$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3230322e342e3235322e302f32322d3232203d3e2034383038.roa File: 3230322e342e3235322e302f32322d3232203d3e2034383038.roa (raw, json) Hash identifier: aDgmYdE0L8C1WF0rFZgXWsdsNPB9y2DOEaJwIrAZ+ns= Subject key identifier: 55:81:CF:2C:63:F8:A8:68:FA:A7:5E:3B:A5:D8:31:DE:C7:88:C7:31 Certificate issuer: /CN=AE487B72C4F38EA548F6721BB60B773705BD9515 Certificate serial: 7807F77E41FFBB7D4316DF21BF60C5375E49A9E5 Authority key identifier: AE:48:7B:72:C4:F3:8E:A5:48:F6:72:1B:B6:0B:77:37:05:BD:95:15 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3230322e342e3235322e302f32322d3232203d3e2034383038.roa Signing time: Tue 12 May 2026 06:02:06 +0000 ROA not before: Tue 12 May 2026 05:57:06 +0000 ROA not after: Tue 11 May 2027 06:02:06 +0000 asID: 4808 IP address blocks: 202.4.252.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:17:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:07:f7:7e:41:ff:bb:7d:43:16:df:21:bf:60:c5:37:5e:49:a9:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AE487B72C4F38EA548F6721BB60B773705BD9515 Validity Not Before: May 12 05:57:06 2026 GMT Not After : May 11 06:02:06 2027 GMT Subject: CN=5581CF2C63F8A868FAA75E3BA5D831DEC788C731 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:0a:a9:c6:6b:75:ad:71:0d:2e:b7:c5:bf:aa: 72:fe:66:a5:2d:fc:8e:c2:60:2d:e3:32:47:80:ab: 05:07:86:ce:a7:2d:6b:bc:b1:aa:35:a1:64:ad:06: 3b:50:b1:c1:bc:a1:f5:a6:93:89:9b:83:a1:6d:e7: a4:47:57:82:9d:f6:56:31:c1:fd:38:4c:39:dc:ec: 56:44:86:bf:23:f5:ae:4e:f0:ac:c3:2d:b3:4d:72: 04:15:11:a3:5f:7f:ca:65:8c:23:f7:cc:ae:c1:b6: 1a:80:f9:0d:86:0a:55:35:91:7d:0b:b9:81:54:35: c1:8f:39:6c:43:8a:ea:27:89:49:3a:65:83:3e:36: 11:0e:a9:15:0a:0c:42:e6:47:86:14:96:f8:c2:b0: f0:bc:47:4b:ef:58:2d:70:44:52:cf:af:8c:38:55: d4:7c:75:40:d9:9a:e5:9c:1c:b7:91:ef:8b:e6:71: 54:9b:80:10:73:9b:dd:be:d6:8e:aa:65:27:c6:bd: a4:cc:db:8c:ed:70:78:02:48:54:df:8d:4f:15:ed: 47:a3:6b:f5:81:37:8d:d2:aa:b5:07:29:84:30:0d: d2:d8:83:34:58:d1:4e:d8:af:c7:16:cd:45:6c:14: 2c:1c:e8:e4:cf:56:2d:aa:82:ce:1d:16:99:f5:40: f3:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:81:CF:2C:63:F8:A8:68:FA:A7:5E:3B:A5:D8:31:DE:C7:88:C7:31 X509v3 Authority Key Identifier: keyid:AE:48:7B:72:C4:F3:8E:A5:48:F6:72:1B:B6:0B:77:37:05:BD:95:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3230322e342e3235322e302f32322d3232203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.4.252.0/22 Signature Algorithm: sha256WithRSAEncryption 0a:f5:57:d3:4d:70:86:cb:6f:2f:92:ad:39:6f:c9:38:7b:bb: 36:ef:47:8b:06:40:f4:a1:52:64:0b:b1:8f:f1:2b:cd:74:50: 81:21:23:bb:84:4f:7e:1f:45:80:5f:33:46:2a:8a:86:5b:72: 62:38:43:fe:0f:c9:bc:19:cb:59:37:da:35:0f:e0:28:fc:01: f3:f7:1a:aa:76:3d:6d:f5:84:45:de:21:ee:39:28:83:ac:b4: f5:5f:4f:7a:94:40:2b:01:73:91:5d:56:d1:f0:21:04:55:52: b2:bf:c1:78:8b:86:38:86:4b:f6:62:07:e1:b7:67:a5:48:30: ac:55:70:c1:5a:09:f3:08:c7:07:d3:27:2e:64:1e:a8:31:72: 69:21:d5:a7:00:6e:02:cb:44:6d:c1:a8:67:b2:e7:6c:b3:f7: ab:6f:c2:8f:ec:a1:97:66:8c:f0:b7:38:f8:8e:96:46:36:cd: d5:7c:00:47:00:42:b0:19:65:cb:e7:94:04:3d:ed:f5:dd:0a: 27:2e:47:70:be:00:7b:20:5c:52:a1:e2:d0:2e:66:c0:eb:1e: 68:b3:32:23:ca:d3:0c:c6:80:fa:fc:94:66:75:02:d0:9c:9d: ed:d1:c6:32:de:a6:d6:0f:00:7e:64:28:43:d4:3e:c2:03:1d: 3a:a4:85:93 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUeAf3fkH/u31DFt8hv2DFN15JqeUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUU0ODdCNzJDNEYzOEVBNTQ4RjY3MjFCQjYwQjc3Mzcw NUJEOTUxNTAeFw0yNjA1MTIwNTU3MDZaFw0yNzA1MTEwNjAyMDZaMDMxMTAvBgNV BAMTKDU1ODFDRjJDNjNGOEE4NjhGQUE3NUUzQkE1RDgzMURFQzc4OEM3MzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsCqnGa3WtcQ0ut8W/qnL+ZqUt /I7CYC3jMkeAqwUHhs6nLWu8sao1oWStBjtQscG8ofWmk4mbg6Ft56RHV4Kd9lYx wf04TDnc7FZEhr8j9a5O8KzDLbNNcgQVEaNff8pljCP3zK7BthqA+Q2GClU1kX0L uYFUNcGPOWxDiuoniUk6ZYM+NhEOqRUKDELmR4YUlvjCsPC8R0vvWC1wRFLPr4w4 VdR8dUDZmuWcHLeR74vmcVSbgBBzm92+1o6qZSfGvaTM24ztcHgCSFTfjU8V7Uej a/WBN43SqrUHKYQwDdLYgzRY0U7Yr8cWzUVsFCwc6OTPVi2qgs4dFpn1QPMjAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUVYHPLGP4qGj6p147pdgx3seIxzEwHwYDVR0j BBgwFoAUrkh7csTzjqVI9nIbtgt3NwW9lRUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0Nzk0MzkzOS8wL0FFNDg3QjcyQzRGMzhFQTU0OEY2NzIxQkI2MEI3 NzM3MDVCRDk1MTUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQUU0ODdCNzJDNEYzOEVBNTQ4RjY3MjFCQjYwQjc3MzcwNUJEOTUxNS5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc2MTk5OTQ3OTQzOTM5LzAvMzIzMDMyMmUzNDJl MzIzNTMyMmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzQzODMwMzgucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BALKBPwwDQYJKoZIhvcNAQELBQADggEBAAr1V9NNcIbLby+SrTlvyTh7uzbvR4sG QPShUmQLsY/xK810UIEhI7uET34fRYBfM0YqioZbcmI4Q/4PybwZy1k32jUP4Cj8 AfP3Gqp2PW31hEXeIe45KIOstPVfT3qUQCsBc5FdVtHwIQRVUrK/wXiLhjiGS/Zi B+G3Z6VIMKxVcMFaCfMIxwfTJy5kHqgxcmkh1acAbgLLRG3BqGey52yz96tvwo/s oZdmjPC3OPiOlkY2zdV8AEcAQrAZZcvnlAQ97fXdCicuR3C+AHsgXFKh4tAuZsDr HmizMiPK0wzGgPr8lGZ1AtCcne3RxjLeptYPAH5kKEPUPsIDHTqkhZM= -----END CERTIFICATE-----Generated at Wed May 13 12:41:01 2026 by rpki-client