$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582330347388929/0/3230322e3136352e3230382e302f32302d3234203d3e20313436383334.roa File: 3230322e3136352e3230382e302f32302d3234203d3e20313436383334.roa (raw, json) Hash identifier: xG3PI0F+sPPi1DnSGZHfDnmRvSYoRWgSB+By3rD4zv0= Subject key identifier: BC:4E:A5:A2:95:81:6C:E7:78:41:EB:CC:E8:E4:44:D6:56:62:D0:E0 Certificate issuer: /CN=E23C4800CA452B1A8E6214923C01540E30830232 Certificate serial: 648DDC283B63B9AADF6FC4D62577D705D0383EE8 Authority key identifier: E2:3C:48:00:CA:45:2B:1A:8E:62:14:92:3C:01:54:0E:30:83:02:32 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E23C4800CA452B1A8E6214923C01540E30830232.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582330347388929/0/3230322e3136352e3230382e302f32302d3234203d3e20313436383334.roa Signing time: Sat 07 Mar 2026 15:49:56 +0000 ROA not before: Sat 07 Mar 2026 15:44:56 +0000 ROA not after: Sat 06 Mar 2027 15:49:56 +0000 asID: 146834 IP address blocks: 202.165.208.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582330347388929/0/E23C4800CA452B1A8E6214923C01540E30830232.crl rsync://rpki-rps.cnnic.cn/repo/A1065582330347388929/0/E23C4800CA452B1A8E6214923C01540E30830232.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E23C4800CA452B1A8E6214923C01540E30830232.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 05:24:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:8d:dc:28:3b:63:b9:aa:df:6f:c4:d6:25:77:d7:05:d0:38:3e:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E23C4800CA452B1A8E6214923C01540E30830232 Validity Not Before: Mar 7 15:44:56 2026 GMT Not After : Mar 6 15:49:56 2027 GMT Subject: CN=BC4EA5A295816CE77841EBCCE8E444D65662D0E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:cb:9f:05:bc:99:03:b5:28:48:ec:f9:33:bb: 0d:41:b8:d4:f1:1d:84:5e:b9:a5:f3:fe:81:95:52: bf:f3:f9:40:e2:aa:65:b4:b2:0f:91:d0:3b:d4:51: e6:6d:fa:3f:36:18:a4:19:bf:7d:27:9a:f7:84:bb: 04:d8:33:41:2b:8a:28:eb:e6:5c:94:1d:04:03:79: 05:25:3c:71:0d:d0:0e:93:f3:4c:92:23:84:ee:69: 27:f3:f6:f8:84:5e:f9:48:ab:27:37:f1:9b:50:20: c5:57:6d:3d:8a:79:8c:69:45:02:d1:26:7f:a0:74: 74:96:f5:46:23:d2:9f:dc:51:1f:74:15:70:67:83: 63:eb:eb:43:c3:de:d6:c6:ab:0b:91:b5:ce:fd:be: b1:f1:3e:36:11:03:0b:9c:c5:11:38:88:27:5e:28: 90:04:a0:52:43:02:80:4d:1b:9d:ee:ba:f8:61:cd: 0a:4d:b4:5d:bc:39:74:9f:8e:0b:38:27:bf:2f:72: b5:6e:bf:60:ca:01:ce:4c:90:1e:00:4f:96:d3:58: 86:3d:2c:85:0f:50:67:fc:ec:f5:39:50:70:19:2f: 58:7a:88:88:09:2d:03:bc:86:c8:80:53:53:82:f8: f2:e5:6d:7d:94:8b:d1:fc:b2:73:ac:0f:02:36:42: 83:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:4E:A5:A2:95:81:6C:E7:78:41:EB:CC:E8:E4:44:D6:56:62:D0:E0 X509v3 Authority Key Identifier: keyid:E2:3C:48:00:CA:45:2B:1A:8E:62:14:92:3C:01:54:0E:30:83:02:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330347388929/0/E23C4800CA452B1A8E6214923C01540E30830232.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E23C4800CA452B1A8E6214923C01540E30830232.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330347388929/0/3230322e3136352e3230382e302f32302d3234203d3e20313436383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.165.208.0/20 Signature Algorithm: sha256WithRSAEncryption 65:47:ea:ac:19:88:67:81:54:02:82:0a:24:db:ca:63:cd:52: 2a:87:14:2c:b4:ce:2e:6e:05:74:cb:ae:91:45:e8:66:26:90: 1c:5e:72:55:42:bb:5a:45:14:42:9f:fa:22:60:10:fd:57:20: 61:a6:83:1c:45:92:f1:da:e9:d1:0e:f9:e8:87:64:a2:a2:16: 52:aa:90:3b:ec:83:c2:dd:67:76:59:32:97:39:2f:a1:cb:96: 35:9b:57:2b:c4:bf:45:f6:ce:3a:bf:56:3f:b6:6c:26:03:d4: 48:56:e7:fe:83:9b:06:79:80:c8:fb:b8:2e:ec:2d:a6:59:7d: b2:4d:c4:60:c8:1e:d0:43:83:4e:be:37:68:31:cc:c9:7d:89: 03:b9:e7:5a:b1:9a:de:8d:e6:8c:4d:aa:90:01:fc:e8:b4:7e: 47:09:95:f7:c6:52:e2:f2:85:3f:4b:4e:0c:2d:99:2a:9f:0f: 33:39:54:3c:02:0c:ab:50:7d:f4:66:72:92:0c:6c:10:b1:25: 31:99:c9:66:5e:87:9b:27:de:5f:aa:fb:48:54:63:12:2c:a7: 03:ef:c7:ec:60:15:64:cc:29:36:bf:cf:1d:a6:56:91:a0:5b: e5:43:a8:d8:b2:a4:c3:8c:d5:62:82:8c:f9:a8:05:03:8c:c6: ae:dc:d5:e9 -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUZI3cKDtjuarfb8TWJXfXBdA4PugwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTIzQzQ4MDBDQTQ1MkIxQThFNjIxNDkyM0MwMTU0MEUz MDgzMDIzMjAeFw0yNjAzMDcxNTQ0NTZaFw0yNzAzMDYxNTQ5NTZaMDMxMTAvBgNV BAMTKEJDNEVBNUEyOTU4MTZDRTc3ODQxRUJDQ0U4RTQ0NEQ2NTY2MkQwRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/y58FvJkDtShI7Pkzuw1BuNTx HYReuaXz/oGVUr/z+UDiqmW0sg+R0DvUUeZt+j82GKQZv30nmveEuwTYM0Eriijr 5lyUHQQDeQUlPHEN0A6T80ySI4TuaSfz9viEXvlIqyc38ZtQIMVXbT2KeYxpRQLR Jn+gdHSW9UYj0p/cUR90FXBng2Pr60PD3tbGqwuRtc79vrHxPjYRAwucxRE4iCde KJAEoFJDAoBNG53uuvhhzQpNtF28OXSfjgs4J78vcrVuv2DKAc5MkB4AT5bTWIY9 LIUPUGf87PU5UHAZL1h6iIgJLQO8hsiAU1OC+PLlbX2Ui9H8snOsDwI2QoO7AgMB AAGjggIaMIICFjAdBgNVHQ4EFgQUvE6lopWBbOd4QevM6ORE1lZi0OAwHwYDVR0j BBgwFoAU4jxIAMpFKxqOYhSSPAFUDjCDAjIwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4MjMzMDM0NzM4ODkyOS8wL0UyM0M0ODAwQ0E0NTJCMUE4RTYyMTQ5MjNDMDE1 NDBFMzA4MzAyMzIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRTIzQzQ4MDBDQTQ1MkIxQThFNjIxNDkyM0MwMTU0MEUzMDgzMDIzMi5jZXIw gZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMDY1NTgyMzMwMzQ3Mzg4OTI5LzAvMzIzMDMyMmUz MTM2MzUyZTMyMzAzODJlMzAyZjMyMzAyZDMyMzQyMDNkM2UyMDMxMzQzNjM4MzMz NC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEBMql0DANBgkqhkiG9w0BAQsFAAOCAQEAZUfqrBmIZ4FUAoIK JNvKY81SKocULLTOLm4FdMuukUXoZiaQHF5yVUK7WkUUQp/6ImAQ/VcgYaaDHEWS 8drp0Q756IdkoqIWUqqQO+yDwt1ndlkylzkvocuWNZtXK8S/RfbOOr9WP7ZsJgPU SFbn/oObBnmAyPu4Luwtpll9sk3EYMge0EODTr43aDHMyX2JA7nnWrGa3o3mjE2q kAH86LR+RwmV98ZS4vKFP0tODC2ZKp8PMzlUPAIMq1B99GZykgxsELElMZnJZl6H myfeX6r7SFRjEiynA+/H7GAVZMwpNr/PHaZWkaBb5UOo2LKkw4zVYoKM+agFA4zG rtzV6Q== -----END CERTIFICATE-----Generated at Thu Mar 26 22:07:43 2026 by rpki-client