$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582741577334786/0/3230322e3138392e33322e302f32312d3332203d3e20313337363930.roa File: 3230322e3138392e33322e302f32312d3332203d3e20313337363930.roa (raw, json) Hash identifier: 4YJIN/+wpiSkA5cXAliaiQiW1VJvJWFgwo2I/PlrvV0= Subject key identifier: C0:7F:A6:97:06:3F:7F:79:35:9B:5B:41:D2:CD:3D:90:81:1C:7F:61 Certificate issuer: /CN=8E80FA24E5DFF3073621050FF18487025A2A5198 Certificate serial: 5FE8F3C917BEED1E53B52C945DB18461B953E8F9 Authority key identifier: 8E:80:FA:24:E5:DF:F3:07:36:21:05:0F:F1:84:87:02:5A:2A:51:98 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8E80FA24E5DFF3073621050FF18487025A2A5198.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582741577334786/0/3230322e3138392e33322e302f32312d3332203d3e20313337363930.roa Signing time: Mon 01 Jun 2026 16:34:01 +0000 ROA not before: Mon 01 Jun 2026 16:29:01 +0000 ROA not after: Mon 31 May 2027 16:34:01 +0000 asID: 137690 IP address blocks: 202.189.32.0/21 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582741577334786/0/8E80FA24E5DFF3073621050FF18487025A2A5198.crl rsync://rpki-rps.cnnic.cn/repo/A1065582741577334786/0/8E80FA24E5DFF3073621050FF18487025A2A5198.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8E80FA24E5DFF3073621050FF18487025A2A5198.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 15:08:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:e8:f3:c9:17:be:ed:1e:53:b5:2c:94:5d:b1:84:61:b9:53:e8:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8E80FA24E5DFF3073621050FF18487025A2A5198 Validity Not Before: Jun 1 16:29:01 2026 GMT Not After : May 31 16:34:01 2027 GMT Subject: CN=C07FA697063F7F79359B5B41D2CD3D90811C7F61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:30:a3:81:d3:69:8d:1f:d9:6b:95:97:63:aa: d6:2d:b8:2e:ed:01:36:ea:57:35:58:d4:65:85:95: af:37:8a:dc:75:40:88:e2:90:f6:1b:90:6e:9a:bb: 17:75:3e:c6:33:8a:79:a1:5a:d0:d0:a6:e1:32:75: cc:9d:8c:d0:cd:fd:7c:cf:d5:3c:49:7d:60:c9:31: 1e:89:7c:2f:0b:10:10:36:bd:02:bd:59:d9:04:e0: ce:3e:9f:71:64:a6:2e:05:0d:3b:78:8b:2e:52:cd: 08:ec:0a:50:d1:1f:dc:10:9c:54:e4:f7:fb:a2:d8: fa:1c:e8:09:8a:63:87:3b:9d:7d:a1:83:91:c7:43: 79:e2:94:b8:c0:e8:2c:f7:01:a9:65:33:ca:3b:72: 27:b2:6b:ba:87:57:8a:da:92:c3:a4:76:ac:9b:f1: a6:83:51:be:fb:17:bf:e6:56:16:6f:c6:22:51:1e: c8:63:b8:4f:e7:d6:09:83:68:5b:4c:27:70:19:c5: da:a5:67:91:1c:70:8b:92:6b:37:be:a4:88:47:75: c3:aa:f9:cd:50:0c:31:c2:7e:5a:c9:cd:0f:89:f2: 10:e8:59:fe:e0:bd:d7:23:74:92:c3:97:a0:98:eb: 4d:d6:fc:65:f3:fd:1c:e9:80:43:4b:c9:7c:b6:87: 94:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:7F:A6:97:06:3F:7F:79:35:9B:5B:41:D2:CD:3D:90:81:1C:7F:61 X509v3 Authority Key Identifier: keyid:8E:80:FA:24:E5:DF:F3:07:36:21:05:0F:F1:84:87:02:5A:2A:51:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582741577334786/0/8E80FA24E5DFF3073621050FF18487025A2A5198.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8E80FA24E5DFF3073621050FF18487025A2A5198.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582741577334786/0/3230322e3138392e33322e302f32312d3332203d3e20313337363930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.189.32.0/21 Signature Algorithm: sha256WithRSAEncryption 1e:31:c2:3c:b0:5f:9d:4d:c4:e0:a7:eb:4b:91:35:79:2d:bd: f4:53:2e:95:10:4b:b1:25:e8:f1:4c:a5:57:77:f4:33:f7:1d: 5d:c6:a4:5b:d3:ad:47:3c:9a:31:ee:00:62:5e:10:28:8b:e7: dd:12:21:86:ef:14:1d:fc:88:c8:ab:52:9b:3e:1e:59:f2:66: ee:46:21:35:23:3e:0f:8b:b9:ac:f4:37:bc:89:18:66:8d:38: fd:52:2f:a7:51:95:3d:14:c0:7f:1c:c7:c2:93:83:3f:f4:4a: bd:7d:0e:a6:0d:59:4b:ca:1a:f6:d7:21:05:ef:37:92:c3:99: 1d:16:02:ba:e6:0c:ac:fc:78:39:98:35:14:72:09:f4:53:87: 38:13:cb:9f:3d:d4:ff:b5:78:a5:a4:13:a1:92:09:41:05:06: 27:48:83:32:14:4c:f3:b6:a0:c7:c9:66:b7:c6:df:33:2c:a3: 13:d0:7c:da:c8:23:91:70:1e:14:d0:8a:43:39:94:97:a9:07: b9:45:a6:9e:91:fb:da:89:b8:6a:08:3f:cb:91:b8:1d:de:b5: 5e:55:57:f8:7c:6a:2c:84:1a:b6:db:f1:d4:40:97:28:57:04: d4:5d:4e:21:b2:f4:f3:66:90:31:b6:95:7c:dd:47:2a:c5:d6: c8:45:98:53 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUX+jzyRe+7R5TtSyUXbGEYblT6PkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEU4MEZBMjRFNURGRjMwNzM2MjEwNTBGRjE4NDg3MDI1 QTJBNTE5ODAeFw0yNjA2MDExNjI5MDFaFw0yNzA1MzExNjM0MDFaMDMxMTAvBgNV BAMTKEMwN0ZBNjk3MDYzRjdGNzkzNTlCNUI0MUQyQ0QzRDkwODExQzdGNjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCMKOB02mNH9lrlZdjqtYtuC7t ATbqVzVY1GWFla83itx1QIjikPYbkG6auxd1PsYzinmhWtDQpuEydcydjNDN/XzP 1TxJfWDJMR6JfC8LEBA2vQK9WdkE4M4+n3Fkpi4FDTt4iy5SzQjsClDRH9wQnFTk 9/ui2Poc6AmKY4c7nX2hg5HHQ3nilLjA6Cz3AallM8o7cieya7qHV4raksOkdqyb 8aaDUb77F7/mVhZvxiJRHshjuE/n1gmDaFtMJ3AZxdqlZ5EccIuSaze+pIhHdcOq +c1QDDHCflrJzQ+J8hDoWf7gvdcjdJLDl6CY603W/GXz/RzpgENLyXy2h5SvAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUwH+mlwY/f3k1m1tB0s09kIEcf2EwHwYDVR0j BBgwFoAUjoD6JOXf8wc2IQUP8YSHAloqUZgwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4Mjc0MTU3NzMzNDc4Ni8wLzhFODBGQTI0RTVERkYzMDczNjIxMDUwRkYxODQ4 NzAyNUEyQTUxOTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOEU4MEZBMjRFNURGRjMwNzM2MjEwNTBGRjE4NDg3MDI1QTJBNTE5OC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1ODI3NDE1NzczMzQ3ODYvMC8zMjMwMzIyZTMx MzgzOTJlMzMzMjJlMzAyZjMyMzEyZDMzMzIyMDNkM2UyMDMxMzMzNzM2MzkzMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEA8q9IDANBgkqhkiG9w0BAQsFAAOCAQEAHjHCPLBfnU3E4KfrS5E1 eS299FMulRBLsSXo8UylV3f0M/cdXcakW9OtRzyaMe4AYl4QKIvn3RIhhu8UHfyI yKtSmz4eWfJm7kYhNSM+D4u5rPQ3vIkYZo04/VIvp1GVPRTAfxzHwpODP/RKvX0O pg1ZS8oa9tchBe83ksOZHRYCuuYMrPx4OZg1FHIJ9FOHOBPLnz3U/7V4paQToZIJ QQUGJ0iDMhRM87agx8lmt8bfMyyjE9B82sgjkXAeFNCKQzmUl6kHuUWmnpH72om4 agg/y5G4Hd61XlVX+HxqLIQattvx1ECXKFcE1F1OIbL082aQMbaVfN1HKsXWyEWY Uw== -----END CERTIFICATE-----Generated at Sun Jun 14 04:12:16 2026 by rpki-client