$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1106398388187824147/0/3230332e3139322e312e302f32342d3234203d3e2034363131.roa File: 3230332e3139322e312e302f32342d3234203d3e2034363131.roa (raw, json) Hash identifier: 0KdLEVUiybk5V4n+f+0dKRmU6UVh7v523bGbqNGXd8I= Subject key identifier: 1D:4E:24:D6:4D:50:6C:AA:A7:94:E3:DE:05:AD:94:7B:4E:C4:9C:D8 Certificate issuer: /CN=4AF5DD9398EBC33EA0CAE041D7F52EE2CADD0AFB Certificate serial: 6AC4BB214AB6D8D7AE68BB778538EC0F6F4AF19C Authority key identifier: 4A:F5:DD:93:98:EB:C3:3E:A0:CA:E0:41:D7:F5:2E:E2:CA:DD:0A:FB Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/4AF5DD9398EBC33EA0CAE041D7F52EE2CADD0AFB.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1106398388187824147/0/3230332e3139322e312e302f32342d3234203d3e2034363131.roa Signing time: Tue 12 May 2026 01:56:22 +0000 ROA not before: Tue 12 May 2026 01:51:22 +0000 ROA not after: Tue 11 May 2027 01:56:22 +0000 asID: 4611 IP address blocks: 203.192.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1106398388187824147/0/4AF5DD9398EBC33EA0CAE041D7F52EE2CADD0AFB.crl rsync://rpki-rps.cnnic.cn/repo/A1106398388187824147/0/4AF5DD9398EBC33EA0CAE041D7F52EE2CADD0AFB.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/4AF5DD9398EBC33EA0CAE041D7F52EE2CADD0AFB.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:c4:bb:21:4a:b6:d8:d7:ae:68:bb:77:85:38:ec:0f:6f:4a:f1:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4AF5DD9398EBC33EA0CAE041D7F52EE2CADD0AFB Validity Not Before: May 12 01:51:22 2026 GMT Not After : May 11 01:56:22 2027 GMT Subject: CN=1D4E24D64D506CAAA794E3DE05AD947B4EC49CD8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:74:84:82:8e:27:9a:ea:d6:9f:35:10:f2:41: c0:b4:bc:a0:aa:39:54:d2:66:a7:ca:d8:80:50:9c: c1:1c:14:c3:4b:68:e8:05:6d:b2:1d:f5:e1:ec:12: 5b:48:a3:a7:f1:86:1d:99:33:45:53:db:99:4c:ad: 77:08:9e:63:88:ad:32:2c:96:4c:f8:33:3b:d7:cc: c4:d6:cc:77:54:71:eb:a0:cc:10:5b:20:12:c2:06: 22:15:de:c6:a6:e4:49:11:4d:89:3d:83:61:0e:32: 8e:6e:ba:18:f3:91:a5:0b:34:f7:0f:5b:fb:c5:f9: 46:65:38:c8:89:62:d3:b2:af:0e:21:a8:71:ac:13: c5:07:fc:00:83:c9:de:44:dd:28:e3:5c:93:9c:d0: d0:2b:a4:7a:93:24:43:97:41:3e:fa:58:b6:ac:4c: 23:c6:4e:87:22:4e:b0:46:7f:7f:8c:6b:2b:3c:f0: e3:46:45:15:38:2c:4c:3e:88:52:14:e6:5e:58:d1: b6:23:31:f0:d6:2d:a6:05:6d:05:24:82:0d:d3:63: c7:9b:de:62:75:2c:51:5b:4c:3f:ae:53:d3:2a:f8: fe:b5:2a:57:5e:b9:15:6c:56:d1:df:7b:8b:5d:3f: 0a:b7:2c:54:58:5e:29:81:93:2d:7b:f1:e9:c9:07: 03:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:4E:24:D6:4D:50:6C:AA:A7:94:E3:DE:05:AD:94:7B:4E:C4:9C:D8 X509v3 Authority Key Identifier: keyid:4A:F5:DD:93:98:EB:C3:3E:A0:CA:E0:41:D7:F5:2E:E2:CA:DD:0A:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1106398388187824147/0/4AF5DD9398EBC33EA0CAE041D7F52EE2CADD0AFB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/4AF5DD9398EBC33EA0CAE041D7F52EE2CADD0AFB.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1106398388187824147/0/3230332e3139322e312e302f32342d3234203d3e2034363131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.192.1.0/24 Signature Algorithm: sha256WithRSAEncryption d1:ab:6b:72:26:7b:1d:32:3d:ae:89:8c:6b:29:a4:0f:f2:5d: 9b:6b:09:ea:71:84:20:f3:fe:80:0f:f3:87:d0:92:b5:8e:bf: 01:a6:17:6f:85:fa:72:46:59:5e:ec:de:4d:a2:2b:0f:b3:8e: d1:a8:72:74:58:5c:43:a3:b9:0d:a6:23:22:45:02:4e:e7:21: 63:29:2e:c9:90:37:8f:cd:0d:18:dd:98:1a:a0:96:02:2f:60: f4:e7:83:51:ef:36:37:7f:57:3b:8a:b3:bc:9a:9f:d6:82:fb: 76:1a:1a:3d:d8:cf:25:0e:72:81:23:93:ac:9a:0f:19:16:38: ea:5c:f0:fa:7b:1b:4c:a4:07:5c:a6:c6:68:ec:c9:22:7d:ec: 33:29:2c:e6:87:6e:47:f0:30:38:1c:94:5e:f9:a5:29:c8:8d: 69:87:7d:44:67:27:2a:1d:7c:0e:7e:a2:a3:06:06:96:7c:e9: 36:9f:36:65:9c:64:db:5a:16:a8:41:9a:bb:b8:77:06:d6:25: f8:ce:9d:0d:87:c6:98:c0:f5:2c:ab:04:c7:b6:f8:94:b8:97: cc:f4:a0:a6:2c:7a:62:97:b3:52:32:21:e2:73:79:9d:37:48: 64:1d:a3:1f:64:ce:01:d7:e7:bf:35:f1:1a:2f:1f:90:cf:48: ef:50:5b:e3 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUasS7IUq22NeuaLt3hTjsD29K8ZwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEFGNUREOTM5OEVCQzMzRUEwQ0FFMDQxRDdGNTJFRTJD QUREMEFGQjAeFw0yNjA1MTIwMTUxMjJaFw0yNzA1MTEwMTU2MjJaMDMxMTAvBgNV BAMTKDFENEUyNEQ2NEQ1MDZDQUFBNzk0RTNERTA1QUQ5NDdCNEVDNDlDRDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwdISCjiea6tafNRDyQcC0vKCq OVTSZqfK2IBQnMEcFMNLaOgFbbId9eHsEltIo6fxhh2ZM0VT25lMrXcInmOIrTIs lkz4MzvXzMTWzHdUceugzBBbIBLCBiIV3sam5EkRTYk9g2EOMo5uuhjzkaULNPcP W/vF+UZlOMiJYtOyrw4hqHGsE8UH/ACDyd5E3SjjXJOc0NArpHqTJEOXQT76WLas TCPGTociTrBGf3+Mays88ONGRRU4LEw+iFIU5l5Y0bYjMfDWLaYFbQUkgg3TY8eb 3mJ1LFFbTD+uU9Mq+P61KldeuRVsVtHfe4tdPwq3LFRYXimBky178enJBwPXAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUHU4k1k1QbKqnlOPeBa2Ue07EnNgwHwYDVR0j BBgwFoAUSvXdk5jrwz6gyuBB1/Uu4srdCvswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw NjM5ODM4ODE4NzgyNDE0Ny8wLzRBRjVERDkzOThFQkMzM0VBMENBRTA0MUQ3RjUy RUUyQ0FERDBBRkIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNEFGNUREOTM5OEVCQzMzRUEwQ0FFMDQxRDdGNTJFRTJDQUREMEFGQi5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTA2Mzk4Mzg4MTg3ODI0MTQ3LzAvMzIzMDMzMmUzMTM5 MzIyZTMxMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzQzNjMxMzEucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BADLwAEwDQYJKoZIhvcNAQELBQADggEBANGra3Imex0yPa6JjGsppA/yXZtrCepx hCDz/oAP84fQkrWOvwGmF2+F+nJGWV7s3k2iKw+zjtGocnRYXEOjuQ2mIyJFAk7n IWMpLsmQN4/NDRjdmBqglgIvYPTng1HvNjd/VzuKs7yan9aC+3YaGj3YzyUOcoEj k6yaDxkWOOpc8Pp7G0ykB1ymxmjsySJ97DMpLOaHbkfwMDgclF75pSnIjWmHfURn JyodfA5+oqMGBpZ86TafNmWcZNtaFqhBmru4dwbWJfjOnQ2HxpjA9SyrBMe2+JS4 l8z0oKYsemKXs1IyIeJzeZ03SGQdox9kzgHX57818RovH5DPSO9QW+M= -----END CERTIFICATE-----Generated at Wed May 13 21:31:25 2026 by rpki-client