$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3131362e3234322e302e302f31372d3137203d3e2034383038.roa File: 3131362e3234322e302e302f31372d3137203d3e2034383038.roa (raw, json) Hash identifier: UFSnjm5VZvpjR89aVIsZ+QWGHfl/DzDPlYvOoC/Ou+c= Subject key identifier: BE:8E:25:57:2D:C2:FA:4C:D7:4C:4E:98:BB:E6:A1:6A:53:99:96:0D Certificate issuer: /CN=AE487B72C4F38EA548F6721BB60B773705BD9515 Certificate serial: 26065771AB76104F70B26F9A06028FACD8F70A27 Authority key identifier: AE:48:7B:72:C4:F3:8E:A5:48:F6:72:1B:B6:0B:77:37:05:BD:95:15 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3131362e3234322e302e302f31372d3137203d3e2034383038.roa Signing time: Tue 19 May 2026 06:40:28 +0000 ROA not before: Tue 19 May 2026 06:35:28 +0000 ROA not after: Tue 18 May 2027 06:40:28 +0000 asID: 4808 IP address blocks: 116.242.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 19:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:06:57:71:ab:76:10:4f:70:b2:6f:9a:06:02:8f:ac:d8:f7:0a:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AE487B72C4F38EA548F6721BB60B773705BD9515 Validity Not Before: May 19 06:35:28 2026 GMT Not After : May 18 06:40:28 2027 GMT Subject: CN=BE8E25572DC2FA4CD74C4E98BBE6A16A5399960D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:5d:5d:0f:92:ad:5a:d3:a8:d4:5f:60:76:71: b7:34:53:44:f0:cd:a9:cd:a1:bb:c7:f3:47:19:27: 0d:7e:3b:14:5d:77:ed:42:c5:e8:8d:13:ea:c0:5b: ee:60:6f:cc:cb:f9:00:4c:9c:69:81:bb:de:27:04: 2f:2c:d2:7f:59:21:17:7b:18:6a:01:5f:69:9a:c3: a4:23:15:e8:ae:5f:66:ef:ce:56:39:02:b6:65:ef: b1:81:22:ec:43:27:fa:1d:57:76:10:c1:76:93:5d: 02:a6:91:19:e8:3e:c5:fa:f1:c2:cb:84:34:79:90: 08:a0:54:c7:f3:20:34:85:67:4b:3b:db:e4:ea:28: fb:b7:6b:22:93:25:a2:a7:13:2d:4c:78:8a:e2:c4: b7:d5:76:7d:1d:32:c6:17:56:f2:35:d0:f4:91:45: 20:82:a3:f2:7a:42:ec:cf:c3:37:6b:02:57:65:eb: 81:e2:83:16:a2:53:99:e1:44:c0:33:9f:15:df:1f: 30:cf:42:21:58:62:e5:35:9d:e0:d4:97:97:b5:43: a7:ce:1c:61:99:ae:0d:d4:48:18:65:00:4d:5b:11: e4:6b:c9:69:f2:af:6e:6d:ff:b9:9a:f3:ca:1a:23: fe:0a:0a:d2:a5:e4:10:01:d4:5d:5c:1b:09:44:3d: 29:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:8E:25:57:2D:C2:FA:4C:D7:4C:4E:98:BB:E6:A1:6A:53:99:96:0D X509v3 Authority Key Identifier: keyid:AE:48:7B:72:C4:F3:8E:A5:48:F6:72:1B:B6:0B:77:37:05:BD:95:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3131362e3234322e302e302f31372d3137203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.242.0.0/17 Signature Algorithm: sha256WithRSAEncryption 65:f0:f8:72:65:cf:ee:65:89:09:58:1f:de:b6:9f:98:29:4d: 23:87:da:dc:bd:e6:35:1e:94:34:e1:f7:a4:88:8c:4c:a4:4c: 8d:90:91:22:cf:ef:88:44:f1:49:31:92:4c:63:c3:76:9b:99: 12:08:0f:70:44:bb:91:69:0d:84:f0:2e:69:d1:b8:3e:0f:b0: 01:87:3f:92:5a:91:64:12:bd:a5:97:0d:82:8a:34:fe:c0:72: c5:3a:6f:d3:52:a5:11:74:64:62:3b:e2:35:82:ea:6a:ae:ee: 08:d2:c9:56:2d:10:84:17:ce:58:aa:3b:bd:2e:19:7d:93:d6: 36:b6:20:af:cd:1d:14:81:ad:fd:00:5a:be:9c:bd:63:7e:1a: 81:3b:be:6e:43:d3:81:3c:4e:c1:43:c5:43:f6:4c:22:29:a8: de:93:ef:0d:af:ec:0a:21:f8:fe:f6:7d:21:f2:cb:55:df:29: a7:b1:65:54:e8:43:82:4b:89:9e:cb:ae:60:5b:08:0a:ec:b1: ef:12:a5:15:19:03:f3:f2:06:b0:65:57:cb:78:86:96:d7:86: e5:6f:cd:9d:60:b3:5c:57:1d:ff:be:cd:36:92:4a:be:1a:7c: 0b:ce:fb:7d:7c:5c:44:a5:cd:b1:de:51:19:c2:0d:eb:b9:4b: 3b:8e:0a:f4 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUJgZXcat2EE9wsm+aBgKPrNj3CicwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUU0ODdCNzJDNEYzOEVBNTQ4RjY3MjFCQjYwQjc3Mzcw NUJEOTUxNTAeFw0yNjA1MTkwNjM1MjhaFw0yNzA1MTgwNjQwMjhaMDMxMTAvBgNV BAMTKEJFOEUyNTU3MkRDMkZBNENENzRDNEU5OEJCRTZBMTZBNTM5OTk2MEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrXV0Pkq1a06jUX2B2cbc0U0Tw zanNobvH80cZJw1+OxRdd+1CxeiNE+rAW+5gb8zL+QBMnGmBu94nBC8s0n9ZIRd7 GGoBX2maw6QjFeiuX2bvzlY5ArZl77GBIuxDJ/odV3YQwXaTXQKmkRnoPsX68cLL hDR5kAigVMfzIDSFZ0s72+TqKPu3ayKTJaKnEy1MeIrixLfVdn0dMsYXVvI10PSR RSCCo/J6QuzPwzdrAldl64HigxaiU5nhRMAznxXfHzDPQiFYYuU1neDUl5e1Q6fO HGGZrg3USBhlAE1bEeRryWnyr25t/7ma88oaI/4KCtKl5BAB1F1cGwlEPSltAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUvo4lVy3C+kzXTE6Yu+ahalOZlg0wHwYDVR0j BBgwFoAUrkh7csTzjqVI9nIbtgt3NwW9lRUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0Nzk0MzkzOS8wL0FFNDg3QjcyQzRGMzhFQTU0OEY2NzIxQkI2MEI3 NzM3MDVCRDk1MTUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQUU0ODdCNzJDNEYzOEVBNTQ4RjY3MjFCQjYwQjc3MzcwNUJEOTUxNS5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc2MTk5OTQ3OTQzOTM5LzAvMzEzMTM2MmUzMjM0 MzIyZTMwMmUzMDJmMzEzNzJkMzEzNzIwM2QzZTIwMzQzODMwMzgucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAd08gAwDQYJKoZIhvcNAQELBQADggEBAGXw+HJlz+5liQlYH962n5gpTSOH2ty9 5jUelDTh96SIjEykTI2QkSLP74hE8Ukxkkxjw3abmRIID3BEu5FpDYTwLmnRuD4P sAGHP5JakWQSvaWXDYKKNP7AcsU6b9NSpRF0ZGI74jWC6mqu7gjSyVYtEIQXzliq O70uGX2T1ja2IK/NHRSBrf0AWr6cvWN+GoE7vm5D04E8TsFDxUP2TCIpqN6T7w2v 7Aoh+P72fSHyy1XfKaexZVToQ4JLiZ7LrmBbCArsse8SpRUZA/PyBrBlV8t4hpbX huVvzZ1gs1xXHf++zTaSSr4afAvO+318XESlzbHeURnCDeu5SzuOCvQ= -----END CERTIFICATE-----Generated at Fri Jun 12 02:24:10 2026 by rpki-client