$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095887880083013635/0/3230332e3137362e3136382e302f32342d3234203d3e203234313431.roa File: 3230332e3137362e3136382e302f32342d3234203d3e203234313431.roa (raw, json) Hash identifier: N3T0xG4+OaQjiFYOMeZy4UHEZPVVz8y2/BHszGOiCDM= Subject key identifier: E5:48:0E:E3:A2:66:D4:47:12:32:3F:45:04:D0:2F:F3:3D:70:5D:91 Certificate issuer: /CN=BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F Certificate serial: 5D03C7C90EF4D89FCF728CA92DBB06C8E9931B8F Authority key identifier: BA:46:61:FF:AF:7B:AA:7A:94:8C:DA:87:F6:61:C5:BB:F7:54:BF:3F Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095887880083013635/0/3230332e3137362e3136382e302f32342d3234203d3e203234313431.roa Signing time: Fri 24 Apr 2026 05:29:27 +0000 ROA not before: Fri 24 Apr 2026 05:24:27 +0000 ROA not after: Fri 23 Apr 2027 05:29:27 +0000 asID: 24141 IP address blocks: 203.176.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095887880083013635/0/BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F.crl rsync://rpki-rps.cnnic.cn/repo/A1095887880083013635/0/BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:03:c7:c9:0e:f4:d8:9f:cf:72:8c:a9:2d:bb:06:c8:e9:93:1b:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F Validity Not Before: Apr 24 05:24:27 2026 GMT Not After : Apr 23 05:29:27 2027 GMT Subject: CN=E5480EE3A266D44712323F4504D02FF33D705D91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:97:c9:19:8c:3e:ad:89:cb:2b:30:74:89:56: 30:ef:3b:9a:a5:1a:0a:47:b0:c0:89:f6:6f:c2:96: 0c:3f:cc:24:a2:4f:90:3e:43:6d:26:b3:2b:c4:4b: 2a:67:c5:0e:3d:69:aa:fd:75:36:c3:3f:4d:6e:5b: 44:ed:56:92:0e:71:6d:9c:7f:38:7b:89:9f:ec:eb: 56:ef:4e:83:b4:d4:c1:51:c7:7e:39:cf:1d:a7:11: 0c:e2:b3:bb:76:d8:60:71:68:a9:59:e2:c3:e4:d1: 42:5e:ee:80:92:94:ee:d9:62:b9:84:f0:ec:33:75: 9e:13:63:ef:79:b5:1a:a5:91:4c:c4:3b:0a:99:63: 93:94:44:de:f6:50:20:10:da:77:ca:70:b1:97:d4: b2:ff:63:eb:2b:43:be:21:40:09:83:b9:e4:c0:a5: 43:34:25:ee:b7:e3:62:75:0d:33:5e:0d:bd:eb:d3: 6b:d0:85:50:68:f8:e6:2b:62:54:da:ba:87:9c:4b: 04:27:f1:a9:ad:7f:e0:7d:5f:04:2c:98:cd:ef:1d: 41:8d:37:63:35:47:27:5b:10:7a:7e:27:a8:81:ef: 94:85:7b:49:53:e0:e6:ca:52:35:97:d3:14:ad:23: 8e:64:ce:1f:04:45:7d:bc:a2:b9:8b:77:e3:95:5f: 1d:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:48:0E:E3:A2:66:D4:47:12:32:3F:45:04:D0:2F:F3:3D:70:5D:91 X509v3 Authority Key Identifier: keyid:BA:46:61:FF:AF:7B:AA:7A:94:8C:DA:87:F6:61:C5:BB:F7:54:BF:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095887880083013635/0/BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095887880083013635/0/3230332e3137362e3136382e302f32342d3234203d3e203234313431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.176.168.0/24 Signature Algorithm: sha256WithRSAEncryption 89:67:6a:f6:39:ab:39:61:51:3b:ea:c8:a4:3e:00:d1:dd:3e: 10:2e:78:d3:75:34:33:8f:19:9c:df:fb:d0:11:91:19:39:80: 3c:ea:30:72:8b:2e:0b:6e:02:75:43:40:6f:1a:0c:e6:99:9e: cf:11:15:11:e6:2a:80:95:24:f5:e2:e8:f9:ac:66:05:79:26: 79:81:63:fd:f0:4b:7f:96:4a:af:0a:b5:8f:5c:d4:a4:14:c9: 7a:99:91:f5:3e:17:96:41:b1:ae:f8:06:ae:36:66:c2:76:9a: 78:ce:5e:43:89:12:72:16:14:b5:09:a1:5c:8a:5c:1f:65:8a: ed:6a:eb:b2:3f:78:f0:14:b8:3c:ab:62:a7:1d:c1:12:3f:82: 8a:b4:2e:a2:6b:a3:c2:0b:4b:bb:e9:c6:4e:be:a6:d6:e1:90: cf:70:aa:55:79:ad:2f:5b:5e:12:d8:3a:94:da:84:0c:a3:aa: 7a:d8:e2:2a:16:f3:63:34:c0:87:0a:f1:52:67:42:fc:a6:38: 21:7b:eb:d7:7b:c6:9a:da:df:c6:75:cb:14:a7:33:b5:1e:b2: 57:72:fd:66:4f:db:95:62:44:8f:c5:bd:b6:e2:f5:97:f6:6d: 84:dd:be:8c:99:c0:2c:da:ec:13:ab:39:77:54:a6:80:d6:12: dc:f1:1d:93 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUXQPHyQ702J/PcoypLbsGyOmTG48wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkE0NjYxRkZBRjdCQUE3QTk0OENEQTg3RjY2MUM1QkJG NzU0QkYzRjAeFw0yNjA0MjQwNTI0MjdaFw0yNzA0MjMwNTI5MjdaMDMxMTAvBgNV BAMTKEU1NDgwRUUzQTI2NkQ0NDcxMjMyM0Y0NTA0RDAyRkYzM0Q3MDVEOTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAl8kZjD6ticsrMHSJVjDvO5ql GgpHsMCJ9m/Clgw/zCSiT5A+Q20msyvESypnxQ49aar9dTbDP01uW0TtVpIOcW2c fzh7iZ/s61bvToO01MFRx345zx2nEQzis7t22GBxaKlZ4sPk0UJe7oCSlO7ZYrmE 8OwzdZ4TY+95tRqlkUzEOwqZY5OURN72UCAQ2nfKcLGX1LL/Y+srQ74hQAmDueTA pUM0Je6342J1DTNeDb3r02vQhVBo+OYrYlTauoecSwQn8amtf+B9XwQsmM3vHUGN N2M1RydbEHp+J6iB75SFe0lT4ObKUjWX0xStI45kzh8ERX28ormLd+OVXx1PAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQU5UgO46Jm1EcSMj9FBNAv8z1wXZEwHwYDVR0j BBgwFoAUukZh/697qnqUjNqH9mHFu/dUvz8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTg4Nzg4MDA4MzAxMzYzNS8wL0JBNDY2MUZGQUY3QkFBN0E5NDhDREE4N0Y2NjFD NUJCRjc1NEJGM0YuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQkE0NjYxRkZBRjdCQUE3QTk0OENEQTg3RjY2MUM1QkJGNzU0QkYzRi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTU4ODc4ODAwODMwMTM2MzUvMC8zMjMwMzMyZTMx MzczNjJlMzEzNjM4MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzNDMxMzQzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAMuwqDANBgkqhkiG9w0BAQsFAAOCAQEAiWdq9jmrOWFRO+rIpD4A 0d0+EC5403U0M48ZnN/70BGRGTmAPOowcosuC24CdUNAbxoM5pmezxEVEeYqgJUk 9eLo+axmBXkmeYFj/fBLf5ZKrwq1j1zUpBTJepmR9T4XlkGxrvgGrjZmwnaaeM5e Q4kSchYUtQmhXIpcH2WK7Wrrsj948BS4PKtipx3BEj+CirQuomujwgtLu+nGTr6m 1uGQz3CqVXmtL1teEtg6lNqEDKOqetjiKhbzYzTAhwrxUmdC/KY4IXvr13vGmtrf xnXLFKcztR6yV3L9Zk/blWJEj8W9tuL1l/ZthN2+jJnALNrsE6s5d1SmgNYS3PEd kw== -----END CERTIFICATE-----Generated at Wed May 13 17:36:59 2026 by rpki-client