$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582741577662466/0/3132322e31312e34382e302f32312d3231203d3e2034383038.roa File: 3132322e31312e34382e302f32312d3231203d3e2034383038.roa (raw, json) Hash identifier: 0c/j1Gp0iCOrUSwBYehtFLY4kagoam0ofJWT9krdbRw= Subject key identifier: BF:43:58:0F:4E:79:36:A0:40:4A:D0:33:9E:3A:A0:59:E7:31:2D:EA Certificate issuer: /CN=098D421CB46F292F13CE71DF3D685D5E82893289 Certificate serial: 288DD10ADD35DA51D294DD30E9967E9688D3C60E Authority key identifier: 09:8D:42:1C:B4:6F:29:2F:13:CE:71:DF:3D:68:5D:5E:82:89:32:89 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/098D421CB46F292F13CE71DF3D685D5E82893289.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582741577662466/0/3132322e31312e34382e302f32312d3231203d3e2034383038.roa Signing time: Tue 02 Jun 2026 07:45:09 +0000 ROA not before: Tue 02 Jun 2026 07:40:09 +0000 ROA not after: Tue 01 Jun 2027 07:45:09 +0000 asID: 4808 IP address blocks: 122.11.48.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582741577662466/0/098D421CB46F292F13CE71DF3D685D5E82893289.crl rsync://rpki-rps.cnnic.cn/repo/A1065582741577662466/0/098D421CB46F292F13CE71DF3D685D5E82893289.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/098D421CB46F292F13CE71DF3D685D5E82893289.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 19:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:8d:d1:0a:dd:35:da:51:d2:94:dd:30:e9:96:7e:96:88:d3:c6:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098D421CB46F292F13CE71DF3D685D5E82893289 Validity Not Before: Jun 2 07:40:09 2026 GMT Not After : Jun 1 07:45:09 2027 GMT Subject: CN=BF43580F4E7936A0404AD0339E3AA059E7312DEA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:86:e0:78:ce:01:ca:5e:4a:3f:65:0c:8a:b3: 93:67:71:d8:8a:f6:ca:06:40:58:47:15:4c:fc:14: 16:48:54:fc:a4:65:88:22:17:af:8c:6c:b6:50:11: 93:15:b8:bd:53:b5:65:91:77:7d:f7:51:bf:9a:9c: 65:e5:49:20:b7:e8:46:4e:e3:9e:f8:83:3c:ea:7e: f1:b2:d3:1b:d3:fd:91:37:fc:6b:da:38:cb:37:e0: fa:ba:e7:dc:a7:cf:7e:45:e3:73:5c:ed:e4:09:d5: 34:b4:64:7e:c4:58:a9:b6:67:0e:09:31:2f:7c:ed: 2d:2c:e9:7e:b8:fd:94:c8:ab:52:55:a4:81:65:f6: 49:7f:da:af:72:77:75:8a:94:36:2b:24:88:a0:0d: 45:35:74:c6:55:44:41:ab:16:8b:74:04:ef:01:94: 4f:0f:d7:0b:ea:de:e1:12:75:9e:a3:7f:6a:3b:7d: d9:54:d8:46:3a:36:f4:a6:0c:4a:c7:55:b7:29:ee: 5c:98:80:08:ab:1f:fa:04:a5:19:2b:00:42:2b:12: d7:78:52:a1:91:c5:ea:2c:ec:23:f7:49:ea:39:52: 8c:dc:52:e7:1b:13:d9:5e:2b:cf:b0:1d:63:96:db: ba:66:a2:f1:7e:0b:53:24:7d:c0:fa:0f:7f:0a:57: 15:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:43:58:0F:4E:79:36:A0:40:4A:D0:33:9E:3A:A0:59:E7:31:2D:EA X509v3 Authority Key Identifier: keyid:09:8D:42:1C:B4:6F:29:2F:13:CE:71:DF:3D:68:5D:5E:82:89:32:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582741577662466/0/098D421CB46F292F13CE71DF3D685D5E82893289.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/098D421CB46F292F13CE71DF3D685D5E82893289.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582741577662466/0/3132322e31312e34382e302f32312d3231203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.11.48.0/21 Signature Algorithm: sha256WithRSAEncryption 8b:a0:bd:28:28:db:7e:5d:af:95:47:4c:a3:b2:58:eb:2f:0b: 92:4f:ee:ec:a3:b7:fc:00:e5:a5:ef:ec:6f:df:5f:30:88:8f: a0:b1:64:8b:21:f7:54:7d:d2:a3:c5:e4:8d:37:df:f1:a3:1e: 35:68:a9:d8:cd:1b:5a:dc:f4:a3:d7:a2:13:83:6f:39:ac:fe: 96:34:fd:aa:a7:10:be:0d:73:f8:39:74:9e:4f:96:d4:cc:8c: 35:be:71:04:68:99:cf:43:cb:f3:77:96:d2:98:e6:d1:49:a5: 16:d5:41:05:ff:98:91:ec:6c:6f:ea:34:1d:ac:2e:2d:f2:dc: 59:bb:ca:fe:06:64:4a:e2:3c:cf:1f:84:c4:eb:01:5d:13:65: 23:fb:8b:9f:a8:32:46:48:cd:00:d7:2c:f4:55:aa:f1:a6:82: a2:11:3c:45:4d:9c:b2:bb:14:5d:f9:b6:dd:a5:fb:0a:05:ba: 81:0d:68:ce:88:e7:ea:01:21:bf:6c:8d:bc:5c:44:0e:2b:33: 6d:3f:29:77:b4:c7:45:2e:8d:22:e1:c7:c3:58:3f:86:32:6b: 33:4a:34:b8:91:8c:8f:54:2f:2e:bd:d3:75:e4:e8:4a:4d:b9: c2:63:95:41:7a:0f:eb:c1:79:49:6e:64:6e:3e:d2:87:51:3a: 5a:68:a3:82 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUKI3RCt012lHSlN0w6ZZ+lojTxg4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDk4RDQyMUNCNDZGMjkyRjEzQ0U3MURGM0Q2ODVENUU4 Mjg5MzI4OTAeFw0yNjA2MDIwNzQwMDlaFw0yNzA2MDEwNzQ1MDlaMDMxMTAvBgNV BAMTKEJGNDM1ODBGNEU3OTM2QTA0MDRBRDAzMzlFM0FBMDU5RTczMTJERUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4huB4zgHKXko/ZQyKs5NncdiK 9soGQFhHFUz8FBZIVPykZYgiF6+MbLZQEZMVuL1TtWWRd333Ub+anGXlSSC36EZO 4574gzzqfvGy0xvT/ZE3/GvaOMs34Pq659ynz35F43Nc7eQJ1TS0ZH7EWKm2Zw4J MS987S0s6X64/ZTIq1JVpIFl9kl/2q9yd3WKlDYrJIigDUU1dMZVREGrFot0BO8B lE8P1wvq3uESdZ6jf2o7fdlU2EY6NvSmDErHVbcp7lyYgAirH/oEpRkrAEIrEtd4 UqGRxeos7CP3Seo5UozcUucbE9leK8+wHWOW27pmovF+C1MkfcD6D38KVxV5AgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUv0NYD055NqBAStAznjqgWecxLeowHwYDVR0j BBgwFoAUCY1CHLRvKS8TznHfPWhdXoKJMokwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4Mjc0MTU3NzY2MjQ2Ni8wLzA5OEQ0MjFDQjQ2RjI5MkYxM0NFNzFERjNENjg1 RDVFODI4OTMyODkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMDk4RDQyMUNCNDZGMjkyRjEzQ0U3MURGM0Q2ODVENUU4Mjg5MzI4OS5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTgyNzQxNTc3NjYyNDY2LzAvMzEzMjMyMmUzMTMx MmUzNDM4MmUzMDJmMzIzMTJkMzIzMTIwM2QzZTIwMzQzODMwMzgucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAN6CzAwDQYJKoZIhvcNAQELBQADggEBAIugvSgo235dr5VHTKOyWOsvC5JP7uyj t/wA5aXv7G/fXzCIj6CxZIsh91R90qPF5I033/GjHjVoqdjNG1rc9KPXohODbzms /pY0/aqnEL4Nc/g5dJ5PltTMjDW+cQRomc9Dy/N3ltKY5tFJpRbVQQX/mJHsbG/q NB2sLi3y3Fm7yv4GZEriPM8fhMTrAV0TZSP7i5+oMkZIzQDXLPRVqvGmgqIRPEVN nLK7FF35tt2l+woFuoENaM6I5+oBIb9sjbxcRA4rM20/KXe0x0UujSLhx8NYP4Yy azNKNLiRjI9ULy6903Xk6EpNucJjlUF6D+vBeUluZG4+0odROlpoo4I= -----END CERTIFICATE-----Generated at Fri Jun 12 02:24:11 2026 by rpki-client