$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1068363599790997506/0/312e3131382e33322e302f32342d3234203d3e20313337373533.roa File: 312e3131382e33322e302f32342d3234203d3e20313337373533.roa (raw, json) Hash identifier: 09pt/jIm8iOWomJnC3cDqvKVyXhKk3JMgwKM4Mhwyqs= Subject key identifier: 5D:E8:EC:2B:6C:2C:48:F6:31:D6:C0:D1:40:C6:C3:49:51:60:58:0C Certificate issuer: /CN=D6805DB309057612CC9272CB2C85BA6CB0D389E5 Certificate serial: 5BA890DDF4010F641622B6B8201BEE3FD49B8594 Authority key identifier: D6:80:5D:B3:09:05:76:12:CC:92:72:CB:2C:85:BA:6C:B0:D3:89:E5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D6805DB309057612CC9272CB2C85BA6CB0D389E5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/312e3131382e33322e302f32342d3234203d3e20313337373533.roa Signing time: Wed 01 Apr 2026 06:47:42 +0000 ROA not before: Wed 01 Apr 2026 06:42:42 +0000 ROA not after: Wed 31 Mar 2027 06:47:42 +0000 asID: 137753 IP address blocks: 1.118.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/D6805DB309057612CC9272CB2C85BA6CB0D389E5.crl rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/D6805DB309057612CC9272CB2C85BA6CB0D389E5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D6805DB309057612CC9272CB2C85BA6CB0D389E5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 Apr 2026 01:07:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:a8:90:dd:f4:01:0f:64:16:22:b6:b8:20:1b:ee:3f:d4:9b:85:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D6805DB309057612CC9272CB2C85BA6CB0D389E5 Validity Not Before: Apr 1 06:42:42 2026 GMT Not After : Mar 31 06:47:42 2027 GMT Subject: CN=5DE8EC2B6C2C48F631D6C0D140C6C3495160580C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:5a:fc:32:f0:4b:73:09:25:65:7a:be:93:74: 53:0a:dc:23:c9:0b:91:2e:02:5d:01:0f:24:7a:4c: 06:0e:08:42:c4:33:76:5e:87:ca:91:57:ed:2c:e3: 17:fb:14:63:21:62:f4:61:ef:18:52:de:6a:ff:77: 04:70:64:21:92:af:e1:40:16:95:f0:3c:b0:40:36: f9:89:1c:80:5f:60:bf:de:67:4a:51:ad:e0:d4:d6: d9:e2:0b:65:e4:be:48:71:2c:71:26:45:9a:19:55: ac:44:f2:b7:48:93:1f:5b:b3:36:a2:06:a9:e7:49: 59:18:bc:7e:a4:4f:dd:fa:7c:75:16:d9:d2:f4:37: 6b:1a:95:1f:69:e6:84:d2:b5:33:8b:86:73:04:4c: 22:d1:0a:4a:9d:02:1b:23:57:9a:41:86:30:8c:1b: f6:96:90:f7:d7:5e:46:98:1f:7b:03:22:1c:64:a2: 64:6e:2e:1b:d5:b1:14:e0:26:75:c7:b3:b4:f2:11: 93:b7:78:25:e0:89:b4:f1:b2:7c:86:7b:c1:90:f5: 69:1c:39:54:a0:c7:23:3b:02:a2:cd:bb:6a:53:49: e5:fb:82:06:7a:c4:3b:5a:5d:3b:9b:40:52:88:1b: 33:81:c2:0e:60:d5:d0:50:dd:9f:9c:b2:ff:16:e6: 92:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:E8:EC:2B:6C:2C:48:F6:31:D6:C0:D1:40:C6:C3:49:51:60:58:0C X509v3 Authority Key Identifier: keyid:D6:80:5D:B3:09:05:76:12:CC:92:72:CB:2C:85:BA:6C:B0:D3:89:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/D6805DB309057612CC9272CB2C85BA6CB0D389E5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D6805DB309057612CC9272CB2C85BA6CB0D389E5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/312e3131382e33322e302f32342d3234203d3e20313337373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 1.118.32.0/24 Signature Algorithm: sha256WithRSAEncryption 08:1e:3b:39:1a:28:50:fb:46:d3:04:29:74:98:1e:5e:22:74: dc:19:58:07:65:68:d4:70:23:88:c1:5c:e3:a8:3a:4d:ea:e6: bd:47:c2:6b:73:5e:a2:de:0f:9b:99:b8:43:eb:3f:e3:2a:e2: 99:1b:19:29:3e:f3:95:09:a1:ae:d7:e8:b4:3f:c7:97:83:28: 2e:bd:a1:14:f9:f7:50:47:5f:e8:d3:53:d9:ca:54:fe:3d:4e: 1d:a6:e4:22:5d:f3:8b:74:24:6d:5a:0c:35:e8:d5:70:7e:02: 68:f8:96:3d:5a:00:0b:c3:cf:13:a8:45:92:29:7e:84:da:3e: 1e:53:9d:f3:25:96:2d:6c:af:e5:4f:dc:9f:d2:d1:0f:af:b4: 59:b5:da:8a:53:00:56:94:22:35:da:61:ad:d2:57:77:91:48: f2:a4:31:48:f6:c4:99:5d:ff:06:a6:c7:ae:6d:f0:3f:59:3b: 16:85:db:c2:18:c6:11:d3:c6:93:fd:23:3e:39:fc:32:ea:50: 82:e8:ca:bb:cb:41:55:18:47:cc:59:9e:1a:80:12:09:1e:20: 8e:4b:9f:3e:70:48:24:ac:66:3a:6d:0b:7f:50:3a:54:a6:2a: 6c:13:52:3d:d4:d8:68:3a:e7:c8:8e:19:de:de:a0:95:08:60: 78:55:c4:a7 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUW6iQ3fQBD2QWIra4IBvuP9SbhZQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDY4MDVEQjMwOTA1NzYxMkNDOTI3MkNCMkM4NUJBNkNC MEQzODlFNTAeFw0yNjA0MDEwNjQyNDJaFw0yNzAzMzEwNjQ3NDJaMDMxMTAvBgNV BAMTKDVERThFQzJCNkMyQzQ4RjYzMUQ2QzBEMTQwQzZDMzQ5NTE2MDU4MEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD2Wvwy8EtzCSVler6TdFMK3CPJ C5EuAl0BDyR6TAYOCELEM3Zeh8qRV+0s4xf7FGMhYvRh7xhS3mr/dwRwZCGSr+FA FpXwPLBANvmJHIBfYL/eZ0pRreDU1tniC2XkvkhxLHEmRZoZVaxE8rdIkx9bszai BqnnSVkYvH6kT936fHUW2dL0N2salR9p5oTStTOLhnMETCLRCkqdAhsjV5pBhjCM G/aWkPfXXkaYH3sDIhxkomRuLhvVsRTgJnXHs7TyEZO3eCXgibTxsnyGe8GQ9Wkc OVSgxyM7AqLNu2pTSeX7ggZ6xDtaXTubQFKIGzOBwg5g1dBQ3Z+csv8W5pJpAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUXejsK2wsSPYx1sDRQMbDSVFgWAwwHwYDVR0j BBgwFoAU1oBdswkFdhLMknLLLIW6bLDTieUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 ODM2MzU5OTc5MDk5NzUwNi8wL0Q2ODA1REIzMDkwNTc2MTJDQzkyNzJDQjJDODVC QTZDQjBEMzg5RTUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRDY4MDVEQjMwOTA1NzYxMkNDOTI3MkNCMkM4NUJBNkNCMEQzODlFNS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY4MzYzNTk5NzkwOTk3NTA2LzAvMzEyZTMxMzEzODJl MzMzMjJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzNzM3MzUzMy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAAF2IDANBgkqhkiG9w0BAQsFAAOCAQEACB47ORooUPtG0wQpdJgeXiJ03BlY B2Vo1HAjiMFc46g6TermvUfCa3Neot4Pm5m4Q+s/4yrimRsZKT7zlQmhrtfotD/H l4MoLr2hFPn3UEdf6NNT2cpU/j1OHabkIl3zi3QkbVoMNejVcH4CaPiWPVoAC8PP E6hFkil+hNo+HlOd8yWWLWyv5U/cn9LRD6+0WbXailMAVpQiNdphrdJXd5FI8qQx SPbEmV3/BqbHrm3wP1k7FoXbwhjGEdPGk/0jPjn8MupQgujKu8tBVRhHzFmeGoAS CR4gjkufPnBIJKxmOm0Lf1A6VKYqbBNSPdTYaDrnyI4Z3t6glQhgeFXEpw== -----END CERTIFICATE-----Generated at Tue Apr 7 13:25:10 2026 by rpki-client