$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1099989409597489153/0/3230332e3137352e3133372e302f32342d3234203d3e203233383432.roa File: 3230332e3137352e3133372e302f32342d3234203d3e203233383432.roa (raw, json) Hash identifier: A9OF+LYDehr6q1VSW8RvE7BSot6C4lLWA5bD1r+geMI= Subject key identifier: 23:46:0E:86:0C:3A:56:FE:B7:F8:9C:29:65:3D:4D:54:27:46:20:38 Certificate issuer: /CN=B0D124A7DA71F1C7466EB9E0710E74680E5D3172 Certificate serial: 1483DDC9C4A311ED4ED74CE71E8D2C38F2B168B1 Authority key identifier: B0:D1:24:A7:DA:71:F1:C7:46:6E:B9:E0:71:0E:74:68:0E:5D:31:72 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B0D124A7DA71F1C7466EB9E0710E74680E5D3172.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1099989409597489153/0/3230332e3137352e3133372e302f32342d3234203d3e203233383432.roa Signing time: Fri 24 Apr 2026 09:50:37 +0000 ROA not before: Fri 24 Apr 2026 09:45:37 +0000 ROA not after: Fri 23 Apr 2027 09:50:37 +0000 asID: 23842 IP address blocks: 203.175.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1099989409597489153/0/B0D124A7DA71F1C7466EB9E0710E74680E5D3172.crl rsync://rpki-rps.cnnic.cn/repo/A1099989409597489153/0/B0D124A7DA71F1C7466EB9E0710E74680E5D3172.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B0D124A7DA71F1C7466EB9E0710E74680E5D3172.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:83:dd:c9:c4:a3:11:ed:4e:d7:4c:e7:1e:8d:2c:38:f2:b1:68:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B0D124A7DA71F1C7466EB9E0710E74680E5D3172 Validity Not Before: Apr 24 09:45:37 2026 GMT Not After : Apr 23 09:50:37 2027 GMT Subject: CN=23460E860C3A56FEB7F89C29653D4D5427462038 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:6b:47:3b:e4:c3:bd:ff:ab:ff:10:7c:14:3f: d6:3b:d4:cf:fd:63:be:f0:cb:a9:0b:eb:72:bd:73: 02:d7:10:01:8d:27:b4:f0:ee:19:68:dd:97:2e:91: 05:5d:9d:83:83:55:a6:41:84:4d:3e:fb:a4:bc:f5: 00:57:10:24:bb:f2:66:12:cd:b9:e9:6d:f2:ca:88: 0a:50:64:62:df:1c:73:a7:6c:25:24:91:dd:05:6f: f5:0a:64:ca:12:e6:e8:db:ab:a8:12:2b:3b:80:46: cc:75:c5:f6:24:cd:13:61:f1:ca:dc:35:69:92:32: 81:c3:f1:af:25:66:f3:e4:ae:7d:1f:64:87:c8:ed: 34:09:ca:97:8d:9c:b4:9a:e1:5b:00:ff:60:90:97: cb:e5:05:09:0c:96:20:d7:7c:6e:87:d5:fb:e4:87: 49:a9:7f:c3:76:ba:f3:6b:24:96:b0:be:67:c6:24: 46:7f:87:f8:61:5d:fb:ba:e5:e8:2f:90:5f:84:ba: 52:be:53:04:77:94:7c:1c:30:e8:67:7c:e5:68:1b: 21:52:ae:94:61:66:3d:06:9d:33:04:00:c6:6f:24: 48:ab:9f:fe:4c:54:6c:73:0b:54:25:f6:8c:84:c6: c6:db:a8:f2:e1:1c:13:48:90:8c:d8:a9:af:f9:b9: 14:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:46:0E:86:0C:3A:56:FE:B7:F8:9C:29:65:3D:4D:54:27:46:20:38 X509v3 Authority Key Identifier: keyid:B0:D1:24:A7:DA:71:F1:C7:46:6E:B9:E0:71:0E:74:68:0E:5D:31:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1099989409597489153/0/B0D124A7DA71F1C7466EB9E0710E74680E5D3172.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B0D124A7DA71F1C7466EB9E0710E74680E5D3172.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1099989409597489153/0/3230332e3137352e3133372e302f32342d3234203d3e203233383432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.175.137.0/24 Signature Algorithm: sha256WithRSAEncryption 91:7c:95:9e:b1:94:ae:6f:05:0d:77:cf:7a:0d:1a:13:0f:7b: ee:95:fc:3d:05:a6:64:32:2f:3c:b1:13:c1:11:c5:b1:60:11: c3:6c:6d:ad:50:e9:24:99:13:ea:00:a9:6a:7c:48:a2:4e:b3: 5e:c6:af:b4:46:c3:3c:61:62:ce:f9:7c:fa:2a:95:28:d4:e8: 81:9e:2e:87:6e:d9:2a:b1:69:bd:93:11:0a:93:50:6a:a7:09: c9:85:79:83:f7:b9:71:0a:84:8f:b6:33:98:74:74:a7:9c:75: b7:29:80:0f:3b:7d:08:55:8e:14:ac:5f:df:24:9d:f5:80:34: 12:07:d2:0f:48:65:92:f9:40:f0:51:de:7e:e4:40:1d:ba:17: a7:52:2e:8d:00:51:6a:7f:7f:bf:75:15:64:46:4c:01:22:2e: b2:11:1b:4b:6a:db:f3:ec:b1:ea:b3:23:16:e3:d4:75:54:aa: 9b:88:87:5b:98:b0:76:32:19:31:b4:89:38:0a:18:e3:49:3c: fb:97:5a:80:01:83:3c:06:40:ad:9e:79:3f:90:99:2c:96:5e: 39:8c:d9:87:b6:08:f2:76:47:07:b1:84:97:ae:fb:7f:4f:2f: 55:2b:7d:41:27:22:52:01:95:47:c7:09:e2:6d:39:3c:d1:eb: 31:48:f1:3b -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUFIPdycSjEe1O10znHo0sOPKxaLEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjBEMTI0QTdEQTcxRjFDNzQ2NkVCOUUwNzEwRTc0Njgw RTVEMzE3MjAeFw0yNjA0MjQwOTQ1MzdaFw0yNzA0MjMwOTUwMzdaMDMxMTAvBgNV BAMTKDIzNDYwRTg2MEMzQTU2RkVCN0Y4OUMyOTY1M0Q0RDU0Mjc0NjIwMzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfa0c75MO9/6v/EHwUP9Y71M/9 Y77wy6kL63K9cwLXEAGNJ7Tw7hlo3ZcukQVdnYODVaZBhE0++6S89QBXECS78mYS zbnpbfLKiApQZGLfHHOnbCUkkd0Fb/UKZMoS5ujbq6gSKzuARsx1xfYkzRNh8crc NWmSMoHD8a8lZvPkrn0fZIfI7TQJypeNnLSa4VsA/2CQl8vlBQkMliDXfG6H1fvk h0mpf8N2uvNrJJawvmfGJEZ/h/hhXfu65egvkF+EulK+UwR3lHwcMOhnfOVoGyFS rpRhZj0GnTMEAMZvJEirn/5MVGxzC1Ql9oyExsbbqPLhHBNIkIzYqa/5uRS/AgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUI0YOhgw6Vv63+JwpZT1NVCdGIDgwHwYDVR0j BBgwFoAUsNEkp9px8cdGbrngcQ50aA5dMXIwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 OTk4OTQwOTU5NzQ4OTE1My8wL0IwRDEyNEE3REE3MUYxQzc0NjZFQjlFMDcxMEU3 NDY4MEU1RDMxNzIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQjBEMTI0QTdEQTcxRjFDNzQ2NkVCOUUwNzEwRTc0NjgwRTVEMzE3Mi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTk5ODk0MDk1OTc0ODkxNTMvMC8zMjMwMzMyZTMx MzczNTJlMzEzMzM3MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzMzM4MzQzMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAMuviTANBgkqhkiG9w0BAQsFAAOCAQEAkXyVnrGUrm8FDXfPeg0a Ew977pX8PQWmZDIvPLETwRHFsWARw2xtrVDpJJkT6gCpanxIok6zXsavtEbDPGFi zvl8+iqVKNTogZ4uh27ZKrFpvZMRCpNQaqcJyYV5g/e5cQqEj7YzmHR0p5x1tymA Dzt9CFWOFKxf3ySd9YA0EgfSD0hlkvlA8FHefuRAHboXp1IujQBRan9/v3UVZEZM ASIushEbS2rb8+yx6rMjFuPUdVSqm4iHW5iwdjIZMbSJOAoY40k8+5dagAGDPAZA rZ55P5CZLJZeOYzZh7YI8nZHB7GEl677f08vVSt9QSciUgGVR8cJ4m05PNHrMUjx Ow== -----END CERTIFICATE-----Generated at Wed May 13 21:34:47 2026 by rpki-client