$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065577241947668481/0/3135302e3132392e3139322e302f32322d3232203d3e2034383132.roa File: 3135302e3132392e3139322e302f32322d3232203d3e2034383132.roa (raw, json) Hash identifier: Qced5x2JdvGzTGbiVRwjPf14djJOxMxZsAGAZhV1ocY= Subject key identifier: C1:82:BD:14:A4:CF:9D:D8:11:13:1B:17:9A:A3:FB:07:FF:B1:3D:2C Certificate issuer: /CN=AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8 Certificate serial: 7270045FCD21DDB1865627F6D7B214EC0FA98855 Authority key identifier: AF:38:22:BA:7A:58:50:DA:06:99:3B:F2:2D:99:0B:2B:CA:F2:BD:E8 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065577241947668481/0/3135302e3132392e3139322e302f32322d3232203d3e2034383132.roa Signing time: Wed 13 May 2026 05:37:23 +0000 ROA not before: Wed 13 May 2026 05:32:23 +0000 ROA not after: Wed 12 May 2027 05:37:23 +0000 asID: 4812 IP address blocks: 150.129.192.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065577241947668481/0/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.crl rsync://rpki-rps.cnnic.cn/repo/A1065577241947668481/0/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 14:56:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:70:04:5f:cd:21:dd:b1:86:56:27:f6:d7:b2:14:ec:0f:a9:88:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8 Validity Not Before: May 13 05:32:23 2026 GMT Not After : May 12 05:37:23 2027 GMT Subject: CN=C182BD14A4CF9DD811131B179AA3FB07FFB13D2C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:f7:78:00:ec:8d:12:ee:51:f5:7d:6b:cb:1c: 0a:01:36:e8:2e:51:8f:28:5e:ed:ce:41:b1:be:dc: 3c:25:c7:90:60:d8:e2:85:98:7d:96:16:29:a4:af: 00:fb:1a:15:8d:b0:86:1b:25:d7:2c:60:45:82:24: 03:ba:90:34:75:3f:8e:18:c1:a0:ee:fa:90:8e:59: e2:df:d9:5a:c6:e4:31:a9:c1:c7:2f:67:f8:dc:96: 9a:b2:48:65:9f:0b:49:84:e6:ba:91:03:e7:fe:6e: 69:0c:12:25:15:40:ab:c0:8e:de:1f:07:89:46:7d: 2a:53:7c:f4:a9:4f:b6:43:f4:29:e0:de:46:d0:0c: dc:90:ee:fe:7d:35:3f:6e:29:9c:74:b2:b4:5f:e8: 9a:6d:5c:d6:d5:d1:8b:ee:fc:70:3a:fa:9d:43:82: 25:8f:95:f4:79:bc:51:be:9f:73:30:70:fb:95:51: 89:8f:25:d2:a7:1f:e8:b1:2b:58:05:26:e1:63:da: a7:6e:63:c1:4c:26:de:77:6d:23:a1:2c:bb:07:89: d1:4c:5e:e9:28:d8:69:8a:f6:45:37:3f:47:cb:c4: 4f:24:fe:cb:01:2c:15:c5:30:ea:f4:61:2b:ee:42: 25:8d:3a:1d:ce:1c:54:ff:d6:4f:16:d6:32:79:52: c4:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:82:BD:14:A4:CF:9D:D8:11:13:1B:17:9A:A3:FB:07:FF:B1:3D:2C X509v3 Authority Key Identifier: keyid:AF:38:22:BA:7A:58:50:DA:06:99:3B:F2:2D:99:0B:2B:CA:F2:BD:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947668481/0/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947668481/0/3135302e3132392e3139322e302f32322d3232203d3e2034383132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.129.192.0/22 Signature Algorithm: sha256WithRSAEncryption 92:63:bb:39:4a:4f:af:6c:7f:79:e7:a5:87:c8:28:01:b5:92: 74:7d:27:35:df:9d:d8:d1:8d:11:1a:de:2b:b1:83:61:a1:1d: 83:e9:82:f8:18:7f:90:a4:0b:ae:9e:94:78:15:34:10:38:98: 70:0c:ef:bc:c9:5f:45:46:7a:b7:9e:2f:7d:ba:3f:e3:ef:4c: 5c:76:d6:a7:b4:7f:1c:19:fa:fc:4f:71:75:69:ca:c3:73:55: 0e:b6:de:59:da:64:b3:eb:af:f3:2f:dd:9d:22:ed:34:cd:90: c7:6d:f4:e5:d9:a5:a3:a8:b4:2a:95:41:2f:11:a1:02:1f:b4: b7:96:f4:b2:f3:a6:1a:02:26:f2:7f:d7:1c:c9:4c:b2:f3:ae: 4a:00:6c:74:41:f3:76:e7:07:f5:5c:84:4c:78:72:e2:e6:55: c1:31:68:fe:f1:f7:85:06:0d:6f:78:b5:f5:cc:a4:59:90:1e: 2d:a7:72:3a:68:a5:9e:f5:d6:55:94:17:8a:81:38:42:b7:9b: 6d:a8:45:33:f7:4e:40:a3:8f:93:89:84:47:dc:5e:d3:f1:7d: 6d:fe:cf:54:ed:5d:ec:08:e0:0b:5d:24:7c:5f:05:3d:a7:b6: f6:73:ec:54:0a:48:d0:f1:3b:42:11:ca:09:81:55:33:9d:b7: b8:f9:64:78 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUcnAEX80h3bGGVif217IU7A+piFUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUYzODIyQkE3QTU4NTBEQTA2OTkzQkYyMkQ5OTBCMkJD QUYyQkRFODAeFw0yNjA1MTMwNTMyMjNaFw0yNzA1MTIwNTM3MjNaMDMxMTAvBgNV BAMTKEMxODJCRDE0QTRDRjlERDgxMTEzMUIxNzlBQTNGQjA3RkZCMTNEMkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDS93gA7I0S7lH1fWvLHAoBNugu UY8oXu3OQbG+3Dwlx5Bg2OKFmH2WFimkrwD7GhWNsIYbJdcsYEWCJAO6kDR1P44Y waDu+pCOWeLf2VrG5DGpwccvZ/jclpqySGWfC0mE5rqRA+f+bmkMEiUVQKvAjt4f B4lGfSpTfPSpT7ZD9Cng3kbQDNyQ7v59NT9uKZx0srRf6JptXNbV0Yvu/HA6+p1D giWPlfR5vFG+n3MwcPuVUYmPJdKnH+ixK1gFJuFj2qduY8FMJt53bSOhLLsHidFM Xuko2GmK9kU3P0fLxE8k/ssBLBXFMOr0YSvuQiWNOh3OHFT/1k8W1jJ5UsQxAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUwYK9FKTPndgRExsXmqP7B/+xPSwwHwYDVR0j BBgwFoAUrzgiunpYUNoGmTvyLZkLK8ryvegwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NzI0MTk0NzY2ODQ4MS8wL0FGMzgyMkJBN0E1ODUwREEwNjk5M0JGMjJEOTkw QjJCQ0FGMkJERTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQUYzODIyQkE3QTU4NTBEQTA2OTkzQkYyMkQ5OTBCMkJDQUYyQkRFOC5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3NzI0MTk0NzY2ODQ4MS8wLzMxMzUzMDJlMzEz MjM5MmUzMTM5MzIyZTMwMmYzMjMyMmQzMjMyMjAzZDNlMjAzNDM4MzEzMi5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEApaBwDANBgkqhkiG9w0BAQsFAAOCAQEAkmO7OUpPr2x/eeelh8goAbWS dH0nNd+d2NGNERreK7GDYaEdg+mC+Bh/kKQLrp6UeBU0EDiYcAzvvMlfRUZ6t54v fbo/4+9MXHbWp7R/HBn6/E9xdWnKw3NVDrbeWdpks+uv8y/dnSLtNM2Qx2305dml o6i0KpVBLxGhAh+0t5b0svOmGgIm8n/XHMlMsvOuSgBsdEHzducH9VyETHhy4uZV wTFo/vH3hQYNb3i19cykWZAeLadyOmilnvXWVZQXioE4QrebbahFM/dOQKOPk4mE R9xe0/F9bf7PVO1d7AjgC10kfF8FPae29nPsVApI0PE7QhHKCYFVM523uPlkeA== -----END CERTIFICATE-----Generated at Thu Jun 11 21:19:31 2026 by rpki-client