$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1099898650089291777/0/3230322e34312e3135322e302f32312d3231203d3e203538383334.roa File: 3230322e34312e3135322e302f32312d3231203d3e203538383334.roa (raw, json) Hash identifier: BNbF7LCHL9eJXgA/NHfhqhVICBytivhioqO9DDkr7Oc= Subject key identifier: 03:1E:1B:D7:3D:FB:1A:92:DA:8B:B8:C4:47:91:BD:C4:A2:3D:71:19 Certificate issuer: /CN=32A1B9CA0B4E1D345EF37542407653C6E58EBC53 Certificate serial: 2C04211C3AB5EF4724F1B46B9F2F88EBC9BC37B2 Authority key identifier: 32:A1:B9:CA:0B:4E:1D:34:5E:F3:75:42:40:76:53:C6:E5:8E:BC:53 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/32A1B9CA0B4E1D345EF37542407653C6E58EBC53.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1099898650089291777/0/3230322e34312e3135322e302f32312d3231203d3e203538383334.roa Signing time: Fri 24 Apr 2026 03:34:10 +0000 ROA not before: Fri 24 Apr 2026 03:29:10 +0000 ROA not after: Fri 23 Apr 2027 03:34:10 +0000 asID: 58834 IP address blocks: 202.41.152.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1099898650089291777/0/32A1B9CA0B4E1D345EF37542407653C6E58EBC53.crl rsync://rpki-rps.cnnic.cn/repo/A1099898650089291777/0/32A1B9CA0B4E1D345EF37542407653C6E58EBC53.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/32A1B9CA0B4E1D345EF37542407653C6E58EBC53.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 03:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:04:21:1c:3a:b5:ef:47:24:f1:b4:6b:9f:2f:88:eb:c9:bc:37:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=32A1B9CA0B4E1D345EF37542407653C6E58EBC53 Validity Not Before: Apr 24 03:29:10 2026 GMT Not After : Apr 23 03:34:10 2027 GMT Subject: CN=031E1BD73DFB1A92DA8BB8C44791BDC4A23D7119 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:44:63:ea:93:a3:ed:81:5b:73:0f:31:76:f4: 02:17:18:6b:3c:0d:e8:e9:91:83:4c:f3:26:e0:48: f7:8b:f0:5f:ba:c3:e8:8b:66:9e:f1:ab:ef:fe:24: 74:b1:68:66:99:43:12:bf:a7:10:53:00:66:fb:73: 1e:56:e0:aa:6d:b5:27:42:8e:0a:81:43:cd:24:00: 21:f1:f2:d8:66:e9:45:17:1b:51:7c:3d:55:2e:37: 5a:ba:bb:ee:a4:9e:d0:e7:79:2e:d4:bf:59:af:c7: 85:3a:7e:e7:dc:f2:9f:22:f4:8d:68:aa:f5:d8:ad: dd:42:42:13:c3:e9:1c:ce:c4:e7:34:55:b2:bf:3e: 5e:92:cf:c7:2f:bc:33:73:9a:6c:b0:e9:b1:c1:06: 6b:98:da:7b:91:1d:22:f8:b9:23:fd:28:d5:5f:90: 36:dd:d2:29:ba:2d:e8:14:6c:94:8f:86:5f:d4:8b: a1:9e:10:2f:3b:19:f5:6d:bb:2b:6d:35:c9:78:e5: d2:0f:6e:06:ae:ed:a5:3c:5c:cb:6b:c4:dd:f4:87: 4d:e6:e6:0c:c9:cd:57:d8:ce:cd:49:4c:d2:60:84: 4d:d9:75:f3:df:7d:49:f0:20:29:c2:b4:25:67:87: b8:6d:be:22:0e:a3:8c:2b:f1:f2:82:e9:67:ed:c1: 0d:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:1E:1B:D7:3D:FB:1A:92:DA:8B:B8:C4:47:91:BD:C4:A2:3D:71:19 X509v3 Authority Key Identifier: keyid:32:A1:B9:CA:0B:4E:1D:34:5E:F3:75:42:40:76:53:C6:E5:8E:BC:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1099898650089291777/0/32A1B9CA0B4E1D345EF37542407653C6E58EBC53.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/32A1B9CA0B4E1D345EF37542407653C6E58EBC53.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1099898650089291777/0/3230322e34312e3135322e302f32312d3231203d3e203538383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.41.152.0/21 Signature Algorithm: sha256WithRSAEncryption 66:9f:d0:1e:d2:d5:89:76:44:33:54:80:c5:ed:e6:5b:5b:62: 28:6e:29:8e:67:d6:0d:2b:21:24:10:2b:b7:f6:3d:91:32:d2: dd:86:bd:37:b3:8a:5a:88:5a:54:16:52:fa:82:16:c9:00:cd: fc:f8:ae:39:e0:5b:9f:17:db:41:fe:59:37:e9:6a:0d:6e:98: 80:ea:93:f0:34:73:2f:9e:27:38:23:5a:6e:0b:40:65:54:af: 0a:23:28:e7:b4:50:82:c4:b1:93:e4:8e:a9:13:ae:49:9d:e0: de:73:51:84:32:09:3d:ca:8e:33:2e:88:d8:3b:6e:9d:6e:2a: 9c:c2:ee:0c:fb:24:04:ec:cb:8f:65:9d:b6:06:7d:82:f7:4a: 98:53:d0:f2:29:ab:43:42:ac:6e:5a:69:ed:f6:c6:46:fb:0b: 68:01:f1:81:24:a3:28:0e:9c:06:33:aa:8c:7a:42:40:1a:f1: ad:f8:59:88:3c:10:4c:4f:7b:0e:ef:36:17:b4:ce:59:b9:b9: ee:51:1c:a0:f9:6d:36:10:33:f7:fd:37:0e:a8:67:ad:db:12: 40:cd:bf:bf:3e:01:d4:97:26:fc:d1:f5:e0:3c:91:a2:2a:1a: d6:90:4e:7f:28:38:4c:3b:3a:ea:b1:8e:7f:e9:a5:09:fb:58: b5:f9:9e:a4 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIULAQhHDq170ck8bRrny+I68m8N7IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzJBMUI5Q0EwQjRFMUQzNDVFRjM3NTQyNDA3NjUzQzZF NThFQkM1MzAeFw0yNjA0MjQwMzI5MTBaFw0yNzA0MjMwMzM0MTBaMDMxMTAvBgNV BAMTKDAzMUUxQkQ3M0RGQjFBOTJEQThCQjhDNDQ3OTFCREM0QTIzRDcxMTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqRGPqk6PtgVtzDzF29AIXGGs8 DejpkYNM8ybgSPeL8F+6w+iLZp7xq+/+JHSxaGaZQxK/pxBTAGb7cx5W4KpttSdC jgqBQ80kACHx8thm6UUXG1F8PVUuN1q6u+6kntDneS7Uv1mvx4U6fufc8p8i9I1o qvXYrd1CQhPD6RzOxOc0VbK/Pl6Sz8cvvDNzmmyw6bHBBmuY2nuRHSL4uSP9KNVf kDbd0im6LegUbJSPhl/Ui6GeEC87GfVtuyttNcl45dIPbgau7aU8XMtrxN30h03m 5gzJzVfYzs1JTNJghE3ZdfPffUnwICnCtCVnh7htviIOo4wr8fKC6WftwQ1fAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUAx4b1z37GpLai7jER5G9xKI9cRkwHwYDVR0j BBgwFoAUMqG5ygtOHTRe83VCQHZTxuWOvFMwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 OTg5ODY1MDA4OTI5MTc3Ny8wLzMyQTFCOUNBMEI0RTFEMzQ1RUYzNzU0MjQwNzY1 M0M2RTU4RUJDNTMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMzJBMUI5Q0EwQjRFMUQzNDVFRjM3NTQyNDA3NjUzQzZFNThFQkM1My5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5OTg5ODY1MDA4OTI5MTc3Ny8wLzMyMzAzMjJlMzQz MTJlMzEzNTMyMmUzMDJmMzIzMTJkMzIzMTIwM2QzZTIwMzUzODM4MzMzNC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEA8opmDANBgkqhkiG9w0BAQsFAAOCAQEAZp/QHtLViXZEM1SAxe3mW1ti KG4pjmfWDSshJBArt/Y9kTLS3Ya9N7OKWohaVBZS+oIWyQDN/PiuOeBbnxfbQf5Z N+lqDW6YgOqT8DRzL54nOCNabgtAZVSvCiMo57RQgsSxk+SOqROuSZ3g3nNRhDIJ PcqOMy6I2DtunW4qnMLuDPskBOzLj2WdtgZ9gvdKmFPQ8imrQ0Ksblpp7fbGRvsL aAHxgSSjKA6cBjOqjHpCQBrxrfhZiDwQTE97Du82F7TOWbm57lEcoPltNhAz9/03 DqhnrdsSQM2/vz4B1Jcm/NH14DyRoioa1pBOfyg4TDs66rGOf+mlCftYtfmepA== -----END CERTIFICATE-----Generated at Wed May 13 19:36:24 2026 by rpki-client