$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065887644090630145/0/3232332e342e302e302f31342d3234203d3e203337393633.roa File: 3232332e342e302e302f31342d3234203d3e203337393633.roa (raw, json) Hash identifier: crSRugrbVnbmcp7/flzVd2ttByYrZ+ixD+dvOkD7iTE= Subject key identifier: 20:B2:49:E6:7A:C2:66:0C:2A:14:69:F8:2D:6B:40:57:56:F7:82:EF Certificate issuer: /CN=B3CAFB59F10B03AD2106E8215DBB903F157D0C8E Certificate serial: 75816489F1B4BD95A58F718F18FC56C215036D03 Authority key identifier: B3:CA:FB:59:F1:0B:03:AD:21:06:E8:21:5D:BB:90:3F:15:7D:0C:8E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/3232332e342e302e302f31342d3234203d3e203337393633.roa Signing time: Mon 11 May 2026 15:04:00 +0000 ROA not before: Mon 11 May 2026 14:59:00 +0000 ROA not after: Mon 10 May 2027 15:04:00 +0000 asID: 37963 IP address blocks: 223.4.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.crl rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:51:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:81:64:89:f1:b4:bd:95:a5:8f:71:8f:18:fc:56:c2:15:03:6d:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B3CAFB59F10B03AD2106E8215DBB903F157D0C8E Validity Not Before: May 11 14:59:00 2026 GMT Not After : May 10 15:04:00 2027 GMT Subject: CN=20B249E67AC2660C2A1469F82D6B405756F782EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:58:49:b6:70:98:a7:c0:7e:f3:cc:0b:cd:1d: cd:02:cd:e7:84:a0:56:ca:d4:de:97:cb:2b:62:15: 2b:aa:d8:60:ab:b6:c0:e9:a4:7d:13:4a:82:3c:de: 3d:d0:7e:0d:6b:4b:8e:b9:50:fb:92:5c:b8:ed:d0: f8:90:35:60:b2:48:f0:e3:e1:5c:c7:34:56:bd:fc: ed:ee:93:bb:f0:e5:8b:32:b6:2d:6d:42:bd:10:8d: 32:32:07:db:e3:d2:8f:2b:13:73:47:de:25:c9:99: 12:84:02:2a:77:e9:7d:51:4a:df:2a:e1:b0:41:30: 17:c0:ba:2c:7e:0a:77:0f:bc:55:f4:17:a7:e3:e4: cb:f8:ec:d5:00:62:64:5f:f7:5b:04:44:0b:ca:9a: 2a:33:36:f6:0b:30:d3:ac:c1:e8:43:71:a1:18:53: 6e:4b:27:77:13:c2:96:d7:90:b3:be:8d:3b:f4:0f: a4:9e:78:7b:b4:77:fc:30:29:27:ff:0c:1c:0b:1b: 4a:36:b1:1a:a7:85:5d:2e:50:17:c9:97:21:cb:47: b0:ab:01:cb:86:54:66:cd:de:f1:cf:3a:cc:b0:62: f2:4c:9a:a4:3f:b7:d5:fc:b6:30:32:e1:88:f0:f3: 42:f5:e0:d4:af:55:ad:cc:6a:28:89:40:73:74:72: 83:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:B2:49:E6:7A:C2:66:0C:2A:14:69:F8:2D:6B:40:57:56:F7:82:EF X509v3 Authority Key Identifier: keyid:B3:CA:FB:59:F1:0B:03:AD:21:06:E8:21:5D:BB:90:3F:15:7D:0C:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/3232332e342e302e302f31342d3234203d3e203337393633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.4.0.0/14 Signature Algorithm: sha256WithRSAEncryption 9e:a8:00:fc:b8:23:90:8c:ce:a6:1b:b4:99:f1:fb:ef:e2:a3: d5:ec:79:fa:4d:5b:68:00:ee:36:f9:8f:d0:da:9e:57:0b:92: 8f:d9:b5:da:d1:98:a6:e1:38:42:8c:ba:60:55:7d:36:fb:d2: 40:4a:0c:3b:bc:6f:b9:78:d2:56:43:60:1f:3f:46:f1:03:b0: a1:75:13:71:4b:95:f8:20:98:9f:14:8b:c0:1d:14:1b:39:bb: 1d:a9:de:63:ca:4e:ac:88:3a:bd:3c:8b:5f:0b:ab:a3:bf:6b: d8:aa:76:e5:7d:f0:64:1d:6a:69:71:d9:70:22:5e:c4:48:de: 0d:3d:cf:5a:bf:60:99:a3:a7:ff:fc:f7:d7:1b:ce:a7:f5:7a: 2d:ae:fd:38:f8:f8:06:48:11:1d:23:ff:e3:ce:97:f2:17:ea: 77:e3:f2:62:ba:4d:3a:3d:51:02:a9:40:d2:0f:14:fd:3e:31: 7f:69:d1:28:b2:9d:48:bd:75:19:45:83:ef:7b:11:2e:5c:f1: 06:e1:ed:d9:5a:b0:d9:66:9a:26:e4:f0:f1:34:42:13:8d:6d: 0e:6c:41:aa:71:27:80:93:2b:d3:24:30:55:2f:44:f3:b9:42: 87:13:4e:a4:e7:00:bf:f3:f2:da:48:08:2e:43:79:5c:c9:eb: 8b:ac:2f:22 -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUdYFkifG0vZWlj3GPGPxWwhUDbQMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjNDQUZCNTlGMTBCMDNBRDIxMDZFODIxNURCQjkwM0Yx NTdEMEM4RTAeFw0yNjA1MTExNDU5MDBaFw0yNzA1MTAxNTA0MDBaMDMxMTAvBgNV BAMTKDIwQjI0OUU2N0FDMjY2MEMyQTE0NjlGODJENkI0MDU3NTZGNzgyRUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChWEm2cJinwH7zzAvNHc0CzeeE oFbK1N6XyytiFSuq2GCrtsDppH0TSoI83j3Qfg1rS465UPuSXLjt0PiQNWCySPDj 4VzHNFa9/O3uk7vw5Ysyti1tQr0QjTIyB9vj0o8rE3NH3iXJmRKEAip36X1RSt8q 4bBBMBfAuix+CncPvFX0F6fj5Mv47NUAYmRf91sERAvKmiozNvYLMNOswehDcaEY U25LJ3cTwpbXkLO+jTv0D6SeeHu0d/wwKSf/DBwLG0o2sRqnhV0uUBfJlyHLR7Cr AcuGVGbN3vHPOsywYvJMmqQ/t9X8tjAy4Yjw80L14NSvVa3MaiiJQHN0coNtAgMB AAGjggIMMIICCDAdBgNVHQ4EFgQUILJJ5nrCZgwqFGn4LWtAV1b3gu8wHwYDVR0j BBgwFoAUs8r7WfELA60hBughXbuQPxV9DI4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTg4NzY0NDA5MDYzMDE0NS8wL0IzQ0FGQjU5RjEwQjAzQUQyMTA2RTgyMTVEQkI5 MDNGMTU3RDBDOEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQjNDQUZCNTlGMTBCMDNBRDIxMDZFODIxNURCQjkwM0YxNTdEMEM4RS5jZXIw gYYGCCsGAQUFBwELBHoweDB2BggrBgEFBQcwC4ZqcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1ODg3NjQ0MDkwNjMwMTQ1LzAvMzIzMjMzMmUzNDJl MzAyZTMwMmYzMTM0MmQzMjM0MjAzZDNlMjAzMzM3MzkzNjMzLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMC 3wQwDQYJKoZIhvcNAQELBQADggEBAJ6oAPy4I5CMzqYbtJnx++/io9XsefpNW2gA 7jb5j9DanlcLko/ZtdrRmKbhOEKMumBVfTb70kBKDDu8b7l40lZDYB8/RvEDsKF1 E3FLlfggmJ8Ui8AdFBs5ux2p3mPKTqyIOr08i18Lq6O/a9iqduV98GQdamlx2XAi XsRI3g09z1q/YJmjp//899cbzqf1ei2u/Tj4+AZIER0j/+POl/IX6nfj8mK6TTo9 UQKpQNIPFP0+MX9p0SiynUi9dRlFg+97ES5c8Qbh7dlasNlmmibk8PE0QhONbQ5s QapxJ4CTK9MkMFUvRPO5QocTTqTnAL/z8tpICC5DeVzJ64usLyI= -----END CERTIFICATE-----Generated at Wed May 13 07:15:36 2026 by rpki-client