$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1089062140922298370/0/3230322e3134332e3130302e302f32322d3332203d3e203633353930.roa File: 3230322e3134332e3130302e302f32322d3332203d3e203633353930.roa (raw, json) Hash identifier: ZSkI2Jm/KAqVijiOmSriC0xXqwlsFsiYALewpBoCLQc= Subject key identifier: 15:CA:D5:F0:14:21:6E:92:51:6D:E7:BA:AE:2B:A5:08:1C:B4:B8:1B Certificate issuer: /CN=2265C2E81BCCCC4E922AB11C581ADE31BF27B202 Certificate serial: 21970641800D5198AF1E45C3336719475E2D26EB Authority key identifier: 22:65:C2:E8:1B:CC:CC:4E:92:2A:B1:1C:58:1A:DE:31:BF:27:B2:02 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2265C2E81BCCCC4E922AB11C581ADE31BF27B202.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1089062140922298370/0/3230322e3134332e3130302e302f32322d3332203d3e203633353930.roa Signing time: Thu 23 Apr 2026 07:28:05 +0000 ROA not before: Thu 23 Apr 2026 07:23:05 +0000 ROA not after: Thu 22 Apr 2027 07:28:05 +0000 asID: 63590 IP address blocks: 202.143.100.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1089062140922298370/0/2265C2E81BCCCC4E922AB11C581ADE31BF27B202.crl rsync://rpki-rps.cnnic.cn/repo/A1089062140922298370/0/2265C2E81BCCCC4E922AB11C581ADE31BF27B202.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2265C2E81BCCCC4E922AB11C581ADE31BF27B202.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:97:06:41:80:0d:51:98:af:1e:45:c3:33:67:19:47:5e:2d:26:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2265C2E81BCCCC4E922AB11C581ADE31BF27B202 Validity Not Before: Apr 23 07:23:05 2026 GMT Not After : Apr 22 07:28:05 2027 GMT Subject: CN=15CAD5F014216E92516DE7BAAE2BA5081CB4B81B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:2a:15:c4:ec:8b:94:93:f4:29:f2:4a:ce:3a: 30:97:21:b4:08:91:75:84:da:5d:d6:24:55:ea:ae: 7e:73:d4:81:7d:05:fb:6e:d8:98:1c:ae:ea:6c:ab: db:de:d0:2d:8f:01:98:d1:d9:98:c2:a9:c3:79:1f: db:20:ca:7a:8f:d9:a5:c3:00:ba:dc:c5:3e:67:93: 34:ca:d9:f8:7e:a3:f1:7b:09:32:fa:54:b1:9a:3f: 62:ce:ef:86:5d:64:b8:60:3b:bd:90:a2:58:6d:e5: 2f:46:bc:ba:37:a5:45:50:e1:d2:cf:6b:2e:1f:73: 8e:64:86:14:56:1e:8c:73:cf:4e:c4:1d:5f:0d:ec: 9d:fc:a2:17:40:4b:f2:ee:8c:dc:66:2d:67:1c:0c: b1:89:2d:90:0b:87:d6:77:48:ef:3a:f6:f1:60:99: c5:e3:f4:95:cd:28:bb:75:45:77:f1:af:09:01:da: dd:85:61:4c:55:71:0e:4d:d7:15:92:1b:f2:a8:17: 55:66:e3:1c:6a:3e:0f:94:51:90:ed:41:70:9f:6b: 1a:cc:e1:8e:86:24:32:77:14:e4:ee:25:a3:cf:88: 21:20:52:47:3e:42:0a:96:25:98:2d:56:9a:23:f4: 05:1b:db:17:a1:f6:2c:eb:39:f7:8d:21:46:1e:c6: 8e:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:CA:D5:F0:14:21:6E:92:51:6D:E7:BA:AE:2B:A5:08:1C:B4:B8:1B X509v3 Authority Key Identifier: keyid:22:65:C2:E8:1B:CC:CC:4E:92:2A:B1:1C:58:1A:DE:31:BF:27:B2:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1089062140922298370/0/2265C2E81BCCCC4E922AB11C581ADE31BF27B202.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2265C2E81BCCCC4E922AB11C581ADE31BF27B202.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1089062140922298370/0/3230322e3134332e3130302e302f32322d3332203d3e203633353930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.143.100.0/22 Signature Algorithm: sha256WithRSAEncryption 67:4b:59:58:03:d4:ea:3e:eb:a5:03:b9:9d:63:c4:4a:da:12: 8f:79:fd:94:b8:dd:08:1a:b8:7a:48:41:94:79:4d:ac:db:de: ab:8f:7b:b5:c6:17:9d:6f:08:7e:fe:16:e9:f7:32:a9:ef:a1: 53:79:12:76:6d:26:4a:a0:ce:3a:58:44:fb:83:12:bb:c2:c6: 1a:e4:f6:de:dc:02:62:74:0f:ae:73:78:a2:b1:8a:88:4d:e8: 88:55:c4:bc:d7:14:f3:e7:9d:b5:cb:71:fc:9c:be:ee:67:1b: 74:2c:96:c9:55:00:9a:17:5f:ac:25:4d:b1:43:3b:03:d9:8d: 49:9c:8a:1f:f3:83:01:b4:1a:fb:9c:d4:f3:30:cd:5c:37:fb: a6:3a:fb:75:42:f9:a5:1e:4c:83:97:41:78:cd:2f:a2:8f:d2: 5d:4c:00:34:b9:2d:44:a6:c7:fa:15:8a:3d:17:59:a3:e6:00: fc:de:32:09:80:7d:7c:ac:0e:c0:ee:cc:3d:62:3a:9a:97:20: 16:32:5a:32:a0:9d:db:45:64:93:51:0f:37:71:07:c2:d9:9a: f5:05:8d:32:b5:54:3a:e1:f0:6a:a6:b9:e7:e2:90:42:2d:e3: e8:a7:d4:aa:3c:a1:e7:b0:3b:85:2d:65:d6:c4:91:1d:0e:52: 33:56:11:9d -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUIZcGQYANUZivHkXDM2cZR14tJuswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjI2NUMyRTgxQkNDQ0M0RTkyMkFCMTFDNTgxQURFMzFC RjI3QjIwMjAeFw0yNjA0MjMwNzIzMDVaFw0yNzA0MjIwNzI4MDVaMDMxMTAvBgNV BAMTKDE1Q0FENUYwMTQyMTZFOTI1MTZERTdCQUFFMkJBNTA4MUNCNEI4MUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMKhXE7IuUk/Qp8krOOjCXIbQI kXWE2l3WJFXqrn5z1IF9Bftu2Jgcrupsq9ve0C2PAZjR2ZjCqcN5H9sgynqP2aXD ALrcxT5nkzTK2fh+o/F7CTL6VLGaP2LO74ZdZLhgO72Qolht5S9GvLo3pUVQ4dLP ay4fc45khhRWHoxzz07EHV8N7J38ohdAS/LujNxmLWccDLGJLZALh9Z3SO869vFg mcXj9JXNKLt1RXfxrwkB2t2FYUxVcQ5N1xWSG/KoF1Vm4xxqPg+UUZDtQXCfaxrM 4Y6GJDJ3FOTuJaPPiCEgUkc+QgqWJZgtVpoj9AUb2xeh9izrOfeNIUYexo4bAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUFcrV8BQhbpJRbee6riulCBy0uBswHwYDVR0j BBgwFoAUImXC6BvMzE6SKrEcWBreMb8nsgIwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA4 OTA2MjE0MDkyMjI5ODM3MC8wLzIyNjVDMkU4MUJDQ0NDNEU5MjJBQjExQzU4MUFE RTMxQkYyN0IyMDIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjI2NUMyRTgxQkNDQ0M0RTkyMkFCMTFDNTgxQURFMzFCRjI3QjIwMi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwODkwNjIxNDA5MjIyOTgzNzAvMC8zMjMwMzIyZTMx MzQzMzJlMzEzMDMwMmUzMDJmMzIzMjJkMzMzMjIwM2QzZTIwMzYzMzM1MzkzMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAsqPZDANBgkqhkiG9w0BAQsFAAOCAQEAZ0tZWAPU6j7rpQO5nWPE StoSj3n9lLjdCBq4ekhBlHlNrNveq497tcYXnW8Ifv4W6fcyqe+hU3kSdm0mSqDO OlhE+4MSu8LGGuT23twCYnQPrnN4orGKiE3oiFXEvNcU8+edtctx/Jy+7mcbdCyW yVUAmhdfrCVNsUM7A9mNSZyKH/ODAbQa+5zU8zDNXDf7pjr7dUL5pR5Mg5dBeM0v oo/SXUwANLktRKbH+hWKPRdZo+YA/N4yCYB9fKwOwO7MPWI6mpcgFjJaMqCd20Vk k1EPN3EHwtma9QWNMrVUOuHwaqa55+KQQi3j6KfUqjyh57A7hS1l1sSRHQ5SM1YR nQ== -----END CERTIFICATE-----Generated at Wed May 13 20:20:27 2026 by rpki-client