$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3231312e3134372e32302e302f32322d3232203d3e2034383038.roa File: 3231312e3134372e32302e302f32322d3232203d3e2034383038.roa (raw, json) Hash identifier: EoHmPk5f44zmEFZwfmbaepfqwINHJg5fSjWaG4gqy8Q= Subject key identifier: 4B:80:62:AC:A3:53:84:C3:F3:02:B9:CF:F4:56:CF:2D:18:B5:86:00 Certificate issuer: /CN=AE487B72C4F38EA548F6721BB60B773705BD9515 Certificate serial: 4BD1ECF013221FEE5FD4F804D68BD80E1EAA9F7E Authority key identifier: AE:48:7B:72:C4:F3:8E:A5:48:F6:72:1B:B6:0B:77:37:05:BD:95:15 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3231312e3134372e32302e302f32322d3232203d3e2034383038.roa Signing time: Tue 19 May 2026 06:39:12 +0000 ROA not before: Tue 19 May 2026 06:34:12 +0000 ROA not after: Tue 18 May 2027 06:39:12 +0000 asID: 4808 IP address blocks: 211.147.20.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 19:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:d1:ec:f0:13:22:1f:ee:5f:d4:f8:04:d6:8b:d8:0e:1e:aa:9f:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AE487B72C4F38EA548F6721BB60B773705BD9515 Validity Not Before: May 19 06:34:12 2026 GMT Not After : May 18 06:39:12 2027 GMT Subject: CN=4B8062ACA35384C3F302B9CFF456CF2D18B58600 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:6f:36:4e:0a:67:ea:2d:76:c7:70:49:c4:8a: 1a:75:e2:76:12:56:ca:d9:6f:30:fb:55:dc:42:a1: d0:84:67:17:ee:54:0f:a7:07:5d:b6:47:1d:6b:ca: 63:30:92:9a:65:f0:cb:dd:a3:1e:b9:45:4c:b0:56: 05:25:67:3e:8c:aa:47:98:5d:f0:c7:5b:e1:bc:7e: e1:2f:3d:16:8d:94:a4:a2:3b:11:f5:a8:d5:88:a2: c9:73:c3:ff:6b:00:53:2b:90:bf:67:5e:b8:43:56: d3:1e:7e:d9:b9:29:66:f9:b0:8d:7d:51:77:11:9c: 4d:75:90:85:3c:17:28:75:9d:60:be:f8:f1:f5:b0: 73:43:1e:28:8f:80:cd:d6:04:cf:e0:c9:38:2c:56: 66:3d:e3:29:11:90:16:cd:15:8f:d3:b1:c5:7c:78: 60:26:8f:18:ad:b9:dd:78:98:e2:d9:c5:66:a4:6a: 2b:62:9c:49:52:b3:68:c9:0c:a5:64:02:03:67:59: d6:a8:a8:d6:2c:d1:79:f0:ee:4b:92:39:70:82:e7: bf:06:c5:d6:20:2f:17:f0:de:2d:20:e0:69:df:c8: 73:15:cb:1d:8f:81:57:28:ba:26:1c:9c:00:ef:1b: 6e:96:08:e7:8f:0d:38:2a:2a:cd:b0:95:26:ea:0f: a6:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:80:62:AC:A3:53:84:C3:F3:02:B9:CF:F4:56:CF:2D:18:B5:86:00 X509v3 Authority Key Identifier: keyid:AE:48:7B:72:C4:F3:8E:A5:48:F6:72:1B:B6:0B:77:37:05:BD:95:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3231312e3134372e32302e302f32322d3232203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 211.147.20.0/22 Signature Algorithm: sha256WithRSAEncryption 66:e6:62:a4:d3:cb:47:da:a8:82:22:9a:96:d7:26:9a:49:6e: e0:a4:c7:a9:7a:6b:23:bb:b4:a4:0b:c1:4b:d0:d6:51:59:eb: 35:7d:f9:0d:6c:e5:ac:e3:7d:54:92:69:73:be:7c:40:79:b2: 9e:00:28:2c:b4:e1:9f:3e:62:2f:46:f6:db:94:df:0d:f7:50: 43:86:70:a7:0f:e2:15:55:fb:eb:63:e2:e1:0c:ae:92:bf:46: 6c:b6:82:79:ab:93:d6:4b:5d:d0:4a:08:18:75:b1:fb:f1:11: 6d:78:4e:6e:06:8b:12:04:99:72:b4:cc:d9:6b:b8:a9:da:06: 10:41:43:27:63:08:b5:50:2b:80:d2:77:a5:62:86:13:0a:5b: b6:06:19:d8:78:81:31:05:9a:01:02:52:0a:66:7a:d2:ef:53: 29:57:90:a6:ba:92:10:9c:a9:26:ee:a9:5e:31:67:8a:ed:09: 68:a1:42:ec:ac:7d:16:0e:df:cc:24:64:6d:dd:76:0c:51:5f: f9:62:2a:79:7d:cb:3d:1e:5b:bf:e8:a6:e1:a2:95:4a:6d:54: 85:65:b2:25:37:3c:68:5c:69:2a:a8:f8:56:0c:cc:b2:e8:30: 5b:04:01:b8:8d:ef:64:6e:88:53:99:a6:6e:c0:5b:64:5e:a4: 29:bf:3e:a6 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUS9Hs8BMiH+5f1PgE1ovYDh6qn34wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUU0ODdCNzJDNEYzOEVBNTQ4RjY3MjFCQjYwQjc3Mzcw NUJEOTUxNTAeFw0yNjA1MTkwNjM0MTJaFw0yNzA1MTgwNjM5MTJaMDMxMTAvBgNV BAMTKDRCODA2MkFDQTM1Mzg0QzNGMzAyQjlDRkY0NTZDRjJEMThCNTg2MDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9bzZOCmfqLXbHcEnEihp14nYS VsrZbzD7VdxCodCEZxfuVA+nB122Rx1rymMwkppl8Mvdox65RUywVgUlZz6MqkeY XfDHW+G8fuEvPRaNlKSiOxH1qNWIoslzw/9rAFMrkL9nXrhDVtMeftm5KWb5sI19 UXcRnE11kIU8Fyh1nWC++PH1sHNDHiiPgM3WBM/gyTgsVmY94ykRkBbNFY/TscV8 eGAmjxitud14mOLZxWakaitinElSs2jJDKVkAgNnWdaoqNYs0Xnw7kuSOXCC578G xdYgLxfw3i0g4GnfyHMVyx2PgVcouiYcnADvG26WCOePDTgqKs2wlSbqD6anAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUS4BirKNThMPzArnP9FbPLRi1hgAwHwYDVR0j BBgwFoAUrkh7csTzjqVI9nIbtgt3NwW9lRUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0Nzk0MzkzOS8wL0FFNDg3QjcyQzRGMzhFQTU0OEY2NzIxQkI2MEI3 NzM3MDVCRDk1MTUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQUU0ODdCNzJDNEYzOEVBNTQ4RjY3MjFCQjYwQjc3MzcwNUJEOTUxNS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc2MTk5OTQ3OTQzOTM5LzAvMzIzMTMxMmUzMTM0 MzcyZTMyMzAyZTMwMmYzMjMyMmQzMjMyMjAzZDNlMjAzNDM4MzAzOC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAtOTFDANBgkqhkiG9w0BAQsFAAOCAQEAZuZipNPLR9qogiKaltcmmklu4KTH qXprI7u0pAvBS9DWUVnrNX35DWzlrON9VJJpc758QHmyngAoLLThnz5iL0b225Tf DfdQQ4Zwpw/iFVX762Pi4Qyukr9GbLaCeauT1ktd0EoIGHWx+/ERbXhObgaLEgSZ crTM2Wu4qdoGEEFDJ2MItVArgNJ3pWKGEwpbtgYZ2HiBMQWaAQJSCmZ60u9TKVeQ prqSEJypJu6pXjFniu0JaKFC7Kx9Fg7fzCRkbd12DFFf+WIqeX3LPR5bv+im4aKV Sm1UhWWyJTc8aFxpKqj4VgzMsugwWwQBuI3vZG6IU5mmbsBbZF6kKb8+pg== -----END CERTIFICATE-----Generated at Fri Jun 12 02:24:12 2026 by rpki-client