$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1099898650089291777/0/3230322e34312e3135362e302f32322d3232203d3e203538383334.roa File: 3230322e34312e3135362e302f32322d3232203d3e203538383334.roa (raw, json) Hash identifier: T+pvuiks6kPGPp4EB9NR96xMgNADrbCbZHwEyEfSpGU= Subject key identifier: 8A:E4:EB:53:A6:51:44:C5:B5:24:62:63:D2:48:9F:F9:EC:85:06:39 Certificate issuer: /CN=32A1B9CA0B4E1D345EF37542407653C6E58EBC53 Certificate serial: 79595E9C38BDA53EB20455435F2996E172B45AF4 Authority key identifier: 32:A1:B9:CA:0B:4E:1D:34:5E:F3:75:42:40:76:53:C6:E5:8E:BC:53 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/32A1B9CA0B4E1D345EF37542407653C6E58EBC53.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1099898650089291777/0/3230322e34312e3135362e302f32322d3232203d3e203538383334.roa Signing time: Fri 24 Apr 2026 03:34:10 +0000 ROA not before: Fri 24 Apr 2026 03:29:10 +0000 ROA not after: Fri 23 Apr 2027 03:34:10 +0000 asID: 58834 IP address blocks: 202.41.156.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1099898650089291777/0/32A1B9CA0B4E1D345EF37542407653C6E58EBC53.crl rsync://rpki-rps.cnnic.cn/repo/A1099898650089291777/0/32A1B9CA0B4E1D345EF37542407653C6E58EBC53.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/32A1B9CA0B4E1D345EF37542407653C6E58EBC53.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 03:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:59:5e:9c:38:bd:a5:3e:b2:04:55:43:5f:29:96:e1:72:b4:5a:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=32A1B9CA0B4E1D345EF37542407653C6E58EBC53 Validity Not Before: Apr 24 03:29:10 2026 GMT Not After : Apr 23 03:34:10 2027 GMT Subject: CN=8AE4EB53A65144C5B5246263D2489FF9EC850639 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:39:a2:f5:8e:c0:dc:cf:65:5a:b6:58:6e:83: 34:bd:48:60:87:35:57:8d:80:4e:4d:be:2f:00:34: 93:26:cd:11:b5:30:5c:fe:65:16:6e:39:8d:da:b8: 08:3b:c5:be:ee:26:8c:53:02:62:82:45:83:06:98: f7:8f:a4:3a:25:0f:75:b9:66:a0:45:d3:29:dd:21: ae:9b:99:0e:90:b3:54:0f:2b:eb:2e:bf:8b:02:ea: 54:61:c0:e1:38:70:b3:dd:71:da:8b:47:a9:47:d7: df:5f:bd:90:ab:f4:29:b3:c0:f9:9e:d1:85:39:af: 81:15:78:5a:38:1e:89:c8:36:03:fc:f9:42:d1:7d: 75:7f:1d:af:83:48:3d:f7:1c:c5:8e:f9:bf:bc:28: ca:ff:95:ff:9e:2b:dc:3f:4a:3d:28:b1:c8:ee:2f: 85:33:bc:74:5f:26:ce:46:7d:15:84:5a:d0:67:f0: 22:12:82:15:d8:1e:d5:e0:2c:ad:13:11:9c:72:b5: d5:3c:85:2c:56:05:ef:96:73:4f:78:41:97:d1:fc: fb:04:94:00:0e:93:89:11:41:46:4d:48:60:97:3d: 66:92:3c:84:4e:a8:93:25:02:8b:a5:74:f2:d0:5c: 39:38:c2:86:ba:dd:75:5b:9b:b7:01:2d:7f:3a:de: 57:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:E4:EB:53:A6:51:44:C5:B5:24:62:63:D2:48:9F:F9:EC:85:06:39 X509v3 Authority Key Identifier: keyid:32:A1:B9:CA:0B:4E:1D:34:5E:F3:75:42:40:76:53:C6:E5:8E:BC:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1099898650089291777/0/32A1B9CA0B4E1D345EF37542407653C6E58EBC53.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/32A1B9CA0B4E1D345EF37542407653C6E58EBC53.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1099898650089291777/0/3230322e34312e3135362e302f32322d3232203d3e203538383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.41.156.0/22 Signature Algorithm: sha256WithRSAEncryption 60:22:67:32:d3:bd:7a:3f:0e:fb:84:fe:f5:ef:7b:7d:a3:7c: a1:4d:90:c1:10:61:53:af:aa:a9:6e:ec:12:8d:b6:20:87:57: 10:d2:4f:d4:0e:bc:bf:e0:c0:1a:ab:1f:26:b7:a7:af:b1:1e: b0:83:e2:8e:f7:2e:27:6f:bf:0f:d0:5a:13:01:74:e0:97:16: 01:25:82:9b:e4:31:df:ec:b0:e8:da:29:b9:d1:e6:1f:7c:be: 94:a4:1c:70:56:a5:eb:9b:41:b2:69:88:be:2b:60:02:da:15: 94:78:77:3a:b7:22:a1:a0:a9:eb:e7:fd:1f:db:88:17:34:76: f0:8a:9b:50:0d:1b:dd:67:84:e0:66:c4:4b:1a:8e:dc:c8:5d: 43:3c:97:3c:8d:cd:cd:ee:04:37:4c:0a:23:63:3a:7f:60:60: 32:52:7b:fc:92:27:ee:a1:1d:07:24:7a:47:fc:d0:38:44:ca: 3b:4d:58:fb:08:c8:89:a0:76:51:2a:3e:07:fc:7b:27:af:8f: 44:c2:de:06:96:2c:3e:85:6f:0b:9f:c1:f3:5d:60:8a:bb:2d: 17:63:ee:67:1a:5a:40:40:d7:72:c9:6a:b7:60:2e:df:e9:e1: 97:9e:d3:33:bb:9a:dc:2c:3b:d4:40:ad:cb:ad:4f:a6:b5:ef: a2:a6:01:82 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUeVlenDi9pT6yBFVDXymW4XK0WvQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzJBMUI5Q0EwQjRFMUQzNDVFRjM3NTQyNDA3NjUzQzZF NThFQkM1MzAeFw0yNjA0MjQwMzI5MTBaFw0yNzA0MjMwMzM0MTBaMDMxMTAvBgNV BAMTKDhBRTRFQjUzQTY1MTQ0QzVCNTI0NjI2M0QyNDg5RkY5RUM4NTA2MzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqOaL1jsDcz2VatlhugzS9SGCH NVeNgE5Nvi8ANJMmzRG1MFz+ZRZuOY3auAg7xb7uJoxTAmKCRYMGmPePpDolD3W5 ZqBF0yndIa6bmQ6Qs1QPK+suv4sC6lRhwOE4cLPdcdqLR6lH199fvZCr9CmzwPme 0YU5r4EVeFo4HonINgP8+ULRfXV/Ha+DSD33HMWO+b+8KMr/lf+eK9w/Sj0oscju L4UzvHRfJs5GfRWEWtBn8CISghXYHtXgLK0TEZxytdU8hSxWBe+Wc094QZfR/PsE lAAOk4kRQUZNSGCXPWaSPIROqJMlAouldPLQXDk4woa63XVbm7cBLX863lcvAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUiuTrU6ZRRMW1JGJj0kif+eyFBjkwHwYDVR0j BBgwFoAUMqG5ygtOHTRe83VCQHZTxuWOvFMwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 OTg5ODY1MDA4OTI5MTc3Ny8wLzMyQTFCOUNBMEI0RTFEMzQ1RUYzNzU0MjQwNzY1 M0M2RTU4RUJDNTMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMzJBMUI5Q0EwQjRFMUQzNDVFRjM3NTQyNDA3NjUzQzZFNThFQkM1My5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5OTg5ODY1MDA4OTI5MTc3Ny8wLzMyMzAzMjJlMzQz MTJlMzEzNTM2MmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzUzODM4MzMzNC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAsopnDANBgkqhkiG9w0BAQsFAAOCAQEAYCJnMtO9ej8O+4T+9e97faN8 oU2QwRBhU6+qqW7sEo22IIdXENJP1A68v+DAGqsfJrenr7EesIPijvcuJ2+/D9Ba EwF04JcWASWCm+Qx3+yw6NopudHmH3y+lKQccFal65tBsmmIvitgAtoVlHh3Orci oaCp6+f9H9uIFzR28IqbUA0b3WeE4GbESxqO3MhdQzyXPI3Nze4EN0wKI2M6f2Bg MlJ7/JIn7qEdByR6R/zQOETKO01Y+wjIiaB2USo+B/x7J6+PRMLeBpYsPoVvC5/B 811girstF2PuZxpaQEDXcslqt2Au3+nhl57TM7ua3Cw71ECty61PprXvoqYBgg== -----END CERTIFICATE-----Generated at Wed May 13 19:36:23 2026 by rpki-client