$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1099989409597489153/0/3230332e39312e35322e302f32342d3234203d3e203233383432.roa File: 3230332e39312e35322e302f32342d3234203d3e203233383432.roa (raw, json) Hash identifier: BnR9tde6g4JR7s+u2o2QtkVnknrXtCl8GjZCZV9iNhI= Subject key identifier: 0F:3C:47:B5:B3:29:61:99:7F:0D:9B:93:59:1A:D0:93:5E:B1:1A:FC Certificate issuer: /CN=B0D124A7DA71F1C7466EB9E0710E74680E5D3172 Certificate serial: 1D95CAC35565726B3347E62BA9BE772F07DFF90D Authority key identifier: B0:D1:24:A7:DA:71:F1:C7:46:6E:B9:E0:71:0E:74:68:0E:5D:31:72 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B0D124A7DA71F1C7466EB9E0710E74680E5D3172.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1099989409597489153/0/3230332e39312e35322e302f32342d3234203d3e203233383432.roa Signing time: Fri 24 Apr 2026 09:50:37 +0000 ROA not before: Fri 24 Apr 2026 09:45:37 +0000 ROA not after: Fri 23 Apr 2027 09:50:37 +0000 asID: 23842 IP address blocks: 203.91.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1099989409597489153/0/B0D124A7DA71F1C7466EB9E0710E74680E5D3172.crl rsync://rpki-rps.cnnic.cn/repo/A1099989409597489153/0/B0D124A7DA71F1C7466EB9E0710E74680E5D3172.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B0D124A7DA71F1C7466EB9E0710E74680E5D3172.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:95:ca:c3:55:65:72:6b:33:47:e6:2b:a9:be:77:2f:07:df:f9:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B0D124A7DA71F1C7466EB9E0710E74680E5D3172 Validity Not Before: Apr 24 09:45:37 2026 GMT Not After : Apr 23 09:50:37 2027 GMT Subject: CN=0F3C47B5B32961997F0D9B93591AD0935EB11AFC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:3f:e2:55:5f:42:1e:ef:30:6d:f3:ce:94:92: 0d:c3:1f:2f:95:82:c5:4d:ce:58:0e:b4:09:0b:94: 4f:0a:e7:70:de:0d:29:18:f1:6b:51:9d:40:fe:e8: 17:9e:84:e1:4e:5f:b2:96:7d:1f:f0:53:73:0d:96: 20:01:8d:df:4b:59:8a:9e:f3:e1:0b:03:04:51:17: 20:b2:06:96:a2:6a:5c:c0:ac:a5:0f:cd:09:ad:90: 96:9e:bd:0d:c0:c6:73:41:7d:15:f7:9c:32:86:a3: 32:9b:a3:5b:8a:ba:67:8b:3a:97:f8:60:89:66:2f: f4:f1:93:52:b6:9b:d9:4e:02:1d:ee:b4:ee:db:b0: 22:cb:ae:37:bd:b9:ca:c5:44:ed:05:99:9c:f6:8f: f4:0b:3d:15:61:ac:03:99:e0:64:65:6c:25:50:55: ae:dc:5c:75:bc:39:81:ef:d1:28:a9:7a:bd:70:2d: 87:44:65:4c:22:22:92:e0:e8:4e:c5:d4:64:03:7c: 9b:40:78:a2:04:b2:77:26:89:2a:c2:1e:d4:e4:b9: ed:2a:fe:d2:84:75:68:5c:53:3a:78:b0:ed:52:3a: ea:ac:da:e1:2a:b6:00:7c:25:78:94:3e:32:01:13: 62:e3:fd:25:cd:e6:d0:f0:a3:67:d8:db:16:74:60: 06:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:3C:47:B5:B3:29:61:99:7F:0D:9B:93:59:1A:D0:93:5E:B1:1A:FC X509v3 Authority Key Identifier: keyid:B0:D1:24:A7:DA:71:F1:C7:46:6E:B9:E0:71:0E:74:68:0E:5D:31:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1099989409597489153/0/B0D124A7DA71F1C7466EB9E0710E74680E5D3172.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B0D124A7DA71F1C7466EB9E0710E74680E5D3172.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1099989409597489153/0/3230332e39312e35322e302f32342d3234203d3e203233383432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.91.52.0/24 Signature Algorithm: sha256WithRSAEncryption d1:69:88:6e:1e:ce:90:42:53:56:40:0a:40:5c:7e:97:20:01: 9f:91:42:c9:b8:17:2d:7c:e4:d2:65:40:1b:53:78:5e:d1:f7: 88:7d:d2:dd:d0:a7:17:b7:b4:3d:68:47:fd:43:0f:a6:41:76: 63:f4:3e:88:dd:22:91:55:50:ea:84:03:24:6a:70:f7:c8:a4: c0:52:7b:53:80:4b:16:59:c5:be:1e:67:71:e6:1f:26:55:c1: 8a:e8:d1:e9:21:3a:b0:34:f2:84:91:b7:e7:dc:d9:45:0c:3e: 5a:1d:d7:6c:ac:74:21:66:f0:94:fb:04:01:36:f4:2f:27:75: 1e:c7:d0:16:22:98:41:8d:41:5a:12:c0:8f:85:65:94:7f:67: 97:62:1a:86:cc:ae:30:41:0c:14:bb:96:f6:80:39:d8:aa:f0: 3a:a5:a0:96:bc:dd:40:19:c3:91:10:3d:47:43:b9:78:1e:08: 03:3a:de:1d:55:08:a3:5d:c6:92:17:09:bd:c9:b1:16:0a:1e: 0e:6e:d6:61:ca:d9:d5:3d:ce:b7:a9:9c:a2:41:58:ee:46:17: c3:1f:bb:ea:2f:58:05:60:7f:09:d3:9c:3a:dc:15:0c:26:4a: 6f:ac:b8:18:56:8c:72:cb:ac:8f:75:86:0c:14:7c:f7:1f:b0: dc:46:a1:7d -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUHZXKw1VlcmszR+Yrqb53Lwff+Q0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjBEMTI0QTdEQTcxRjFDNzQ2NkVCOUUwNzEwRTc0Njgw RTVEMzE3MjAeFw0yNjA0MjQwOTQ1MzdaFw0yNzA0MjMwOTUwMzdaMDMxMTAvBgNV BAMTKDBGM0M0N0I1QjMyOTYxOTk3RjBEOUI5MzU5MUFEMDkzNUVCMTFBRkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsP+JVX0Ie7zBt886Ukg3DHy+V gsVNzlgOtAkLlE8K53DeDSkY8WtRnUD+6BeehOFOX7KWfR/wU3MNliABjd9LWYqe 8+ELAwRRFyCyBpaialzArKUPzQmtkJaevQ3AxnNBfRX3nDKGozKbo1uKumeLOpf4 YIlmL/Txk1K2m9lOAh3utO7bsCLLrje9ucrFRO0FmZz2j/QLPRVhrAOZ4GRlbCVQ Va7cXHW8OYHv0Siper1wLYdEZUwiIpLg6E7F1GQDfJtAeKIEsncmiSrCHtTkue0q /tKEdWhcUzp4sO1SOuqs2uEqtgB8JXiUPjIBE2Lj/SXN5tDwo2fY2xZ0YAbhAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUDzxHtbMpYZl/DZuTWRrQk16xGvwwHwYDVR0j BBgwFoAUsNEkp9px8cdGbrngcQ50aA5dMXIwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 OTk4OTQwOTU5NzQ4OTE1My8wL0IwRDEyNEE3REE3MUYxQzc0NjZFQjlFMDcxMEU3 NDY4MEU1RDMxNzIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQjBEMTI0QTdEQTcxRjFDNzQ2NkVCOUUwNzEwRTc0NjgwRTVEMzE3Mi5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk5OTg5NDA5NTk3NDg5MTUzLzAvMzIzMDMzMmUzOTMx MmUzNTMyMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzMzM4MzQzMi5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAMtbNDANBgkqhkiG9w0BAQsFAAOCAQEA0WmIbh7OkEJTVkAKQFx+lyABn5FC ybgXLXzk0mVAG1N4XtH3iH3S3dCnF7e0PWhH/UMPpkF2Y/Q+iN0ikVVQ6oQDJGpw 98ikwFJ7U4BLFlnFvh5nceYfJlXBiujR6SE6sDTyhJG359zZRQw+Wh3XbKx0IWbw lPsEATb0Lyd1HsfQFiKYQY1BWhLAj4VllH9nl2IahsyuMEEMFLuW9oA52KrwOqWg lrzdQBnDkRA9R0O5eB4IAzreHVUIo13GkhcJvcmxFgoeDm7WYcrZ1T3Ot6mcokFY 7kYXwx+76i9YBWB/CdOcOtwVDCZKb6y4GFaMcsusj3WGDBR89x+w3EahfQ== -----END CERTIFICATE-----Generated at Wed May 13 21:34:50 2026 by rpki-client