$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3132342e3230322e3137362e302f32302d3230203d3e2034383038.roa File: 3132342e3230322e3137362e302f32302d3230203d3e2034383038.roa (raw, json) Hash identifier: 2Yetz0PJp3EY0n7dZFBBqr3o4GioxQZJXj+YdIsjEDY= Subject key identifier: C3:E8:A6:C1:71:09:DA:BD:00:2D:14:4F:69:85:EF:CB:5A:50:6C:2B Certificate issuer: /CN=AE487B72C4F38EA548F6721BB60B773705BD9515 Certificate serial: 5618612D97AE2104A74D6EE298E35D1060DE8073 Authority key identifier: AE:48:7B:72:C4:F3:8E:A5:48:F6:72:1B:B6:0B:77:37:05:BD:95:15 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3132342e3230322e3137362e302f32302d3230203d3e2034383038.roa Signing time: Fri 05 Jun 2026 05:57:59 +0000 ROA not before: Fri 05 Jun 2026 05:52:59 +0000 ROA not after: Fri 04 Jun 2027 05:57:59 +0000 asID: 4808 IP address blocks: 124.202.176.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 19:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:18:61:2d:97:ae:21:04:a7:4d:6e:e2:98:e3:5d:10:60:de:80:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AE487B72C4F38EA548F6721BB60B773705BD9515 Validity Not Before: Jun 5 05:52:59 2026 GMT Not After : Jun 4 05:57:59 2027 GMT Subject: CN=C3E8A6C17109DABD002D144F6985EFCB5A506C2B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:d9:42:24:0b:b2:54:2f:be:3f:bd:a1:1b:cb: f8:55:19:b7:3f:fd:00:dd:1f:0e:52:ec:c2:88:92: fa:22:b1:64:9a:0f:49:70:ac:04:e9:7a:71:d1:42: bd:62:c4:8b:db:39:32:0d:78:6a:08:c2:de:9f:b4: 57:42:3b:5f:de:15:79:2c:91:7a:43:a7:96:fc:09: 53:0d:df:3b:ff:0c:85:60:28:3e:b6:c8:be:ea:be: f9:2e:ee:d1:0a:81:85:5b:f9:03:77:2d:d2:cd:b8: 82:20:c0:14:63:7f:db:31:22:a3:66:45:67:36:07: 9b:f0:53:1d:16:6e:15:13:3e:d5:5e:3c:71:96:13: d2:ec:20:21:36:ae:a5:e8:cc:22:e6:c5:2e:f3:be: 26:8b:d3:f0:f5:07:96:34:21:19:e0:80:53:ee:cc: a2:ee:4d:36:1b:ff:65:97:12:84:af:13:74:d0:28: c4:c3:05:f8:b3:1d:3b:58:e4:23:cb:41:73:eb:2f: 45:d7:55:f5:57:97:f2:65:b1:a4:2d:6b:99:38:a0: b2:cc:e8:83:86:c8:c7:ed:be:f4:b0:c7:2c:06:09: ef:c7:54:67:fb:4f:b1:1b:57:43:b2:0e:c8:78:9c: 8c:d2:39:de:45:26:1a:4c:27:56:3f:5b:88:69:78: 65:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:E8:A6:C1:71:09:DA:BD:00:2D:14:4F:69:85:EF:CB:5A:50:6C:2B X509v3 Authority Key Identifier: keyid:AE:48:7B:72:C4:F3:8E:A5:48:F6:72:1B:B6:0B:77:37:05:BD:95:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3132342e3230322e3137362e302f32302d3230203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 124.202.176.0/20 Signature Algorithm: sha256WithRSAEncryption 94:4f:dc:64:d4:c0:11:de:72:88:8d:5c:e9:fd:17:26:da:91: 3b:23:73:34:db:c2:30:5b:4b:97:a4:0d:75:8b:a4:ea:61:72: 08:95:b4:5d:41:43:d9:07:6e:51:81:7a:72:b2:fc:75:f6:39: 0b:a9:53:a3:b0:62:c8:be:e3:3e:cc:60:55:b0:54:33:ad:0f: d1:50:00:1e:fc:03:1c:2e:20:df:a7:c1:8b:06:e7:02:7a:47: d2:0c:e8:95:9b:23:15:b1:e2:d6:02:74:cf:ef:02:ee:06:54: a1:6e:c0:c4:96:cc:9f:dc:94:aa:14:83:da:c6:db:2f:da:36: bd:02:67:0b:c3:69:4a:76:ac:12:de:08:c9:b6:b2:50:87:22: 3e:6f:c2:60:cc:fb:f1:db:55:a1:92:c4:71:38:50:7b:96:bc: 9b:3f:a0:cb:15:7b:7e:17:55:55:b3:8d:f7:87:a4:5e:8f:43: 61:9e:04:76:73:88:5e:89:62:69:3c:0c:7e:f7:74:51:18:ce: 3c:7a:5e:84:86:41:df:4b:f1:7d:d6:11:0a:f0:51:44:42:4a: 4d:65:86:57:04:4d:19:84:b3:12:60:32:2e:a7:5a:dc:f2:80: 7b:e4:e6:a0:6a:d3:db:b3:61:e1:42:ac:bb:73:36:7e:23:19: 00:9b:01:7b -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUVhhhLZeuIQSnTW7imONdEGDegHMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUU0ODdCNzJDNEYzOEVBNTQ4RjY3MjFCQjYwQjc3Mzcw NUJEOTUxNTAeFw0yNjA2MDUwNTUyNTlaFw0yNzA2MDQwNTU3NTlaMDMxMTAvBgNV BAMTKEMzRThBNkMxNzEwOURBQkQwMDJEMTQ0RjY5ODVFRkNCNUE1MDZDMkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCn2UIkC7JUL74/vaEby/hVGbc/ /QDdHw5S7MKIkvoisWSaD0lwrATpenHRQr1ixIvbOTINeGoIwt6ftFdCO1/eFXks kXpDp5b8CVMN3zv/DIVgKD62yL7qvvku7tEKgYVb+QN3LdLNuIIgwBRjf9sxIqNm RWc2B5vwUx0WbhUTPtVePHGWE9LsICE2rqXozCLmxS7zviaL0/D1B5Y0IRnggFPu zKLuTTYb/2WXEoSvE3TQKMTDBfizHTtY5CPLQXPrL0XXVfVXl/JlsaQta5k4oLLM 6IOGyMftvvSwxywGCe/HVGf7T7EbV0OyDsh4nIzSOd5FJhpMJ1Y/W4hpeGUlAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUw+imwXEJ2r0ALRRPaYXvy1pQbCswHwYDVR0j BBgwFoAUrkh7csTzjqVI9nIbtgt3NwW9lRUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0Nzk0MzkzOS8wL0FFNDg3QjcyQzRGMzhFQTU0OEY2NzIxQkI2MEI3 NzM3MDVCRDk1MTUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQUU0ODdCNzJDNEYzOEVBNTQ4RjY3MjFCQjYwQjc3MzcwNUJEOTUxNS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3NjE5OTk0Nzk0MzkzOS8wLzMxMzIzNDJlMzIz MDMyMmUzMTM3MzYyZTMwMmYzMjMwMmQzMjMwMjAzZDNlMjAzNDM4MzAzOC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEBHzKsDANBgkqhkiG9w0BAQsFAAOCAQEAlE/cZNTAEd5yiI1c6f0XJtqR OyNzNNvCMFtLl6QNdYuk6mFyCJW0XUFD2QduUYF6crL8dfY5C6lTo7BiyL7jPsxg VbBUM60P0VAAHvwDHC4g36fBiwbnAnpH0gzolZsjFbHi1gJ0z+8C7gZUoW7AxJbM n9yUqhSD2sbbL9o2vQJnC8NpSnasEt4IybayUIciPm/CYMz78dtVoZLEcThQe5a8 mz+gyxV7fhdVVbON94ekXo9DYZ4EdnOIXoliaTwMfvd0URjOPHpehIZB30vxfdYR CvBRREJKTWWGVwRNGYSzEmAyLqda3PKAe+TmoGrT27Nh4UKsu3M2fiMZAJsBew== -----END CERTIFICATE-----Generated at Fri Jun 12 02:23:49 2026 by rpki-client