$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3231382e3234392e3135372e302f32342d3234203d3e2034383038.roa File: 3231382e3234392e3135372e302f32342d3234203d3e2034383038.roa (raw, json) Hash identifier: eFPnWG+Xx/ax4xvNuFzA6EGOOmbFG9CzjZ3mBnonIM0= Subject key identifier: 89:D9:BD:88:0F:18:E7:8B:C7:5D:5B:70:DD:46:E0:06:9F:F5:90:87 Certificate issuer: /CN=AE487B72C4F38EA548F6721BB60B773705BD9515 Certificate serial: 0988C831E251172796D60A47830562B22AC6E17E Authority key identifier: AE:48:7B:72:C4:F3:8E:A5:48:F6:72:1B:B6:0B:77:37:05:BD:95:15 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3231382e3234392e3135372e302f32342d3234203d3e2034383038.roa Signing time: Fri 05 Jun 2026 05:57:32 +0000 ROA not before: Fri 05 Jun 2026 05:52:32 +0000 ROA not after: Fri 04 Jun 2027 05:57:32 +0000 asID: 4808 IP address blocks: 218.249.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 19:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:88:c8:31:e2:51:17:27:96:d6:0a:47:83:05:62:b2:2a:c6:e1:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AE487B72C4F38EA548F6721BB60B773705BD9515 Validity Not Before: Jun 5 05:52:32 2026 GMT Not After : Jun 4 05:57:32 2027 GMT Subject: CN=89D9BD880F18E78BC75D5B70DD46E0069FF59087 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:52:36:32:ef:ab:5f:5b:ea:33:e6:5d:78:ca: 27:0b:20:f1:11:d5:e2:3c:cf:47:a5:f0:b8:94:86: a0:f3:c9:b2:0c:54:45:33:5c:b7:3d:d6:3d:7c:c4: 93:7c:6b:d4:db:82:0d:bc:1d:ce:32:02:01:b5:ec: 14:e2:a4:1c:8a:c8:94:5c:e2:a1:43:13:48:b3:3a: fb:16:18:3c:4c:31:36:83:75:34:00:f1:21:8f:9b: 9c:8b:eb:b7:33:0e:b4:e8:c6:eb:c9:20:43:e1:92: 60:7f:6a:45:af:49:30:bb:00:ea:f6:a5:5a:d0:74: e7:b8:fa:a1:14:aa:ee:11:3c:b6:a6:82:e4:dd:bb: 02:ce:fd:74:1a:fe:2a:16:03:2f:17:c7:d0:58:dc: 0b:46:3b:2a:46:c9:6f:53:98:9f:62:e2:99:95:3b: ec:a1:d6:04:ea:1b:c8:53:86:1e:b2:fc:72:76:50: 54:1e:59:34:92:82:62:a2:80:45:84:c8:93:99:1c: 92:e9:27:b6:e1:61:55:3e:6f:93:70:a3:69:2f:5b: 98:ea:c3:f0:a3:0e:c1:2d:68:ae:5d:b7:94:80:d9: d6:8a:54:1b:4e:a4:15:2b:f7:06:54:bf:f5:40:56: 41:c5:9b:5d:92:d4:1d:e0:06:aa:b5:30:7b:e0:8b: b8:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:D9:BD:88:0F:18:E7:8B:C7:5D:5B:70:DD:46:E0:06:9F:F5:90:87 X509v3 Authority Key Identifier: keyid:AE:48:7B:72:C4:F3:8E:A5:48:F6:72:1B:B6:0B:77:37:05:BD:95:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3231382e3234392e3135372e302f32342d3234203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 218.249.157.0/24 Signature Algorithm: sha256WithRSAEncryption 83:a3:93:0f:a9:81:63:64:93:15:40:0b:f6:cd:a1:0a:2d:4c: 3a:2c:67:4f:63:11:e8:2f:d2:50:7f:26:f3:91:d2:bb:ad:98: 99:4d:2d:2f:a8:fa:d3:ae:8f:86:96:32:be:94:69:08:36:69: be:21:ea:39:bb:15:38:30:e0:a5:53:92:95:f9:64:97:50:d2: f3:fd:aa:54:4d:b1:71:83:bf:b1:9e:7b:7c:96:3f:de:de:7a: 7e:c4:34:bf:d8:dd:1b:6c:4a:44:ac:72:3c:41:6b:20:c0:13: e1:2a:31:ff:5d:57:16:10:a8:f6:9c:e3:bf:2a:34:08:29:28: 00:5f:2d:f3:08:01:92:38:21:76:ed:63:d4:67:9f:e9:5b:d0: 15:f3:ef:fe:7d:a4:db:b7:19:25:8f:29:e4:fd:ce:a2:2d:a7: 99:22:0e:1e:48:80:99:90:f4:c2:59:fc:c0:eb:b1:3f:5b:70: ba:cb:18:02:38:ed:6d:2f:b1:36:dd:24:f3:4f:59:e7:ba:a6: b7:26:d2:f3:ec:48:7a:76:1e:6a:15:5a:3a:cc:88:40:56:a6: 9f:a7:bd:69:63:70:84:1f:05:02:cf:b3:a3:91:05:c1:d2:44: 00:dc:2d:fc:13:21:63:95:7f:99:34:46:fd:b9:8a:0e:38:d9: 00:bf:0e:9b -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUCYjIMeJRFyeW1gpHgwVisirG4X4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUU0ODdCNzJDNEYzOEVBNTQ4RjY3MjFCQjYwQjc3Mzcw NUJEOTUxNTAeFw0yNjA2MDUwNTUyMzJaFw0yNzA2MDQwNTU3MzJaMDMxMTAvBgNV BAMTKDg5RDlCRDg4MEYxOEU3OEJDNzVENUI3MERENDZFMDA2OUZGNTkwODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaUjYy76tfW+oz5l14yicLIPER 1eI8z0el8LiUhqDzybIMVEUzXLc91j18xJN8a9Tbgg28Hc4yAgG17BTipByKyJRc 4qFDE0izOvsWGDxMMTaDdTQA8SGPm5yL67czDrToxuvJIEPhkmB/akWvSTC7AOr2 pVrQdOe4+qEUqu4RPLamguTduwLO/XQa/ioWAy8Xx9BY3AtGOypGyW9TmJ9i4pmV O+yh1gTqG8hThh6y/HJ2UFQeWTSSgmKigEWEyJOZHJLpJ7bhYVU+b5Nwo2kvW5jq w/CjDsEtaK5dt5SA2daKVBtOpBUr9wZUv/VAVkHFm12S1B3gBqq1MHvgi7jfAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUidm9iA8Y54vHXVtw3UbgBp/1kIcwHwYDVR0j BBgwFoAUrkh7csTzjqVI9nIbtgt3NwW9lRUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0Nzk0MzkzOS8wL0FFNDg3QjcyQzRGMzhFQTU0OEY2NzIxQkI2MEI3 NzM3MDVCRDk1MTUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQUU0ODdCNzJDNEYzOEVBNTQ4RjY3MjFCQjYwQjc3MzcwNUJEOTUxNS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3NjE5OTk0Nzk0MzkzOS8wLzMyMzEzODJlMzIz NDM5MmUzMTM1MzcyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNDM4MzAzOC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEANr5nTANBgkqhkiG9w0BAQsFAAOCAQEAg6OTD6mBY2STFUAL9s2hCi1M OixnT2MR6C/SUH8m85HSu62YmU0tL6j6066PhpYyvpRpCDZpviHqObsVODDgpVOS lflkl1DS8/2qVE2xcYO/sZ57fJY/3t56fsQ0v9jdG2xKRKxyPEFrIMAT4Sox/11X FhCo9pzjvyo0CCkoAF8t8wgBkjghdu1j1Gef6VvQFfPv/n2k27cZJY8p5P3Ooi2n mSIOHkiAmZD0wln8wOuxP1twussYAjjtbS+xNt0k809Z57qmtybS8+xIenYeahVa OsyIQFamn6e9aWNwhB8FAs+zo5EFwdJEANwt/BMhY5V/mTRG/bmKDjjZAL8Omw== -----END CERTIFICATE-----Generated at Fri Jun 12 02:32:08 2026 by rpki-client