$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065588553129721859/0/32372e302e3230392e302f32342d3234203d3e2030.roa File: 32372e302e3230392e302f32342d3234203d3e2030.roa (raw, json) Hash identifier: CUKVy69XJ0IxgHg9BdS357BT6wX99VQtWzsK+Z4Nsjw= Subject key identifier: 6C:37:88:4C:3F:D4:3A:55:5F:E9:B0:4F:3B:9C:64:D8:D2:52:D4:C4 Certificate issuer: /CN=9B22C19D842E45AA84439366694E4C828C309CEE Certificate serial: 069A367E91E00654D36C7E237C220A474E882AEA Authority key identifier: 9B:22:C1:9D:84:2E:45:AA:84:43:93:66:69:4E:4C:82:8C:30:9C:EE Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9B22C19D842E45AA84439366694E4C828C309CEE.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065588553129721859/0/32372e302e3230392e302f32342d3234203d3e2030.roa Signing time: Thu 16 Apr 2026 08:53:00 +0000 ROA not before: Thu 16 Apr 2026 08:48:00 +0000 ROA not after: Thu 15 Apr 2027 08:53:00 +0000 asID: 0 IP address blocks: 27.0.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065588553129721859/0/9B22C19D842E45AA84439366694E4C828C309CEE.crl rsync://rpki-rps.cnnic.cn/repo/A1065588553129721859/0/9B22C19D842E45AA84439366694E4C828C309CEE.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9B22C19D842E45AA84439366694E4C828C309CEE.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 17 Apr 2026 12:51:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:9a:36:7e:91:e0:06:54:d3:6c:7e:23:7c:22:0a:47:4e:88:2a:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9B22C19D842E45AA84439366694E4C828C309CEE Validity Not Before: Apr 16 08:48:00 2026 GMT Not After : Apr 15 08:53:00 2027 GMT Subject: CN=6C37884C3FD43A555FE9B04F3B9C64D8D252D4C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:d5:33:d6:99:4c:cb:79:ca:01:ac:7d:b8:80: 3a:89:fa:13:fd:ff:fe:c5:44:83:b1:95:1a:74:db: ae:54:4f:ef:91:42:05:c2:be:45:af:c8:82:28:d3: ab:9e:86:38:68:be:dd:bd:24:a6:bb:b5:e2:50:30: 8c:2c:97:cc:f7:7c:77:d7:d7:93:68:5c:ef:ee:8c: 20:aa:a3:85:eb:63:cc:68:5f:8f:58:b2:9d:1e:32: 96:3e:87:4c:0b:e2:53:29:7f:d5:d0:fc:e6:e3:74: f2:e9:30:d0:cf:f6:e4:93:6c:10:11:f2:d7:e2:4a: 07:41:64:2a:03:b5:fb:71:23:18:7f:81:f2:d3:91: fb:f3:24:98:04:1d:fd:54:be:1e:92:8a:8f:a6:14: cd:f6:0c:13:4b:5e:b7:24:42:30:8b:da:07:5a:1b: eb:fb:58:1a:67:e4:ee:7e:56:22:5b:45:cd:62:bf: 72:1d:d7:bd:11:a6:81:58:5a:3a:96:e4:4b:f5:dc: 51:e5:e2:93:1b:a4:1c:eb:48:36:ab:7a:97:a9:22: cc:74:17:73:ab:68:cc:56:25:69:0e:27:c0:cb:4a: 45:e9:8d:c5:24:78:b3:c9:8f:c2:1f:68:20:cc:d9: 0a:9b:0a:dc:96:b8:a6:bb:e4:0a:1b:7f:c1:46:c0: d2:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:37:88:4C:3F:D4:3A:55:5F:E9:B0:4F:3B:9C:64:D8:D2:52:D4:C4 X509v3 Authority Key Identifier: keyid:9B:22:C1:9D:84:2E:45:AA:84:43:93:66:69:4E:4C:82:8C:30:9C:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129721859/0/9B22C19D842E45AA84439366694E4C828C309CEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9B22C19D842E45AA84439366694E4C828C309CEE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129721859/0/32372e302e3230392e302f32342d3234203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.0.209.0/24 Signature Algorithm: sha256WithRSAEncryption 69:40:3c:fd:a7:40:3b:c7:1c:c0:4e:b1:b2:1e:6d:84:84:da: 83:6c:3b:d3:80:8e:f3:e6:8d:e1:cd:55:19:4a:9b:08:9c:64: 2d:58:a0:09:62:74:7c:41:2b:17:79:da:0c:43:4f:1b:93:32: ac:b7:e0:70:48:e9:bf:46:9d:11:9f:e7:84:77:53:7f:f3:83: 62:fb:cd:97:af:f6:00:c6:5d:f2:f2:4a:b8:41:9c:89:07:68: 79:ba:ee:07:03:f1:46:7e:10:c4:4c:64:63:36:43:d5:66:f9: 7c:f0:68:ff:96:1c:a7:33:01:78:bd:8e:35:f9:97:b5:c4:bd: 33:90:e9:4e:b8:83:0f:9b:d5:e6:a5:7b:9a:d5:4d:0d:d8:fb: fa:6c:03:47:df:ca:d2:90:3f:6a:50:b4:6c:33:3a:0b:44:f4: 22:1d:3c:1a:9d:2b:08:41:f9:8f:6e:cc:65:35:b5:4c:a6:21: 53:01:29:bc:7e:4a:bc:75:2d:0c:01:73:05:63:33:43:ea:40: 7f:0e:41:e7:67:13:16:92:60:0e:3e:cf:80:34:3e:f7:bc:5f: 28:b8:d1:28:d9:6e:35:3f:e6:22:a0:fe:8d:7d:37:8f:0d:03: 6f:3c:b2:95:95:ec:d2:88:f9:cf:81:92:40:51:ae:b9:60:93: 33:1d:5a:3e -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgIUBpo2fpHgBlTTbH4jfCIKR06IKuowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUIyMkMxOUQ4NDJFNDVBQTg0NDM5MzY2Njk0RTRDODI4 QzMwOUNFRTAeFw0yNjA0MTYwODQ4MDBaFw0yNzA0MTUwODUzMDBaMDMxMTAvBgNV BAMTKDZDMzc4ODRDM0ZENDNBNTU1RkU5QjA0RjNCOUM2NEQ4RDI1MkQ0QzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC71TPWmUzLecoBrH24gDqJ+hP9 //7FRIOxlRp0265UT++RQgXCvkWvyIIo06uehjhovt29JKa7teJQMIwsl8z3fHfX 15NoXO/ujCCqo4XrY8xoX49Ysp0eMpY+h0wL4lMpf9XQ/ObjdPLpMNDP9uSTbBAR 8tfiSgdBZCoDtftxIxh/gfLTkfvzJJgEHf1Uvh6Sio+mFM32DBNLXrckQjCL2gda G+v7WBpn5O5+ViJbRc1iv3Id170RpoFYWjqW5Ev13FHl4pMbpBzrSDarepepIsx0 F3OraMxWJWkOJ8DLSkXpjcUkeLPJj8IfaCDM2QqbCtyWuKa75Aobf8FGwNLzAgMB AAGjggIHMIICAzAdBgNVHQ4EFgQUbDeITD/UOlVf6bBPO5xk2NJS1MQwHwYDVR0j BBgwFoAUmyLBnYQuRaqEQ5NmaU5MgowwnO4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4ODU1MzEyOTcyMTg1OS8wLzlCMjJDMTlEODQyRTQ1QUE4NDQzOTM2NjY5NEU0 QzgyOEMzMDlDRUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOUIyMkMxOUQ4NDJFNDVBQTg0NDM5MzY2Njk0RTRDODI4QzMwOUNFRS5jZXIw gYAGCCsGAQUFBwELBHQwcjBwBggrBgEFBQcwC4ZkcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTg4NTUzMTI5NzIxODU5LzAvMzIzNzJlMzAyZTMy MzAzOTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMwLnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAGwDRMA0G CSqGSIb3DQEBCwUAA4IBAQBpQDz9p0A7xxzATrGyHm2EhNqDbDvTgI7z5o3hzVUZ SpsInGQtWKAJYnR8QSsXedoMQ08bkzKst+BwSOm/Rp0Rn+eEd1N/84Ni+82Xr/YA xl3y8kq4QZyJB2h5uu4HA/FGfhDETGRjNkPVZvl88Gj/lhynMwF4vY41+Ze1xL0z kOlOuIMPm9XmpXua1U0N2Pv6bANH38rSkD9qULRsMzoLRPQiHTwanSsIQfmPbsxl NbVMpiFTASm8fkq8dS0MAXMFYzND6kB/DkHnZxMWkmAOPs+AND73vF8ouNEo2W41 P+YioP6NfTePDQNvPLKVlezSiPnPgZJAUa65YJMzHVo+ -----END CERTIFICATE-----Generated at Thu Apr 16 22:35:39 2026 by rpki-client