$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1099989409597489153/0/3230332e3137352e3133342e302f32342d3234203d3e203233383432.roa File: 3230332e3137352e3133342e302f32342d3234203d3e203233383432.roa (raw, json) Hash identifier: +D2YJXhi7gkd5ruX2Q97ZdkQnhtzpkhpP5Bhit0l6oQ= Subject key identifier: 2C:1E:AC:74:4E:49:F0:43:BD:DB:5C:28:7C:38:C5:9D:91:D4:8C:D7 Certificate issuer: /CN=B0D124A7DA71F1C7466EB9E0710E74680E5D3172 Certificate serial: 2FF6EF08591FFD981FB474A091DAB36504781A22 Authority key identifier: B0:D1:24:A7:DA:71:F1:C7:46:6E:B9:E0:71:0E:74:68:0E:5D:31:72 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B0D124A7DA71F1C7466EB9E0710E74680E5D3172.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1099989409597489153/0/3230332e3137352e3133342e302f32342d3234203d3e203233383432.roa Signing time: Fri 24 Apr 2026 09:50:36 +0000 ROA not before: Fri 24 Apr 2026 09:45:36 +0000 ROA not after: Fri 23 Apr 2027 09:50:36 +0000 asID: 23842 IP address blocks: 203.175.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1099989409597489153/0/B0D124A7DA71F1C7466EB9E0710E74680E5D3172.crl rsync://rpki-rps.cnnic.cn/repo/A1099989409597489153/0/B0D124A7DA71F1C7466EB9E0710E74680E5D3172.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B0D124A7DA71F1C7466EB9E0710E74680E5D3172.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:f6:ef:08:59:1f:fd:98:1f:b4:74:a0:91:da:b3:65:04:78:1a:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B0D124A7DA71F1C7466EB9E0710E74680E5D3172 Validity Not Before: Apr 24 09:45:36 2026 GMT Not After : Apr 23 09:50:36 2027 GMT Subject: CN=2C1EAC744E49F043BDDB5C287C38C59D91D48CD7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:3d:4c:8d:b5:4c:db:16:59:be:2d:41:0c:de: da:c6:70:bc:b0:ef:b9:99:d7:c9:5e:e0:c9:7f:a7: 1f:a1:46:87:06:9a:c5:85:71:93:0d:c6:bd:c2:69: dc:35:6b:ac:4a:4b:e9:3d:14:70:31:b7:d3:c7:70: ff:2e:63:78:d4:c1:65:d4:3d:3e:f0:8e:9f:d4:a8: d7:fb:a8:8f:ec:74:8f:f3:74:b9:3c:4c:4c:78:c1: bd:df:cd:e9:42:85:6b:de:71:53:93:5c:37:09:af: 47:3e:c0:1c:30:a0:5e:52:6d:91:59:8b:d2:62:5b: c6:1f:f3:a1:c4:67:19:03:ce:4e:ca:00:6a:d1:96: e3:8d:7e:39:c1:7d:b5:f8:e4:bd:b8:75:96:a8:a5: 04:f1:8c:05:bc:91:e0:c0:49:8c:9c:5d:e3:4f:13: 61:50:89:05:92:40:33:8f:f5:1a:49:68:9b:8f:01: a5:3d:3e:93:50:b2:92:38:ec:8d:1c:ca:29:58:43: 26:99:65:a7:72:92:d0:7d:62:be:41:84:e9:e1:49: ff:96:65:74:dc:94:ed:59:7a:ac:1b:38:c2:a8:db: 75:cb:fc:ea:aa:03:5c:c2:0e:46:f1:40:08:b8:11: 13:84:d0:c5:df:0e:03:73:92:4b:d6:a2:9b:09:76: 44:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:1E:AC:74:4E:49:F0:43:BD:DB:5C:28:7C:38:C5:9D:91:D4:8C:D7 X509v3 Authority Key Identifier: keyid:B0:D1:24:A7:DA:71:F1:C7:46:6E:B9:E0:71:0E:74:68:0E:5D:31:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1099989409597489153/0/B0D124A7DA71F1C7466EB9E0710E74680E5D3172.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B0D124A7DA71F1C7466EB9E0710E74680E5D3172.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1099989409597489153/0/3230332e3137352e3133342e302f32342d3234203d3e203233383432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.175.134.0/24 Signature Algorithm: sha256WithRSAEncryption 77:3d:3a:85:29:5a:b4:6e:bd:23:cf:e2:86:ca:ad:24:8f:3f: ca:3d:3f:44:17:b4:36:a3:0e:86:25:81:ef:62:1d:37:26:d8: 17:90:05:e6:f7:90:55:1c:25:61:33:64:04:e3:a9:2f:7c:d2: ca:da:16:0d:04:7d:9f:b2:e7:2f:03:b9:c8:2a:87:db:d6:c7: 67:98:c8:f0:1b:77:03:6d:f1:66:0e:96:36:0d:34:9c:53:ff: 48:06:04:6c:a9:94:31:74:63:2f:12:de:93:d9:dc:6a:f5:91: fc:1d:bb:0d:0e:1b:e3:cd:47:80:0c:90:7d:a0:85:f7:0f:1b: 26:d7:c0:18:c1:d5:ce:63:44:79:71:e2:33:41:0c:d3:5f:6f: 3e:cd:49:77:fb:07:dd:20:12:25:66:fc:00:ce:ec:15:3b:c1: d0:c6:d0:99:53:ce:2d:2a:39:a1:4b:6a:9f:5a:8c:e2:db:c1: d1:bb:1b:f3:43:fd:49:07:55:ec:76:a5:07:8d:d8:1c:c5:24: e3:9a:0d:6d:56:bc:8e:75:eb:28:93:96:0b:95:a6:b9:da:8f: d3:84:70:5c:dd:1f:52:81:a9:39:c3:db:04:75:dd:1e:dc:64: 1f:4d:ff:c6:a8:c7:ab:63:e5:81:f4:e9:5e:8f:28:1c:8a:fb: bd:c4:d0:0a -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUL/bvCFkf/ZgftHSgkdqzZQR4GiIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjBEMTI0QTdEQTcxRjFDNzQ2NkVCOUUwNzEwRTc0Njgw RTVEMzE3MjAeFw0yNjA0MjQwOTQ1MzZaFw0yNzA0MjMwOTUwMzZaMDMxMTAvBgNV BAMTKDJDMUVBQzc0NEU0OUYwNDNCRERCNUMyODdDMzhDNTlEOTFENDhDRDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMPUyNtUzbFlm+LUEM3trGcLyw 77mZ18le4Ml/px+hRocGmsWFcZMNxr3Cadw1a6xKS+k9FHAxt9PHcP8uY3jUwWXU PT7wjp/UqNf7qI/sdI/zdLk8TEx4wb3fzelChWvecVOTXDcJr0c+wBwwoF5SbZFZ i9JiW8Yf86HEZxkDzk7KAGrRluONfjnBfbX45L24dZaopQTxjAW8keDASYycXeNP E2FQiQWSQDOP9RpJaJuPAaU9PpNQspI47I0cyilYQyaZZadyktB9Yr5BhOnhSf+W ZXTclO1ZeqwbOMKo23XL/OqqA1zCDkbxQAi4EROE0MXfDgNzkkvWopsJdkQdAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQULB6sdE5J8EO921wofDjFnZHUjNcwHwYDVR0j BBgwFoAUsNEkp9px8cdGbrngcQ50aA5dMXIwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 OTk4OTQwOTU5NzQ4OTE1My8wL0IwRDEyNEE3REE3MUYxQzc0NjZFQjlFMDcxMEU3 NDY4MEU1RDMxNzIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQjBEMTI0QTdEQTcxRjFDNzQ2NkVCOUUwNzEwRTc0NjgwRTVEMzE3Mi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTk5ODk0MDk1OTc0ODkxNTMvMC8zMjMwMzMyZTMx MzczNTJlMzEzMzM0MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzMzM4MzQzMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAMuvhjANBgkqhkiG9w0BAQsFAAOCAQEAdz06hSlatG69I8/ihsqt JI8/yj0/RBe0NqMOhiWB72IdNybYF5AF5veQVRwlYTNkBOOpL3zSytoWDQR9n7Ln LwO5yCqH29bHZ5jI8Bt3A23xZg6WNg00nFP/SAYEbKmUMXRjLxLek9ncavWR/B27 DQ4b481HgAyQfaCF9w8bJtfAGMHVzmNEeXHiM0EM019vPs1Jd/sH3SASJWb8AM7s FTvB0MbQmVPOLSo5oUtqn1qM4tvB0bsb80P9SQdV7HalB43YHMUk45oNbVa8jnXr KJOWC5WmudqP04RwXN0fUoGpOcPbBHXdHtxkH03/xqjHq2PlgfTpXo8oHIr7vcTQ Cg== -----END CERTIFICATE-----Generated at Wed May 13 21:34:36 2026 by rpki-client