$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097328917783511042/0/3230322e3133362e37322e302f32332d3233203d3e2034383437.roa File: 3230322e3133362e37322e302f32332d3233203d3e2034383437.roa (raw, json) Hash identifier: 0UAAnHGmhpgwD4Y3MO/hfVMnkyeKLb0Kzm5dHFM3DRY= Subject key identifier: 4D:98:AC:72:08:39:14:CE:AF:6B:53:DE:A5:8D:1D:07:5D:05:26:80 Certificate issuer: /CN=289251F0DCA3FF6ACE101E469CCB4C906CB60D6E Certificate serial: B3C2074F1F3611633CCAA16EE86F0FFA36D480 Authority key identifier: 28:92:51:F0:DC:A3:FF:6A:CE:10:1E:46:9C:CB:4C:90:6C:B6:0D:6E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/289251F0DCA3FF6ACE101E469CCB4C906CB60D6E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097328917783511042/0/3230322e3133362e37322e302f32332d3233203d3e2034383437.roa Signing time: Fri 17 Apr 2026 01:14:54 +0000 ROA not before: Fri 17 Apr 2026 01:09:54 +0000 ROA not after: Fri 16 Apr 2027 01:14:54 +0000 asID: 4847 IP address blocks: 202.136.72.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097328917783511042/0/289251F0DCA3FF6ACE101E469CCB4C906CB60D6E.crl rsync://rpki-rps.cnnic.cn/repo/A1097328917783511042/0/289251F0DCA3FF6ACE101E469CCB4C906CB60D6E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/289251F0DCA3FF6ACE101E469CCB4C906CB60D6E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 02:19:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: b3:c2:07:4f:1f:36:11:63:3c:ca:a1:6e:e8:6f:0f:fa:36:d4:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=289251F0DCA3FF6ACE101E469CCB4C906CB60D6E Validity Not Before: Apr 17 01:09:54 2026 GMT Not After : Apr 16 01:14:54 2027 GMT Subject: CN=4D98AC72083914CEAF6B53DEA58D1D075D052680 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:1b:78:38:ec:ff:05:71:56:f7:f0:6c:44:f6: 12:97:64:a0:4c:c5:ff:69:c8:c3:97:19:5f:0d:f5: e4:1b:55:56:52:68:c1:5b:bc:08:ca:40:9b:d6:5a: 33:db:5a:ab:2d:59:6d:71:85:64:6d:b8:82:8a:62: 5c:b3:ea:6d:af:3c:74:ab:7e:54:22:d0:f0:9c:19: 16:40:af:f6:a1:09:3d:19:7b:c9:a0:c7:15:d4:65: 86:e4:b9:a2:de:c8:78:ba:a0:d7:d0:31:3c:0a:60: bc:14:aa:6c:31:19:a6:d2:99:d7:69:6b:f2:9a:c3: e7:40:39:c3:74:e1:76:c2:2c:09:be:ee:08:02:64: 00:65:d1:47:56:9d:29:4d:bc:aa:7d:12:92:6d:27: 87:e0:0a:d2:b7:55:36:9c:78:0e:bf:4a:65:c9:57: 5d:06:5f:45:95:71:2a:56:02:b7:a2:7f:ef:93:da: 51:eb:17:23:4d:a8:a3:1a:08:a7:3d:d5:5b:75:0d: 6e:0c:4a:73:09:33:33:81:ec:ea:74:4e:29:77:b2: 94:01:7f:a5:ad:7e:e1:91:27:ba:fb:19:63:a4:01: f1:a7:ab:e1:66:d9:7a:ec:cf:30:db:4f:0a:00:1b: 04:48:1a:34:10:f1:7d:76:0c:b9:62:81:bf:a4:d4: ea:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:98:AC:72:08:39:14:CE:AF:6B:53:DE:A5:8D:1D:07:5D:05:26:80 X509v3 Authority Key Identifier: keyid:28:92:51:F0:DC:A3:FF:6A:CE:10:1E:46:9C:CB:4C:90:6C:B6:0D:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097328917783511042/0/289251F0DCA3FF6ACE101E469CCB4C906CB60D6E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/289251F0DCA3FF6ACE101E469CCB4C906CB60D6E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097328917783511042/0/3230322e3133362e37322e302f32332d3233203d3e2034383437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.136.72.0/23 Signature Algorithm: sha256WithRSAEncryption 83:56:c7:fc:3b:ce:7e:a9:ca:ec:8a:76:08:e0:9f:d3:8f:c6: 96:b2:e2:5d:a1:27:e8:ca:15:79:bb:3d:5e:7c:b9:92:18:0a: 25:c1:9c:5a:68:89:f4:70:44:21:e6:bd:83:3a:b5:b5:e0:25: b1:8c:32:5e:ac:39:28:ad:35:41:6d:4c:de:6b:e2:2f:0c:1f: f8:df:e2:5e:b4:6f:46:d6:8c:ef:3a:49:44:2f:19:0d:44:54: 5c:61:30:ab:96:d1:5b:9e:2f:c6:1a:c0:0b:55:f4:8d:c1:c5: 70:b8:92:7a:cf:02:4d:33:1f:45:72:c7:88:3d:a6:51:03:19: c5:d3:3f:e7:43:0d:d2:ef:29:0b:ea:fa:8c:1e:b0:cd:f3:c0: 84:d7:44:1a:08:7d:ce:76:2a:e7:a0:89:6b:35:55:fe:60:e7: bc:93:b8:cb:73:13:af:dd:1d:f7:ec:e9:42:2a:83:41:99:c3: b1:da:08:01:ce:64:b7:40:6a:33:5d:f2:b7:85:b7:d8:53:ee: f0:0e:3d:3c:8a:0c:f6:92:d9:03:47:94:9c:be:bf:71:47:b2: fd:f7:49:a1:24:ea:58:71:e3:bf:b3:a5:ef:2b:39:20:4d:8c: a2:15:ed:f2:59:9d:f0:47:47:0b:3c:4c:a9:7f:80:84:74:02: c3:29:f1:63 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUALPCB08fNhFjPMqhbuhvD/o21IAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg5MjUxRjBEQ0EzRkY2QUNFMTAxRTQ2OUNDQjRDOTA2 Q0I2MEQ2RTAeFw0yNjA0MTcwMTA5NTRaFw0yNzA0MTYwMTE0NTRaMDMxMTAvBgNV BAMTKDREOThBQzcyMDgzOTE0Q0VBRjZCNTNERUE1OEQxRDA3NUQwNTI2ODAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChG3g47P8FcVb38GxE9hKXZKBM xf9pyMOXGV8N9eQbVVZSaMFbvAjKQJvWWjPbWqstWW1xhWRtuIKKYlyz6m2vPHSr flQi0PCcGRZAr/ahCT0Ze8mgxxXUZYbkuaLeyHi6oNfQMTwKYLwUqmwxGabSmddp a/Kaw+dAOcN04XbCLAm+7ggCZABl0UdWnSlNvKp9EpJtJ4fgCtK3VTaceA6/SmXJ V10GX0WVcSpWAreif++T2lHrFyNNqKMaCKc91Vt1DW4MSnMJMzOB7Op0Til3spQB f6WtfuGRJ7r7GWOkAfGnq+Fm2XrszzDbTwoAGwRIGjQQ8X12DLligb+k1OoZAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUTZiscgg5FM6va1PepY0dB10FJoAwHwYDVR0j BBgwFoAUKJJR8Nyj/2rOEB5GnMtMkGy2DW4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzMyODkxNzc4MzUxMTA0Mi8wLzI4OTI1MUYwRENBM0ZGNkFDRTEwMUU0NjlDQ0I0 QzkwNkNCNjBENkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjg5MjUxRjBEQ0EzRkY2QUNFMTAxRTQ2OUNDQjRDOTA2Q0I2MEQ2RS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk3MzI4OTE3NzgzNTExMDQyLzAvMzIzMDMyMmUzMTMz MzYyZTM3MzIyZTMwMmYzMjMzMmQzMjMzMjAzZDNlMjAzNDM4MzQzNy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAcqISDANBgkqhkiG9w0BAQsFAAOCAQEAg1bH/DvOfqnK7Ip2COCf04/GlrLi XaEn6MoVebs9Xny5khgKJcGcWmiJ9HBEIea9gzq1teAlsYwyXqw5KK01QW1M3mvi Lwwf+N/iXrRvRtaM7zpJRC8ZDURUXGEwq5bRW54vxhrAC1X0jcHFcLiSes8CTTMf RXLHiD2mUQMZxdM/50MN0u8pC+r6jB6wzfPAhNdEGgh9znYq56CJazVV/mDnvJO4 y3MTr90d9+zpQiqDQZnDsdoIAc5kt0BqM13yt4W32FPu8A49PIoM9pLZA0eUnL6/ cUey/fdJoSTqWHHjv7Ol7ys5IE2MohXt8lmd8EdHCzxMqX+AhHQCwynxYw== -----END CERTIFICATE-----Generated at Fri Apr 17 19:10:08 2026 by rpki-client