$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3231392e3233392e302e302f31382d3138203d3e2034383038.roa File: 3231392e3233392e302e302f31382d3138203d3e2034383038.roa (raw, json) Hash identifier: iYsYj6JfAM/eZwpqICX0f7MKrBb8OAGa8/iOqm5tToM= Subject key identifier: 87:04:19:42:38:9F:A2:C1:1F:58:92:DF:3B:78:81:0D:A1:24:0A:14 Certificate issuer: /CN=AE487B72C4F38EA548F6721BB60B773705BD9515 Certificate serial: 6D34D4AACD3E8934AB2E81184A1CF91156B3D871 Authority key identifier: AE:48:7B:72:C4:F3:8E:A5:48:F6:72:1B:B6:0B:77:37:05:BD:95:15 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3231392e3233392e302e302f31382d3138203d3e2034383038.roa Signing time: Fri 05 Jun 2026 05:58:00 +0000 ROA not before: Fri 05 Jun 2026 05:53:00 +0000 ROA not after: Fri 04 Jun 2027 05:58:00 +0000 asID: 4808 IP address blocks: 219.239.0.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 19:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:34:d4:aa:cd:3e:89:34:ab:2e:81:18:4a:1c:f9:11:56:b3:d8:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AE487B72C4F38EA548F6721BB60B773705BD9515 Validity Not Before: Jun 5 05:53:00 2026 GMT Not After : Jun 4 05:58:00 2027 GMT Subject: CN=87041942389FA2C11F5892DF3B78810DA1240A14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:e2:8e:38:f2:6e:c8:62:4e:50:2c:34:7b:b9: a5:61:b6:2c:a2:95:af:c1:82:d8:d4:af:c3:b8:27: 62:95:24:03:0f:3a:7b:27:5e:3e:dd:b0:a1:1f:b4: c7:20:3d:75:8b:82:5e:a3:4a:99:b8:20:dc:70:e2: f1:44:15:b8:b2:8d:03:23:06:69:d1:83:a6:e5:da: 8d:74:9c:ee:c8:83:e9:64:15:7e:c1:ba:87:34:a7: 88:cd:e2:cf:92:41:7d:c5:a1:f5:23:d2:9f:96:7b: da:96:ed:3c:3e:24:ca:e4:24:f4:d3:de:58:84:7b: 20:9e:ba:14:2d:a5:11:ec:de:03:df:17:8c:87:13: 2f:b8:77:f4:63:33:6e:a3:b4:cc:47:60:c0:97:1e: 1a:a8:ec:02:6c:b0:73:8c:75:8b:74:b3:31:44:4b: ed:1c:0f:c5:eb:5e:74:c4:17:9a:35:d3:78:21:9e: ba:e8:87:53:8f:5e:31:f8:ca:af:ff:dc:33:1f:94: a2:ba:4d:46:2b:5d:5e:34:50:d9:01:12:e2:65:29: 0a:27:f4:16:6a:dd:ee:54:4d:14:43:1c:d5:78:81: 7c:3c:36:53:be:37:5b:f8:34:0e:9f:7f:96:93:cc: c9:c8:00:02:db:73:c7:96:bc:f9:f9:68:eb:22:7b: eb:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:04:19:42:38:9F:A2:C1:1F:58:92:DF:3B:78:81:0D:A1:24:0A:14 X509v3 Authority Key Identifier: keyid:AE:48:7B:72:C4:F3:8E:A5:48:F6:72:1B:B6:0B:77:37:05:BD:95:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3231392e3233392e302e302f31382d3138203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 219.239.0.0/18 Signature Algorithm: sha256WithRSAEncryption b1:b0:87:04:2b:0c:7c:85:26:a0:37:91:9f:58:ff:05:a4:d9: 16:6d:cc:17:b3:07:e7:53:60:fd:bb:78:3b:49:ee:69:82:75: c2:80:fb:0d:e4:ff:b4:3c:6f:f5:45:05:06:0e:27:f8:e0:7b: 1d:e5:de:1b:20:41:64:59:c0:7d:3a:3e:03:18:b8:f9:26:94: d4:92:6d:70:20:47:c2:a0:65:50:b1:d4:29:24:99:18:0a:b3: cb:e1:fe:09:8a:d2:64:ad:b2:95:bf:48:15:9d:8e:2e:64:b1: a4:c8:1b:e9:6e:d8:cd:0a:6d:ee:48:72:82:61:f6:6f:bd:77: 55:63:dc:84:2b:09:ea:20:81:32:20:02:c0:0f:c9:e5:f4:af: 46:b4:00:b5:cd:39:60:f8:d8:b7:66:52:68:c7:14:f4:84:33: 43:21:95:46:8c:d0:59:3e:5c:48:3b:b9:4c:98:88:67:a7:05: 5d:ce:ad:be:d5:e7:93:9b:47:d1:9e:c5:b0:e3:7b:1d:92:f4: b2:62:5f:5d:5e:14:7f:55:54:ec:de:75:9d:89:66:e3:04:c9: 14:72:17:94:8e:e0:92:b4:5f:8d:77:c3:54:08:40:77:cb:04: ba:eb:60:46:bf:39:5d:94:94:f0:7a:9e:c1:5c:a0:aa:6a:34: 5c:78:1b:ee -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUbTTUqs0+iTSrLoEYShz5EVaz2HEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUU0ODdCNzJDNEYzOEVBNTQ4RjY3MjFCQjYwQjc3Mzcw NUJEOTUxNTAeFw0yNjA2MDUwNTUzMDBaFw0yNzA2MDQwNTU4MDBaMDMxMTAvBgNV BAMTKDg3MDQxOTQyMzg5RkEyQzExRjU4OTJERjNCNzg4MTBEQTEyNDBBMTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+4o448m7IYk5QLDR7uaVhtiyi la/BgtjUr8O4J2KVJAMPOnsnXj7dsKEftMcgPXWLgl6jSpm4INxw4vFEFbiyjQMj BmnRg6bl2o10nO7Ig+lkFX7Buoc0p4jN4s+SQX3FofUj0p+We9qW7Tw+JMrkJPTT 3liEeyCeuhQtpRHs3gPfF4yHEy+4d/RjM26jtMxHYMCXHhqo7AJssHOMdYt0szFE S+0cD8XrXnTEF5o103ghnrroh1OPXjH4yq//3DMflKK6TUYrXV40UNkBEuJlKQon 9BZq3e5UTRRDHNV4gXw8NlO+N1v4NA6ff5aTzMnIAALbc8eWvPn5aOsie+tlAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUhwQZQjifosEfWJLfO3iBDaEkChQwHwYDVR0j BBgwFoAUrkh7csTzjqVI9nIbtgt3NwW9lRUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0Nzk0MzkzOS8wL0FFNDg3QjcyQzRGMzhFQTU0OEY2NzIxQkI2MEI3 NzM3MDVCRDk1MTUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQUU0ODdCNzJDNEYzOEVBNTQ4RjY3MjFCQjYwQjc3MzcwNUJEOTUxNS5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc2MTk5OTQ3OTQzOTM5LzAvMzIzMTM5MmUzMjMz MzkyZTMwMmUzMDJmMzEzODJkMzEzODIwM2QzZTIwMzQzODMwMzgucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAbb7wAwDQYJKoZIhvcNAQELBQADggEBALGwhwQrDHyFJqA3kZ9Y/wWk2RZtzBez B+dTYP27eDtJ7mmCdcKA+w3k/7Q8b/VFBQYOJ/jgex3l3hsgQWRZwH06PgMYuPkm lNSSbXAgR8KgZVCx1CkkmRgKs8vh/gmK0mStspW/SBWdji5ksaTIG+lu2M0Kbe5I coJh9m+9d1Vj3IQrCeoggTIgAsAPyeX0r0a0ALXNOWD42LdmUmjHFPSEM0MhlUaM 0Fk+XEg7uUyYiGenBV3Orb7V55ObR9GexbDjex2S9LJiX11eFH9VVOzedZ2JZuME yRRyF5SO4JK0X413w1QIQHfLBLrrYEa/OV2UlPB6nsFcoKpqNFx4G+4= -----END CERTIFICATE-----Generated at Fri Jun 12 02:23:46 2026 by rpki-client