$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065577241947668481/0/3131342e36362e36342e302f32342d3234203d3e203536323832.roa File: 3131342e36362e36342e302f32342d3234203d3e203536323832.roa (raw, json) Hash identifier: zD3WSq4C8Cm1ynZc83YjRM3qDku0dgjKltGwxqyyf6g= Subject key identifier: 8E:74:B6:18:7B:B0:71:DF:F7:2D:B1:48:32:66:DF:D9:91:AB:42:62 Certificate issuer: /CN=AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8 Certificate serial: 23510687155912AA730B51C9C9FB9C32A3426B44 Authority key identifier: AF:38:22:BA:7A:58:50:DA:06:99:3B:F2:2D:99:0B:2B:CA:F2:BD:E8 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065577241947668481/0/3131342e36362e36342e302f32342d3234203d3e203536323832.roa Signing time: Tue 09 Jun 2026 06:54:17 +0000 ROA not before: Tue 09 Jun 2026 06:49:17 +0000 ROA not after: Tue 08 Jun 2027 06:54:17 +0000 asID: 56282 IP address blocks: 114.66.64.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065577241947668481/0/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.crl rsync://rpki-rps.cnnic.cn/repo/A1065577241947668481/0/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 14:56:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:51:06:87:15:59:12:aa:73:0b:51:c9:c9:fb:9c:32:a3:42:6b:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8 Validity Not Before: Jun 9 06:49:17 2026 GMT Not After : Jun 8 06:54:17 2027 GMT Subject: CN=8E74B6187BB071DFF72DB1483266DFD991AB4262 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:bf:ba:e8:53:0b:04:a6:92:d5:d0:2c:4d:52: 91:39:43:64:fb:b1:c0:28:a8:e5:cb:80:80:a2:9c: 95:a5:1d:27:f0:e5:99:44:51:4d:d5:8c:84:2e:d0: 39:81:c2:11:97:e5:a3:67:5d:9f:0a:b8:de:77:ed: 8a:28:62:c2:20:db:0d:da:5a:9b:0f:20:e6:3f:ac: c7:f4:d7:e8:82:7b:7a:a2:9b:57:49:bd:29:cd:a4: 60:e3:0a:4b:e1:91:9d:61:05:4b:9f:1b:3d:2f:5c: b3:0c:f6:7f:e9:36:94:4e:e8:19:26:4c:8c:d0:09: b7:c5:82:a9:70:18:37:80:af:b2:40:56:66:85:6a: 01:cb:55:7e:64:30:94:d4:3a:8f:70:fe:28:80:0c: 60:10:0a:7e:fc:66:12:2c:2f:56:50:ff:61:f4:0e: 55:91:0c:3e:97:29:c6:22:81:f2:f9:d0:48:24:41: a2:f4:ad:62:78:e6:00:28:cc:44:35:95:4e:ec:77: a7:7b:1d:6a:46:2f:51:66:4a:14:49:aa:e3:b6:d1: e1:1c:c0:06:05:e1:c5:3b:61:8c:b8:1c:90:01:31: af:d2:f1:e5:13:92:17:08:55:89:7f:31:17:12:a8: 5c:bd:ba:16:a3:38:a8:df:49:07:b9:7a:d7:49:48: e8:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:74:B6:18:7B:B0:71:DF:F7:2D:B1:48:32:66:DF:D9:91:AB:42:62 X509v3 Authority Key Identifier: keyid:AF:38:22:BA:7A:58:50:DA:06:99:3B:F2:2D:99:0B:2B:CA:F2:BD:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947668481/0/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947668481/0/3131342e36362e36342e302f32342d3234203d3e203536323832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.66.64.0/24 Signature Algorithm: sha256WithRSAEncryption 78:bb:47:eb:c9:ad:e1:00:5e:16:9b:7b:2a:88:e9:d4:12:d2: dd:70:4b:1c:d2:ae:64:52:73:f6:56:35:57:fa:09:e3:5d:0b: f0:f3:b3:63:1c:bb:6e:2e:6b:21:dc:a8:9d:7d:7e:63:b4:43: bb:6f:25:03:86:c6:bd:93:85:48:37:4b:98:ba:79:0b:bb:6b: 6e:d7:fc:aa:6f:4f:5f:90:8d:6a:ee:a7:20:cb:e1:53:c4:58: 51:9c:1d:d7:7f:32:89:af:6e:72:4a:12:53:2d:5c:aa:78:b4: 26:a8:07:68:cf:67:24:47:26:35:16:d2:1a:ad:fa:c3:35:5d: 77:b2:5b:c3:ae:47:db:20:da:d2:2d:71:1e:28:11:ad:dd:14: 23:0e:28:39:1b:37:fc:2e:4a:54:19:6f:66:d8:79:40:c4:eb: 2d:93:e1:30:aa:8c:55:5b:a2:93:3b:59:bb:4c:c6:0d:8d:69: 66:ba:a9:4c:90:2e:eb:24:b2:12:30:de:89:8e:fa:26:92:1f: c4:ef:ef:9d:41:ac:53:54:b2:d3:ac:e1:de:66:c1:67:44:cf: 24:dc:a3:c4:80:20:89:fe:3f:d0:84:c1:7a:5f:62:f8:13:53: 71:60:46:b7:d0:f9:fe:f7:43:00:26:fa:78:ea:0b:cd:de:60: 47:a0:b2:d1 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUI1EGhxVZEqpzC1HJyfucMqNCa0QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUYzODIyQkE3QTU4NTBEQTA2OTkzQkYyMkQ5OTBCMkJD QUYyQkRFODAeFw0yNjA2MDkwNjQ5MTdaFw0yNzA2MDgwNjU0MTdaMDMxMTAvBgNV BAMTKDhFNzRCNjE4N0JCMDcxREZGNzJEQjE0ODMyNjZERkQ5OTFBQjQyNjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClv7roUwsEppLV0CxNUpE5Q2T7 scAoqOXLgICinJWlHSfw5ZlEUU3VjIQu0DmBwhGX5aNnXZ8KuN537YooYsIg2w3a WpsPIOY/rMf01+iCe3qim1dJvSnNpGDjCkvhkZ1hBUufGz0vXLMM9n/pNpRO6Bkm TIzQCbfFgqlwGDeAr7JAVmaFagHLVX5kMJTUOo9w/iiADGAQCn78ZhIsL1ZQ/2H0 DlWRDD6XKcYigfL50EgkQaL0rWJ45gAozEQ1lU7sd6d7HWpGL1FmShRJquO20eEc wAYF4cU7YYy4HJABMa/S8eUTkhcIVYl/MRcSqFy9uhajOKjfSQe5etdJSOhZAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUjnS2GHuwcd/3LbFIMmbf2ZGrQmIwHwYDVR0j BBgwFoAUrzgiunpYUNoGmTvyLZkLK8ryvegwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NzI0MTk0NzY2ODQ4MS8wL0FGMzgyMkJBN0E1ODUwREEwNjk5M0JGMjJEOTkw QjJCQ0FGMkJERTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQUYzODIyQkE3QTU4NTBEQTA2OTkzQkYyMkQ5OTBCMkJDQUYyQkRFOC5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc3MjQxOTQ3NjY4NDgxLzAvMzEzMTM0MmUzNjM2 MmUzNjM0MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzUzNjMyMzgzMi5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAHJCQDANBgkqhkiG9w0BAQsFAAOCAQEAeLtH68mt4QBeFpt7Kojp1BLS3XBL HNKuZFJz9lY1V/oJ410L8POzYxy7bi5rIdyonX1+Y7RDu28lA4bGvZOFSDdLmLp5 C7trbtf8qm9PX5CNau6nIMvhU8RYUZwd138yia9uckoSUy1cqni0JqgHaM9nJEcm NRbSGq36wzVdd7Jbw65H2yDa0i1xHigRrd0UIw4oORs3/C5KVBlvZth5QMTrLZPh MKqMVVuikztZu0zGDY1pZrqpTJAu6ySyEjDeiY76JpIfxO/vnUGsU1Sy06zh3mbB Z0TPJNyjxIAgif4/0ITBel9i+BNTcWBGt9D5/vdDACb6eOoLzd5gR6Cy0Q== -----END CERTIFICATE-----Generated at Fri Jun 12 01:01:07 2026 by rpki-client