$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1099898650089291777/0/3230322e34312e3135322e302f32312d3231203d3e203137383136.roa File: 3230322e34312e3135322e302f32312d3231203d3e203137383136.roa (raw, json) Hash identifier: 8TG6MQgO1lI3vkKTh0hsJ8yHBg2b506eCK0j3rcCfdM= Subject key identifier: 33:57:3E:AC:64:77:7B:0E:A0:87:D6:26:13:94:84:D5:F9:60:68:68 Certificate issuer: /CN=32A1B9CA0B4E1D345EF37542407653C6E58EBC53 Certificate serial: 1EE4C15C4C1CCB3D9916E63CD711391E90DEE527 Authority key identifier: 32:A1:B9:CA:0B:4E:1D:34:5E:F3:75:42:40:76:53:C6:E5:8E:BC:53 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/32A1B9CA0B4E1D345EF37542407653C6E58EBC53.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1099898650089291777/0/3230322e34312e3135322e302f32312d3231203d3e203137383136.roa Signing time: Fri 24 Apr 2026 03:37:12 +0000 ROA not before: Fri 24 Apr 2026 03:32:12 +0000 ROA not after: Fri 23 Apr 2027 03:37:12 +0000 asID: 17816 IP address blocks: 202.41.152.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1099898650089291777/0/32A1B9CA0B4E1D345EF37542407653C6E58EBC53.crl rsync://rpki-rps.cnnic.cn/repo/A1099898650089291777/0/32A1B9CA0B4E1D345EF37542407653C6E58EBC53.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/32A1B9CA0B4E1D345EF37542407653C6E58EBC53.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 03:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:e4:c1:5c:4c:1c:cb:3d:99:16:e6:3c:d7:11:39:1e:90:de:e5:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=32A1B9CA0B4E1D345EF37542407653C6E58EBC53 Validity Not Before: Apr 24 03:32:12 2026 GMT Not After : Apr 23 03:37:12 2027 GMT Subject: CN=33573EAC64777B0EA087D626139484D5F9606868 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:37:48:57:46:97:10:b4:dd:bb:4c:3b:2b:4f: da:8f:ef:ff:a5:21:d8:b1:4a:17:12:60:85:a1:03: fc:c9:e7:51:f1:5a:64:af:0e:08:76:e1:10:69:70: 34:6e:1a:73:3e:8e:ad:70:3b:ef:96:89:f0:36:62: a4:5c:dc:fa:0f:87:06:3e:f3:58:03:f8:4e:93:09: aa:20:60:01:b2:88:42:bf:c3:aa:95:fd:3f:3d:a1: 73:df:41:1f:9c:b8:6a:bc:f8:00:2c:65:4b:3b:49: 8a:1e:a7:d2:f9:3a:27:3b:94:1a:07:3f:52:dc:f6: df:ad:fb:6c:c4:72:4e:d5:9c:9e:86:3a:cd:bf:cf: 02:fd:ac:b7:dd:e2:c7:a2:36:3d:54:ca:6f:79:de: bf:5b:b1:2c:d2:ce:c0:08:a0:f8:8d:30:60:a1:a4: ab:b0:5c:b4:79:11:c3:c6:5b:10:1b:13:1f:80:14: de:0f:1c:0e:c7:ff:9e:70:7d:58:d7:7f:74:62:fb: a6:a4:2a:d7:f4:cd:d2:13:da:53:99:ca:3c:77:a7: 2f:45:f3:8b:42:3e:14:32:22:ab:5b:98:7a:42:9c: 11:1d:98:d6:a5:69:55:c2:08:09:cb:c5:38:1e:bf: d5:bf:e7:29:ad:dc:87:77:ae:44:f5:26:57:ae:a4: e6:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:57:3E:AC:64:77:7B:0E:A0:87:D6:26:13:94:84:D5:F9:60:68:68 X509v3 Authority Key Identifier: keyid:32:A1:B9:CA:0B:4E:1D:34:5E:F3:75:42:40:76:53:C6:E5:8E:BC:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1099898650089291777/0/32A1B9CA0B4E1D345EF37542407653C6E58EBC53.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/32A1B9CA0B4E1D345EF37542407653C6E58EBC53.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1099898650089291777/0/3230322e34312e3135322e302f32312d3231203d3e203137383136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.41.152.0/21 Signature Algorithm: sha256WithRSAEncryption 8f:ca:da:66:01:1a:65:f5:61:48:e0:4f:22:4f:5a:be:72:4a: 18:35:dd:29:9e:1b:4b:05:c8:d3:0a:2f:75:99:3d:bd:62:8f: 25:99:66:cf:18:d4:25:37:e0:1a:f8:83:65:b6:a5:3d:47:f4: bf:82:6b:f7:a2:e2:6b:a3:06:69:e0:3e:22:7f:2a:cc:64:00: 58:19:e5:5c:8c:c4:17:5f:d9:e1:e9:63:57:e0:50:64:25:0b: cf:c6:59:cf:86:46:97:0d:3e:84:42:c2:c4:1f:c9:a5:d1:fd: 8e:5c:9f:dd:8b:3b:fe:b0:69:6b:cd:87:95:6a:dc:19:28:c5: 97:51:fb:39:28:ae:10:e7:2c:52:9b:1c:1e:9b:67:3e:17:7f: 01:d4:9c:79:99:eb:ff:d5:f3:6e:5c:f8:03:b1:dc:27:b6:ea: 89:80:93:e1:d3:61:eb:6b:b0:07:15:2c:2b:a2:67:25:fe:7d: f9:4e:b9:85:9e:53:b8:f5:27:cc:a2:7f:b4:5f:76:c9:04:87: 5d:46:57:fb:df:80:fd:ae:f9:ae:4c:09:25:6a:54:b1:ea:e2: 43:dd:4b:1f:1a:37:dd:d8:07:e4:48:02:d1:38:54:f3:e1:48: 6e:df:48:08:0a:8d:6d:22:47:c7:09:00:6a:8f:7c:96:a8:3c: 6f:7f:9c:eb -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUHuTBXEwcyz2ZFuY81xE5HpDe5ScwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzJBMUI5Q0EwQjRFMUQzNDVFRjM3NTQyNDA3NjUzQzZF NThFQkM1MzAeFw0yNjA0MjQwMzMyMTJaFw0yNzA0MjMwMzM3MTJaMDMxMTAvBgNV BAMTKDMzNTczRUFDNjQ3NzdCMEVBMDg3RDYyNjEzOTQ4NEQ1Rjk2MDY4NjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkN0hXRpcQtN27TDsrT9qP7/+l IdixShcSYIWhA/zJ51HxWmSvDgh24RBpcDRuGnM+jq1wO++WifA2YqRc3PoPhwY+ 81gD+E6TCaogYAGyiEK/w6qV/T89oXPfQR+cuGq8+AAsZUs7SYoep9L5Oic7lBoH P1Lc9t+t+2zEck7VnJ6GOs2/zwL9rLfd4seiNj1Uym953r9bsSzSzsAIoPiNMGCh pKuwXLR5EcPGWxAbEx+AFN4PHA7H/55wfVjXf3Ri+6akKtf0zdIT2lOZyjx3py9F 84tCPhQyIqtbmHpCnBEdmNalaVXCCAnLxTgev9W/5ymt3Id3rkT1JleupOZbAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUM1c+rGR3ew6gh9YmE5SE1flgaGgwHwYDVR0j BBgwFoAUMqG5ygtOHTRe83VCQHZTxuWOvFMwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 OTg5ODY1MDA4OTI5MTc3Ny8wLzMyQTFCOUNBMEI0RTFEMzQ1RUYzNzU0MjQwNzY1 M0M2RTU4RUJDNTMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMzJBMUI5Q0EwQjRFMUQzNDVFRjM3NTQyNDA3NjUzQzZFNThFQkM1My5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5OTg5ODY1MDA4OTI5MTc3Ny8wLzMyMzAzMjJlMzQz MTJlMzEzNTMyMmUzMDJmMzIzMTJkMzIzMTIwM2QzZTIwMzEzNzM4MzEzNi5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEA8opmDANBgkqhkiG9w0BAQsFAAOCAQEAj8raZgEaZfVhSOBPIk9avnJK GDXdKZ4bSwXI0wovdZk9vWKPJZlmzxjUJTfgGviDZbalPUf0v4Jr96Lia6MGaeA+ In8qzGQAWBnlXIzEF1/Z4eljV+BQZCULz8ZZz4ZGlw0+hELCxB/JpdH9jlyf3Ys7 /rBpa82HlWrcGSjFl1H7OSiuEOcsUpscHptnPhd/AdSceZnr/9Xzblz4A7HcJ7bq iYCT4dNh62uwBxUsK6JnJf59+U65hZ5TuPUnzKJ/tF92yQSHXUZX+9+A/a75rkwJ JWpUseriQ91LHxo33dgH5EgC0ThU8+FIbt9ICAqNbSJHxwkAao98lqg8b3+c6w== -----END CERTIFICATE-----Generated at Wed May 13 15:26:27 2026 by rpki-client