$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065577241947209729/0/3231392e37322e33322e302f32302d3230203d3e2034383437.roa File: 3231392e37322e33322e302f32302d3230203d3e2034383437.roa (raw, json) Hash identifier: UFtGEpYEHpKbLrEitD+iocuKjTkDLX8xvXnnTrBPgno= Subject key identifier: C0:70:05:D9:30:A4:C5:95:F2:D3:8B:A4:3D:DA:93:27:AD:2C:03:9E Certificate issuer: /CN=6B57EAD7B38319269AE93A3E26FB3967D141F5D5 Certificate serial: 6D097D1D3C4514CBB132C2B7327673E46FA12521 Authority key identifier: 6B:57:EA:D7:B3:83:19:26:9A:E9:3A:3E:26:FB:39:67:D1:41:F5:D5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6B57EAD7B38319269AE93A3E26FB3967D141F5D5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065577241947209729/0/3231392e37322e33322e302f32302d3230203d3e2034383437.roa Signing time: Fri 05 Jun 2026 06:23:48 +0000 ROA not before: Fri 05 Jun 2026 06:18:48 +0000 ROA not after: Fri 04 Jun 2027 06:23:48 +0000 asID: 4847 IP address blocks: 219.72.32.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065577241947209729/0/6B57EAD7B38319269AE93A3E26FB3967D141F5D5.crl rsync://rpki-rps.cnnic.cn/repo/A1065577241947209729/0/6B57EAD7B38319269AE93A3E26FB3967D141F5D5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6B57EAD7B38319269AE93A3E26FB3967D141F5D5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 12:15:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:09:7d:1d:3c:45:14:cb:b1:32:c2:b7:32:76:73:e4:6f:a1:25:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B57EAD7B38319269AE93A3E26FB3967D141F5D5 Validity Not Before: Jun 5 06:18:48 2026 GMT Not After : Jun 4 06:23:48 2027 GMT Subject: CN=C07005D930A4C595F2D38BA43DDA9327AD2C039E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:d2:3b:d6:f4:40:54:05:fa:26:76:f2:c8:75: d3:24:2f:65:a7:00:33:dd:0e:7d:76:ec:f7:5f:3d: 3c:e4:32:23:4a:61:fc:d4:e0:7d:d8:fc:20:08:39: e4:ca:26:d1:c8:af:79:5e:fc:cb:82:00:2a:4a:6b: 1f:8d:e8:e3:19:cd:ec:21:4e:99:99:41:72:84:ff: a4:7f:1f:86:6b:32:6b:0c:d4:5a:93:77:21:e2:62: 8a:0d:f9:c6:fd:88:77:65:c1:4d:37:f9:8d:46:7e: d0:a7:95:ed:2d:3c:18:bd:e5:a2:39:b8:49:a7:81: 55:0d:7d:77:68:df:9b:10:5e:27:59:eb:b6:47:f4: df:e7:b2:4a:e5:31:28:1f:47:5a:a0:8f:43:3d:2c: 7d:8e:3f:2d:f2:c0:77:5d:08:43:60:0b:04:46:1f: 43:28:1d:1d:f1:bb:cf:b7:da:9c:29:e9:44:33:ac: ab:71:ea:04:fd:bf:71:fb:ce:49:54:98:1a:6f:22: 99:01:d0:c4:e8:c5:73:5b:bd:4e:bc:67:aa:5e:cf: 97:fd:76:84:34:96:03:94:7d:e3:75:0b:db:86:c4: ad:c9:a9:fe:a0:bd:32:7e:ab:b1:bd:7d:b0:f1:63: b8:a5:1b:8b:cd:3a:4b:7b:41:33:10:c6:84:71:38: 2a:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:70:05:D9:30:A4:C5:95:F2:D3:8B:A4:3D:DA:93:27:AD:2C:03:9E X509v3 Authority Key Identifier: keyid:6B:57:EA:D7:B3:83:19:26:9A:E9:3A:3E:26:FB:39:67:D1:41:F5:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947209729/0/6B57EAD7B38319269AE93A3E26FB3967D141F5D5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6B57EAD7B38319269AE93A3E26FB3967D141F5D5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947209729/0/3231392e37322e33322e302f32302d3230203d3e2034383437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 219.72.32.0/20 Signature Algorithm: sha256WithRSAEncryption a8:87:d2:9a:e8:b0:2c:f3:24:24:02:d5:52:5c:24:82:0d:3d: 9e:dd:eb:47:66:fa:cc:05:10:ff:11:62:fe:4a:65:e7:20:dc: 6f:ce:e0:a1:a6:89:bf:06:e9:64:f6:52:f4:bb:97:af:c7:31: 66:d2:f1:03:a3:d4:34:47:b0:8a:39:a6:16:4c:b8:76:4a:45: 21:7e:21:e6:1e:6e:4f:42:1d:3d:91:c8:02:32:1e:e1:93:99: 90:2e:39:f6:65:83:bc:e8:b2:64:2b:9e:0f:46:f8:8b:20:a4: 3b:fe:6b:f6:24:91:74:08:b6:b2:c2:02:db:f9:55:24:e5:f5: f3:d0:22:ab:b0:16:08:45:45:97:11:d7:98:69:d5:94:30:a6: 3e:4d:91:0c:5c:cc:6b:f6:4f:50:08:e2:7a:a0:94:ff:1d:1a: af:47:94:13:ed:9f:a4:6a:c8:06:1f:ad:d8:07:9d:ec:d3:63: 6e:16:a4:b2:9f:5d:5e:a1:a0:2b:ca:47:39:8d:f5:4b:a0:fb: d4:2e:9f:db:7e:91:44:93:fc:9a:db:c0:5e:42:89:9f:2f:88: f9:b3:d5:00:5e:1a:02:09:13:3f:07:3e:cb:d3:ce:b1:4a:e7: f0:95:cd:d1:25:d7:77:f7:e4:05:95:8e:74:13:56:ab:04:a6: c2:35:53:27 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUbQl9HTxFFMuxMsK3MnZz5G+hJSEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkI1N0VBRDdCMzgzMTkyNjlBRTkzQTNFMjZGQjM5NjdE MTQxRjVENTAeFw0yNjA2MDUwNjE4NDhaFw0yNzA2MDQwNjIzNDhaMDMxMTAvBgNV BAMTKEMwNzAwNUQ5MzBBNEM1OTVGMkQzOEJBNDNEREE5MzI3QUQyQzAzOUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDf0jvW9EBUBfomdvLIddMkL2Wn ADPdDn127PdfPTzkMiNKYfzU4H3Y/CAIOeTKJtHIr3le/MuCACpKax+N6OMZzewh TpmZQXKE/6R/H4ZrMmsM1FqTdyHiYooN+cb9iHdlwU03+Y1GftCnle0tPBi95aI5 uEmngVUNfXdo35sQXidZ67ZH9N/nskrlMSgfR1qgj0M9LH2OPy3ywHddCENgCwRG H0MoHR3xu8+32pwp6UQzrKtx6gT9v3H7zklUmBpvIpkB0MToxXNbvU68Z6pez5f9 doQ0lgOUfeN1C9uGxK3Jqf6gvTJ+q7G9fbDxY7ilG4vNOkt7QTMQxoRxOCq1AgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUwHAF2TCkxZXy04ukPdqTJ60sA54wHwYDVR0j BBgwFoAUa1fq17ODGSaa6To+Jvs5Z9FB9dUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NzI0MTk0NzIwOTcyOS8wLzZCNTdFQUQ3QjM4MzE5MjY5QUU5M0EzRTI2RkIz OTY3RDE0MUY1RDUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNkI1N0VBRDdCMzgzMTkyNjlBRTkzQTNFMjZGQjM5NjdEMTQxRjVENS5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc3MjQxOTQ3MjA5NzI5LzAvMzIzMTM5MmUzNzMy MmUzMzMyMmUzMDJmMzIzMDJkMzIzMDIwM2QzZTIwMzQzODM0Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BATbSCAwDQYJKoZIhvcNAQELBQADggEBAKiH0prosCzzJCQC1VJcJIINPZ7d60dm +swFEP8RYv5KZecg3G/O4KGmib8G6WT2UvS7l6/HMWbS8QOj1DRHsIo5phZMuHZK RSF+IeYebk9CHT2RyAIyHuGTmZAuOfZlg7zosmQrng9G+IsgpDv+a/YkkXQItrLC Atv5VSTl9fPQIquwFghFRZcR15hp1ZQwpj5NkQxczGv2T1AI4nqglP8dGq9HlBPt n6RqyAYfrdgHnezTY24WpLKfXV6hoCvKRzmN9Uug+9Qun9t+kUST/JrbwF5CiZ8v iPmz1QBeGgIJEz8HPsvTzrFK5/CVzdEl13f35AWVjnQTVqsEpsI1Uyc= -----END CERTIFICATE-----Generated at Fri Jun 12 02:23:53 2026 by rpki-client