$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3132342e3230352e3132382e302f31372d3137203d3e2034383038.roa File: 3132342e3230352e3132382e302f31372d3137203d3e2034383038.roa (raw, json) Hash identifier: 7opsur5HhT1Oj3s+w8/bdYD6aFnQKZjs8vGGKwt4M4I= Subject key identifier: 25:BB:A0:62:D1:64:33:E1:BF:A9:56:9D:F2:BE:0A:21:42:88:A9:2E Certificate issuer: /CN=AE487B72C4F38EA548F6721BB60B773705BD9515 Certificate serial: 3A2A47F9637EC346BE1FFF176D5795E8763BF830 Authority key identifier: AE:48:7B:72:C4:F3:8E:A5:48:F6:72:1B:B6:0B:77:37:05:BD:95:15 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3132342e3230352e3132382e302f31372d3137203d3e2034383038.roa Signing time: Fri 05 Jun 2026 05:58:21 +0000 ROA not before: Fri 05 Jun 2026 05:53:21 +0000 ROA not after: Fri 04 Jun 2027 05:58:21 +0000 asID: 4808 IP address blocks: 124.205.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 19:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:2a:47:f9:63:7e:c3:46:be:1f:ff:17:6d:57:95:e8:76:3b:f8:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AE487B72C4F38EA548F6721BB60B773705BD9515 Validity Not Before: Jun 5 05:53:21 2026 GMT Not After : Jun 4 05:58:21 2027 GMT Subject: CN=25BBA062D16433E1BFA9569DF2BE0A214288A92E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:45:03:19:03:89:3a:ad:d2:5f:9b:f1:ac:29: 52:b3:91:a3:57:5a:4e:81:8c:64:b7:36:bd:15:7f: 31:dd:3c:8c:45:fb:07:6d:ca:cd:bc:7a:7a:68:20: 1f:38:7b:41:4a:4c:1c:1c:dd:7d:ec:5a:a2:5e:c6: 7a:4e:fc:4c:09:8e:25:0d:7b:62:bb:65:b5:dd:7d: c0:b0:ab:15:1c:9e:c0:4e:44:83:ac:d1:4d:4c:c6: cc:7e:87:e6:de:87:df:89:2b:98:45:a1:e4:79:6e: cc:46:fd:ba:db:ff:f0:41:a6:ce:4c:3d:f6:0b:79: 25:21:31:e5:33:06:f6:f5:6b:b7:03:8c:59:68:42: 38:89:c6:18:da:a7:e3:5a:ff:f0:4c:50:b5:9e:2c: 71:ae:c4:17:b3:3d:ce:08:82:08:f6:d6:b1:f1:4e: 30:a8:aa:c7:f0:e5:b2:18:3f:6f:fd:03:52:35:b5: c9:86:20:77:40:ee:90:13:16:69:3f:1c:9d:c5:17: fa:5d:df:1f:99:45:d2:54:4f:91:e3:c7:7f:32:4c: 09:ee:3d:f1:18:ee:c5:52:8c:1c:f1:56:e9:40:94: fa:77:8c:5d:23:42:71:0a:79:13:02:87:25:1b:74: 0c:91:bc:3d:ac:79:b5:e8:a1:ff:b0:40:d0:f3:04: e2:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:BB:A0:62:D1:64:33:E1:BF:A9:56:9D:F2:BE:0A:21:42:88:A9:2E X509v3 Authority Key Identifier: keyid:AE:48:7B:72:C4:F3:8E:A5:48:F6:72:1B:B6:0B:77:37:05:BD:95:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3132342e3230352e3132382e302f31372d3137203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 124.205.128.0/17 Signature Algorithm: sha256WithRSAEncryption 32:11:91:7a:b7:77:18:4f:b2:c0:87:80:86:98:f4:ab:5d:5d: e0:b5:8d:d4:4f:d8:52:20:45:41:8f:ed:fe:c8:f8:a5:8e:94: 4d:ab:6d:9f:f6:5f:f0:3e:94:b9:e4:36:3e:8d:35:be:15:76: 2c:4d:1b:74:75:c3:55:a4:08:42:10:60:b3:fa:b6:96:d9:0e: c0:31:92:1f:0e:7a:3c:5a:a4:73:a7:54:c6:5c:d2:84:6b:75: 95:d8:0c:eb:94:b3:4b:23:0e:f1:d4:a1:a0:06:35:77:97:57: 3a:7a:8f:c1:2c:50:4c:3c:9b:cd:cc:d3:f6:32:bb:aa:5e:5c: c2:c4:cd:3b:d3:73:8b:66:27:8a:6e:c6:6d:a4:67:f5:d5:cc: cb:2e:84:03:f3:8b:e2:f7:34:d0:53:e2:4e:7d:fe:8e:13:b9: 4e:d9:e6:37:ba:ef:05:c0:aa:14:be:66:34:4d:a2:49:b3:2a: 42:56:5b:75:4d:a7:40:6d:78:15:1f:a4:41:52:e1:49:47:10: 14:90:4b:76:6c:ae:73:c4:42:8f:71:d7:2a:dd:1c:17:bb:88: 02:d7:43:5c:15:d9:5c:98:c8:23:86:4b:86:96:8c:51:c1:b8: c2:f3:3a:55:53:04:01:60:00:92:49:f7:85:e2:37:b6:20:70: 1e:ee:cc:93 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUOipH+WN+w0a+H/8XbVeV6HY7+DAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUU0ODdCNzJDNEYzOEVBNTQ4RjY3MjFCQjYwQjc3Mzcw NUJEOTUxNTAeFw0yNjA2MDUwNTUzMjFaFw0yNzA2MDQwNTU4MjFaMDMxMTAvBgNV BAMTKDI1QkJBMDYyRDE2NDMzRTFCRkE5NTY5REYyQkUwQTIxNDI4OEE5MkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCLRQMZA4k6rdJfm/GsKVKzkaNX Wk6BjGS3Nr0VfzHdPIxF+wdtys28enpoIB84e0FKTBwc3X3sWqJexnpO/EwJjiUN e2K7ZbXdfcCwqxUcnsBORIOs0U1Mxsx+h+beh9+JK5hFoeR5bsxG/brb//BBps5M PfYLeSUhMeUzBvb1a7cDjFloQjiJxhjap+Na//BMULWeLHGuxBezPc4Iggj21rHx TjCoqsfw5bIYP2/9A1I1tcmGIHdA7pATFmk/HJ3FF/pd3x+ZRdJUT5Hjx38yTAnu PfEY7sVSjBzxVulAlPp3jF0jQnEKeRMChyUbdAyRvD2sebXoof+wQNDzBOIdAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUJbugYtFkM+G/qVad8r4KIUKIqS4wHwYDVR0j BBgwFoAUrkh7csTzjqVI9nIbtgt3NwW9lRUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0Nzk0MzkzOS8wL0FFNDg3QjcyQzRGMzhFQTU0OEY2NzIxQkI2MEI3 NzM3MDVCRDk1MTUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQUU0ODdCNzJDNEYzOEVBNTQ4RjY3MjFCQjYwQjc3MzcwNUJEOTUxNS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3NjE5OTk0Nzk0MzkzOS8wLzMxMzIzNDJlMzIz MDM1MmUzMTMyMzgyZTMwMmYzMTM3MmQzMTM3MjAzZDNlMjAzNDM4MzAzOC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEB3zNgDANBgkqhkiG9w0BAQsFAAOCAQEAMhGRerd3GE+ywIeAhpj0q11d 4LWN1E/YUiBFQY/t/sj4pY6UTattn/Zf8D6UueQ2Po01vhV2LE0bdHXDVaQIQhBg s/q2ltkOwDGSHw56PFqkc6dUxlzShGt1ldgM65SzSyMO8dShoAY1d5dXOnqPwSxQ TDybzczT9jK7ql5cwsTNO9Nzi2Ynim7GbaRn9dXMyy6EA/OL4vc00FPiTn3+jhO5 TtnmN7rvBcCqFL5mNE2iSbMqQlZbdU2nQG14FR+kQVLhSUcQFJBLdmyuc8RCj3HX Kt0cF7uIAtdDXBXZXJjII4ZLhpaMUcG4wvM6VVMEAWAAkkn3heI3tiBwHu7Mkw== -----END CERTIFICATE-----Generated at Fri Jun 12 02:23:53 2026 by rpki-client