$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094815969324302337/0/3232302e3131332e3135332e302f32342d3234203d3e203137363233.roa File: 3232302e3131332e3135332e302f32342d3234203d3e203137363233.roa (raw, json) Hash identifier: KGNsKStacUxfEIx/PpdyR19/pcwO/IFIZ/h6GGr8Zh8= Subject key identifier: 84:22:96:13:AE:4B:91:55:D8:F9:96:75:5A:FD:92:47:98:5E:E2:F8 Certificate issuer: /CN=32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5 Certificate serial: CDB1C655C24E78903783FB2A8F74EF20EC6637 Authority key identifier: 32:C6:BE:DB:CA:2F:53:4D:41:32:20:06:E3:9A:6E:51:B1:A9:A9:D5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/3232302e3131332e3135332e302f32342d3234203d3e203137363233.roa Signing time: Fri 24 Apr 2026 07:04:13 +0000 ROA not before: Fri 24 Apr 2026 06:59:13 +0000 ROA not after: Fri 23 Apr 2027 07:04:13 +0000 asID: 17623 IP address blocks: 220.113.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.crl rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:16:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: cd:b1:c6:55:c2:4e:78:90:37:83:fb:2a:8f:74:ef:20:ec:66:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5 Validity Not Before: Apr 24 06:59:13 2026 GMT Not After : Apr 23 07:04:13 2027 GMT Subject: CN=84229613AE4B9155D8F996755AFD9247985EE2F8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:17:90:94:04:00:ef:4c:a0:3c:a7:73:f8:78: 37:ed:65:b7:6c:ab:e4:7c:6e:64:39:55:db:c3:d8: ca:16:50:12:e6:75:f2:e6:1b:b4:b4:04:6c:4e:64: d6:9a:14:ce:df:71:d8:8b:c3:c0:0e:57:8e:18:de: 85:d8:1a:c5:40:ed:32:bd:ee:a6:68:28:ab:ce:96: 82:8d:aa:f2:f7:e9:1f:a5:bd:bc:e0:d8:b0:cf:42: 59:fc:5c:73:62:1b:41:3d:f4:de:e4:5b:a0:dc:99: ff:f9:3c:f3:0f:27:87:25:5d:4b:1e:8f:d8:33:7e: 85:6f:46:63:75:36:b2:1f:6b:a8:66:ea:95:db:b3: 8a:9f:ad:89:37:52:b1:e5:93:16:8d:fb:8f:db:fd: bd:47:0a:6a:6c:91:00:60:12:22:d4:c2:49:83:38: 70:e8:79:a4:64:50:3f:e9:80:65:01:fa:57:d2:45: c5:00:2f:0e:e7:ce:f7:85:fb:6c:3a:8c:3b:a5:a8: 4e:c5:0b:1f:ba:ad:41:78:a4:00:66:ad:14:79:e6: b2:16:1f:04:36:fb:83:1c:4c:cf:c8:26:02:f4:08: ec:2e:88:27:60:9f:24:2e:05:4e:15:d8:0f:91:5d: e5:98:3d:e4:9c:df:19:cb:09:4c:2e:71:ba:a7:4f: da:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:22:96:13:AE:4B:91:55:D8:F9:96:75:5A:FD:92:47:98:5E:E2:F8 X509v3 Authority Key Identifier: keyid:32:C6:BE:DB:CA:2F:53:4D:41:32:20:06:E3:9A:6E:51:B1:A9:A9:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/3232302e3131332e3135332e302f32342d3234203d3e203137363233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 220.113.153.0/24 Signature Algorithm: sha256WithRSAEncryption 83:f1:4b:b0:d0:be:ed:0e:4e:d0:50:35:26:a9:8d:a6:5f:88: 81:35:8c:3f:26:ee:c1:e3:cd:d6:a0:0d:39:c2:a9:4e:4d:47: f6:b8:d5:f9:d7:73:8a:48:6e:a3:92:0c:12:64:85:27:bc:93: 01:75:a5:07:55:b2:9d:3c:81:2b:de:7f:be:c9:8d:bb:e2:61: 85:d5:f1:ac:06:dc:80:d8:1d:37:c6:bf:00:17:6a:a2:61:fb: dd:71:3c:98:d4:80:bb:83:d8:84:b1:29:0e:e3:b5:71:3c:51: 91:e9:b5:53:98:3e:f0:dd:b4:3e:bd:c2:b5:33:af:bd:0f:0c: 6f:e1:07:8b:03:b9:35:8c:04:6d:f2:b3:43:23:27:c8:2b:f2: 4d:53:62:da:dc:58:2b:1a:96:f4:bc:bb:cb:8f:62:56:ae:4d: b8:be:23:01:83:c7:73:bb:b6:46:e6:43:c8:10:1b:ea:bc:cd: d3:5b:00:fb:d8:c8:8c:02:73:02:6a:5d:42:06:af:31:51:82: fe:60:a9:dc:4b:9d:c2:6b:be:b4:fd:8b:54:eb:ab:16:8b:c5: 52:ef:71:13:da:1e:9a:9e:bb:60:35:10:5a:12:34:b2:1d:f3: 9e:cb:a5:b3:e8:16:75:ec:e6:a9:d7:42:7f:78:25:89:d8:95: 62:4b:cf:12 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUAM2xxlXCTniQN4P7Ko907yDsZjcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzJDNkJFREJDQTJGNTM0RDQxMzIyMDA2RTM5QTZFNTFC MUE5QTlENTAeFw0yNjA0MjQwNjU5MTNaFw0yNzA0MjMwNzA0MTNaMDMxMTAvBgNV BAMTKDg0MjI5NjEzQUU0QjkxNTVEOEY5OTY3NTVBRkQ5MjQ3OTg1RUUyRjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqF5CUBADvTKA8p3P4eDftZbds q+R8bmQ5VdvD2MoWUBLmdfLmG7S0BGxOZNaaFM7fcdiLw8AOV44Y3oXYGsVA7TK9 7qZoKKvOloKNqvL36R+lvbzg2LDPQln8XHNiG0E99N7kW6Dcmf/5PPMPJ4clXUse j9gzfoVvRmN1NrIfa6hm6pXbs4qfrYk3UrHlkxaN+4/b/b1HCmpskQBgEiLUwkmD OHDoeaRkUD/pgGUB+lfSRcUALw7nzveF+2w6jDulqE7FCx+6rUF4pABmrRR55rIW HwQ2+4McTM/IJgL0COwuiCdgnyQuBU4V2A+RXeWYPeSc3xnLCUwucbqnT9rVAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUhCKWE65LkVXY+ZZ1Wv2SR5he4vgwHwYDVR0j BBgwFoAUMsa+28ovU01BMiAG45puUbGpqdUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDgxNTk2OTMyNDMwMjMzNy8wLzMyQzZCRURCQ0EyRjUzNEQ0MTMyMjAwNkUzOUE2 RTUxQjFBOUE5RDUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMzJDNkJFREJDQTJGNTM0RDQxMzIyMDA2RTM5QTZFNTFCMUE5QTlENS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTQ4MTU5NjkzMjQzMDIzMzcvMC8zMjMyMzAyZTMx MzEzMzJlMzEzNTMzMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzNzM2MzIzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEANxxmTANBgkqhkiG9w0BAQsFAAOCAQEAg/FLsNC+7Q5O0FA1JqmN pl+IgTWMPybuwePN1qANOcKpTk1H9rjV+ddzikhuo5IMEmSFJ7yTAXWlB1WynTyB K95/vsmNu+JhhdXxrAbcgNgdN8a/ABdqomH73XE8mNSAu4PYhLEpDuO1cTxRkem1 U5g+8N20Pr3CtTOvvQ8Mb+EHiwO5NYwEbfKzQyMnyCvyTVNi2txYKxqW9Ly7y49i Vq5NuL4jAYPHc7u2RuZDyBAb6rzN01sA+9jIjAJzAmpdQgavMVGC/mCp3Eudwmu+ tP2LVOurFovFUu9xE9oemp67YDUQWhI0sh3znsuls+gWdezmqddCf3glidiVYkvP Eg== -----END CERTIFICATE-----Generated at Wed May 13 15:07:09 2026 by rpki-client