$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1100942521481035778/0/3230322e3137332e3234302e302f32302d3230203d3e20313334373732.roa File: 3230322e3137332e3234302e302f32302d3230203d3e20313334373732.roa (raw, json) Hash identifier: DMmR7bdvU2LLLAknBZn743hZv4KxbT+7HtppFu4ghlk= Subject key identifier: 90:80:0C:5D:A9:C0:7D:41:A0:BD:1D:0D:60:9E:B3:05:6D:2B:4B:21 Certificate issuer: /CN=363FDE3F30761CEFB41D458915BBBC8D91B434CF Certificate serial: 1F2C798E463B168CBE766C07A9DE4FBBE6C24348 Authority key identifier: 36:3F:DE:3F:30:76:1C:EF:B4:1D:45:89:15:BB:BC:8D:91:B4:34:CF Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/363FDE3F30761CEFB41D458915BBBC8D91B434CF.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1100942521481035778/0/3230322e3137332e3234302e302f32302d3230203d3e20313334373732.roa Signing time: Tue 28 Apr 2026 01:05:10 +0000 ROA not before: Tue 28 Apr 2026 01:00:10 +0000 ROA not after: Tue 27 Apr 2027 01:05:10 +0000 asID: 134772 IP address blocks: 202.173.240.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1100942521481035778/0/363FDE3F30761CEFB41D458915BBBC8D91B434CF.crl rsync://rpki-rps.cnnic.cn/repo/A1100942521481035778/0/363FDE3F30761CEFB41D458915BBBC8D91B434CF.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/363FDE3F30761CEFB41D458915BBBC8D91B434CF.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 08:50:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:2c:79:8e:46:3b:16:8c:be:76:6c:07:a9:de:4f:bb:e6:c2:43:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=363FDE3F30761CEFB41D458915BBBC8D91B434CF Validity Not Before: Apr 28 01:00:10 2026 GMT Not After : Apr 27 01:05:10 2027 GMT Subject: CN=90800C5DA9C07D41A0BD1D0D609EB3056D2B4B21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:7f:37:f1:f7:8f:54:dc:cc:b3:07:e0:5b:78: ef:28:a8:6c:fa:3b:f5:9b:79:38:63:6e:66:4f:46: 38:e9:76:ed:2f:5b:ae:11:6c:bf:31:df:31:88:f2: cd:fe:54:38:ca:29:c1:43:86:06:13:b1:9e:d4:0f: a8:90:f1:7c:8c:db:d9:8f:4f:37:97:0a:4f:4d:83: 18:cc:83:63:44:53:52:93:95:7e:0e:c6:53:1b:0c: 99:46:1a:95:fd:a1:3c:f4:2e:2b:59:65:fe:8e:93: 0c:b3:00:47:e5:8c:26:40:8c:a9:bf:14:6b:48:59: c9:42:e2:74:ba:09:b3:dc:f6:0f:cf:aa:01:ef:b1: d8:e4:0c:3e:d7:4c:14:0b:69:0b:45:08:7e:69:c3: 08:83:ab:73:80:4e:09:4a:f0:27:0a:2e:96:3d:5f: 70:cc:be:e9:e3:4d:ff:24:e3:d7:c5:17:b1:0a:b0: 2d:9c:4c:f0:36:79:c2:43:1f:5a:fa:46:c6:33:80: 81:52:52:e4:f4:8d:a7:58:92:e7:3f:2f:a5:ca:4d: 9f:5c:97:71:c8:bc:33:6b:14:59:76:f5:b3:8d:65: 1c:db:12:db:ef:b9:66:7d:61:01:4d:01:93:46:12: ef:bc:9f:9f:6b:cb:4c:06:7a:7b:e4:34:a0:4e:1f: aa:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:80:0C:5D:A9:C0:7D:41:A0:BD:1D:0D:60:9E:B3:05:6D:2B:4B:21 X509v3 Authority Key Identifier: keyid:36:3F:DE:3F:30:76:1C:EF:B4:1D:45:89:15:BB:BC:8D:91:B4:34:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1100942521481035778/0/363FDE3F30761CEFB41D458915BBBC8D91B434CF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/363FDE3F30761CEFB41D458915BBBC8D91B434CF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1100942521481035778/0/3230322e3137332e3234302e302f32302d3230203d3e20313334373732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.173.240.0/20 Signature Algorithm: sha256WithRSAEncryption 36:ab:3f:24:9b:24:c4:78:95:f3:65:69:3f:3f:33:26:3e:c8: ab:00:a3:c9:4a:66:cb:97:37:70:73:a4:39:93:18:fe:ed:91: 6f:90:b6:cd:fd:8c:40:38:22:4b:a9:10:40:70:03:46:5b:95: 02:85:5c:5d:e2:2a:88:7f:0f:80:a3:53:42:75:64:2d:83:1f: 78:2f:49:c5:e2:f7:5e:69:2e:fe:87:9c:0e:ac:19:93:2f:8e: 02:60:18:77:4d:3a:55:3a:44:75:06:fc:f9:93:bf:45:61:d9: 4f:9f:5d:7d:fa:14:aa:2a:b5:4c:06:95:94:90:1b:9a:2f:51: e3:b3:bf:3d:91:c3:1c:e9:d0:04:f0:29:2e:3e:4a:96:2d:23: 15:c3:55:ce:43:96:94:e9:eb:8e:ff:cd:5e:de:7b:f8:ec:56: 84:b6:1c:7b:30:f6:b0:f8:fd:0c:38:7f:39:c7:ad:46:21:99: 6f:94:4f:0b:1d:43:6e:33:6d:49:1a:b4:52:2e:4d:ca:ad:1e: 8d:f0:ac:f9:9c:0a:71:08:f8:d5:b4:48:7e:ba:a5:3d:df:d3: be:e5:be:61:61:5b:aa:eb:9b:28:7d:aa:b4:05:ce:9c:25:ff: ad:5e:44:35:f3:6c:18:de:1a:23:18:d1:74:c5:e0:a5:bd:b1: dc:f4:98:f3 -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUHyx5jkY7Foy+dmwHqd5Pu+bCQ0gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzYzRkRFM0YzMDc2MUNFRkI0MUQ0NTg5MTVCQkJDOEQ5 MUI0MzRDRjAeFw0yNjA0MjgwMTAwMTBaFw0yNzA0MjcwMTA1MTBaMDMxMTAvBgNV BAMTKDkwODAwQzVEQTlDMDdENDFBMEJEMUQwRDYwOUVCMzA1NkQyQjRCMjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVfzfx949U3MyzB+BbeO8oqGz6 O/WbeThjbmZPRjjpdu0vW64RbL8x3zGI8s3+VDjKKcFDhgYTsZ7UD6iQ8XyM29mP TzeXCk9NgxjMg2NEU1KTlX4OxlMbDJlGGpX9oTz0LitZZf6OkwyzAEfljCZAjKm/ FGtIWclC4nS6CbPc9g/PqgHvsdjkDD7XTBQLaQtFCH5pwwiDq3OATglK8CcKLpY9 X3DMvunjTf8k49fFF7EKsC2cTPA2ecJDH1r6RsYzgIFSUuT0jadYkuc/L6XKTZ9c l3HIvDNrFFl29bONZRzbEtvvuWZ9YQFNAZNGEu+8n59ry0wGenvkNKBOH6qnAgMB AAGjggIaMIICFjAdBgNVHQ4EFgQUkIAMXanAfUGgvR0NYJ6zBW0rSyEwHwYDVR0j BBgwFoAUNj/ePzB2HO+0HUWJFbu8jZG0NM8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw MDk0MjUyMTQ4MTAzNTc3OC8wLzM2M0ZERTNGMzA3NjFDRUZCNDFENDU4OTE1QkJC QzhEOTFCNDM0Q0YuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMzYzRkRFM0YzMDc2MUNFRkI0MUQ0NTg5MTVCQkJDOEQ5MUI0MzRDRi5jZXIw gZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMTAwOTQyNTIxNDgxMDM1Nzc4LzAvMzIzMDMyMmUz MTM3MzMyZTMyMzQzMDJlMzAyZjMyMzAyZDMyMzAyMDNkM2UyMDMxMzMzNDM3Mzcz Mi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEBMqt8DANBgkqhkiG9w0BAQsFAAOCAQEANqs/JJskxHiV82Vp Pz8zJj7IqwCjyUpmy5c3cHOkOZMY/u2Rb5C2zf2MQDgiS6kQQHADRluVAoVcXeIq iH8PgKNTQnVkLYMfeC9JxeL3Xmku/oecDqwZky+OAmAYd006VTpEdQb8+ZO/RWHZ T59dffoUqiq1TAaVlJAbmi9R47O/PZHDHOnQBPApLj5Kli0jFcNVzkOWlOnrjv/N Xt57+OxWhLYcezD2sPj9DDh/OcetRiGZb5RPCx1DbjNtSRq0Ui5Nyq0ejfCs+ZwK cQj41bRIfrqlPd/TvuW+YWFbquubKH2qtAXOnCX/rV5ENfNsGN4aIxjRdMXgpb2x 3PSY8w== -----END CERTIFICATE-----Generated at Wed May 13 17:32:57 2026 by rpki-client