$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065577241947209729/0/3132302e34372e3232342e302f32342d3234203d3e2034383437.roa File: 3132302e34372e3232342e302f32342d3234203d3e2034383437.roa (raw, json) Hash identifier: 5Pp5I3giCjJcpXeOFbdgBDd805WoylpKdkkxqwi6cC8= Subject key identifier: D1:C9:16:B2:F2:FF:6B:E8:B8:2C:91:BE:21:3A:E6:3A:0E:41:FF:D8 Certificate issuer: /CN=6B57EAD7B38319269AE93A3E26FB3967D141F5D5 Certificate serial: 60EE63AEE52F7B8F231A2B069A0FCA22A0F6CFA1 Authority key identifier: 6B:57:EA:D7:B3:83:19:26:9A:E9:3A:3E:26:FB:39:67:D1:41:F5:D5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6B57EAD7B38319269AE93A3E26FB3967D141F5D5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065577241947209729/0/3132302e34372e3232342e302f32342d3234203d3e2034383437.roa Signing time: Fri 05 Jun 2026 06:18:48 +0000 ROA not before: Fri 05 Jun 2026 06:13:48 +0000 ROA not after: Fri 04 Jun 2027 06:18:48 +0000 asID: 4847 IP address blocks: 120.47.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065577241947209729/0/6B57EAD7B38319269AE93A3E26FB3967D141F5D5.crl rsync://rpki-rps.cnnic.cn/repo/A1065577241947209729/0/6B57EAD7B38319269AE93A3E26FB3967D141F5D5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6B57EAD7B38319269AE93A3E26FB3967D141F5D5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 12:15:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:ee:63:ae:e5:2f:7b:8f:23:1a:2b:06:9a:0f:ca:22:a0:f6:cf:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B57EAD7B38319269AE93A3E26FB3967D141F5D5 Validity Not Before: Jun 5 06:13:48 2026 GMT Not After : Jun 4 06:18:48 2027 GMT Subject: CN=D1C916B2F2FF6BE8B82C91BE213AE63A0E41FFD8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:fd:80:ea:d7:83:a4:5a:81:51:b9:6c:46:93: 14:54:09:cd:16:6a:2e:54:0c:4a:ad:f4:bf:e8:32: 42:93:1d:d9:91:63:42:1d:58:b5:8b:93:da:7f:2f: 98:03:15:10:3e:29:97:df:d7:ea:2e:4a:7d:99:c4: d4:4d:84:e0:b8:42:51:61:11:44:32:6f:e4:e9:54: 2a:01:8d:1e:c3:ef:fe:e6:2f:69:5e:67:3f:02:fa: fb:64:95:ff:51:be:04:4d:b4:c7:5e:fc:88:c1:91: 03:95:ce:5f:a0:8d:63:54:41:0b:63:58:73:92:42: e5:86:05:bd:e7:20:f5:ef:43:68:30:2f:38:8f:41: d0:28:41:52:b9:18:2d:d2:00:aa:43:c2:d4:7a:f3: 18:aa:0f:86:a1:4e:b4:23:68:6e:c3:69:3d:46:8d: 1d:67:54:33:1e:b3:0f:9f:81:1e:be:09:8a:70:2a: 29:ef:a6:5f:43:fb:b4:ee:ee:bf:a6:9b:32:08:77: aa:0a:cf:1f:0a:5f:9e:22:9a:02:82:8a:12:16:c5: e6:4d:87:c5:cb:aa:43:5e:b4:8a:fb:05:16:11:ea: 25:0c:ff:1e:24:6e:88:2c:06:47:57:e1:f5:bd:ab: 09:eb:5d:24:34:10:2e:e3:c8:b8:79:97:ba:4b:b5: 38:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:C9:16:B2:F2:FF:6B:E8:B8:2C:91:BE:21:3A:E6:3A:0E:41:FF:D8 X509v3 Authority Key Identifier: keyid:6B:57:EA:D7:B3:83:19:26:9A:E9:3A:3E:26:FB:39:67:D1:41:F5:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947209729/0/6B57EAD7B38319269AE93A3E26FB3967D141F5D5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6B57EAD7B38319269AE93A3E26FB3967D141F5D5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947209729/0/3132302e34372e3232342e302f32342d3234203d3e2034383437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 120.47.224.0/24 Signature Algorithm: sha256WithRSAEncryption c2:ed:24:85:f9:3a:5d:80:7f:a3:c0:7e:37:ed:c7:45:be:bb: 83:dc:71:c0:66:6e:16:52:fb:a0:01:d3:c0:eb:35:93:f2:f7: 1e:aa:f9:8a:71:e5:11:cc:1b:7d:0c:36:10:86:ca:98:91:e4: f9:c6:50:57:61:44:54:6f:f1:f4:c8:30:5e:c5:60:34:3a:8d: b2:51:c5:da:c7:43:f2:40:48:36:51:92:7d:0f:3b:5f:02:5f: 6d:cb:4d:73:5e:e8:55:67:a5:36:c9:89:4f:73:c1:a4:33:ea: 2f:38:a7:d2:9e:8d:d7:23:89:bc:c9:b9:c4:5a:f8:a8:64:d8: 25:38:0f:55:fc:69:6b:35:72:a7:5a:f9:89:a9:46:e5:32:d9: 7a:c9:bb:38:8f:3b:05:b9:1f:6f:81:3b:77:39:45:98:0c:0d: c2:95:78:11:52:c7:81:65:b9:99:67:0b:74:a0:89:71:9b:57: 7f:36:66:5e:ac:ae:9c:97:ac:3b:bd:a6:b5:e8:d7:81:af:d1: 12:ee:a4:97:b4:d9:f7:96:44:ce:f3:c2:97:19:4b:98:d1:50: e7:ca:af:cc:01:23:91:dd:0e:98:24:eb:73:59:3a:83:4a:91: f9:4a:71:61:06:8c:4d:cf:d4:50:1f:99:dd:34:80:e8:7f:6f: 2d:7a:ef:9c -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUYO5jruUve48jGisGmg/KIqD2z6EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkI1N0VBRDdCMzgzMTkyNjlBRTkzQTNFMjZGQjM5NjdE MTQxRjVENTAeFw0yNjA2MDUwNjEzNDhaFw0yNzA2MDQwNjE4NDhaMDMxMTAvBgNV BAMTKEQxQzkxNkIyRjJGRjZCRThCODJDOTFCRTIxM0FFNjNBMEU0MUZGRDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8/YDq14OkWoFRuWxGkxRUCc0W ai5UDEqt9L/oMkKTHdmRY0IdWLWLk9p/L5gDFRA+KZff1+ouSn2ZxNRNhOC4QlFh EUQyb+TpVCoBjR7D7/7mL2leZz8C+vtklf9RvgRNtMde/IjBkQOVzl+gjWNUQQtj WHOSQuWGBb3nIPXvQ2gwLziPQdAoQVK5GC3SAKpDwtR68xiqD4ahTrQjaG7DaT1G jR1nVDMesw+fgR6+CYpwKinvpl9D+7Tu7r+mmzIId6oKzx8KX54imgKCihIWxeZN h8XLqkNetIr7BRYR6iUM/x4kbogsBkdX4fW9qwnrXSQ0EC7jyLh5l7pLtThJAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQU0ckWsvL/a+i4LJG+ITrmOg5B/9gwHwYDVR0j BBgwFoAUa1fq17ODGSaa6To+Jvs5Z9FB9dUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NzI0MTk0NzIwOTcyOS8wLzZCNTdFQUQ3QjM4MzE5MjY5QUU5M0EzRTI2RkIz OTY3RDE0MUY1RDUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNkI1N0VBRDdCMzgzMTkyNjlBRTkzQTNFMjZGQjM5NjdEMTQxRjVENS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc3MjQxOTQ3MjA5NzI5LzAvMzEzMjMwMmUzNDM3 MmUzMjMyMzQyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNDM4MzQzNy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAHgv4DANBgkqhkiG9w0BAQsFAAOCAQEAwu0khfk6XYB/o8B+N+3HRb67g9xx wGZuFlL7oAHTwOs1k/L3Hqr5inHlEcwbfQw2EIbKmJHk+cZQV2FEVG/x9MgwXsVg NDqNslHF2sdD8kBINlGSfQ87XwJfbctNc17oVWelNsmJT3PBpDPqLzin0p6N1yOJ vMm5xFr4qGTYJTgPVfxpazVyp1r5ialG5TLZesm7OI87Bbkfb4E7dzlFmAwNwpV4 EVLHgWW5mWcLdKCJcZtXfzZmXqyunJesO72mtejXga/REu6kl7TZ95ZEzvPClxlL mNFQ58qvzAEjkd0OmCTrc1k6g0qR+UpxYQaMTc/UUB+Z3TSA6H9vLXrvnA== -----END CERTIFICATE-----Generated at Fri Jun 12 02:23:41 2026 by rpki-client