$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576723372179458/0/3230322e35372e3139332e302f32342d3234203d3e203137363231.roa File: 3230322e35372e3139332e302f32342d3234203d3e203137363231.roa (raw, json) Hash identifier: 32fj6fCUej9k8x9W1fDff1eR+5j68pdBbP34mz+fAwc= Subject key identifier: E4:E7:67:55:32:BE:38:7B:B9:D3:E2:0C:09:FF:7B:31:84:EC:68:6E Certificate issuer: /CN=8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE Certificate serial: 6C05B25191F980A2B53B0604E30BCB0ADD3AE1CC Authority key identifier: 8D:47:3B:7B:41:E3:D6:22:DF:B3:B6:0D:5E:B9:46:99:8F:BE:7E:AE Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/3230322e35372e3139332e302f32342d3234203d3e203137363231.roa Signing time: Fri 17 Apr 2026 06:23:24 +0000 ROA not before: Fri 17 Apr 2026 06:18:24 +0000 ROA not after: Fri 16 Apr 2027 06:23:24 +0000 asID: 17621 IP address blocks: 202.57.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.crl rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 12:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:05:b2:51:91:f9:80:a2:b5:3b:06:04:e3:0b:cb:0a:dd:3a:e1:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE Validity Not Before: Apr 17 06:18:24 2026 GMT Not After : Apr 16 06:23:24 2027 GMT Subject: CN=E4E7675532BE387BB9D3E20C09FF7B3184EC686E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:c0:39:80:b7:78:46:5b:4e:3b:e6:b1:ce:1c: f1:30:ae:a2:50:57:ee:14:17:a5:fb:b6:81:34:02: ba:e0:a8:1f:14:b8:81:f1:e1:ef:db:25:ad:d3:b5: ae:43:d2:16:f5:9f:57:77:57:f6:09:34:01:dd:e6: 54:37:9c:6f:00:e5:7f:47:ab:fe:ff:fc:48:18:41: 6a:d0:60:57:d2:bc:db:92:d8:71:17:b2:e7:e1:8a: ab:ff:e5:d3:81:96:9f:c8:20:a8:04:62:94:f3:d2: 91:cd:12:bc:da:f4:ab:c8:e1:a9:05:20:df:75:f5: bd:a9:0a:09:d8:f9:a5:18:b8:9d:fc:e1:88:82:6f: b2:f7:92:4d:a4:97:46:93:5b:33:a1:e7:b1:2c:93: 99:83:47:2e:e6:79:09:97:a0:f6:1c:c1:8b:e0:8e: 3b:c6:c5:27:9b:93:a2:aa:b6:31:84:24:70:80:0e: 03:04:ba:33:51:e7:de:09:ab:78:f2:22:8a:04:56: 40:00:20:02:e6:0e:16:29:9c:55:59:ce:d1:30:e0: 74:5f:1d:dd:b9:62:cc:9d:b3:47:91:a5:53:e4:dd: b5:64:b3:55:17:be:15:96:1f:6c:ee:e8:96:9c:b9: 3b:cd:de:8a:6f:18:2e:b6:b2:75:b1:8d:e6:f9:dc: d9:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:E7:67:55:32:BE:38:7B:B9:D3:E2:0C:09:FF:7B:31:84:EC:68:6E X509v3 Authority Key Identifier: keyid:8D:47:3B:7B:41:E3:D6:22:DF:B3:B6:0D:5E:B9:46:99:8F:BE:7E:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/3230322e35372e3139332e302f32342d3234203d3e203137363231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.57.193.0/24 Signature Algorithm: sha256WithRSAEncryption 03:cd:72:14:45:fb:25:d7:c2:1b:ac:11:41:48:bc:96:89:4f: 6c:ae:55:65:c2:29:01:2c:ca:de:6d:14:e5:02:40:cb:9f:65: d5:25:e2:6f:85:6e:b2:5b:6b:d0:6d:de:80:0d:54:5d:7e:96: 9f:e4:08:27:9b:52:2f:0b:7b:f9:cf:a2:15:c7:c9:82:08:a5: 5d:5a:90:40:96:0f:ea:4d:ff:12:bc:43:c7:0f:2f:27:86:55: 14:da:aa:f7:b5:ac:ae:3d:23:47:73:d0:f0:06:9d:59:58:c1: 28:1f:62:ad:f3:39:3f:fa:20:f5:0b:10:a4:05:54:e4:27:ba: 4f:b6:dd:cf:d5:f7:8d:d7:3d:ad:c0:5f:30:10:82:8f:87:37: 2a:8d:78:f3:2c:75:d8:19:68:0e:5f:70:6a:5d:59:bc:5d:fe: 8b:d1:aa:6d:b0:22:37:ab:75:7c:3b:77:6c:05:18:f4:89:84: fb:26:90:f2:e7:46:5d:d1:94:49:7f:73:2a:c8:48:be:f9:f3: e8:e4:50:ab:47:df:35:01:a0:98:59:b7:c6:df:64:1f:f0:95: 03:77:22:3d:36:35:79:67:b0:b9:ed:68:92:68:96:8e:8b:68: 53:81:87:8f:7d:ca:44:61:3e:91:21:b0:e6:c8:17:13:09:1f: 52:04:2c:37 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUbAWyUZH5gKK1OwYE4wvLCt064cwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEQ0NzNCN0I0MUUzRDYyMkRGQjNCNjBENUVCOTQ2OTk4 RkJFN0VBRTAeFw0yNjA0MTcwNjE4MjRaFw0yNzA0MTYwNjIzMjRaMDMxMTAvBgNV BAMTKEU0RTc2NzU1MzJCRTM4N0JCOUQzRTIwQzA5RkY3QjMxODRFQzY4NkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgwDmAt3hGW0475rHOHPEwrqJQ V+4UF6X7toE0ArrgqB8UuIHx4e/bJa3Tta5D0hb1n1d3V/YJNAHd5lQ3nG8A5X9H q/7//EgYQWrQYFfSvNuS2HEXsufhiqv/5dOBlp/IIKgEYpTz0pHNErza9KvI4akF IN919b2pCgnY+aUYuJ384YiCb7L3kk2kl0aTWzOh57Esk5mDRy7meQmXoPYcwYvg jjvGxSebk6KqtjGEJHCADgMEujNR594Jq3jyIooEVkAAIALmDhYpnFVZztEw4HRf Hd25Ysyds0eRpVPk3bVks1UXvhWWH2zu6JacuTvN3opvGC62snWxjeb53NnpAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQU5OdnVTK+OHu50+IMCf97MYTsaG4wHwYDVR0j BBgwFoAUjUc7e0Hj1iLfs7YNXrlGmY++fq4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjcyMzM3MjE3OTQ1OC8wLzhENDczQjdCNDFFM0Q2MjJERkIzQjYwRDVFQjk0 Njk5OEZCRTdFQUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOEQ0NzNCN0I0MUUzRDYyMkRGQjNCNjBENUVCOTQ2OTk4RkJFN0VBRS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3NjcyMzM3MjE3OTQ1OC8wLzMyMzAzMjJlMzUz NzJlMzEzOTMzMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzNzM2MzIzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAMo5wTANBgkqhkiG9w0BAQsFAAOCAQEAA81yFEX7JdfCG6wRQUi8lolP bK5VZcIpASzK3m0U5QJAy59l1SXib4Vusltr0G3egA1UXX6Wn+QIJ5tSLwt7+c+i FcfJggilXVqQQJYP6k3/ErxDxw8vJ4ZVFNqq97Wsrj0jR3PQ8AadWVjBKB9irfM5 P/og9QsQpAVU5Ce6T7bdz9X3jdc9rcBfMBCCj4c3Ko148yx12BloDl9wal1ZvF3+ i9GqbbAiN6t1fDt3bAUY9ImE+yaQ8udGXdGUSX9zKshIvvnz6ORQq0ffNQGgmFm3 xt9kH/CVA3ciPTY1eWewue1okmiWjotoU4GHj33KRGE+kSGw5sgXEwkfUgQsNw== -----END CERTIFICATE-----Generated at Sat Apr 18 02:25:38 2026 by rpki-client