$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576723372179458/0/3230322e35372e3230322e302f32342d3234203d3e203137363231.roa File: 3230322e35372e3230322e302f32342d3234203d3e203137363231.roa (raw, json) Hash identifier: jSh9q3AK9ISQZKvs8nPnTNbSzsUN83HLhx9nbNyWFM0= Subject key identifier: D3:56:D7:36:5B:5C:20:56:CA:39:8B:47:36:22:4A:0A:F2:94:F6:89 Certificate issuer: /CN=8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE Certificate serial: 1530A6A5E9E565156EDA8AABF8159A9CD86F8854 Authority key identifier: 8D:47:3B:7B:41:E3:D6:22:DF:B3:B6:0D:5E:B9:46:99:8F:BE:7E:AE Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/3230322e35372e3230322e302f32342d3234203d3e203137363231.roa Signing time: Fri 17 Apr 2026 06:23:24 +0000 ROA not before: Fri 17 Apr 2026 06:18:24 +0000 ROA not after: Fri 16 Apr 2027 06:23:24 +0000 asID: 17621 IP address blocks: 202.57.202.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.crl rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 12:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:30:a6:a5:e9:e5:65:15:6e:da:8a:ab:f8:15:9a:9c:d8:6f:88:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE Validity Not Before: Apr 17 06:18:24 2026 GMT Not After : Apr 16 06:23:24 2027 GMT Subject: CN=D356D7365B5C2056CA398B4736224A0AF294F689 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:02:8e:44:53:3c:ab:3a:ae:34:35:00:a0:02: fb:84:83:5e:3e:93:0a:70:28:4b:93:ad:21:7b:52: ad:95:cc:81:5e:b5:30:eb:a0:9d:b7:c0:7b:15:f5: fe:a5:41:9c:dc:99:59:5b:e4:66:3f:99:12:1d:fa: ba:dc:ab:8a:1a:88:02:87:cc:22:46:29:d6:64:06: 65:01:85:fa:23:97:70:3c:54:c2:23:51:29:27:cd: 7a:35:e8:e9:68:7d:82:39:f6:37:53:5c:90:8e:c3: db:b5:8e:0b:01:cd:c0:eb:98:95:d5:50:fa:1e:34: c2:a9:bc:8b:a0:ca:2c:5b:a3:90:54:b6:30:52:df: 53:a0:1d:73:ed:31:e9:d5:31:ed:ac:44:48:0f:05: 07:6c:68:ac:e6:53:9c:9c:3c:1f:f8:28:f7:b0:4d: fd:06:03:d4:47:21:39:d1:93:ce:31:88:9b:f8:ae: 77:b9:59:c5:2c:38:43:b6:2c:38:6f:45:60:08:8d: fc:53:0e:d5:eb:3d:29:5e:d2:f6:00:98:bd:03:3d: d7:ce:d5:2e:d4:af:1f:51:fd:d6:c6:79:df:e1:d2: 0c:dd:5a:f7:d1:84:d9:29:de:7e:a3:55:be:75:ec: 24:46:a6:36:cc:0e:8a:28:8e:e3:ca:2f:51:52:6a: d8:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:56:D7:36:5B:5C:20:56:CA:39:8B:47:36:22:4A:0A:F2:94:F6:89 X509v3 Authority Key Identifier: keyid:8D:47:3B:7B:41:E3:D6:22:DF:B3:B6:0D:5E:B9:46:99:8F:BE:7E:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/3230322e35372e3230322e302f32342d3234203d3e203137363231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.57.202.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:2a:0f:4b:3e:1c:fb:cf:f8:f8:c1:9b:35:84:15:59:95:0c: 46:9f:dd:b3:00:f9:4f:97:ae:0c:10:39:37:02:e3:78:e9:b6: 06:a5:e9:b0:e8:54:11:e0:9c:14:cd:08:81:b1:46:d6:fb:24: e7:1f:c6:33:1c:4c:bd:7f:41:5a:ae:c1:46:26:e9:02:96:06: 90:c8:41:da:94:02:81:56:63:f5:05:55:cf:d2:57:71:b0:b2: c8:3b:b1:8b:3d:91:72:19:d8:8a:09:21:da:b6:3a:e5:85:08: 9b:1d:33:5f:67:25:ff:bf:9d:11:3c:cd:79:01:93:b1:31:0a: b0:bf:fc:b7:60:d8:76:ac:5b:ae:dd:80:b9:f3:65:e0:57:79: a5:6c:fc:e0:a0:87:8c:f8:04:9c:63:81:1a:d3:e3:98:d6:d5: 8c:67:c6:bd:99:29:05:d7:31:df:99:cf:6d:8c:40:21:ae:11: 74:87:c6:35:bb:8a:7c:5c:9f:e1:07:38:5f:c0:c3:63:1c:0a: a5:69:cd:1c:62:a4:07:26:5c:fd:93:af:e0:f2:46:ba:93:b7: 6d:b6:75:82:9a:a9:4f:f6:99:ea:4d:81:e2:2a:98:a2:52:02: 4a:c0:8e:4e:2f:c6:6f:03:81:c1:31:5a:45:35:bb:d7:26:d7: a9:c8:02:71 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUFTCmpenlZRVu2oqr+BWanNhviFQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEQ0NzNCN0I0MUUzRDYyMkRGQjNCNjBENUVCOTQ2OTk4 RkJFN0VBRTAeFw0yNjA0MTcwNjE4MjRaFw0yNzA0MTYwNjIzMjRaMDMxMTAvBgNV BAMTKEQzNTZENzM2NUI1QzIwNTZDQTM5OEI0NzM2MjI0QTBBRjI5NEY2ODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3Ao5EUzyrOq40NQCgAvuEg14+ kwpwKEuTrSF7Uq2VzIFetTDroJ23wHsV9f6lQZzcmVlb5GY/mRId+rrcq4oaiAKH zCJGKdZkBmUBhfojl3A8VMIjUSknzXo16OlofYI59jdTXJCOw9u1jgsBzcDrmJXV UPoeNMKpvIugyixbo5BUtjBS31OgHXPtMenVMe2sREgPBQdsaKzmU5ycPB/4KPew Tf0GA9RHITnRk84xiJv4rne5WcUsOEO2LDhvRWAIjfxTDtXrPSle0vYAmL0DPdfO 1S7Urx9R/dbGed/h0gzdWvfRhNkp3n6jVb517CRGpjbMDooojuPKL1FSatj7AgMB AAGjggIUMIICEDAdBgNVHQ4EFgQU01bXNltcIFbKOYtHNiJKCvKU9okwHwYDVR0j BBgwFoAUjUc7e0Hj1iLfs7YNXrlGmY++fq4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjcyMzM3MjE3OTQ1OC8wLzhENDczQjdCNDFFM0Q2MjJERkIzQjYwRDVFQjk0 Njk5OEZCRTdFQUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOEQ0NzNCN0I0MUUzRDYyMkRGQjNCNjBENUVCOTQ2OTk4RkJFN0VBRS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3NjcyMzM3MjE3OTQ1OC8wLzMyMzAzMjJlMzUz NzJlMzIzMDMyMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzNzM2MzIzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAMo5yjANBgkqhkiG9w0BAQsFAAOCAQEACyoPSz4c+8/4+MGbNYQVWZUM Rp/dswD5T5euDBA5NwLjeOm2BqXpsOhUEeCcFM0IgbFG1vsk5x/GMxxMvX9BWq7B RibpApYGkMhB2pQCgVZj9QVVz9JXcbCyyDuxiz2RchnYigkh2rY65YUImx0zX2cl /7+dETzNeQGTsTEKsL/8t2DYdqxbrt2AufNl4Fd5pWz84KCHjPgEnGOBGtPjmNbV jGfGvZkpBdcx35nPbYxAIa4RdIfGNbuKfFyf4Qc4X8DDYxwKpWnNHGKkByZc/ZOv 4PJGupO3bbZ1gpqpT/aZ6k2B4iqYolICSsCOTi/GbwOBwTFaRTW71ybXqcgCcQ== -----END CERTIFICATE-----Generated at Fri Apr 17 19:43:12 2026 by rpki-client