$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065588553129590787/0/3230322e36392e372e302f32342d3234203d3e20313334373030.roa File: 3230322e36392e372e302f32342d3234203d3e20313334373030.roa (raw, json) Hash identifier: 4n0Qyy7FcC7jUzGPnq9KSZS09KYvJ+E8IYZo+rkyA38= Subject key identifier: C3:CC:F7:C2:15:A0:71:FE:C5:30:AD:A0:CA:84:F8:73:96:C1:CE:40 Certificate issuer: /CN=FF4E68ED10AAB07D8F4EEC05FD03457953F937E1 Certificate serial: 2D952FAEA0A01DBECE6258A93F4FED1902070634 Authority key identifier: FF:4E:68:ED:10:AA:B0:7D:8F:4E:EC:05:FD:03:45:79:53:F9:37:E1 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/FF4E68ED10AAB07D8F4EEC05FD03457953F937E1.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065588553129590787/0/3230322e36392e372e302f32342d3234203d3e20313334373030.roa Signing time: Mon 27 Apr 2026 10:24:23 +0000 ROA not before: Mon 27 Apr 2026 10:19:23 +0000 ROA not after: Mon 26 Apr 2027 10:24:23 +0000 asID: 134700 IP address blocks: 202.69.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065588553129590787/0/FF4E68ED10AAB07D8F4EEC05FD03457953F937E1.crl rsync://rpki-rps.cnnic.cn/repo/A1065588553129590787/0/FF4E68ED10AAB07D8F4EEC05FD03457953F937E1.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/FF4E68ED10AAB07D8F4EEC05FD03457953F937E1.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:42:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:95:2f:ae:a0:a0:1d:be:ce:62:58:a9:3f:4f:ed:19:02:07:06:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF4E68ED10AAB07D8F4EEC05FD03457953F937E1 Validity Not Before: Apr 27 10:19:23 2026 GMT Not After : Apr 26 10:24:23 2027 GMT Subject: CN=C3CCF7C215A071FEC530ADA0CA84F87396C1CE40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:99:19:33:db:fe:bc:23:4b:4d:74:12:01:0d: 88:ed:84:be:e1:f5:c0:ee:6d:1e:46:b0:38:a1:9b: 93:3f:8e:b7:31:b5:d9:68:eb:df:9a:89:21:e8:ec: 23:0a:77:54:16:ef:19:14:f2:74:49:8b:57:b5:32: 4d:29:56:38:44:d7:e3:e2:66:94:47:c1:40:9a:30: 6c:46:b7:46:31:dd:57:25:fa:db:30:a5:01:d5:94: 01:78:8a:0e:7f:d2:f2:9e:06:11:82:7d:96:c6:ee: 20:c7:e0:a2:34:ea:65:3f:df:65:99:83:db:e2:b5: 83:78:b0:55:95:cb:99:75:18:63:c8:9e:24:d2:aa: a0:d4:80:ff:1a:11:df:d4:1e:d5:9a:3c:63:7a:9f: 32:5d:bc:51:9c:64:75:45:8b:20:f2:ce:d7:42:67: aa:b8:2c:2e:3b:a6:7a:ba:7d:69:c6:3c:50:b7:aa: b6:6e:3c:ba:79:b4:b5:ab:77:36:19:f8:7f:09:7d: 5c:d1:fc:0c:04:90:2e:a8:3e:93:59:55:4d:49:ee: bc:37:be:9d:b0:eb:25:f2:3c:8a:43:ce:54:64:17: 7f:dd:e9:e4:ce:ee:6b:55:aa:fd:32:4c:ce:73:63: 16:b7:ce:bd:96:c1:5d:74:fd:92:0d:68:68:34:80: 83:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:CC:F7:C2:15:A0:71:FE:C5:30:AD:A0:CA:84:F8:73:96:C1:CE:40 X509v3 Authority Key Identifier: keyid:FF:4E:68:ED:10:AA:B0:7D:8F:4E:EC:05:FD:03:45:79:53:F9:37:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129590787/0/FF4E68ED10AAB07D8F4EEC05FD03457953F937E1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/FF4E68ED10AAB07D8F4EEC05FD03457953F937E1.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129590787/0/3230322e36392e372e302f32342d3234203d3e20313334373030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.69.7.0/24 Signature Algorithm: sha256WithRSAEncryption 12:65:9b:e5:f1:2b:67:c5:f5:74:cb:f5:0c:9a:18:45:11:b3: da:d2:3c:ca:7f:2c:05:3c:13:40:71:58:8a:13:fb:e5:6f:27: 98:77:02:c3:60:ac:21:61:31:66:10:e6:6a:51:33:25:44:49: cb:e8:64:5d:a9:0f:aa:94:60:ca:3a:ca:57:ef:a1:08:21:9b: 9b:20:26:93:cb:22:a9:e3:d6:7f:f1:66:7c:64:a0:0f:14:47: e4:fb:91:cd:5c:4e:a3:5b:25:3b:76:92:16:da:c6:d4:46:67: 6f:ee:87:03:82:8b:0b:47:64:61:8a:8c:c4:27:9b:9f:6a:e4: 09:49:83:4f:41:dc:2d:a5:4a:38:4b:40:e9:58:b5:03:6c:16: 17:ac:91:3e:48:78:cf:9b:f8:a2:1a:3a:b5:42:0f:2b:f4:6d: 77:77:fd:7a:33:49:d0:be:19:87:79:79:03:3d:db:8e:04:5c: c1:e1:6c:14:e8:d0:20:cb:d3:f3:a6:e9:af:bd:18:33:27:df: c9:39:69:4a:0e:dd:4b:ca:cc:1e:22:b0:f7:aa:ff:ff:4d:ae: 59:81:1c:4e:f8:9e:4d:3d:f2:73:19:af:c5:37:6a:3f:f2:cc: b6:b6:a4:3c:c0:13:33:84:85:75:5d:5d:4c:76:c6:0e:31:23: 41:54:04:e5 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIULZUvrqCgHb7OYlipP0/tGQIHBjQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkY0RTY4RUQxMEFBQjA3RDhGNEVFQzA1RkQwMzQ1Nzk1 M0Y5MzdFMTAeFw0yNjA0MjcxMDE5MjNaFw0yNzA0MjYxMDI0MjNaMDMxMTAvBgNV BAMTKEMzQ0NGN0MyMTVBMDcxRkVDNTMwQURBMENBODRGODczOTZDMUNFNDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0mRkz2/68I0tNdBIBDYjthL7h 9cDubR5GsDihm5M/jrcxtdlo69+aiSHo7CMKd1QW7xkU8nRJi1e1Mk0pVjhE1+Pi ZpRHwUCaMGxGt0Yx3Vcl+tswpQHVlAF4ig5/0vKeBhGCfZbG7iDH4KI06mU/32WZ g9vitYN4sFWVy5l1GGPIniTSqqDUgP8aEd/UHtWaPGN6nzJdvFGcZHVFiyDyztdC Z6q4LC47pnq6fWnGPFC3qrZuPLp5tLWrdzYZ+H8JfVzR/AwEkC6oPpNZVU1J7rw3 vp2w6yXyPIpDzlRkF3/d6eTO7mtVqv0yTM5zYxa3zr2WwV10/ZINaGg0gIM3AgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUw8z3whWgcf7FMK2gyoT4c5bBzkAwHwYDVR0j BBgwFoAU/05o7RCqsH2PTuwF/QNFeVP5N+EwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4ODU1MzEyOTU5MDc4Ny8wL0ZGNEU2OEVEMTBBQUIwN0Q4RjRFRUMwNUZEMDM0 NTc5NTNGOTM3RTEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRkY0RTY4RUQxMEFBQjA3RDhGNEVFQzA1RkQwMzQ1Nzk1M0Y5MzdFMS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTg4NTUzMTI5NTkwNzg3LzAvMzIzMDMyMmUzNjM5 MmUzNzJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzNDM3MzAzMC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAMpFBzANBgkqhkiG9w0BAQsFAAOCAQEAEmWb5fErZ8X1dMv1DJoYRRGz2tI8 yn8sBTwTQHFYihP75W8nmHcCw2CsIWExZhDmalEzJURJy+hkXakPqpRgyjrKV++h CCGbmyAmk8siqePWf/FmfGSgDxRH5PuRzVxOo1slO3aSFtrG1EZnb+6HA4KLC0dk YYqMxCebn2rkCUmDT0HcLaVKOEtA6Vi1A2wWF6yRPkh4z5v4oho6tUIPK/Rtd3f9 ejNJ0L4Zh3l5Az3bjgRcweFsFOjQIMvT86bpr70YMyffyTlpSg7dS8rMHiKw96r/ /02uWYEcTvieTT3ycxmvxTdqP/LMtrakPMATM4SFdV1dTHbGDjEjQVQE5Q== -----END CERTIFICATE-----Generated at Wed May 13 15:56:24 2026 by rpki-client