$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065577241947209729/0/3231392e37322e3135322e302f32322d3232203d3e203234313338.roa File: 3231392e37322e3135322e302f32322d3232203d3e203234313338.roa (raw, json) Hash identifier: Ok7svCKkstQR/9szR0r8MRt1FJTLxCdgp5TeueWRK3o= Subject key identifier: BE:9D:40:7B:06:6D:D5:EC:20:FB:26:5F:24:19:C3:63:D2:39:32:4F Certificate issuer: /CN=6B57EAD7B38319269AE93A3E26FB3967D141F5D5 Certificate serial: 60AAD7315B83B8BEC948F6772F42E61F19778EBD Authority key identifier: 6B:57:EA:D7:B3:83:19:26:9A:E9:3A:3E:26:FB:39:67:D1:41:F5:D5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6B57EAD7B38319269AE93A3E26FB3967D141F5D5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065577241947209729/0/3231392e37322e3135322e302f32322d3232203d3e203234313338.roa Signing time: Fri 05 Jun 2026 06:23:48 +0000 ROA not before: Fri 05 Jun 2026 06:18:48 +0000 ROA not after: Fri 04 Jun 2027 06:23:48 +0000 asID: 24138 IP address blocks: 219.72.152.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065577241947209729/0/6B57EAD7B38319269AE93A3E26FB3967D141F5D5.crl rsync://rpki-rps.cnnic.cn/repo/A1065577241947209729/0/6B57EAD7B38319269AE93A3E26FB3967D141F5D5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6B57EAD7B38319269AE93A3E26FB3967D141F5D5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 12:15:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:aa:d7:31:5b:83:b8:be:c9:48:f6:77:2f:42:e6:1f:19:77:8e:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B57EAD7B38319269AE93A3E26FB3967D141F5D5 Validity Not Before: Jun 5 06:18:48 2026 GMT Not After : Jun 4 06:23:48 2027 GMT Subject: CN=BE9D407B066DD5EC20FB265F2419C363D239324F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:8d:80:68:de:fb:04:29:fc:d9:c8:33:44:46: 17:9e:c4:30:67:8b:c7:6a:c3:c1:e3:06:78:47:61: ea:2f:6a:14:0b:71:f1:e8:0d:a5:ac:92:ec:60:0e: 91:7c:de:e1:04:20:7a:1e:d0:aa:af:0e:73:53:5c: ae:7c:45:64:af:dc:98:20:9e:23:5c:86:49:0a:85: 3e:4d:dd:f3:08:00:36:06:93:3d:2d:c6:4f:38:7c: 89:43:f5:a8:b6:14:64:6f:89:0c:b1:57:41:e6:b2: d6:63:8f:72:c5:98:e1:09:a0:aa:f3:fd:a9:69:78: 27:c5:78:66:39:48:8c:71:b4:7b:cb:9a:00:7b:20: 8e:ec:8f:ad:66:cb:d6:46:92:69:e3:cf:31:8e:4c: e7:79:97:13:76:86:26:54:a8:55:49:a4:11:6b:d8: 25:cb:b6:a7:fb:51:51:61:52:b2:b2:b4:77:20:0d: 9d:35:3a:2d:50:26:4b:94:f8:79:9b:52:e3:22:cf: 38:fb:ab:ab:43:a3:1c:6d:26:ca:3a:2d:b4:0a:04: fd:84:49:00:e6:10:1b:b9:80:64:95:1d:f9:e6:b3: 6c:8e:b9:91:6e:e4:c2:40:cc:b9:96:4b:7f:68:65: 14:bc:2c:36:79:22:fd:75:ab:1d:26:cd:29:4f:8c: ea:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:9D:40:7B:06:6D:D5:EC:20:FB:26:5F:24:19:C3:63:D2:39:32:4F X509v3 Authority Key Identifier: keyid:6B:57:EA:D7:B3:83:19:26:9A:E9:3A:3E:26:FB:39:67:D1:41:F5:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947209729/0/6B57EAD7B38319269AE93A3E26FB3967D141F5D5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6B57EAD7B38319269AE93A3E26FB3967D141F5D5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947209729/0/3231392e37322e3135322e302f32322d3232203d3e203234313338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 219.72.152.0/22 Signature Algorithm: sha256WithRSAEncryption 91:8b:80:a7:9e:eb:ff:0e:9f:ee:00:23:d9:48:62:26:f0:ba: cb:68:bf:9d:dd:c0:c2:ac:f4:34:5b:a6:2d:a7:09:82:33:08: df:01:3d:31:00:46:b2:d6:70:60:d3:6d:19:38:05:8c:f7:1b: ac:dc:92:31:45:39:bf:72:48:98:fb:c0:b7:9a:44:ac:17:35: 46:3d:71:92:41:88:dd:9e:56:44:ad:63:73:64:1b:4d:b3:90: 9b:f0:12:7b:81:12:61:14:6b:a6:cf:bf:2c:fd:6f:ae:dc:ef: 92:a2:11:29:dc:34:03:90:eb:c2:18:cb:c6:c5:06:66:e9:6b: 61:ed:30:df:36:03:80:ca:12:1d:6f:8a:6d:9e:a7:ce:91:26: 2b:aa:fa:7b:6d:c6:ed:9a:dc:e5:aa:53:0e:3c:75:e5:d4:24: 05:23:5b:fa:68:07:6e:7a:44:e2:b0:5b:22:5a:57:6b:8e:4a: b0:f8:9f:c2:28:35:09:7e:8f:c8:e0:d6:2e:33:6d:fb:ee:4b: ad:5a:5c:84:27:18:97:29:4b:16:8a:ae:1f:92:19:42:06:ee: f4:d3:fc:3d:4b:27:dd:f4:25:ce:2e:2d:04:6d:f1:e4:3c:df: 91:60:3b:9e:ad:d0:db:24:90:2e:13:03:19:10:79:6b:c2:21: 31:dc:f4:2f -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUYKrXMVuDuL7JSPZ3L0LmHxl3jr0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkI1N0VBRDdCMzgzMTkyNjlBRTkzQTNFMjZGQjM5NjdE MTQxRjVENTAeFw0yNjA2MDUwNjE4NDhaFw0yNzA2MDQwNjIzNDhaMDMxMTAvBgNV BAMTKEJFOUQ0MDdCMDY2REQ1RUMyMEZCMjY1RjI0MTlDMzYzRDIzOTMyNEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCujYBo3vsEKfzZyDNERheexDBn i8dqw8HjBnhHYeovahQLcfHoDaWskuxgDpF83uEEIHoe0KqvDnNTXK58RWSv3Jgg niNchkkKhT5N3fMIADYGkz0txk84fIlD9ai2FGRviQyxV0HmstZjj3LFmOEJoKrz /alpeCfFeGY5SIxxtHvLmgB7II7sj61my9ZGkmnjzzGOTOd5lxN2hiZUqFVJpBFr 2CXLtqf7UVFhUrKytHcgDZ01Oi1QJkuU+HmbUuMizzj7q6tDoxxtJso6LbQKBP2E SQDmEBu5gGSVHfnms2yOuZFu5MJAzLmWS39oZRS8LDZ5Iv11qx0mzSlPjOoRAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUvp1AewZt1ewg+yZfJBnDY9I5Mk8wHwYDVR0j BBgwFoAUa1fq17ODGSaa6To+Jvs5Z9FB9dUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NzI0MTk0NzIwOTcyOS8wLzZCNTdFQUQ3QjM4MzE5MjY5QUU5M0EzRTI2RkIz OTY3RDE0MUY1RDUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNkI1N0VBRDdCMzgzMTkyNjlBRTkzQTNFMjZGQjM5NjdEMTQxRjVENS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3NzI0MTk0NzIwOTcyOS8wLzMyMzEzOTJlMzcz MjJlMzEzNTMyMmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzIzNDMxMzMzOC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAttImDANBgkqhkiG9w0BAQsFAAOCAQEAkYuAp57r/w6f7gAj2UhiJvC6 y2i/nd3Awqz0NFumLacJgjMI3wE9MQBGstZwYNNtGTgFjPcbrNySMUU5v3JImPvA t5pErBc1Rj1xkkGI3Z5WRK1jc2QbTbOQm/ASe4ESYRRrps+/LP1vrtzvkqIRKdw0 A5DrwhjLxsUGZulrYe0w3zYDgMoSHW+KbZ6nzpEmK6r6e23G7Zrc5apTDjx15dQk BSNb+mgHbnpE4rBbIlpXa45KsPifwig1CX6PyODWLjNt++5LrVpchCcYlylLFoqu H5IZQgbu9NP8PUsn3fQlzi4tBG3x5DzfkWA7nq3Q2ySQLhMDGRB5a8IhMdz0Lw== -----END CERTIFICATE-----Generated at Fri Jun 12 04:48:30 2026 by rpki-client