$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1099622320097460225/0/3230332e3138392e3234302e302f32322d3232203d3e203538383532.roa File: 3230332e3138392e3234302e302f32322d3232203d3e203538383532.roa (raw, json) Hash identifier: QQsr5nExhTx2dN0ARCzWPgFcMFxYhPf9PyL07Mlhh44= Subject key identifier: 05:F5:3C:DB:EA:D8:C0:0A:35:EF:8B:C8:72:89:65:0C:37:6E:77:48 Certificate issuer: /CN=49343D2BE4A543AC3AFE9189955CC08AAB3BF772 Certificate serial: 4AB2EA03DB5B7CD8CF5EA7EC004A3F0E86E3429F Authority key identifier: 49:34:3D:2B:E4:A5:43:AC:3A:FE:91:89:95:5C:C0:8A:AB:3B:F7:72 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/49343D2BE4A543AC3AFE9189955CC08AAB3BF772.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1099622320097460225/0/3230332e3138392e3234302e302f32322d3232203d3e203538383532.roa Signing time: Thu 23 Apr 2026 09:10:10 +0000 ROA not before: Thu 23 Apr 2026 09:05:10 +0000 ROA not after: Thu 22 Apr 2027 09:10:10 +0000 asID: 58852 IP address blocks: 203.189.240.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1099622320097460225/0/49343D2BE4A543AC3AFE9189955CC08AAB3BF772.crl rsync://rpki-rps.cnnic.cn/repo/A1099622320097460225/0/49343D2BE4A543AC3AFE9189955CC08AAB3BF772.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/49343D2BE4A543AC3AFE9189955CC08AAB3BF772.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:b2:ea:03:db:5b:7c:d8:cf:5e:a7:ec:00:4a:3f:0e:86:e3:42:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49343D2BE4A543AC3AFE9189955CC08AAB3BF772 Validity Not Before: Apr 23 09:05:10 2026 GMT Not After : Apr 22 09:10:10 2027 GMT Subject: CN=05F53CDBEAD8C00A35EF8BC87289650C376E7748 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:4b:f2:ed:79:f9:4b:be:7d:9a:a7:90:9a:13: 55:33:68:ad:5e:82:39:58:ff:ca:1b:97:80:f1:e4: 81:43:62:f6:80:f1:c6:4d:86:47:02:6b:77:98:26: f6:27:2b:14:ee:3f:e9:41:d6:82:43:e8:38:97:62: b5:9f:eb:92:d2:9d:0e:eb:dc:c5:3c:27:58:6a:27: f6:16:9e:19:84:bc:1a:84:7c:07:4e:2e:c1:29:af: f9:64:0a:cf:d5:f1:0e:b1:c9:75:c7:2e:6c:b9:13: 9b:51:40:37:a4:9c:06:b1:c8:b4:71:d1:dd:9b:33: 73:de:0b:a2:f9:86:27:3f:bb:c6:00:9a:45:a0:bb: e5:44:bd:55:ad:93:1d:40:3c:ca:dc:b3:ef:a6:b8: 15:90:21:2c:88:a8:1d:1e:94:da:20:39:df:3d:ed: 9c:64:5e:19:3a:50:4a:c8:8f:db:36:cd:86:7c:f8: b5:f1:34:86:98:a6:20:27:19:46:67:26:28:51:c6: 24:30:7b:ca:0f:8c:fc:61:e7:9c:a3:fa:4b:d1:ea: 68:57:7d:fd:07:38:7f:67:ea:ec:eb:53:1d:94:18: f5:c3:0c:62:ba:df:ab:b2:ef:85:45:66:6b:2a:1f: 29:ef:d9:ab:13:2d:4e:d0:f4:5a:e8:4b:bc:96:79: c3:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:F5:3C:DB:EA:D8:C0:0A:35:EF:8B:C8:72:89:65:0C:37:6E:77:48 X509v3 Authority Key Identifier: keyid:49:34:3D:2B:E4:A5:43:AC:3A:FE:91:89:95:5C:C0:8A:AB:3B:F7:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1099622320097460225/0/49343D2BE4A543AC3AFE9189955CC08AAB3BF772.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/49343D2BE4A543AC3AFE9189955CC08AAB3BF772.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1099622320097460225/0/3230332e3138392e3234302e302f32322d3232203d3e203538383532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.189.240.0/22 Signature Algorithm: sha256WithRSAEncryption b2:e9:c8:b1:ab:2f:cb:2e:57:30:3c:16:6c:33:24:65:8f:f9: df:a4:3b:db:4a:c3:44:ec:f2:41:2a:84:99:a7:5f:ff:31:e2: c8:83:ab:87:28:00:41:40:83:03:99:28:26:ec:11:b8:fc:3b: e5:e4:0b:5a:00:4c:d5:c0:0b:34:0b:00:ad:c4:da:cd:47:20: 84:25:9b:82:a3:35:90:88:e1:c0:4d:72:44:61:77:ca:b3:fc: 11:f6:a9:20:2b:f8:e4:f5:f3:b8:32:07:32:d9:4c:dc:af:b4: f3:fa:d7:0d:11:8f:c4:09:90:16:63:de:69:58:50:15:6d:57: 3a:cb:ab:13:37:30:35:93:ac:d0:55:7b:4a:a6:cf:ea:02:70: 66:4d:ee:e0:64:b0:78:40:e0:48:84:26:95:ea:b0:45:4e:0a: e8:80:18:d5:bc:e6:e3:6c:0d:7e:b1:60:8f:02:5a:df:81:17: a4:17:67:50:11:76:b4:62:00:92:9b:02:f5:df:3b:8f:7a:65: 07:cf:80:e4:ef:b1:8f:87:be:d6:9d:bf:1c:cd:9e:08:f7:5f: 2a:0b:e9:7d:cf:5b:10:18:b7:62:b6:96:76:a6:c8:51:f8:59: 7c:51:13:d3:97:b6:f3:00:f6:b0:8b:88:fb:1c:a8:59:dc:0a: 71:54:e5:2c -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUSrLqA9tbfNjPXqfsAEo/DobjQp8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDkzNDNEMkJFNEE1NDNBQzNBRkU5MTg5OTU1Q0MwOEFB QjNCRjc3MjAeFw0yNjA0MjMwOTA1MTBaFw0yNzA0MjIwOTEwMTBaMDMxMTAvBgNV BAMTKDA1RjUzQ0RCRUFEOEMwMEEzNUVGOEJDODcyODk2NTBDMzc2RTc3NDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBS/LteflLvn2ap5CaE1UzaK1e gjlY/8obl4Dx5IFDYvaA8cZNhkcCa3eYJvYnKxTuP+lB1oJD6DiXYrWf65LSnQ7r 3MU8J1hqJ/YWnhmEvBqEfAdOLsEpr/lkCs/V8Q6xyXXHLmy5E5tRQDeknAaxyLRx 0d2bM3PeC6L5hic/u8YAmkWgu+VEvVWtkx1APMrcs++muBWQISyIqB0elNogOd89 7ZxkXhk6UErIj9s2zYZ8+LXxNIaYpiAnGUZnJihRxiQwe8oPjPxh55yj+kvR6mhX ff0HOH9n6uzrUx2UGPXDDGK636uy74VFZmsqHynv2asTLU7Q9FroS7yWecOzAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUBfU82+rYwAo174vIcollDDdud0gwHwYDVR0j BBgwFoAUSTQ9K+SlQ6w6/pGJlVzAiqs793IwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 OTYyMjMyMDA5NzQ2MDIyNS8wLzQ5MzQzRDJCRTRBNTQzQUMzQUZFOTE4OTk1NUND MDhBQUIzQkY3NzIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNDkzNDNEMkJFNEE1NDNBQzNBRkU5MTg5OTU1Q0MwOEFBQjNCRjc3Mi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTk2MjIzMjAwOTc0NjAyMjUvMC8zMjMwMzMyZTMx MzgzOTJlMzIzNDMwMmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzUzODM4MzUzMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAsu98DANBgkqhkiG9w0BAQsFAAOCAQEAsunIsasvyy5XMDwWbDMk ZY/536Q720rDROzyQSqEmadf/zHiyIOrhygAQUCDA5koJuwRuPw75eQLWgBM1cAL NAsArcTazUcghCWbgqM1kIjhwE1yRGF3yrP8EfapICv45PXzuDIHMtlM3K+08/rX DRGPxAmQFmPeaVhQFW1XOsurEzcwNZOs0FV7SqbP6gJwZk3u4GSweEDgSIQmleqw RU4K6IAY1bzm42wNfrFgjwJa34EXpBdnUBF2tGIAkpsC9d87j3plB8+A5O+xj4e+ 1p2/HM2eCPdfKgvpfc9bEBi3YraWdqbIUfhZfFET05e28wD2sIuI+xyoWdwKcVTl LA== -----END CERTIFICATE-----Generated at Wed May 13 21:31:40 2026 by rpki-client