$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065577241947209729/0/3132302e34352e3133322e302f32342d3234203d3e2034383437.roa File: 3132302e34352e3133322e302f32342d3234203d3e2034383437.roa (raw, json) Hash identifier: sgln4bvujeAJGk9qSojSf2+kHtf/yPh2ccK5KhWbevc= Subject key identifier: 57:4C:DF:F0:7E:37:7A:A2:F2:07:25:D5:41:51:E5:82:78:AA:FA:C0 Certificate issuer: /CN=6B57EAD7B38319269AE93A3E26FB3967D141F5D5 Certificate serial: 43019271E224470BB85007462A59FAA503ECD758 Authority key identifier: 6B:57:EA:D7:B3:83:19:26:9A:E9:3A:3E:26:FB:39:67:D1:41:F5:D5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6B57EAD7B38319269AE93A3E26FB3967D141F5D5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065577241947209729/0/3132302e34352e3133322e302f32342d3234203d3e2034383437.roa Signing time: Fri 05 Jun 2026 06:18:49 +0000 ROA not before: Fri 05 Jun 2026 06:13:49 +0000 ROA not after: Fri 04 Jun 2027 06:18:49 +0000 asID: 4847 IP address blocks: 120.45.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065577241947209729/0/6B57EAD7B38319269AE93A3E26FB3967D141F5D5.crl rsync://rpki-rps.cnnic.cn/repo/A1065577241947209729/0/6B57EAD7B38319269AE93A3E26FB3967D141F5D5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6B57EAD7B38319269AE93A3E26FB3967D141F5D5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 12:15:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:01:92:71:e2:24:47:0b:b8:50:07:46:2a:59:fa:a5:03:ec:d7:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B57EAD7B38319269AE93A3E26FB3967D141F5D5 Validity Not Before: Jun 5 06:13:49 2026 GMT Not After : Jun 4 06:18:49 2027 GMT Subject: CN=574CDFF07E377AA2F20725D54151E58278AAFAC0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:60:49:70:2d:36:76:89:0d:2d:11:62:f6:a4: a2:d8:32:9d:c6:f7:c2:49:99:e7:96:c4:d7:a3:92: 8e:c5:57:61:ed:09:6a:12:c8:8d:30:eb:38:bb:fa: 88:c2:79:c7:89:77:ec:05:6b:c8:b6:ec:dc:77:6b: 60:c7:02:05:a5:21:41:ad:4d:77:3d:24:86:9f:a7: 5e:ef:2d:0f:a5:f0:f4:74:da:1f:99:50:19:51:c3: 2f:d3:13:6a:16:93:52:e5:5d:b2:f0:c7:dc:78:4b: ca:b2:27:c7:86:75:e4:97:94:32:50:d5:ad:cf:a2: 7a:c5:45:d8:11:72:32:1b:92:ee:0a:66:01:8b:38: c4:97:79:15:bf:b0:f6:61:db:3d:20:f7:b4:ac:5f: 45:27:35:34:83:a6:3d:e7:3f:d8:f7:81:94:8c:ec: c1:e2:6a:01:5c:4c:0e:f6:7b:38:ef:ab:69:54:f7: 02:e2:28:09:d9:1d:82:e6:ab:0a:e9:f0:21:ee:a9: 5d:40:f5:25:48:b1:36:29:82:ae:5e:49:da:e0:cf: 0d:7b:2e:85:3c:88:f8:06:08:9b:d6:ed:b0:93:75: 0b:1b:a9:59:7c:d4:23:49:f8:f3:d6:47:14:62:a2: 61:de:41:a2:4d:93:80:59:fb:1b:ac:25:9a:c9:5d: 42:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:4C:DF:F0:7E:37:7A:A2:F2:07:25:D5:41:51:E5:82:78:AA:FA:C0 X509v3 Authority Key Identifier: keyid:6B:57:EA:D7:B3:83:19:26:9A:E9:3A:3E:26:FB:39:67:D1:41:F5:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947209729/0/6B57EAD7B38319269AE93A3E26FB3967D141F5D5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6B57EAD7B38319269AE93A3E26FB3967D141F5D5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947209729/0/3132302e34352e3133322e302f32342d3234203d3e2034383437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 120.45.132.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:97:90:6b:9d:90:6e:4c:9a:38:7d:bb:3c:46:ef:1d:6e:2e: fe:c9:4e:04:df:f7:e9:2c:2d:12:f3:71:e0:44:ce:65:3f:8b: 81:33:ae:fa:e5:22:06:e2:61:17:70:18:35:f6:fe:53:57:28: 08:e3:5f:b5:05:01:0d:d9:a7:2c:d0:96:34:e2:84:3f:9b:32: 04:03:88:28:37:9f:0c:46:0b:d3:a4:1a:62:ea:e3:3c:df:7d: b0:da:ee:b3:8e:22:54:40:a0:31:f5:3e:db:8e:8a:69:67:26: ff:c6:ce:5d:85:40:33:6d:75:82:56:62:2c:45:88:74:f9:3b: 71:c3:9d:91:ed:15:71:ed:7e:16:6a:60:cd:14:9b:c4:c2:9b: 5f:7a:24:d1:c0:18:fb:98:89:9d:08:70:8d:b7:17:1d:4f:5b: 2b:c1:c0:3d:5d:88:82:e4:64:62:07:64:f6:bb:4f:84:99:4b: 61:8b:61:7c:d4:70:b0:42:32:26:a7:c8:c2:35:c3:35:33:fa: b3:05:74:6a:26:0c:21:50:74:4e:3c:27:a2:66:57:a4:34:0c: 00:a1:db:b1:62:44:a2:46:03:fc:38:6a:2c:99:cc:4a:d5:b9: 93:e2:4a:6c:79:2d:58:72:b7:d3:87:5a:97:4f:29:1a:a4:bd: 75:eb:00:7b -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUQwGSceIkRwu4UAdGKln6pQPs11gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkI1N0VBRDdCMzgzMTkyNjlBRTkzQTNFMjZGQjM5NjdE MTQxRjVENTAeFw0yNjA2MDUwNjEzNDlaFw0yNzA2MDQwNjE4NDlaMDMxMTAvBgNV BAMTKDU3NENERkYwN0UzNzdBQTJGMjA3MjVENTQxNTFFNTgyNzhBQUZBQzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuYElwLTZ2iQ0tEWL2pKLYMp3G 98JJmeeWxNejko7FV2HtCWoSyI0w6zi7+ojCeceJd+wFa8i27Nx3a2DHAgWlIUGt TXc9JIafp17vLQ+l8PR02h+ZUBlRwy/TE2oWk1LlXbLwx9x4S8qyJ8eGdeSXlDJQ 1a3PonrFRdgRcjIbku4KZgGLOMSXeRW/sPZh2z0g97SsX0UnNTSDpj3nP9j3gZSM 7MHiagFcTA72ezjvq2lU9wLiKAnZHYLmqwrp8CHuqV1A9SVIsTYpgq5eSdrgzw17 LoU8iPgGCJvW7bCTdQsbqVl81CNJ+PPWRxRiomHeQaJNk4BZ+xusJZrJXUIPAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUV0zf8H43eqLyByXVQVHlgniq+sAwHwYDVR0j BBgwFoAUa1fq17ODGSaa6To+Jvs5Z9FB9dUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NzI0MTk0NzIwOTcyOS8wLzZCNTdFQUQ3QjM4MzE5MjY5QUU5M0EzRTI2RkIz OTY3RDE0MUY1RDUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNkI1N0VBRDdCMzgzMTkyNjlBRTkzQTNFMjZGQjM5NjdEMTQxRjVENS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc3MjQxOTQ3MjA5NzI5LzAvMzEzMjMwMmUzNDM1 MmUzMTMzMzIyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNDM4MzQzNy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAHgthDANBgkqhkiG9w0BAQsFAAOCAQEALJeQa52QbkyaOH27PEbvHW4u/slO BN/36SwtEvNx4ETOZT+LgTOu+uUiBuJhF3AYNfb+U1coCONftQUBDdmnLNCWNOKE P5syBAOIKDefDEYL06QaYurjPN99sNrus44iVECgMfU+246KaWcm/8bOXYVAM211 glZiLEWIdPk7ccOdke0Vce1+FmpgzRSbxMKbX3ok0cAY+5iJnQhwjbcXHU9bK8HA PV2IguRkYgdk9rtPhJlLYYthfNRwsEIyJqfIwjXDNTP6swV0aiYMIVB0TjwnomZX pDQMAKHbsWJEokYD/DhqLJnMStW5k+JKbHktWHK304dal08pGqS9desAew== -----END CERTIFICATE-----Generated at Fri Jun 12 02:23:50 2026 by rpki-client