$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097083532355829763/0/3230322e36392e32302e302f32342d3234203d3e203233383438.roa File: 3230322e36392e32302e302f32342d3234203d3e203233383438.roa (raw, json) Hash identifier: 2BKyNCWKdO3HeBGAtA9s1FPxSQw2ZNQBEH87b8+xoU0= Subject key identifier: 5D:B4:90:B1:B9:9C:A2:AC:C8:5C:1F:01:9E:F5:A5:95:98:74:8A:0F Certificate issuer: /CN=EDA884A79748D57EB49366704CB6A8110E27042D Certificate serial: 2CB5AD7C626BBC243AF8F5CEECCAE66012885B14 Authority key identifier: ED:A8:84:A7:97:48:D5:7E:B4:93:66:70:4C:B6:A8:11:0E:27:04:2D Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/EDA884A79748D57EB49366704CB6A8110E27042D.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097083532355829763/0/3230322e36392e32302e302f32342d3234203d3e203233383438.roa Signing time: Thu 16 Apr 2026 09:07:32 +0000 ROA not before: Thu 16 Apr 2026 09:02:32 +0000 ROA not after: Thu 15 Apr 2027 09:07:32 +0000 asID: 23848 IP address blocks: 202.69.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097083532355829763/0/EDA884A79748D57EB49366704CB6A8110E27042D.crl rsync://rpki-rps.cnnic.cn/repo/A1097083532355829763/0/EDA884A79748D57EB49366704CB6A8110E27042D.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/EDA884A79748D57EB49366704CB6A8110E27042D.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 05:50:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:b5:ad:7c:62:6b:bc:24:3a:f8:f5:ce:ec:ca:e6:60:12:88:5b:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EDA884A79748D57EB49366704CB6A8110E27042D Validity Not Before: Apr 16 09:02:32 2026 GMT Not After : Apr 15 09:07:32 2027 GMT Subject: CN=5DB490B1B99CA2ACC85C1F019EF5A59598748A0F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:2b:ed:f9:7b:f8:d5:b6:fc:a1:14:1f:6e:3c: e6:05:b9:3e:7c:cc:f7:60:ec:16:2e:8d:6a:c6:72: 7d:b2:02:ec:0e:d9:6a:70:b4:2b:1f:68:8e:dc:d6: bf:46:2b:ab:30:ff:60:93:26:dd:ce:f5:9d:72:dc: 18:bd:98:79:f8:bf:7e:d2:c4:a4:d7:8e:d4:0e:88: 0b:b3:5e:25:14:56:69:e3:94:6b:4b:6b:37:a6:99: 29:87:aa:f6:3e:fe:b0:94:c2:ca:68:33:ab:87:bc: 3f:f2:bb:4b:24:63:52:7c:b0:57:52:21:86:e4:e7: 5f:3d:bd:f2:8d:bf:61:56:df:51:4b:f6:bc:1f:6b: 5a:6c:7b:ae:24:6e:9c:e8:5e:e2:19:ed:f8:a5:78: c4:be:a5:9b:ce:6a:f6:b3:d2:2a:0d:08:d8:ff:f5: 54:78:54:79:65:07:1d:7d:ab:58:1a:d0:0d:9a:78: e5:16:de:ba:d6:76:f7:45:77:26:84:3f:56:51:2b: 6f:d0:ef:86:a4:32:9b:9f:5c:be:ec:61:f5:77:e5: 46:a5:d1:5d:9d:dc:98:90:25:08:5a:38:4d:fa:3c: bb:bc:9f:08:76:16:f4:12:16:d1:8d:47:38:e4:ec: 0a:da:1e:87:c6:ce:be:13:a9:71:e9:4f:7f:95:c7: db:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:B4:90:B1:B9:9C:A2:AC:C8:5C:1F:01:9E:F5:A5:95:98:74:8A:0F X509v3 Authority Key Identifier: keyid:ED:A8:84:A7:97:48:D5:7E:B4:93:66:70:4C:B6:A8:11:0E:27:04:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097083532355829763/0/EDA884A79748D57EB49366704CB6A8110E27042D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/EDA884A79748D57EB49366704CB6A8110E27042D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097083532355829763/0/3230322e36392e32302e302f32342d3234203d3e203233383438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.69.20.0/24 Signature Algorithm: sha256WithRSAEncryption ac:3b:98:4a:9c:ef:b4:f6:cc:ec:c0:f2:be:2d:5b:5f:29:fe: 8c:52:0e:77:38:70:27:13:a9:49:c7:11:6d:4e:63:85:bf:47: 9d:20:20:75:bb:bb:c7:a2:af:50:98:52:26:d8:9a:43:d0:c3: 4a:b4:ab:83:33:b8:7a:10:81:e7:28:69:3c:fb:e5:f3:6b:61: 3f:4a:54:fe:8d:a0:41:b1:13:8f:fd:59:3d:3b:b3:38:1c:c3: 46:a7:06:78:4e:6e:c6:56:d5:9c:d4:78:4f:54:cf:83:08:5c: e1:ff:be:eb:2e:f1:32:79:80:3c:51:87:85:30:3b:3a:00:24: 42:39:d4:bd:9d:b7:59:4f:98:ba:2d:b6:4a:ab:95:aa:99:c6: f3:3b:83:b0:8a:95:68:5c:d2:6f:a8:20:0c:db:b0:be:14:e6: fe:56:80:19:5e:36:4c:21:b8:52:53:2d:61:65:0d:6c:99:06: 27:83:27:47:ce:69:a2:ab:7d:81:c8:02:71:c7:5d:2f:54:b4: 37:dc:c7:06:6c:a1:47:5c:78:a0:55:5d:71:da:b9:37:15:44: c0:b4:93:01:68:f4:99:20:ce:07:90:85:75:ff:04:5e:8f:27: 60:3d:0a:f4:2d:b5:94:e8:54:c2:b4:3b:65:3a:20:12:6b:e8: c5:5a:0a:2c -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIULLWtfGJrvCQ6+PXO7MrmYBKIWxQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRURBODg0QTc5NzQ4RDU3RUI0OTM2NjcwNENCNkE4MTEw RTI3MDQyRDAeFw0yNjA0MTYwOTAyMzJaFw0yNzA0MTUwOTA3MzJaMDMxMTAvBgNV BAMTKDVEQjQ5MEIxQjk5Q0EyQUNDODVDMUYwMTlFRjVBNTk1OTg3NDhBMEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChK+35e/jVtvyhFB9uPOYFuT58 zPdg7BYujWrGcn2yAuwO2WpwtCsfaI7c1r9GK6sw/2CTJt3O9Z1y3Bi9mHn4v37S xKTXjtQOiAuzXiUUVmnjlGtLazemmSmHqvY+/rCUwspoM6uHvD/yu0skY1J8sFdS IYbk5189vfKNv2FW31FL9rwfa1pse64kbpzoXuIZ7fileMS+pZvOavaz0ioNCNj/ 9VR4VHllBx19q1ga0A2aeOUW3rrWdvdFdyaEP1ZRK2/Q74akMpufXL7sYfV35Ual 0V2d3JiQJQhaOE36PLu8nwh2FvQSFtGNRzjk7AraHofGzr4TqXHpT3+Vx9sPAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUXbSQsbmcoqzIXB8BnvWllZh0ig8wHwYDVR0j BBgwFoAU7aiEp5dI1X60k2ZwTLaoEQ4nBC0wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzA4MzUzMjM1NTgyOTc2My8wL0VEQTg4NEE3OTc0OEQ1N0VCNDkzNjY3MDRDQjZB ODExMEUyNzA0MkQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRURBODg0QTc5NzQ4RDU3RUI0OTM2NjcwNENCNkE4MTEwRTI3MDQyRC5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk3MDgzNTMyMzU1ODI5NzYzLzAvMzIzMDMyMmUzNjM5 MmUzMjMwMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzMzM4MzQzOC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAMpFFDANBgkqhkiG9w0BAQsFAAOCAQEArDuYSpzvtPbM7MDyvi1bXyn+jFIO dzhwJxOpSccRbU5jhb9HnSAgdbu7x6KvUJhSJtiaQ9DDSrSrgzO4ehCB5yhpPPvl 82thP0pU/o2gQbETj/1ZPTuzOBzDRqcGeE5uxlbVnNR4T1TPgwhc4f++6y7xMnmA PFGHhTA7OgAkQjnUvZ23WU+Yui22SquVqpnG8zuDsIqVaFzSb6ggDNuwvhTm/laA GV42TCG4UlMtYWUNbJkGJ4MnR85poqt9gcgCccddL1S0N9zHBmyhR1x4oFVdcdq5 NxVEwLSTAWj0mSDOB5CFdf8EXo8nYD0K9C21lOhUwrQ7ZTogEmvoxVoKLA== -----END CERTIFICATE-----Generated at Fri Apr 17 23:25:07 2026 by rpki-client