$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579796714749953/0/3230332e38362e302e302f32302d3230203d3e20313334373734.roa File: 3230332e38362e302e302f32302d3230203d3e20313334373734.roa (raw, json) Hash identifier: TAnrcV/q6VsB8YFBFhEbXjskfcTX0Mha1GN6QBn3c6Q= Subject key identifier: 63:29:F2:1F:AF:E4:8D:56:5C:BC:2F:0B:C2:8B:73:78:BE:DC:76:98 Certificate issuer: /CN=9B87DFEBDCCDA813116988D4421B088404578168 Certificate serial: 1FD68C4351355E9F46C2D5448600C1C3E7BC8990 Authority key identifier: 9B:87:DF:EB:DC:CD:A8:13:11:69:88:D4:42:1B:08:84:04:57:81:68 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9B87DFEBDCCDA813116988D4421B088404578168.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579796714749953/0/3230332e38362e302e302f32302d3230203d3e20313334373734.roa Signing time: Fri 24 Apr 2026 02:42:01 +0000 ROA not before: Fri 24 Apr 2026 02:37:01 +0000 ROA not after: Fri 23 Apr 2027 02:42:01 +0000 asID: 134774 IP address blocks: 203.86.0.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579796714749953/0/9B87DFEBDCCDA813116988D4421B088404578168.crl rsync://rpki-rps.cnnic.cn/repo/A1065579796714749953/0/9B87DFEBDCCDA813116988D4421B088404578168.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9B87DFEBDCCDA813116988D4421B088404578168.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:d6:8c:43:51:35:5e:9f:46:c2:d5:44:86:00:c1:c3:e7:bc:89:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9B87DFEBDCCDA813116988D4421B088404578168 Validity Not Before: Apr 24 02:37:01 2026 GMT Not After : Apr 23 02:42:01 2027 GMT Subject: CN=6329F21FAFE48D565CBC2F0BC28B7378BEDC7698 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:3f:8e:71:57:7f:23:df:4c:2c:0e:bb:f6:74: 2b:0a:c2:09:e8:0c:14:19:ad:09:84:cc:2e:7b:4d: 82:a8:f8:56:9b:f3:43:00:73:99:ac:02:7c:52:57: f6:09:d2:ad:31:b9:09:a5:cb:81:b3:52:07:b1:3a: 14:9b:1b:03:e3:fb:78:26:40:1f:4e:98:0f:a6:c6: 6d:6b:69:e6:92:d3:60:23:e8:c9:2e:b0:a5:ce:8c: 48:7a:c1:bd:00:f8:55:60:9c:05:17:be:5f:8e:44: 44:3b:f8:f8:5d:9e:4d:9c:93:de:85:b6:1e:49:fd: 4d:e8:15:38:bc:e6:5f:96:97:d2:f3:d6:50:91:3c: e1:e0:cf:38:c1:89:c9:17:89:2b:b7:f8:0c:53:b6: 7e:d6:a9:b3:28:31:86:b1:0d:18:82:3a:5f:26:c8: 85:59:d9:a6:d7:92:ea:e3:cb:02:b0:ac:c4:5a:97: 0a:e2:d4:72:4b:1d:60:fe:05:ba:e0:09:ba:2f:dc: 29:64:67:88:6a:33:98:1f:8e:86:2d:fd:10:26:db: 1b:3c:17:b8:91:0b:74:1a:d9:db:44:5f:a1:98:20: 1d:bc:6e:60:ad:6f:38:97:49:95:65:29:51:86:f2: d9:55:d7:6d:39:ca:6c:2a:a4:72:45:3b:29:67:f0: ba:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:29:F2:1F:AF:E4:8D:56:5C:BC:2F:0B:C2:8B:73:78:BE:DC:76:98 X509v3 Authority Key Identifier: keyid:9B:87:DF:EB:DC:CD:A8:13:11:69:88:D4:42:1B:08:84:04:57:81:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579796714749953/0/9B87DFEBDCCDA813116988D4421B088404578168.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9B87DFEBDCCDA813116988D4421B088404578168.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579796714749953/0/3230332e38362e302e302f32302d3230203d3e20313334373734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.86.0.0/20 Signature Algorithm: sha256WithRSAEncryption 14:a7:74:62:ee:72:c1:1b:11:14:e1:1c:fc:3f:2a:18:55:40: b3:1b:33:4b:ae:c8:77:18:a3:70:3b:87:ba:62:ae:8f:d2:05: c6:aa:e5:e9:71:29:c4:76:1d:76:19:71:f7:d3:b3:09:25:c0: d2:42:24:cd:ba:11:c6:c3:06:7e:c1:58:40:ac:23:d6:6b:1e: cd:1b:07:81:12:42:16:a6:67:86:1b:fb:cb:65:a7:06:ad:90: 9b:fe:f8:ba:85:09:c9:38:f2:29:60:ef:9f:ae:e2:90:e5:42: 93:0b:13:02:2c:4f:be:53:cc:e1:99:61:2f:9d:72:ae:6b:ae: 42:fc:48:2c:74:f0:6d:3a:7f:2f:9f:f7:06:ea:9b:23:32:5e: 2d:10:e3:03:56:dd:a0:62:ee:68:b9:21:a8:c1:95:95:25:d2: fc:c7:09:75:53:cd:90:f5:70:a7:b9:5a:9e:88:f5:92:d1:cc: 2d:1b:af:bb:96:60:d3:93:a7:b3:51:6b:66:06:c7:f3:f6:74: 24:63:a7:5e:c9:23:98:bf:6c:db:94:04:7a:29:b4:a7:de:90: fa:70:fd:4b:91:09:95:52:c2:c0:26:9d:92:0d:1b:66:4f:8f: 61:f3:b5:51:b3:e0:8c:00:48:28:14:47:26:cb:c0:44:ca:9e: 2c:f6:85:bb -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUH9aMQ1E1Xp9GwtVEhgDBw+e8iZAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUI4N0RGRUJEQ0NEQTgxMzExNjk4OEQ0NDIxQjA4ODQw NDU3ODE2ODAeFw0yNjA0MjQwMjM3MDFaFw0yNzA0MjMwMjQyMDFaMDMxMTAvBgNV BAMTKDYzMjlGMjFGQUZFNDhENTY1Q0JDMkYwQkMyOEI3Mzc4QkVEQzc2OTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/P45xV38j30wsDrv2dCsKwgno DBQZrQmEzC57TYKo+Fab80MAc5msAnxSV/YJ0q0xuQmly4GzUgexOhSbGwPj+3gm QB9OmA+mxm1raeaS02Aj6MkusKXOjEh6wb0A+FVgnAUXvl+OREQ7+Phdnk2ck96F th5J/U3oFTi85l+Wl9Lz1lCRPOHgzzjBickXiSu3+AxTtn7WqbMoMYaxDRiCOl8m yIVZ2abXkurjywKwrMRalwri1HJLHWD+BbrgCbov3ClkZ4hqM5gfjoYt/RAm2xs8 F7iRC3Qa2dtEX6GYIB28bmCtbziXSZVlKVGG8tlV1205ymwqpHJFOyln8LqFAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUYynyH6/kjVZcvC8LwotzeL7cdpgwHwYDVR0j BBgwFoAUm4ff69zNqBMRaYjUQhsIhARXgWgwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTc5NjcxNDc0OTk1My8wLzlCODdERkVCRENDREE4MTMxMTY5ODhENDQyMUIw ODg0MDQ1NzgxNjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOUI4N0RGRUJEQ0NEQTgxMzExNjk4OEQ0NDIxQjA4ODQwNDU3ODE2OC5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc5Nzk2NzE0NzQ5OTUzLzAvMzIzMDMzMmUzODM2 MmUzMDJlMzAyZjMyMzAyZDMyMzAyMDNkM2UyMDMxMzMzNDM3MzczNC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBMtWADANBgkqhkiG9w0BAQsFAAOCAQEAFKd0Yu5ywRsRFOEc/D8qGFVAsxsz S67IdxijcDuHumKuj9IFxqrl6XEpxHYddhlx99OzCSXA0kIkzboRxsMGfsFYQKwj 1msezRsHgRJCFqZnhhv7y2WnBq2Qm/74uoUJyTjyKWDvn67ikOVCkwsTAixPvlPM 4ZlhL51yrmuuQvxILHTwbTp/L5/3BuqbIzJeLRDjA1bdoGLuaLkhqMGVlSXS/McJ dVPNkPVwp7lanoj1ktHMLRuvu5Zg05Ons1FrZgbH8/Z0JGOnXskjmL9s25QEeim0 p96Q+nD9S5EJlVLCwCadkg0bZk+PYfO1UbPgjABIKBRHJsvARMqeLPaFuw== -----END CERTIFICATE-----Generated at Wed May 13 18:37:09 2026 by rpki-client