$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3231382e3234392e3135382e302f32332d3233203d3e2034383038.roa File: 3231382e3234392e3135382e302f32332d3233203d3e2034383038.roa (raw, json) Hash identifier: 8d0IvZJK6U42kbcDb46ABy0D4hEvHnAh5VF79NouW9Y= Subject key identifier: D5:51:C6:CD:FB:1F:EA:41:71:F4:3E:08:74:73:6B:73:1F:0D:A1:B4 Certificate issuer: /CN=AE487B72C4F38EA548F6721BB60B773705BD9515 Certificate serial: 14C258F4E43975F6B0B5A5AF60E004AD2F2819B8 Authority key identifier: AE:48:7B:72:C4:F3:8E:A5:48:F6:72:1B:B6:0B:77:37:05:BD:95:15 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3231382e3234392e3135382e302f32332d3233203d3e2034383038.roa Signing time: Fri 05 Jun 2026 05:57:32 +0000 ROA not before: Fri 05 Jun 2026 05:52:32 +0000 ROA not after: Fri 04 Jun 2027 05:57:32 +0000 asID: 4808 IP address blocks: 218.249.158.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 19:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:c2:58:f4:e4:39:75:f6:b0:b5:a5:af:60:e0:04:ad:2f:28:19:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AE487B72C4F38EA548F6721BB60B773705BD9515 Validity Not Before: Jun 5 05:52:32 2026 GMT Not After : Jun 4 05:57:32 2027 GMT Subject: CN=D551C6CDFB1FEA4171F43E0874736B731F0DA1B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:e7:7e:43:94:c0:4a:40:8e:b2:4e:f4:17:0d: c9:f8:50:1c:8f:ed:47:7b:aa:b2:eb:c0:00:b9:b2: a3:7f:69:5e:d9:f9:75:b0:94:56:40:a5:d7:e3:45: 19:6d:26:27:46:29:86:ad:35:69:d9:27:ac:19:f9: 27:f8:fd:1e:75:11:0f:c8:49:5a:89:cf:a7:fd:13: 84:df:47:62:8d:10:bb:91:68:fd:a0:5b:27:bc:2a: 62:e7:25:78:65:3f:13:1c:7a:09:54:d9:ae:d0:85: 8e:95:55:5f:f6:6e:04:c6:f7:0c:ad:8d:b2:6e:9e: 54:12:3b:22:e7:27:4d:9a:00:e8:49:13:d0:16:68: 68:25:fd:0a:7f:53:58:4e:93:00:67:6a:5f:56:1c: ec:f3:78:ea:7c:d5:3d:65:ac:61:28:79:ce:cd:ae: f0:b0:3d:7b:92:a5:bf:c5:92:e7:1c:06:c6:0c:b7: b3:ad:45:94:83:74:f4:f7:14:82:cb:d5:7c:48:86: 5d:c1:88:99:7e:87:98:aa:af:7d:14:72:4a:72:c6: 85:b2:98:34:8e:1d:b8:73:c3:bd:3d:18:b4:59:dc: d9:36:78:80:18:c7:55:85:7f:b5:09:0d:52:04:b6: 84:20:18:bc:57:36:9a:b6:32:58:8c:26:ee:e7:4c: 32:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:51:C6:CD:FB:1F:EA:41:71:F4:3E:08:74:73:6B:73:1F:0D:A1:B4 X509v3 Authority Key Identifier: keyid:AE:48:7B:72:C4:F3:8E:A5:48:F6:72:1B:B6:0B:77:37:05:BD:95:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3231382e3234392e3135382e302f32332d3233203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 218.249.158.0/23 Signature Algorithm: sha256WithRSAEncryption 7a:0b:61:e3:5c:66:01:28:48:b5:cd:ce:74:ce:50:60:72:a4: 75:f8:48:43:3a:52:ac:6d:ab:85:7d:fc:a3:30:df:ac:c4:80: 52:ba:31:11:0e:f8:d6:fc:bf:8e:6c:8e:0c:a0:41:41:d8:53: bc:10:e1:cf:21:01:f7:a4:52:f7:59:14:50:ef:58:4b:f5:f4: 20:05:8d:08:df:a6:d3:d7:93:56:84:19:3d:37:f7:8d:66:31: 9e:79:01:9f:d3:04:7e:5a:72:8d:bb:df:6a:41:b2:a3:5b:1b: d0:58:0d:11:b8:98:92:92:2a:af:f7:61:f9:45:25:b5:b3:a0: 91:10:9b:49:8c:04:ae:e7:31:f7:10:a5:75:8e:e5:05:90:21: ee:50:0c:6f:da:ad:70:f3:67:46:ca:a0:1a:8a:b1:d7:09:c9: 31:10:47:e5:2e:eb:9d:0d:9a:81:4a:31:7e:96:cb:c8:9c:bd: da:43:6f:33:22:fc:6a:cf:8b:f5:c4:66:b5:9c:41:f7:b9:f0: 29:ef:f3:a6:9b:1a:41:05:44:ef:ba:5d:07:06:37:9e:03:78: 95:5d:e3:e2:04:ce:28:9f:3d:b2:b4:ab:15:c0:2a:33:9f:d8: 89:0d:f5:96:2e:39:f5:88:13:e5:97:e7:25:7e:6c:a0:96:7a: 21:73:f1:1b -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUFMJY9OQ5dfawtaWvYOAErS8oGbgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUU0ODdCNzJDNEYzOEVBNTQ4RjY3MjFCQjYwQjc3Mzcw NUJEOTUxNTAeFw0yNjA2MDUwNTUyMzJaFw0yNzA2MDQwNTU3MzJaMDMxMTAvBgNV BAMTKEQ1NTFDNkNERkIxRkVBNDE3MUY0M0UwODc0NzM2QjczMUYwREExQjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH535DlMBKQI6yTvQXDcn4UByP 7Ud7qrLrwAC5sqN/aV7Z+XWwlFZApdfjRRltJidGKYatNWnZJ6wZ+Sf4/R51EQ/I SVqJz6f9E4TfR2KNELuRaP2gWye8KmLnJXhlPxMceglU2a7QhY6VVV/2bgTG9wyt jbJunlQSOyLnJ02aAOhJE9AWaGgl/Qp/U1hOkwBnal9WHOzzeOp81T1lrGEoec7N rvCwPXuSpb/FkuccBsYMt7OtRZSDdPT3FILL1XxIhl3BiJl+h5iqr30UckpyxoWy mDSOHbhzw709GLRZ3Nk2eIAYx1WFf7UJDVIEtoQgGLxXNpq2MliMJu7nTDKrAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQU1VHGzfsf6kFx9D4IdHNrcx8NobQwHwYDVR0j BBgwFoAUrkh7csTzjqVI9nIbtgt3NwW9lRUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0Nzk0MzkzOS8wL0FFNDg3QjcyQzRGMzhFQTU0OEY2NzIxQkI2MEI3 NzM3MDVCRDk1MTUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQUU0ODdCNzJDNEYzOEVBNTQ4RjY3MjFCQjYwQjc3MzcwNUJEOTUxNS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3NjE5OTk0Nzk0MzkzOS8wLzMyMzEzODJlMzIz NDM5MmUzMTM1MzgyZTMwMmYzMjMzMmQzMjMzMjAzZDNlMjAzNDM4MzAzOC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAdr5njANBgkqhkiG9w0BAQsFAAOCAQEAegth41xmAShItc3OdM5QYHKk dfhIQzpSrG2rhX38ozDfrMSAUroxEQ741vy/jmyODKBBQdhTvBDhzyEB96RS91kU UO9YS/X0IAWNCN+m09eTVoQZPTf3jWYxnnkBn9MEflpyjbvfakGyo1sb0FgNEbiY kpIqr/dh+UUltbOgkRCbSYwErucx9xCldY7lBZAh7lAMb9qtcPNnRsqgGoqx1wnJ MRBH5S7rnQ2agUoxfpbLyJy92kNvMyL8as+L9cRmtZxB97nwKe/zppsaQQVE77pd BwY3ngN4lV3j4gTOKJ89srSrFcAqM5/YiQ31li459YgT5ZfnJX5soJZ6IXPxGw== -----END CERTIFICATE-----Generated at Fri Jun 12 02:32:11 2026 by rpki-client