$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065577241947209729/0/3132302e34352e31362e302f32302d3230203d3e2034383437.roa File: 3132302e34352e31362e302f32302d3230203d3e2034383437.roa (raw, json) Hash identifier: pENPyRwR5FgW8TAFYLA0VsTYLJbIA2CC0QPztE0hXLw= Subject key identifier: 68:2B:CA:5C:D9:63:DF:B4:49:0F:E9:06:06:EF:E3:8E:B8:FB:49:6B Certificate issuer: /CN=6B57EAD7B38319269AE93A3E26FB3967D141F5D5 Certificate serial: 1EC0FFEB2A59A35F75138794A4B5D76D6E428133 Authority key identifier: 6B:57:EA:D7:B3:83:19:26:9A:E9:3A:3E:26:FB:39:67:D1:41:F5:D5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6B57EAD7B38319269AE93A3E26FB3967D141F5D5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065577241947209729/0/3132302e34352e31362e302f32302d3230203d3e2034383437.roa Signing time: Fri 05 Jun 2026 06:23:49 +0000 ROA not before: Fri 05 Jun 2026 06:18:49 +0000 ROA not after: Fri 04 Jun 2027 06:23:49 +0000 asID: 4847 IP address blocks: 120.45.16.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065577241947209729/0/6B57EAD7B38319269AE93A3E26FB3967D141F5D5.crl rsync://rpki-rps.cnnic.cn/repo/A1065577241947209729/0/6B57EAD7B38319269AE93A3E26FB3967D141F5D5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6B57EAD7B38319269AE93A3E26FB3967D141F5D5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 12:15:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:c0:ff:eb:2a:59:a3:5f:75:13:87:94:a4:b5:d7:6d:6e:42:81:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B57EAD7B38319269AE93A3E26FB3967D141F5D5 Validity Not Before: Jun 5 06:18:49 2026 GMT Not After : Jun 4 06:23:49 2027 GMT Subject: CN=682BCA5CD963DFB4490FE90606EFE38EB8FB496B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:ab:32:bc:5d:41:5d:07:46:d5:5e:2f:68:ff: 3d:17:58:86:b2:19:78:77:0f:de:60:75:d2:3e:da: 77:49:52:35:37:07:6b:76:70:7e:9d:6a:fc:9f:2f: da:b9:25:d3:0f:5f:ce:29:07:79:2e:bb:8f:9d:6d: a7:12:96:e8:30:76:3b:08:c7:54:db:6d:68:a1:2f: 81:40:41:bb:04:81:2a:84:92:e6:24:41:d5:3b:44: 50:eb:86:6d:82:26:25:5e:82:32:98:d4:14:96:e7: f3:cc:ad:67:4e:26:3b:4d:00:f5:7a:f1:f2:59:8b: 0a:0d:ea:a2:f9:c9:a8:3d:5c:2b:0e:26:e8:f6:86: 69:70:d2:d5:48:85:e6:de:96:30:29:e4:93:13:e3: 92:7d:54:d7:a3:61:78:ad:7e:a6:bb:61:ef:60:1c: bd:94:d0:89:ab:c1:f3:ea:a6:71:f8:50:5c:7d:cb: ce:8e:80:2b:4c:76:77:c1:fb:a7:13:27:c3:b1:26: 9a:c1:c2:95:60:08:c9:8a:e4:57:10:59:e1:d8:2d: ff:9f:96:d6:43:a7:b9:28:56:44:3b:97:3b:f2:99: 6c:09:42:3d:db:70:72:1c:4a:5a:c6:b8:0f:60:4b: 7a:62:77:c6:fa:fb:43:3b:dd:d6:46:e4:d5:6c:da: b2:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:2B:CA:5C:D9:63:DF:B4:49:0F:E9:06:06:EF:E3:8E:B8:FB:49:6B X509v3 Authority Key Identifier: keyid:6B:57:EA:D7:B3:83:19:26:9A:E9:3A:3E:26:FB:39:67:D1:41:F5:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947209729/0/6B57EAD7B38319269AE93A3E26FB3967D141F5D5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6B57EAD7B38319269AE93A3E26FB3967D141F5D5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947209729/0/3132302e34352e31362e302f32302d3230203d3e2034383437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 120.45.16.0/20 Signature Algorithm: sha256WithRSAEncryption 68:db:ac:14:f8:37:70:af:44:e3:01:54:82:c0:37:26:5f:76: f3:d1:46:61:3d:e6:e3:99:cd:e2:6f:95:f2:12:54:c5:72:7e: bd:84:1a:1f:0c:de:d9:b8:14:e4:c0:f5:ef:95:f3:14:36:9c: 4e:e6:38:95:04:bc:f8:f3:f3:3f:76:32:1b:28:95:ed:4a:a8: 70:81:dc:19:2d:3a:8f:85:e0:f8:4a:9f:ae:7f:7a:bd:cb:c7: cf:3e:7b:44:31:29:df:ae:49:fc:65:39:21:72:9f:f1:0c:2a: 0e:80:00:34:4e:ab:60:e1:85:e0:2a:2a:3d:6a:2e:f5:db:e7: 91:9a:02:3f:30:10:39:3f:0c:a5:dc:80:50:1f:98:69:fe:f4: 54:3c:c1:e7:7d:b1:ec:00:64:d2:88:75:e0:2b:fe:39:f0:6d: 3b:b8:44:3f:24:ce:9f:5b:1c:7e:59:63:62:d7:c9:74:70:75: c9:f9:3d:1f:89:c7:ea:59:88:be:43:18:8b:bd:08:9b:08:19: 35:f2:02:dd:46:85:6b:14:5e:f1:ea:f7:73:b2:42:3f:46:06: a8:a3:2e:80:49:4d:e9:de:69:42:86:cf:cc:bb:3d:09:21:bb: 7f:5c:48:00:ae:4e:f8:b7:26:20:91:23:39:2c:59:89:d2:0a: 8b:a3:7b:47 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUHsD/6ypZo191E4eUpLXXbW5CgTMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkI1N0VBRDdCMzgzMTkyNjlBRTkzQTNFMjZGQjM5NjdE MTQxRjVENTAeFw0yNjA2MDUwNjE4NDlaFw0yNzA2MDQwNjIzNDlaMDMxMTAvBgNV BAMTKDY4MkJDQTVDRDk2M0RGQjQ0OTBGRTkwNjA2RUZFMzhFQjhGQjQ5NkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMqzK8XUFdB0bVXi9o/z0XWIay GXh3D95gddI+2ndJUjU3B2t2cH6davyfL9q5JdMPX84pB3kuu4+dbacSlugwdjsI x1TbbWihL4FAQbsEgSqEkuYkQdU7RFDrhm2CJiVegjKY1BSW5/PMrWdOJjtNAPV6 8fJZiwoN6qL5yag9XCsOJuj2hmlw0tVIhebeljAp5JMT45J9VNejYXitfqa7Ye9g HL2U0ImrwfPqpnH4UFx9y86OgCtMdnfB+6cTJ8OxJprBwpVgCMmK5FcQWeHYLf+f ltZDp7koVkQ7lzvymWwJQj3bcHIcSlrGuA9gS3pid8b6+0M73dZG5NVs2rKdAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUaCvKXNlj37RJD+kGBu/jjrj7SWswHwYDVR0j BBgwFoAUa1fq17ODGSaa6To+Jvs5Z9FB9dUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NzI0MTk0NzIwOTcyOS8wLzZCNTdFQUQ3QjM4MzE5MjY5QUU5M0EzRTI2RkIz OTY3RDE0MUY1RDUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNkI1N0VBRDdCMzgzMTkyNjlBRTkzQTNFMjZGQjM5NjdEMTQxRjVENS5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc3MjQxOTQ3MjA5NzI5LzAvMzEzMjMwMmUzNDM1 MmUzMTM2MmUzMDJmMzIzMDJkMzIzMDIwM2QzZTIwMzQzODM0Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAR4LRAwDQYJKoZIhvcNAQELBQADggEBAGjbrBT4N3CvROMBVILANyZfdvPRRmE9 5uOZzeJvlfISVMVyfr2EGh8M3tm4FOTA9e+V8xQ2nE7mOJUEvPjz8z92Mhsole1K qHCB3BktOo+F4PhKn65/er3Lx88+e0QxKd+uSfxlOSFyn/EMKg6AADROq2DhheAq Kj1qLvXb55GaAj8wEDk/DKXcgFAfmGn+9FQ8wed9sewAZNKIdeAr/jnwbTu4RD8k zp9bHH5ZY2LXyXRwdcn5PR+Jx+pZiL5DGIu9CJsIGTXyAt1GhWsUXvHq93OyQj9G BqijLoBJTeneaUKGz8y7PQkhu39cSACuTvi3JiCRIzksWYnSCouje0c= -----END CERTIFICATE-----Generated at Fri Jun 12 02:23:40 2026 by rpki-client