$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576723372048386/0/3230322e3135302e31382e302f32342d3234203d3e203233373731.roa File: 3230322e3135302e31382e302f32342d3234203d3e203233373731.roa (raw, json) Hash identifier: 8sE5JMIq6pzIiNUoKNqZt1ME8ALHGay+vymJzWD4hRw= Subject key identifier: 36:29:79:A4:6D:AD:52:AA:B4:56:22:0F:05:BD:D2:65:FE:CD:63:92 Certificate issuer: /CN=FB7B794F123725FE800A647F3F7E8BE99B1F5B2C Certificate serial: 749887A5D9DC77A4463221FE14BD4EF2F92E7E46 Authority key identifier: FB:7B:79:4F:12:37:25:FE:80:0A:64:7F:3F:7E:8B:E9:9B:1F:5B:2C Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/FB7B794F123725FE800A647F3F7E8BE99B1F5B2C.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576723372048386/0/3230322e3135302e31382e302f32342d3234203d3e203233373731.roa Signing time: Mon 20 Apr 2026 02:23:22 +0000 ROA not before: Mon 20 Apr 2026 02:18:22 +0000 ROA not after: Mon 19 Apr 2027 02:23:22 +0000 asID: 23771 IP address blocks: 202.150.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576723372048386/0/FB7B794F123725FE800A647F3F7E8BE99B1F5B2C.crl rsync://rpki-rps.cnnic.cn/repo/A1065576723372048386/0/FB7B794F123725FE800A647F3F7E8BE99B1F5B2C.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/FB7B794F123725FE800A647F3F7E8BE99B1F5B2C.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 09:06:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:98:87:a5:d9:dc:77:a4:46:32:21:fe:14:bd:4e:f2:f9:2e:7e:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB7B794F123725FE800A647F3F7E8BE99B1F5B2C Validity Not Before: Apr 20 02:18:22 2026 GMT Not After : Apr 19 02:23:22 2027 GMT Subject: CN=362979A46DAD52AAB456220F05BDD265FECD6392 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:54:e4:2c:79:04:db:81:02:fe:f7:0b:f7:3a: 37:c1:3c:15:ff:85:36:28:70:cf:9c:8d:32:69:8a: 7a:7b:40:55:8c:14:7b:cc:30:6e:3d:84:87:94:a7: d9:4b:5b:55:49:84:6a:68:ac:da:db:21:1e:f5:73: 2e:74:18:7b:47:d1:3e:26:18:c4:01:97:59:30:12: 8f:80:73:70:dd:34:a8:19:81:b6:9c:55:66:fb:a4: ef:0a:2c:4c:03:24:67:5a:41:57:ae:4d:68:44:82: 04:30:d1:ee:79:7d:5e:b7:c3:bc:b4:05:69:4a:74: fc:2f:d2:df:54:52:af:ab:b7:64:ab:18:37:82:15: 14:5d:1f:c8:3d:40:ea:d8:cd:cb:d2:69:0a:30:fb: 7e:ce:71:4d:aa:70:bb:e9:ab:b7:fb:2c:3a:68:b4: a7:91:19:22:4d:43:7d:71:7b:9d:26:53:67:f2:f9: b1:7b:e2:49:3e:a9:29:7d:a3:41:b0:6a:3d:ed:85: b5:2e:3c:58:00:79:b3:26:2d:84:bc:0c:2a:cb:bc: 73:f0:92:41:17:14:af:a5:19:a3:25:ba:9e:b7:6f: 45:e0:0c:56:df:f6:cb:49:aa:f4:50:49:22:da:6f: 9c:b9:78:c0:ca:a0:aa:da:bd:9e:a6:bb:f4:68:aa: 6a:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:29:79:A4:6D:AD:52:AA:B4:56:22:0F:05:BD:D2:65:FE:CD:63:92 X509v3 Authority Key Identifier: keyid:FB:7B:79:4F:12:37:25:FE:80:0A:64:7F:3F:7E:8B:E9:9B:1F:5B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576723372048386/0/FB7B794F123725FE800A647F3F7E8BE99B1F5B2C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/FB7B794F123725FE800A647F3F7E8BE99B1F5B2C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576723372048386/0/3230322e3135302e31382e302f32342d3234203d3e203233373731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.150.18.0/24 Signature Algorithm: sha256WithRSAEncryption 44:88:25:54:5c:c9:4d:cb:6f:91:7b:46:32:6a:e8:e3:f4:1e: 99:6e:d4:15:38:1b:ef:44:4b:65:28:a7:ca:1b:a7:d0:fb:ec: 99:84:e1:ef:f9:42:9f:f0:0a:ad:82:5c:ca:b8:4e:f0:dd:cc: 61:b0:af:72:e2:48:85:ef:07:04:70:2d:61:08:c7:72:c8:8b: e4:84:fa:b1:0c:38:12:b2:6a:65:58:55:f7:98:12:f1:23:06: 87:fb:79:04:16:cf:f2:32:25:5d:d0:e1:ca:2a:81:5d:6b:a1: 1b:e1:a6:d1:8d:d5:a3:31:2b:25:e3:10:06:44:e9:66:74:24: 85:5e:a6:7b:4d:9c:c4:ed:65:88:49:ff:33:e2:89:61:ef:02: 9e:00:8b:82:38:4a:ba:27:32:85:eb:26:c2:c9:3b:9e:1c:f9: fe:36:ae:77:64:bf:61:0e:22:07:7c:03:64:d5:10:d0:2b:d8: 36:78:a9:41:6f:ad:1b:b2:59:46:89:de:43:74:26:ad:a1:28: c2:de:e8:0d:db:59:9f:2d:ac:bd:d8:95:a7:fd:a6:b9:d0:25: be:4e:48:df:4b:bc:e7:7d:4f:33:a8:23:7a:e9:90:b1:e5:cb: 34:a7:23:13:a7:13:55:ae:29:28:2e:3d:22:bf:aa:1f:87:9e: c6:47:59:f2 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUdJiHpdncd6RGMiH+FL1O8vkufkYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkI3Qjc5NEYxMjM3MjVGRTgwMEE2NDdGM0Y3RThCRTk5 QjFGNUIyQzAeFw0yNjA0MjAwMjE4MjJaFw0yNzA0MTkwMjIzMjJaMDMxMTAvBgNV BAMTKDM2Mjk3OUE0NkRBRDUyQUFCNDU2MjIwRjA1QkREMjY1RkVDRDYzOTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrVOQseQTbgQL+9wv3OjfBPBX/ hTYocM+cjTJpinp7QFWMFHvMMG49hIeUp9lLW1VJhGporNrbIR71cy50GHtH0T4m GMQBl1kwEo+Ac3DdNKgZgbacVWb7pO8KLEwDJGdaQVeuTWhEggQw0e55fV63w7y0 BWlKdPwv0t9UUq+rt2SrGDeCFRRdH8g9QOrYzcvSaQow+37OcU2qcLvpq7f7LDpo tKeRGSJNQ31xe50mU2fy+bF74kk+qSl9o0Gwaj3thbUuPFgAebMmLYS8DCrLvHPw kkEXFK+lGaMlup63b0XgDFbf9stJqvRQSSLab5y5eMDKoKravZ6mu/RoqmrnAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUNil5pG2tUqq0ViIPBb3SZf7NY5IwHwYDVR0j BBgwFoAU+3t5TxI3Jf6ACmR/P36L6ZsfWywwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjcyMzM3MjA0ODM4Ni8wL0ZCN0I3OTRGMTIzNzI1RkU4MDBBNjQ3RjNGN0U4 QkU5OUIxRjVCMkMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRkI3Qjc5NEYxMjM3MjVGRTgwMEE2NDdGM0Y3RThCRTk5QjFGNUIyQy5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3NjcyMzM3MjA0ODM4Ni8wLzMyMzAzMjJlMzEz NTMwMmUzMTM4MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzMzM3MzczMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAMqWEjANBgkqhkiG9w0BAQsFAAOCAQEARIglVFzJTctvkXtGMmro4/Qe mW7UFTgb70RLZSinyhun0PvsmYTh7/lCn/AKrYJcyrhO8N3MYbCvcuJIhe8HBHAt YQjHcsiL5IT6sQw4ErJqZVhV95gS8SMGh/t5BBbP8jIlXdDhyiqBXWuhG+Gm0Y3V ozErJeMQBkTpZnQkhV6me02cxO1liEn/M+KJYe8CngCLgjhKuicyhesmwsk7nhz5 /jaud2S/YQ4iB3wDZNUQ0CvYNnipQW+tG7JZRoneQ3QmraEowt7oDdtZny2svdiV p/2mudAlvk5I30u8531PM6gjeumQseXLNKcjE6cTVa4pKC49Ir+qH4eexkdZ8g== -----END CERTIFICATE-----Generated at Wed May 13 19:53:45 2026 by rpki-client