$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065577241947275265/0/3230322e3137302e3231362e302f32342d3234203d3e203234343237.roa File: 3230322e3137302e3231362e302f32342d3234203d3e203234343237.roa (raw, json) Hash identifier: VAhlOybzXKl74DjpAZWqA5wWuw72zIg3z2/LDN7OZHU= Subject key identifier: BB:F0:75:CF:45:BC:1E:43:E4:DE:FD:1F:61:C0:D3:91:62:C0:BE:02 Certificate issuer: /CN=2339921363F7003C3DEB47ED8534AFE1F482D8D5 Certificate serial: 7EE151E44789B79B19DD7F1AF39B3D0B26AFEA82 Authority key identifier: 23:39:92:13:63:F7:00:3C:3D:EB:47:ED:85:34:AF:E1:F4:82:D8:D5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2339921363F7003C3DEB47ED8534AFE1F482D8D5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065577241947275265/0/3230322e3137302e3231362e302f32342d3234203d3e203234343237.roa Signing time: Mon 20 Apr 2026 13:16:41 +0000 ROA not before: Mon 20 Apr 2026 13:11:41 +0000 ROA not after: Mon 19 Apr 2027 13:16:41 +0000 asID: 24427 IP address blocks: 202.170.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065577241947275265/0/2339921363F7003C3DEB47ED8534AFE1F482D8D5.crl rsync://rpki-rps.cnnic.cn/repo/A1065577241947275265/0/2339921363F7003C3DEB47ED8534AFE1F482D8D5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2339921363F7003C3DEB47ED8534AFE1F482D8D5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:e1:51:e4:47:89:b7:9b:19:dd:7f:1a:f3:9b:3d:0b:26:af:ea:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2339921363F7003C3DEB47ED8534AFE1F482D8D5 Validity Not Before: Apr 20 13:11:41 2026 GMT Not After : Apr 19 13:16:41 2027 GMT Subject: CN=BBF075CF45BC1E43E4DEFD1F61C0D39162C0BE02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:6c:bc:e1:6e:69:a1:f6:ae:8f:51:64:a1:64: ad:d1:91:5e:1a:b9:35:f0:5b:14:96:08:77:cb:a0: 47:cd:3c:60:20:a9:d2:fb:ba:24:ae:ac:3b:d3:8f: a2:6a:d3:9c:35:f2:52:1a:13:a2:ba:1a:6f:e6:06: cd:26:67:71:d8:51:c0:43:00:ab:ba:8d:ad:f0:89: 3d:65:66:f6:05:03:40:67:74:46:fb:7c:cd:68:fa: 38:11:b3:7a:17:c7:b4:51:f3:80:6b:07:dd:a8:fd: 92:47:6f:a4:de:4f:4b:2c:54:a8:7d:63:3e:7a:b7: ee:fa:a5:88:2e:ac:b4:21:97:d4:20:15:fd:10:d4: d3:54:94:5f:65:e8:0f:71:f1:06:ff:9a:bf:ca:9d: 34:1c:f6:2e:f0:34:a8:9d:6f:9c:6b:6b:c7:41:58: 69:d3:e3:a3:32:2e:c1:17:99:3a:f4:a4:0e:db:af: aa:8e:f5:ce:2e:9c:7c:65:95:01:5d:2e:b1:c1:f7: c3:9d:3c:7a:65:61:72:57:2e:07:eb:f4:bd:09:69: bf:93:0a:7d:9b:e6:0f:c8:a8:4a:24:c7:c4:1a:4b: fd:97:cf:7e:6d:6f:36:6d:45:40:a8:f2:0a:0b:55: 03:d0:87:02:b6:2b:ad:41:fd:ac:92:b4:8d:b7:47: be:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:F0:75:CF:45:BC:1E:43:E4:DE:FD:1F:61:C0:D3:91:62:C0:BE:02 X509v3 Authority Key Identifier: keyid:23:39:92:13:63:F7:00:3C:3D:EB:47:ED:85:34:AF:E1:F4:82:D8:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947275265/0/2339921363F7003C3DEB47ED8534AFE1F482D8D5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2339921363F7003C3DEB47ED8534AFE1F482D8D5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947275265/0/3230322e3137302e3231362e302f32342d3234203d3e203234343237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.170.216.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:1b:7c:4e:a6:37:a2:d7:48:20:fe:6f:a7:de:bd:18:fc:e2: 7f:3e:65:f7:6c:cc:8f:6a:8a:a9:9b:f8:89:49:08:d0:a0:2c: b8:7c:b8:06:f4:0b:df:7d:50:68:9c:bf:ec:fe:79:af:50:6f: 72:a2:90:3a:b6:d4:b8:51:9d:04:f8:a3:c8:da:25:92:e9:2e: 93:7a:52:28:c1:f2:50:96:a7:c8:4a:b6:5c:8c:dc:fb:7c:02: a7:c9:b3:e7:9a:d3:b1:39:e6:45:36:f5:dd:a1:b3:59:a7:de: 32:ec:9a:4c:63:af:40:61:19:6b:35:02:5e:f2:29:1c:f1:8e: 15:c5:35:7c:6b:26:8c:f3:ad:bd:92:0f:4f:e2:f1:b4:4b:85: 40:5a:fa:83:b4:ac:ed:75:24:75:76:3b:ac:30:b9:4e:64:a7: 6b:2a:af:f4:a9:7d:10:45:8b:0c:66:cd:e5:f3:99:6f:0e:d1: 5a:06:73:d9:24:9b:d2:4f:3a:3f:44:b6:f7:da:eb:e3:a7:60: d0:49:83:f4:51:97:aa:cd:2c:da:29:14:d9:01:a9:db:6f:8b: 93:20:a7:a6:c4:96:ea:ba:b5:c6:c3:67:8a:b0:ed:f1:91:f8: cd:5e:3c:d5:a5:e6:cd:8d:88:82:52:5a:00:69:40:e4:6b:43: c7:4e:5d:c6 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUfuFR5EeJt5sZ3X8a85s9Cyav6oIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjMzOTkyMTM2M0Y3MDAzQzNERUI0N0VEODUzNEFGRTFG NDgyRDhENTAeFw0yNjA0MjAxMzExNDFaFw0yNzA0MTkxMzE2NDFaMDMxMTAvBgNV BAMTKEJCRjA3NUNGNDVCQzFFNDNFNERFRkQxRjYxQzBEMzkxNjJDMEJFMDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDxbLzhbmmh9q6PUWShZK3RkV4a uTXwWxSWCHfLoEfNPGAgqdL7uiSurDvTj6Jq05w18lIaE6K6Gm/mBs0mZ3HYUcBD AKu6ja3wiT1lZvYFA0BndEb7fM1o+jgRs3oXx7RR84BrB92o/ZJHb6TeT0ssVKh9 Yz56t+76pYgurLQhl9QgFf0Q1NNUlF9l6A9x8Qb/mr/KnTQc9i7wNKidb5xra8dB WGnT46MyLsEXmTr0pA7br6qO9c4unHxllQFdLrHB98OdPHplYXJXLgfr9L0Jab+T Cn2b5g/IqEokx8QaS/2Xz35tbzZtRUCo8goLVQPQhwK2K61B/ayStI23R76BAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUu/B1z0W8HkPk3v0fYcDTkWLAvgIwHwYDVR0j BBgwFoAUIzmSE2P3ADw960fthTSv4fSC2NUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NzI0MTk0NzI3NTI2NS8wLzIzMzk5MjEzNjNGNzAwM0MzREVCNDdFRDg1MzRB RkUxRjQ4MkQ4RDUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjMzOTkyMTM2M0Y3MDAzQzNERUI0N0VEODUzNEFGRTFGNDgyRDhENS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzcyNDE5NDcyNzUyNjUvMC8zMjMwMzIyZTMx MzczMDJlMzIzMTM2MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzNDM0MzIzNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAMqq2DANBgkqhkiG9w0BAQsFAAOCAQEAnRt8TqY3otdIIP5vp969 GPzifz5l92zMj2qKqZv4iUkI0KAsuHy4BvQL331QaJy/7P55r1BvcqKQOrbUuFGd BPijyNolkukuk3pSKMHyUJanyEq2XIzc+3wCp8mz55rTsTnmRTb13aGzWafeMuya TGOvQGEZazUCXvIpHPGOFcU1fGsmjPOtvZIPT+LxtEuFQFr6g7Ss7XUkdXY7rDC5 TmSnayqv9Kl9EEWLDGbN5fOZbw7RWgZz2SSb0k86P0S299rr46dg0EmD9FGXqs0s 2ikU2QGp22+LkyCnpsSW6rq1xsNnirDt8ZH4zV481aXmzY2IglJaAGlA5GtDx05d xg== -----END CERTIFICATE-----Generated at Wed May 13 20:20:29 2026 by rpki-client