$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582330347388929/0/3230322e3136352e3230382e302f32312d3231203d3e20313332323033.roa File: 3230322e3136352e3230382e302f32312d3231203d3e20313332323033.roa (raw, json) Hash identifier: dEG+kQvtarrj1C4NWnBPL9AHHKm7rT38VFsC+e+j+CI= Subject key identifier: AE:A1:9B:0B:E4:7D:D1:D7:83:99:A7:D8:1F:05:D1:B5:73:D9:AE:B9 Certificate issuer: /CN=E23C4800CA452B1A8E6214923C01540E30830232 Certificate serial: 220E33B9EEA90EAD3C4BAD50ED82DAC391060D Authority key identifier: E2:3C:48:00:CA:45:2B:1A:8E:62:14:92:3C:01:54:0E:30:83:02:32 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E23C4800CA452B1A8E6214923C01540E30830232.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582330347388929/0/3230322e3136352e3230382e302f32312d3231203d3e20313332323033.roa Signing time: Sat 25 Apr 2026 10:08:37 +0000 ROA not before: Sat 25 Apr 2026 10:03:37 +0000 ROA not after: Sat 24 Apr 2027 10:08:37 +0000 asID: 132203 IP address blocks: 202.165.208.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582330347388929/0/E23C4800CA452B1A8E6214923C01540E30830232.crl rsync://rpki-rps.cnnic.cn/repo/A1065582330347388929/0/E23C4800CA452B1A8E6214923C01540E30830232.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E23C4800CA452B1A8E6214923C01540E30830232.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 07:22:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:0e:33:b9:ee:a9:0e:ad:3c:4b:ad:50:ed:82:da:c3:91:06:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E23C4800CA452B1A8E6214923C01540E30830232 Validity Not Before: Apr 25 10:03:37 2026 GMT Not After : Apr 24 10:08:37 2027 GMT Subject: CN=AEA19B0BE47DD1D78399A7D81F05D1B573D9AEB9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:d1:e0:d6:38:7e:7c:c4:85:8c:23:f7:d7:2b: 4b:c0:db:3a:6d:d2:8b:37:99:44:9f:14:7b:fb:b6: 4d:c2:9c:32:31:d5:86:79:91:05:8f:fb:4c:6d:17: ea:55:0b:ba:a8:ab:2c:ea:ba:dc:c5:6f:80:71:3b: 6d:38:85:4c:2a:ef:c1:d3:1a:05:ad:95:40:43:29: d1:79:8c:1c:00:d7:14:7f:cc:5f:49:ca:17:0c:0a: 9f:a1:51:9a:77:23:48:2e:a3:ca:52:f4:54:e3:96: 42:b1:51:e6:bb:68:68:f5:0b:4e:c3:f2:1d:da:ed: ff:03:3b:79:00:16:92:35:93:eb:bb:06:ff:2e:a9: 1f:9e:3f:5a:6e:ef:24:05:95:57:7c:f0:f3:d2:e7: ac:b2:f9:e3:fd:b8:4c:ab:f4:86:4e:ff:d6:26:ea: 3b:70:0b:27:21:a0:d8:bf:57:06:c3:1e:85:51:16: 94:f8:4f:a4:1d:a1:98:8d:2b:14:44:d1:18:00:02: 8f:a6:b1:d9:21:b8:85:09:a8:8a:13:45:f5:78:c3: a3:de:94:f6:ec:90:02:a2:4a:aa:f7:9d:00:e8:72: fd:01:fc:16:26:b6:06:35:44:88:4f:5d:d7:1b:36: 62:17:af:d5:45:48:53:f9:a4:59:17:fd:06:8a:aa: 0f:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:A1:9B:0B:E4:7D:D1:D7:83:99:A7:D8:1F:05:D1:B5:73:D9:AE:B9 X509v3 Authority Key Identifier: keyid:E2:3C:48:00:CA:45:2B:1A:8E:62:14:92:3C:01:54:0E:30:83:02:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330347388929/0/E23C4800CA452B1A8E6214923C01540E30830232.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E23C4800CA452B1A8E6214923C01540E30830232.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330347388929/0/3230322e3136352e3230382e302f32312d3231203d3e20313332323033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.165.208.0/21 Signature Algorithm: sha256WithRSAEncryption ac:b6:7c:1e:67:a8:9e:08:83:df:18:90:28:71:a7:e9:19:7e: ee:e8:3b:b3:f5:c9:16:71:19:cc:d9:b6:15:1e:44:ea:20:00: 2c:b2:75:99:19:64:59:51:6c:f2:23:f3:4d:2b:2b:f4:4e:8a: f4:cc:77:40:ad:e5:23:10:c1:9d:d8:09:0c:4a:c2:ed:46:44: 53:da:e1:60:ef:e6:fb:d3:24:b2:98:22:a5:c4:ed:83:7e:58: ec:28:9e:2f:a3:ec:5d:8c:22:2c:6a:9d:43:92:eb:eb:72:9b: 22:ca:e2:1d:f2:3c:d7:33:68:51:dc:fd:3c:b4:d1:f9:27:66: 9d:a0:48:5a:cc:0e:40:52:d3:f2:29:19:46:76:52:92:6a:55: 71:0a:75:54:e3:13:72:69:ef:2e:71:7f:cc:c1:18:67:f0:c1: 0f:58:69:f4:94:7a:84:23:04:b8:35:8b:f6:55:f2:e2:44:5b: 05:65:79:ff:50:b9:60:c8:f3:21:0f:d2:a3:ef:67:0f:b6:bd: 98:39:2a:85:a5:02:60:2f:4b:cb:24:8f:b6:3a:aa:a7:18:4b: 1a:2c:cd:ca:a6:87:da:26:86:ec:23:b1:c3:2f:35:d4:b5:6e: 02:8d:24:c4:bd:10:f2:a1:a8:71:ce:3e:ed:eb:c2:26:c2:b7: 7b:f1:70:64 -----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgITIg4zue6pDq08S61Q7YLaw5EGDTANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEyhFMjNDNDgwMENBNDUyQjFBOEU2MjE0OTIzQzAxNTQwRTMw ODMwMjMyMB4XDTI2MDQyNTEwMDMzN1oXDTI3MDQyNDEwMDgzN1owMzExMC8GA1UE AxMoQUVBMTlCMEJFNDdERDFENzgzOTlBN0Q4MUYwNUQxQjU3M0Q5QUVCOTCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKbR4NY4fnzEhYwj99crS8DbOm3S izeZRJ8Ue/u2TcKcMjHVhnmRBY/7TG0X6lULuqirLOq63MVvgHE7bTiFTCrvwdMa Ba2VQEMp0XmMHADXFH/MX0nKFwwKn6FRmncjSC6jylL0VOOWQrFR5rtoaPULTsPy Hdrt/wM7eQAWkjWT67sG/y6pH54/Wm7vJAWVV3zw89LnrLL54/24TKv0hk7/1ibq O3ALJyGg2L9XBsMehVEWlPhPpB2hmI0rFETRGAACj6ax2SG4hQmoihNF9XjDo96U 9uyQAqJKqvedAOhy/QH8Fia2BjVEiE9d1xs2Yhev1UVIU/mkWRf9BoqqD78CAwEA AaOCAhowggIWMB0GA1UdDgQWBBSuoZsL5H3R14OZp9gfBdG1c9muuTAfBgNVHSME GDAWgBTiPEgAykUrGo5iFJI8AVQOMIMCMjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0f BGwwajBooGagZIZicnN5bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDY1 NTgyMzMwMzQ3Mzg4OTI5LzAvRTIzQzQ4MDBDQTQ1MkIxQThFNjIxNDkyM0MwMTU0 MEUzMDgzMDIzMi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3lu YzovL3Jwa2ktcnBzLmNubmljLmNuL3JlcG8vQTEwNTUzOTA3NzUwOTA2NzU3MTUv MS9FMjNDNDgwMENBNDUyQjFBOEU2MjE0OTIzQzAxNTQwRTMwODMwMjMyLmNlcjCB kwYIKwYBBQUHAQsEgYYwgYMwgYAGCCsGAQUFBzALhnRyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1ODIzMzAzNDczODg5MjkvMC8zMjMwMzIyZTMx MzYzNTJlMzIzMDM4MmUzMDJmMzIzMTJkMzIzMTIwM2QzZTIwMzEzMzMyMzIzMDMz LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAw DjAMBAIAATAGAwQDyqXQMA0GCSqGSIb3DQEBCwUAA4IBAQCstnweZ6ieCIPfGJAo cafpGX7u6Duz9ckWcRnM2bYVHkTqIAAssnWZGWRZUWzyI/NNKyv0Tor0zHdAreUj EMGd2AkMSsLtRkRT2uFg7+b70ySymCKlxO2DfljsKJ4vo+xdjCIsap1Dkuvrcpsi yuId8jzXM2hR3P08tNH5J2adoEhazA5AUtPyKRlGdlKSalVxCnVU4xNyae8ucX/M wRhn8MEPWGn0lHqEIwS4NYv2VfLiRFsFZXn/ULlgyPMhD9Kj72cPtr2YOSqFpQJg L0vLJI+2OqqnGEsaLM3KpofaJobsI7HDLzXUtW4CjSTEvRDyoahxzj7t68Imwrd7 8XBk -----END CERTIFICATE-----Generated at Wed May 13 15:04:13 2026 by rpki-client