFMzNGNUM3ODUzMkNCRjU2 QkY0MjQzRDAeFw0yNjA0MTQwMzExMTFaFw0yNzA0MTMwMzE2MTFaMDMxMTAvBgNV BAMTKDM1Njk2QTg5NEU0N0REREVCNDU3Qzg3OUE3OUQ5NTI0QTg4OTZFREEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGr6g098pgztQLCyIiS0ztSvpG 7tC5sQlVWJ49E1GMTwf9tL/8rRnujC+Jdx/EirOtYSXpnsmtQ3EjCRE62No5Fhzb 4OA+VkDSej5lmNdRwj7aQ1TE4kWHXLMHnFP4fWOYmMoTT+9DWxZs4dMD7YCZPwnz M6M1CFcQV6YDKAClZKGXKlU6F+2Hobj3KvG1/ixK4dianaJzwL/JSz+VIKrhfABb wrrmzrfc897bUjXZ4z7qy1+W5LdWm8h5lkWEAtQggoUBFPs1Z8awJNM8MM1Wfx6u V23v04hfj7T8JSBFiUc9LQtI/UxeuhttNB7lETp4HkzWqzFIUTlocCRanT0RAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUNWlqiU5H3d60V8h5p52VJKiJbtowHwYDVR0j BBgwFoAU8yn1GHJPrGleM/XHhTLL9Wv0JD0wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0NzgxMjg2Ny8wL0YzMjlGNTE4NzI0RkFDNjk1RTMzRjVDNzg1MzJD QkY1NkJGNDI0M0QuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRjMyOUY1MTg3MjRGQUM2OTVFMzNGNUM3ODUzMkNCRjU2QkY0MjQzRC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzYxOTk5NDc4MTI4NjcvMC8zMjMwMzMyZTM4 MzgyZTMyMzEzODJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzNjM5MzUzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAMtY2jANBgkqhkiG9w0BAQsFAAOCAQEAPcWUn6KuJ6uUbp4d/ZQj VV2WLMt41P8/1N1dDVTruRqAKu3s64QOQ75TmkpsmgXVAJpemythNyQaqIpacRf4 uDALWEiwpiBRj23UMuUn7HQMtSyosE87bq3TF6frP5HRJAKTubY68/tLb8PiF8nh K5Oe6Zc6+eFtnZz5TbHDvHJJ9AGgu3etPQsASuH+iE35zYyBDqBjKWUUOaE59vUQ pW9DVunxILvMLWJltKBGIRiPT+M9t/L1zqO7r1TqLd9z2w/GdgcZ2seIYAcCtewa O4JmV2KD4AARW9ionts1B5l25ED7GLk2RCdItoh0M5uoH7TrSU0dPGpMJHkMul6W iw== -----END CERTIFICATE-----Generated at Fri Apr 17 19:26:16 2026 by rpki-client