$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1099989409597489153/0/3230332e3137352e3133332e302f32342d3234203d3e203233383432.roa File: 3230332e3137352e3133332e302f32342d3234203d3e203233383432.roa (raw, json) Hash identifier: AlGk3Gjnc1it8DaDJwzzaa6Lz3S7VWaXMCWafM/0c28= Subject key identifier: F9:48:A4:D8:D7:59:F5:70:BE:FE:B0:BD:0D:B4:C5:B1:E3:C4:0C:A1 Certificate issuer: /CN=B0D124A7DA71F1C7466EB9E0710E74680E5D3172 Certificate serial: 3C0328A4EAE601BFC6FD9806E54C48CA5FE73E0D Authority key identifier: B0:D1:24:A7:DA:71:F1:C7:46:6E:B9:E0:71:0E:74:68:0E:5D:31:72 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B0D124A7DA71F1C7466EB9E0710E74680E5D3172.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1099989409597489153/0/3230332e3137352e3133332e302f32342d3234203d3e203233383432.roa Signing time: Fri 24 Apr 2026 09:50:37 +0000 ROA not before: Fri 24 Apr 2026 09:45:37 +0000 ROA not after: Fri 23 Apr 2027 09:50:37 +0000 asID: 23842 IP address blocks: 203.175.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1099989409597489153/0/B0D124A7DA71F1C7466EB9E0710E74680E5D3172.crl rsync://rpki-rps.cnnic.cn/repo/A1099989409597489153/0/B0D124A7DA71F1C7466EB9E0710E74680E5D3172.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B0D124A7DA71F1C7466EB9E0710E74680E5D3172.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:03:28:a4:ea:e6:01:bf:c6:fd:98:06:e5:4c:48:ca:5f:e7:3e:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B0D124A7DA71F1C7466EB9E0710E74680E5D3172 Validity Not Before: Apr 24 09:45:37 2026 GMT Not After : Apr 23 09:50:37 2027 GMT Subject: CN=F948A4D8D759F570BEFEB0BD0DB4C5B1E3C40CA1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:d2:80:f7:c1:83:f1:88:41:c5:06:64:ed:ef: 38:2e:5a:36:6a:53:a4:66:b7:f6:04:72:f6:54:8c: 64:63:a1:33:36:75:6a:f3:af:bb:de:e7:96:f6:f9: 8c:22:16:63:32:9f:65:08:76:d7:1e:f0:db:44:ab: 23:f6:b8:80:db:9d:53:23:12:0b:db:1a:62:60:0a: 80:68:18:e9:1a:90:0f:c0:b0:f6:60:ba:a7:46:d5: 9a:18:e0:34:68:d3:db:7f:db:98:df:c1:68:db:b2: 56:43:a0:78:bf:53:de:1b:79:b4:ae:fc:80:46:61: 9b:ca:ab:4f:3e:4f:fe:34:08:6f:44:f0:c1:9f:aa: 97:2f:aa:a9:81:e1:eb:cb:fc:6e:f1:3e:a8:3b:b0: 6d:bb:f5:8c:f4:c4:02:60:27:a1:00:b4:51:c4:cc: 44:03:f1:fe:35:8e:9f:33:4d:62:db:b2:e1:2d:36: e9:0e:69:3d:41:1d:de:7a:00:45:9c:57:fe:d4:89: 2e:f5:38:d6:f0:b5:46:c6:b9:80:65:8a:f3:6b:1f: 39:98:b8:9c:45:a5:3d:ee:3d:5f:56:42:2f:19:7f: b5:41:68:cd:fc:65:7f:bb:bd:18:af:c9:0f:1a:66: d4:51:a1:fe:be:d1:0e:a8:5b:f9:03:03:4b:05:67: 63:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:48:A4:D8:D7:59:F5:70:BE:FE:B0:BD:0D:B4:C5:B1:E3:C4:0C:A1 X509v3 Authority Key Identifier: keyid:B0:D1:24:A7:DA:71:F1:C7:46:6E:B9:E0:71:0E:74:68:0E:5D:31:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1099989409597489153/0/B0D124A7DA71F1C7466EB9E0710E74680E5D3172.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B0D124A7DA71F1C7466EB9E0710E74680E5D3172.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1099989409597489153/0/3230332e3137352e3133332e302f32342d3234203d3e203233383432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.175.133.0/24 Signature Algorithm: sha256WithRSAEncryption 20:eb:bf:a4:3f:21:00:42:00:0a:d7:59:58:d6:e5:66:52:4c: 43:59:96:c8:3e:4d:f9:a5:b6:fa:2d:65:03:9e:c5:50:eb:68: 5f:6e:80:44:38:1c:32:f2:f7:33:ea:3c:a0:2b:53:2c:2d:48: 7c:aa:b1:af:bc:c8:90:92:c4:10:13:f2:d3:00:d1:96:d7:50: 2a:d2:4f:2c:99:e7:8d:91:7d:4f:9c:11:b8:e0:30:e7:f5:6e: 5e:4e:5c:74:06:0d:22:fa:ea:4b:fd:29:c4:15:5e:59:f6:b8: 30:a0:38:3b:91:31:62:e9:30:21:e5:98:b6:08:94:8b:d5:31: 8b:aa:be:cc:1c:af:5c:e2:30:5d:95:46:fe:6a:d8:4b:41:4c: ad:a0:b8:e8:97:c0:a9:b8:17:0a:01:ff:02:e4:3f:03:3c:f8: 36:19:cc:d2:12:ee:ff:80:87:aa:83:c5:9c:c6:f7:f3:2b:3e: 6a:d0:60:fb:48:03:11:da:76:2c:3d:4f:b5:cb:6e:08:f4:54: 6d:cf:55:91:a7:a6:1b:4b:03:a1:b0:cc:33:89:34:3b:11:a2: bd:fc:01:e5:23:c5:91:b1:3b:d4:cb:1f:6c:14:c2:ee:d3:7b: 71:57:c4:98:e3:cc:30:2f:86:70:a6:fd:05:c9:69:ab:c5:91: 33:47:6f:1a -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUPAMopOrmAb/G/ZgG5UxIyl/nPg0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjBEMTI0QTdEQTcxRjFDNzQ2NkVCOUUwNzEwRTc0Njgw RTVEMzE3MjAeFw0yNjA0MjQwOTQ1MzdaFw0yNzA0MjMwOTUwMzdaMDMxMTAvBgNV BAMTKEY5NDhBNEQ4RDc1OUY1NzBCRUZFQjBCRDBEQjRDNUIxRTNDNDBDQTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDI0oD3wYPxiEHFBmTt7zguWjZq U6Rmt/YEcvZUjGRjoTM2dWrzr7ve55b2+YwiFmMyn2UIdtce8NtEqyP2uIDbnVMj EgvbGmJgCoBoGOkakA/AsPZguqdG1ZoY4DRo09t/25jfwWjbslZDoHi/U94bebSu /IBGYZvKq08+T/40CG9E8MGfqpcvqqmB4evL/G7xPqg7sG279Yz0xAJgJ6EAtFHE zEQD8f41jp8zTWLbsuEtNukOaT1BHd56AEWcV/7UiS71ONbwtUbGuYBlivNrHzmY uJxFpT3uPV9WQi8Zf7VBaM38ZX+7vRivyQ8aZtRRof6+0Q6oW/kDA0sFZ2MVAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQU+Uik2NdZ9XC+/rC9DbTFsePEDKEwHwYDVR0j BBgwFoAUsNEkp9px8cdGbrngcQ50aA5dMXIwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 OTk4OTQwOTU5NzQ4OTE1My8wL0IwRDEyNEE3REE3MUYxQzc0NjZFQjlFMDcxMEU3 NDY4MEU1RDMxNzIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQjBEMTI0QTdEQTcxRjFDNzQ2NkVCOUUwNzEwRTc0NjgwRTVEMzE3Mi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTk5ODk0MDk1OTc0ODkxNTMvMC8zMjMwMzMyZTMx MzczNTJlMzEzMzMzMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzMzM4MzQzMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAMuvhTANBgkqhkiG9w0BAQsFAAOCAQEAIOu/pD8hAEIACtdZWNbl ZlJMQ1mWyD5N+aW2+i1lA57FUOtoX26ARDgcMvL3M+o8oCtTLC1IfKqxr7zIkJLE EBPy0wDRltdQKtJPLJnnjZF9T5wRuOAw5/VuXk5cdAYNIvrqS/0pxBVeWfa4MKA4 O5ExYukwIeWYtgiUi9Uxi6q+zByvXOIwXZVG/mrYS0FMraC46JfAqbgXCgH/AuQ/ Azz4NhnM0hLu/4CHqoPFnMb38ys+atBg+0gDEdp2LD1PtctuCPRUbc9VkaemG0sD obDMM4k0OxGivfwB5SPFkbE71MsfbBTC7tN7cVfEmOPMMC+GcKb9Bclpq8WRM0dv Gg== -----END CERTIFICATE-----Generated at Wed May 13 21:35:09 2026 by rpki-client