$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065577241947209729/0/3231392e37322e3235322e302f32342d3234203d3e2034383437.roa File: 3231392e37322e3235322e302f32342d3234203d3e2034383437.roa (raw, json) Hash identifier: O7PZT47TGR/ExL610Efs/GU9RvmjDSS7WpetJ7VKi84= Subject key identifier: 90:79:F8:47:72:16:A8:24:68:58:18:E6:14:01:B5:00:3F:83:5D:95 Certificate issuer: /CN=6B57EAD7B38319269AE93A3E26FB3967D141F5D5 Certificate serial: 5308B837B0C0BC30BBE2D7CC38AA086796EA739F Authority key identifier: 6B:57:EA:D7:B3:83:19:26:9A:E9:3A:3E:26:FB:39:67:D1:41:F5:D5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6B57EAD7B38319269AE93A3E26FB3967D141F5D5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065577241947209729/0/3231392e37322e3235322e302f32342d3234203d3e2034383437.roa Signing time: Fri 05 Jun 2026 06:18:49 +0000 ROA not before: Fri 05 Jun 2026 06:13:49 +0000 ROA not after: Fri 04 Jun 2027 06:18:49 +0000 asID: 4847 IP address blocks: 219.72.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065577241947209729/0/6B57EAD7B38319269AE93A3E26FB3967D141F5D5.crl rsync://rpki-rps.cnnic.cn/repo/A1065577241947209729/0/6B57EAD7B38319269AE93A3E26FB3967D141F5D5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6B57EAD7B38319269AE93A3E26FB3967D141F5D5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 12:15:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:08:b8:37:b0:c0:bc:30:bb:e2:d7:cc:38:aa:08:67:96:ea:73:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B57EAD7B38319269AE93A3E26FB3967D141F5D5 Validity Not Before: Jun 5 06:13:49 2026 GMT Not After : Jun 4 06:18:49 2027 GMT Subject: CN=9079F8477216A824685818E61401B5003F835D95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:a2:6e:ec:65:91:46:5d:76:55:f9:6b:d0:1e: 7d:d3:3e:aa:c8:80:1d:39:36:8c:c7:d9:06:90:f4: ad:e4:cf:d5:b3:d1:e7:fe:ac:90:9e:65:d0:9b:37: db:ea:91:61:ae:25:ce:23:a6:19:4f:a1:4c:a6:39: 6b:16:6a:2d:b3:e9:0b:2a:ab:b7:ba:27:4f:11:0f: 25:de:5b:f6:fd:94:0a:cd:99:06:50:da:56:9a:fd: 6f:e4:8a:42:f1:5b:b6:9f:23:87:29:89:b8:6e:0f: 57:db:56:3d:68:66:83:61:8c:de:b3:03:dc:3a:4b: e5:a1:8e:62:a1:19:90:fc:5f:a3:b6:83:8a:e6:31: 20:ca:90:02:ca:2f:bf:94:10:ca:19:e9:b5:46:01: 98:12:db:a0:56:95:d6:b6:e5:54:4f:82:e1:80:f0: 7b:59:01:0b:cf:fb:42:d3:90:05:91:75:52:c7:54: 2a:b4:5e:2c:38:0a:f3:ce:10:24:82:8b:6e:2e:4b: b1:9e:b5:b8:81:64:fc:29:bd:e3:c3:15:5c:5d:47: 8c:6b:59:7e:4a:b5:c9:b2:59:3a:e7:ee:0b:4d:f3: ce:ee:a0:32:3a:83:32:1e:02:6e:b4:ba:70:80:82: 8b:51:60:21:69:83:55:e3:4f:01:da:42:c1:15:49: f3:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:79:F8:47:72:16:A8:24:68:58:18:E6:14:01:B5:00:3F:83:5D:95 X509v3 Authority Key Identifier: keyid:6B:57:EA:D7:B3:83:19:26:9A:E9:3A:3E:26:FB:39:67:D1:41:F5:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947209729/0/6B57EAD7B38319269AE93A3E26FB3967D141F5D5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6B57EAD7B38319269AE93A3E26FB3967D141F5D5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947209729/0/3231392e37322e3235322e302f32342d3234203d3e2034383437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 219.72.252.0/24 Signature Algorithm: sha256WithRSAEncryption b9:9e:bf:ce:ad:d1:5c:bc:7a:c8:e4:6f:e9:e3:c1:77:18:1f: c9:6f:b0:be:94:6a:cf:7c:16:75:68:d1:0c:f6:8c:8e:f4:4b: 37:54:35:58:b8:4c:a6:23:c5:19:d5:ee:c3:26:07:ee:b9:78: db:dd:fe:cc:ed:d5:6a:b5:bd:94:6d:4e:e8:5f:62:08:63:c0: 8a:c0:e0:2b:d6:4f:0f:ea:1c:5d:3d:75:6c:3c:56:48:a3:df: ee:15:4a:4c:c2:66:77:0b:68:80:7d:e0:84:23:95:6f:29:51: 80:5f:6c:d5:2a:e9:56:f6:96:ea:93:a0:47:31:a1:9f:41:9e: b8:dd:21:f3:20:f8:6d:20:73:36:ab:b8:84:3b:a0:dd:a2:51: 09:c6:e8:f6:84:6b:9d:75:0f:80:2a:55:06:7a:3f:27:dd:fd: 40:15:ac:18:d4:57:f0:11:56:e1:07:ab:63:b7:3d:df:f4:5c: 7e:45:ef:72:91:91:80:04:95:8e:8c:a7:df:5b:ce:dc:67:c2: 1d:17:97:4c:e8:a0:e1:c0:a2:52:ff:de:b6:3f:f7:6b:3f:f0: 87:ea:b8:1c:25:0a:0b:3a:f8:ce:63:02:47:00:f5:6f:c4:37: c1:07:8e:2d:ef:e0:02:74:b4:f0:c6:74:cb:0b:b5:31:7b:59: 2c:d3:c9:a2 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUUwi4N7DAvDC74tfMOKoIZ5bqc58wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkI1N0VBRDdCMzgzMTkyNjlBRTkzQTNFMjZGQjM5NjdE MTQxRjVENTAeFw0yNjA2MDUwNjEzNDlaFw0yNzA2MDQwNjE4NDlaMDMxMTAvBgNV BAMTKDkwNzlGODQ3NzIxNkE4MjQ2ODU4MThFNjE0MDFCNTAwM0Y4MzVEOTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKom7sZZFGXXZV+WvQHn3TPqrI gB05NozH2QaQ9K3kz9Wz0ef+rJCeZdCbN9vqkWGuJc4jphlPoUymOWsWai2z6Qsq q7e6J08RDyXeW/b9lArNmQZQ2laa/W/kikLxW7afI4cpibhuD1fbVj1oZoNhjN6z A9w6S+WhjmKhGZD8X6O2g4rmMSDKkALKL7+UEMoZ6bVGAZgS26BWlda25VRPguGA 8HtZAQvP+0LTkAWRdVLHVCq0Xiw4CvPOECSCi24uS7GetbiBZPwpvePDFVxdR4xr WX5KtcmyWTrn7gtN887uoDI6gzIeAm60unCAgotRYCFpg1XjTwHaQsEVSfPbAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUkHn4R3IWqCRoWBjmFAG1AD+DXZUwHwYDVR0j BBgwFoAUa1fq17ODGSaa6To+Jvs5Z9FB9dUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NzI0MTk0NzIwOTcyOS8wLzZCNTdFQUQ3QjM4MzE5MjY5QUU5M0EzRTI2RkIz OTY3RDE0MUY1RDUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNkI1N0VBRDdCMzgzMTkyNjlBRTkzQTNFMjZGQjM5NjdEMTQxRjVENS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc3MjQxOTQ3MjA5NzI5LzAvMzIzMTM5MmUzNzMy MmUzMjM1MzIyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNDM4MzQzNy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEANtI/DANBgkqhkiG9w0BAQsFAAOCAQEAuZ6/zq3RXLx6yORv6ePBdxgfyW+w vpRqz3wWdWjRDPaMjvRLN1Q1WLhMpiPFGdXuwyYH7rl4293+zO3VarW9lG1O6F9i CGPAisDgK9ZPD+ocXT11bDxWSKPf7hVKTMJmdwtogH3ghCOVbylRgF9s1SrpVvaW 6pOgRzGhn0GeuN0h8yD4bSBzNqu4hDug3aJRCcbo9oRrnXUPgCpVBno/J939QBWs GNRX8BFW4QerY7c93/RcfkXvcpGRgASVjoyn31vO3GfCHReXTOig4cCiUv/etj/3 az/wh+q4HCUKCzr4zmMCRwD1b8Q3wQeOLe/gAnS08MZ0ywu1MXtZLNPJog== -----END CERTIFICATE-----Generated at Fri Jun 12 02:24:11 2026 by rpki-client