$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1088385455558230017/0/3136332e35332e35322e302f32322d3234203d3e203531383437.roa File: 3136332e35332e35322e302f32322d3234203d3e203531383437.roa (raw, json) Hash identifier: QuYF2uZ6IZ+l3FPWrOqcXWtoS7S46LuH4kJESx2x1Qs= Subject key identifier: FC:94:97:D5:70:C4:75:51:B8:FC:AA:3A:A4:F6:6E:9D:3D:1D:83:27 Certificate issuer: /CN=CCA3BB73899F78334CA03D6DA4D8FD3F94D69BB9 Certificate serial: 4D2F999979C3F33E9CC5686CA2470647F3054D5A Authority key identifier: CC:A3:BB:73:89:9F:78:33:4C:A0:3D:6D:A4:D8:FD:3F:94:D6:9B:B9 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CCA3BB73899F78334CA03D6DA4D8FD3F94D69BB9.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1088385455558230017/0/3136332e35332e35322e302f32322d3234203d3e203531383437.roa Signing time: Mon 23 Mar 2026 08:58:22 +0000 ROA not before: Mon 23 Mar 2026 08:53:22 +0000 ROA not after: Mon 22 Mar 2027 08:58:22 +0000 asID: 51847 IP address blocks: 163.53.52.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1088385455558230017/0/CCA3BB73899F78334CA03D6DA4D8FD3F94D69BB9.crl rsync://rpki-rps.cnnic.cn/repo/A1088385455558230017/0/CCA3BB73899F78334CA03D6DA4D8FD3F94D69BB9.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CCA3BB73899F78334CA03D6DA4D8FD3F94D69BB9.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 05:24:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:2f:99:99:79:c3:f3:3e:9c:c5:68:6c:a2:47:06:47:f3:05:4d:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCA3BB73899F78334CA03D6DA4D8FD3F94D69BB9 Validity Not Before: Mar 23 08:53:22 2026 GMT Not After : Mar 22 08:58:22 2027 GMT Subject: CN=FC9497D570C47551B8FCAA3AA4F66E9D3D1D8327 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:be:65:c6:bf:55:19:bb:b1:fd:1a:5c:cd:29: db:47:9d:e7:2e:ed:3b:f1:44:a7:34:d3:62:a1:47: b0:8b:51:6f:f4:29:05:49:27:42:6f:15:e9:da:bf: 67:ba:ac:00:ff:39:f7:4e:cd:13:4b:c1:3b:e7:e3: f6:ec:14:cf:0e:d5:2c:ac:cf:39:2d:43:26:85:81: af:20:e3:a2:6b:fb:d5:45:2c:cf:39:b6:cd:34:a9: 7b:78:91:33:55:cb:69:54:20:18:ca:13:c4:55:5a: a3:70:04:25:bf:ff:f1:6f:82:5a:75:7d:75:a6:84: f7:bc:80:bd:36:3c:78:eb:79:ab:4b:7a:6d:7c:dd: c0:c0:53:21:e9:7e:d7:98:16:33:98:37:69:1e:3e: 44:ac:05:93:b6:a1:b4:3b:9b:62:99:58:a6:6c:0b: 96:8a:7d:11:66:29:be:67:c0:66:f9:82:c0:2e:02: d9:84:3d:73:69:3e:89:d8:28:ff:f1:f6:87:27:39: 0f:cd:59:33:46:04:23:04:c5:35:ba:f0:69:08:c7: a2:3e:b4:5b:80:ac:ca:69:42:fd:41:b3:1b:f9:7e: 58:11:18:3a:d9:d0:21:d4:13:71:86:67:ac:23:ee: c3:2a:97:47:b0:9a:5b:6a:75:15:1d:89:96:92:d2: b1:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:94:97:D5:70:C4:75:51:B8:FC:AA:3A:A4:F6:6E:9D:3D:1D:83:27 X509v3 Authority Key Identifier: keyid:CC:A3:BB:73:89:9F:78:33:4C:A0:3D:6D:A4:D8:FD:3F:94:D6:9B:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1088385455558230017/0/CCA3BB73899F78334CA03D6DA4D8FD3F94D69BB9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CCA3BB73899F78334CA03D6DA4D8FD3F94D69BB9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1088385455558230017/0/3136332e35332e35322e302f32322d3234203d3e203531383437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.53.52.0/22 Signature Algorithm: sha256WithRSAEncryption 54:98:30:e8:1f:34:63:6b:39:53:58:63:2f:72:9a:52:c5:a1: f0:55:aa:fc:fe:86:0c:6c:c0:1d:39:a6:99:a2:a6:b6:3e:41: 4c:20:c8:90:71:fa:71:1a:0a:66:b1:49:b9:1d:e5:e0:04:25: 33:cf:f9:7f:fd:e2:a2:9c:41:a2:ca:1b:96:56:b4:b3:be:2a: d2:91:65:30:2b:c3:ee:5b:dc:e9:fa:60:1b:19:9d:ed:a8:1c: fe:4f:96:8e:90:4b:aa:32:6d:3d:07:2d:63:d1:fa:29:13:87: bf:6f:15:ed:b3:e4:4b:62:4c:16:a2:3f:94:7a:86:f6:54:03: 21:d8:a9:a0:88:cd:30:da:dc:86:67:5e:b1:91:7e:96:46:1a: 79:b3:dd:cf:0e:c5:9c:6e:0b:68:ba:77:15:60:7d:bb:0c:02: e8:28:72:f2:b7:97:4b:56:f1:ab:83:39:3d:4a:19:06:84:71: 5d:b7:27:9e:4b:d6:8f:93:eb:fd:45:65:b3:4f:51:33:e9:ef: a4:c0:29:82:5a:4a:7c:34:fb:57:34:21:57:8d:fc:b0:dd:4c: 80:a4:0e:cb:81:21:1c:8b:ab:75:0e:b7:f2:da:52:a9:8a:67: 21:93:1d:79:cd:15:25:b7:7e:fb:a2:3f:14:fc:ad:34:da:e2: b4:e7:27:c2 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUTS+ZmXnD8z6cxWhsokcGR/MFTVowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NBM0JCNzM4OTlGNzgzMzRDQTAzRDZEQTREOEZEM0Y5 NEQ2OUJCOTAeFw0yNjAzMjMwODUzMjJaFw0yNzAzMjIwODU4MjJaMDMxMTAvBgNV BAMTKEZDOTQ5N0Q1NzBDNDc1NTFCOEZDQUEzQUE0RjY2RTlEM0QxRDgzMjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdvmXGv1UZu7H9GlzNKdtHnecu 7TvxRKc002KhR7CLUW/0KQVJJ0JvFenav2e6rAD/OfdOzRNLwTvn4/bsFM8O1Sys zzktQyaFga8g46Jr+9VFLM85ts00qXt4kTNVy2lUIBjKE8RVWqNwBCW///Fvglp1 fXWmhPe8gL02PHjreatLem183cDAUyHpfteYFjOYN2kePkSsBZO2obQ7m2KZWKZs C5aKfRFmKb5nwGb5gsAuAtmEPXNpPonYKP/x9ocnOQ/NWTNGBCMExTW68GkIx6I+ tFuArMppQv1Bsxv5flgRGDrZ0CHUE3GGZ6wj7sMql0ewmltqdRUdiZaS0rEdAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQU/JSX1XDEdVG4/Ko6pPZunT0dgycwHwYDVR0j BBgwFoAUzKO7c4mfeDNMoD1tpNj9P5TWm7kwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA4 ODM4NTQ1NTU1ODIzMDAxNy8wL0NDQTNCQjczODk5Rjc4MzM0Q0EwM0Q2REE0RDhG RDNGOTRENjlCQjkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0NBM0JCNzM4OTlGNzgzMzRDQTAzRDZEQTREOEZEM0Y5NEQ2OUJCOS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDg4Mzg1NDU1NTU4MjMwMDE3LzAvMzEzNjMzMmUzNTMz MmUzNTMyMmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzUzMTM4MzQzNy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAqM1NDANBgkqhkiG9w0BAQsFAAOCAQEAVJgw6B80Y2s5U1hjL3KaUsWh8FWq /P6GDGzAHTmmmaKmtj5BTCDIkHH6cRoKZrFJuR3l4AQlM8/5f/3iopxBosoblla0 s74q0pFlMCvD7lvc6fpgGxmd7agc/k+WjpBLqjJtPQctY9H6KROHv28V7bPkS2JM FqI/lHqG9lQDIdipoIjNMNrchmdesZF+lkYaebPdzw7FnG4LaLp3FWB9uwwC6Chy 8reXS1bxq4M5PUoZBoRxXbcnnkvWj5Pr/UVls09RM+nvpMApglpKfDT7VzQhV438 sN1MgKQOy4EhHIurdQ638tpSqYpnIZMdec0VJbd++6I/FPytNNritOcnwg== -----END CERTIFICATE-----Generated at Thu Mar 26 17:53:56 2026 by rpki-client