$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1068363599790997506/0/312e3131382e33342e302f32342d3234203d3e20313337373533.roa File: 312e3131382e33342e302f32342d3234203d3e20313337373533.roa (raw, json) Hash identifier: PGRW9r+17m4oi4wQDBiSGdPYFTdv3tskoqCdpKd8PlY= Subject key identifier: D6:9B:4C:ED:A1:03:AC:10:EC:64:83:34:73:DF:54:C9:BA:DD:E3:55 Certificate issuer: /CN=D6805DB309057612CC9272CB2C85BA6CB0D389E5 Certificate serial: 069770E397D056AAC2B3780E7E2D8876428465B0 Authority key identifier: D6:80:5D:B3:09:05:76:12:CC:92:72:CB:2C:85:BA:6C:B0:D3:89:E5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D6805DB309057612CC9272CB2C85BA6CB0D389E5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/312e3131382e33342e302f32342d3234203d3e20313337373533.roa Signing time: Wed 01 Apr 2026 06:45:18 +0000 ROA not before: Wed 01 Apr 2026 06:40:18 +0000 ROA not after: Wed 31 Mar 2027 06:45:18 +0000 asID: 137753 IP address blocks: 1.118.34.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/D6805DB309057612CC9272CB2C85BA6CB0D389E5.crl rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/D6805DB309057612CC9272CB2C85BA6CB0D389E5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D6805DB309057612CC9272CB2C85BA6CB0D389E5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 Apr 2026 01:07:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:97:70:e3:97:d0:56:aa:c2:b3:78:0e:7e:2d:88:76:42:84:65:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D6805DB309057612CC9272CB2C85BA6CB0D389E5 Validity Not Before: Apr 1 06:40:18 2026 GMT Not After : Mar 31 06:45:18 2027 GMT Subject: CN=D69B4CEDA103AC10EC64833473DF54C9BADDE355 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:1b:41:9d:7d:30:fc:c4:17:c9:be:e5:97:10: 83:a2:74:fd:d7:e3:a3:c5:fc:46:f8:c2:bf:98:92: 0a:65:30:66:26:73:00:e8:cd:f3:e8:a9:05:7b:d0: a7:3b:40:42:d6:13:ae:39:0b:fa:7e:94:23:ef:62: cf:d9:00:10:3e:5e:a2:70:b1:27:97:05:92:eb:a4: 96:11:6a:9b:dd:26:97:6f:c5:c8:f5:b2:12:c0:f2: 89:8d:39:b3:ed:02:e5:57:fd:f4:dd:85:aa:e3:35: e0:da:cf:72:c8:93:b2:9b:b0:30:16:cd:71:0e:fd: d6:b3:a6:a4:ba:78:27:96:39:34:19:34:13:28:b5: 47:da:59:30:8a:ad:c4:82:aa:ab:ea:2f:37:c8:3d: de:07:1e:77:66:b4:56:66:ec:57:13:c4:7d:e1:5a: 14:41:0a:82:59:ab:66:e1:39:96:66:8b:41:70:d6: 43:d0:c5:a7:1e:1f:84:3f:1f:f9:4c:41:2c:8e:ff: 74:8d:51:68:19:e8:55:bb:f3:43:1d:c9:7c:59:55: a3:76:19:e4:78:c5:6b:62:17:68:e0:65:f5:0d:a0: 7d:ce:bf:5a:5d:be:d0:d0:a9:a3:a7:e9:fd:b8:25: f4:38:e8:fd:ba:ac:c4:d0:28:42:fe:3a:0d:87:70: af:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:9B:4C:ED:A1:03:AC:10:EC:64:83:34:73:DF:54:C9:BA:DD:E3:55 X509v3 Authority Key Identifier: keyid:D6:80:5D:B3:09:05:76:12:CC:92:72:CB:2C:85:BA:6C:B0:D3:89:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/D6805DB309057612CC9272CB2C85BA6CB0D389E5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D6805DB309057612CC9272CB2C85BA6CB0D389E5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/312e3131382e33342e302f32342d3234203d3e20313337373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 1.118.34.0/24 Signature Algorithm: sha256WithRSAEncryption 44:1a:69:d2:8d:aa:b1:e8:4d:77:76:98:a5:a1:9c:dc:70:d5: 34:0b:1c:4a:74:ac:25:9c:e5:ed:e8:72:a4:b6:eb:e8:56:ab: 0f:6d:c2:10:e3:27:9a:29:fc:20:9d:41:5a:68:c3:37:9d:61: 89:fa:3a:bd:dd:3e:5e:e1:e0:b6:97:cf:73:a0:48:be:73:24: 4a:8a:27:27:8d:9b:35:d5:55:d4:97:7b:19:0a:ea:01:7e:25: b6:7b:12:e9:66:8e:86:08:34:ac:1c:5a:b9:af:50:2b:57:a6: 4c:7b:18:d3:52:c8:b5:f2:dc:f5:c5:33:fc:10:fa:61:fe:7b: 34:1d:8f:d8:02:2e:cc:32:9c:9e:58:02:bb:4b:48:33:d8:97: fd:b8:23:b5:4f:51:b5:ce:db:da:20:7a:eb:a0:70:68:ac:87: 43:6e:1b:73:e4:a0:cf:a8:37:c3:d5:69:30:af:50:56:96:01: e0:1a:c1:b2:42:5e:ea:6d:b6:2d:c2:19:9f:63:fb:39:47:cf: 37:2d:93:78:79:7b:d9:28:85:c2:7f:ee:87:e3:f6:4e:2c:07: cd:f5:5d:02:0c:09:a1:a6:68:20:c5:d7:3a:d8:a8:b9:c4:99: e9:40:5b:fb:2b:56:7b:d5:8f:9c:c5:b9:81:8e:b0:cb:58:d4: 76:0f:44:f1 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUBpdw45fQVqrCs3gOfi2IdkKEZbAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDY4MDVEQjMwOTA1NzYxMkNDOTI3MkNCMkM4NUJBNkNC MEQzODlFNTAeFw0yNjA0MDEwNjQwMThaFw0yNzAzMzEwNjQ1MThaMDMxMTAvBgNV BAMTKEQ2OUI0Q0VEQTEwM0FDMTBFQzY0ODMzNDczREY1NEM5QkFEREUzNTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCG0GdfTD8xBfJvuWXEIOidP3X 46PF/Eb4wr+YkgplMGYmcwDozfPoqQV70Kc7QELWE645C/p+lCPvYs/ZABA+XqJw sSeXBZLrpJYRapvdJpdvxcj1shLA8omNObPtAuVX/fTdharjNeDaz3LIk7KbsDAW zXEO/dazpqS6eCeWOTQZNBMotUfaWTCKrcSCqqvqLzfIPd4HHndmtFZm7FcTxH3h WhRBCoJZq2bhOZZmi0Fw1kPQxaceH4Q/H/lMQSyO/3SNUWgZ6FW780MdyXxZVaN2 GeR4xWtiF2jgZfUNoH3Ov1pdvtDQqaOn6f24JfQ46P26rMTQKEL+Og2HcK/XAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQU1ptM7aEDrBDsZIM0c99Uybrd41UwHwYDVR0j BBgwFoAU1oBdswkFdhLMknLLLIW6bLDTieUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 ODM2MzU5OTc5MDk5NzUwNi8wL0Q2ODA1REIzMDkwNTc2MTJDQzkyNzJDQjJDODVC QTZDQjBEMzg5RTUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRDY4MDVEQjMwOTA1NzYxMkNDOTI3MkNCMkM4NUJBNkNCMEQzODlFNS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY4MzYzNTk5NzkwOTk3NTA2LzAvMzEyZTMxMzEzODJl MzMzNDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzNzM3MzUzMy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAAF2IjANBgkqhkiG9w0BAQsFAAOCAQEARBpp0o2qsehNd3aYpaGc3HDVNAsc SnSsJZzl7ehypLbr6FarD23CEOMnmin8IJ1BWmjDN51hifo6vd0+XuHgtpfPc6BI vnMkSoonJ42bNdVV1Jd7GQrqAX4ltnsS6WaOhgg0rBxaua9QK1emTHsY01LItfLc 9cUz/BD6Yf57NB2P2AIuzDKcnlgCu0tIM9iX/bgjtU9Rtc7b2iB666BwaKyHQ24b c+Sgz6g3w9VpMK9QVpYB4BrBskJe6m22LcIZn2P7OUfPNy2TeHl72SiFwn/uh+P2 TiwHzfVdAgwJoaZoIMXXOtioucSZ6UBb+ytWe9WPnMW5gY6wy1jUdg9E8Q== -----END CERTIFICATE-----Generated at Tue Apr 7 13:25:10 2026 by rpki-client