$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3132342e3230332e3137362e302f32302d3230203d3e2034383437.roa File: 3132342e3230332e3137362e302f32302d3230203d3e2034383437.roa (raw, json) Hash identifier: Vwpp/Sd9tYm2rbWn3lAV8UHjafU4gV20avJ5dBr7YXI= Subject key identifier: B4:F8:75:51:20:6F:36:A4:25:A5:EF:ED:99:4D:11:D4:C3:F3:DE:13 Certificate issuer: /CN=AE487B72C4F38EA548F6721BB60B773705BD9515 Certificate serial: 52B478E8F081C464B45C097B6A08962B63F7E634 Authority key identifier: AE:48:7B:72:C4:F3:8E:A5:48:F6:72:1B:B6:0B:77:37:05:BD:95:15 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3132342e3230332e3137362e302f32302d3230203d3e2034383437.roa Signing time: Fri 05 Jun 2026 05:58:35 +0000 ROA not before: Fri 05 Jun 2026 05:53:35 +0000 ROA not after: Fri 04 Jun 2027 05:58:35 +0000 asID: 4847 IP address blocks: 124.203.176.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 19:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:b4:78:e8:f0:81:c4:64:b4:5c:09:7b:6a:08:96:2b:63:f7:e6:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AE487B72C4F38EA548F6721BB60B773705BD9515 Validity Not Before: Jun 5 05:53:35 2026 GMT Not After : Jun 4 05:58:35 2027 GMT Subject: CN=B4F87551206F36A425A5EFED994D11D4C3F3DE13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:91:1b:e9:11:04:1e:e7:96:9f:6c:0d:fd:ab: c0:2d:43:4f:f6:de:e0:6c:d1:1c:3a:f5:4c:d5:36: 00:dd:de:fe:f1:b4:30:8b:80:1b:44:7f:80:41:74: 15:ff:74:c5:68:33:5e:45:12:15:00:2f:08:ba:90: f7:c0:93:51:5e:9d:88:bf:11:15:40:33:56:1a:de: ee:6e:ba:a2:b7:b6:bd:ac:4c:d9:21:13:1c:19:00: 89:c4:ac:7f:85:3f:80:02:0b:61:ad:e2:42:69:f8: d7:99:48:d7:af:c4:45:5d:6b:ed:d1:14:07:f8:b2: 59:e2:44:a0:9a:4a:bd:9e:89:66:5b:83:07:16:c8: 5d:6c:25:3c:c7:a2:75:e3:15:5f:bf:a0:94:fa:cc: 3e:d4:f2:4f:2f:60:16:36:b3:36:c6:b5:c6:20:5d: 28:6a:49:ff:4d:db:b1:84:91:ac:21:5a:71:a1:17: 0f:a9:ba:bb:f6:36:2d:0f:a6:af:fb:93:e6:34:c9: d4:8c:d9:66:49:84:67:8c:53:3c:1a:0a:3c:01:de: df:e3:1b:18:89:e0:ff:0f:17:d8:4b:f1:9b:94:a8: a0:d9:a2:33:80:db:c0:7a:d4:38:6b:8d:1b:01:e1: 00:9a:75:33:8f:65:bf:64:5c:df:89:8a:d4:8e:b3: 56:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:F8:75:51:20:6F:36:A4:25:A5:EF:ED:99:4D:11:D4:C3:F3:DE:13 X509v3 Authority Key Identifier: keyid:AE:48:7B:72:C4:F3:8E:A5:48:F6:72:1B:B6:0B:77:37:05:BD:95:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3132342e3230332e3137362e302f32302d3230203d3e2034383437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 124.203.176.0/20 Signature Algorithm: sha256WithRSAEncryption 93:d2:18:f0:25:04:4b:13:31:58:36:37:d8:03:5c:5f:5b:ec: 99:eb:60:f7:96:a7:56:3a:ef:24:a8:3a:41:95:89:63:10:22: f3:6a:81:09:a0:e4:c0:bd:12:a1:9a:c0:98:07:c5:49:49:36: b3:70:45:c4:72:17:76:5b:01:e6:72:77:ff:84:13:e9:c3:65: b9:01:28:0b:22:e2:89:d7:54:d4:3b:6b:c1:8f:03:a3:d0:42: 32:af:e4:fb:46:d0:21:8c:51:92:17:81:b4:fe:ac:1e:fd:32: cb:ca:eb:b4:6f:10:b1:74:20:1a:f0:0c:1f:a3:11:03:e3:d8: 1a:f5:b5:8c:79:f7:8e:3b:7b:48:11:33:12:1b:38:20:3e:77: 4b:a9:1c:3b:f4:fc:24:e3:97:1b:fb:94:53:6e:5a:6c:ad:52: 25:fb:ce:24:4d:87:82:c9:40:21:f9:c8:2b:98:45:8f:c4:88: 95:d1:58:47:5f:1f:61:73:08:33:8c:e7:5b:30:dc:34:d6:aa: 5c:a8:5c:6c:1c:bb:48:a4:6b:62:ac:5b:1f:52:c1:69:2a:6f: fc:0f:06:72:f3:6d:df:75:e2:53:cd:e1:4b:2f:3c:43:d1:74: 45:1d:c0:83:68:2f:58:83:49:a2:2e:e9:f4:41:bb:ec:85:4e: 97:a7:f6:d4 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUUrR46PCBxGS0XAl7agiWK2P35jQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUU0ODdCNzJDNEYzOEVBNTQ4RjY3MjFCQjYwQjc3Mzcw NUJEOTUxNTAeFw0yNjA2MDUwNTUzMzVaFw0yNzA2MDQwNTU4MzVaMDMxMTAvBgNV BAMTKEI0Rjg3NTUxMjA2RjM2QTQyNUE1RUZFRDk5NEQxMUQ0QzNGM0RFMTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpkRvpEQQe55afbA39q8AtQ0/2 3uBs0Rw69UzVNgDd3v7xtDCLgBtEf4BBdBX/dMVoM15FEhUALwi6kPfAk1FenYi/ ERVAM1Ya3u5uuqK3tr2sTNkhExwZAInErH+FP4ACC2Gt4kJp+NeZSNevxEVda+3R FAf4slniRKCaSr2eiWZbgwcWyF1sJTzHonXjFV+/oJT6zD7U8k8vYBY2szbGtcYg XShqSf9N27GEkawhWnGhFw+purv2Ni0Ppq/7k+Y0ydSM2WZJhGeMUzwaCjwB3t/j GxiJ4P8PF9hL8ZuUqKDZojOA28B61DhrjRsB4QCadTOPZb9kXN+JitSOs1ZjAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUtPh1USBvNqQlpe/tmU0R1MPz3hMwHwYDVR0j BBgwFoAUrkh7csTzjqVI9nIbtgt3NwW9lRUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0Nzk0MzkzOS8wL0FFNDg3QjcyQzRGMzhFQTU0OEY2NzIxQkI2MEI3 NzM3MDVCRDk1MTUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQUU0ODdCNzJDNEYzOEVBNTQ4RjY3MjFCQjYwQjc3MzcwNUJEOTUxNS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3NjE5OTk0Nzk0MzkzOS8wLzMxMzIzNDJlMzIz MDMzMmUzMTM3MzYyZTMwMmYzMjMwMmQzMjMwMjAzZDNlMjAzNDM4MzQzNy5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEBHzLsDANBgkqhkiG9w0BAQsFAAOCAQEAk9IY8CUESxMxWDY32ANcX1vs metg95anVjrvJKg6QZWJYxAi82qBCaDkwL0SoZrAmAfFSUk2s3BFxHIXdlsB5nJ3 /4QT6cNluQEoCyLiiddU1DtrwY8Do9BCMq/k+0bQIYxRkheBtP6sHv0yy8rrtG8Q sXQgGvAMH6MRA+PYGvW1jHn3jjt7SBEzEhs4ID53S6kcO/T8JOOXG/uUU25abK1S JfvOJE2HgslAIfnIK5hFj8SIldFYR18fYXMIM4znWzDcNNaqXKhcbBy7SKRrYqxb H1LBaSpv/A8GcvNt33XiU83hSy88Q9F0RR3Ag2gvWINJoi7p9EG77IVOl6f21A== -----END CERTIFICATE-----Generated at Fri Jun 12 02:23:36 2026 by rpki-client