$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065583221972271107/0/3131352e3137342e302e302f31382d3138203d3e2030.roa File: 3131352e3137342e302e302f31382d3138203d3e2030.roa (raw, json) Hash identifier: Bs4OTtUy9z+wglOhQh5hEIPsimXC+0WIM208ZqWyuXQ= Subject key identifier: 18:F7:9C:AC:C7:6F:21:86:12:FC:35:9B:01:6B:7C:58:E6:2D:B2:85 Certificate issuer: /CN=8FAB27452D80D270582E88C3F77F13734A31720D Certificate serial: 43B70FBBA2873B72532F8A9C84E609C1B78A2A8E Authority key identifier: 8F:AB:27:45:2D:80:D2:70:58:2E:88:C3:F7:7F:13:73:4A:31:72:0D Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8FAB27452D80D270582E88C3F77F13734A31720D.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065583221972271107/0/3131352e3137342e302e302f31382d3138203d3e2030.roa Signing time: Fri 29 May 2026 07:27:22 +0000 ROA not before: Fri 29 May 2026 07:22:22 +0000 ROA not after: Fri 28 May 2027 07:27:22 +0000 asID: 0 IP address blocks: 115.174.0.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065583221972271107/0/8FAB27452D80D270582E88C3F77F13734A31720D.crl rsync://rpki-rps.cnnic.cn/repo/A1065583221972271107/0/8FAB27452D80D270582E88C3F77F13734A31720D.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8FAB27452D80D270582E88C3F77F13734A31720D.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 08:53:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:b7:0f:bb:a2:87:3b:72:53:2f:8a:9c:84:e6:09:c1:b7:8a:2a:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FAB27452D80D270582E88C3F77F13734A31720D Validity Not Before: May 29 07:22:22 2026 GMT Not After : May 28 07:27:22 2027 GMT Subject: CN=18F79CACC76F218612FC359B016B7C58E62DB285 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:52:8c:2e:74:d3:e4:39:e3:9b:02:c1:c2:fb: 5d:7c:50:81:ab:65:4b:74:28:03:57:75:b5:e1:c8: ef:42:a2:bf:a0:60:6d:bd:4b:fe:39:84:17:31:3e: b6:2e:e7:25:18:c5:9e:48:9d:04:74:dd:c1:2f:ac: cd:de:63:f2:4b:99:27:ac:ff:ea:7f:ca:32:48:ac: c6:d8:20:3f:82:f8:d4:3e:a8:d5:a7:05:f2:72:e9: 55:a9:81:c7:e9:dd:2b:70:5a:e0:de:d4:13:04:48: 8b:79:39:8e:e3:0b:b4:04:f6:c5:26:fd:c7:c1:0e: 72:72:e1:fa:c1:6b:bc:0c:52:97:32:0d:9a:d5:65: eb:7d:c8:90:17:35:22:d0:1d:1d:ca:a0:40:df:54: 54:38:70:c0:a8:7c:92:bb:49:27:c0:b4:15:c0:b0: 3a:e3:06:30:b3:e9:1c:9e:f4:88:c4:01:93:26:2d: 19:d9:9a:82:17:76:16:a9:94:d4:f5:46:39:ca:a6: 8e:89:57:9f:91:08:c1:79:89:25:3b:21:c3:1d:6f: 24:6d:bc:06:66:96:9d:f3:fd:46:12:d7:b2:03:dc: 67:3d:bc:83:e1:2c:bd:e9:ef:7b:d7:76:14:a4:e1: a2:e9:e4:2f:93:11:1c:94:8e:0f:64:23:d5:b6:37: 1f:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:F7:9C:AC:C7:6F:21:86:12:FC:35:9B:01:6B:7C:58:E6:2D:B2:85 X509v3 Authority Key Identifier: keyid:8F:AB:27:45:2D:80:D2:70:58:2E:88:C3:F7:7F:13:73:4A:31:72:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065583221972271107/0/8FAB27452D80D270582E88C3F77F13734A31720D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8FAB27452D80D270582E88C3F77F13734A31720D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065583221972271107/0/3131352e3137342e302e302f31382d3138203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 115.174.0.0/18 Signature Algorithm: sha256WithRSAEncryption 0f:12:1c:b7:6b:29:80:e4:04:58:05:00:6f:a0:ff:61:52:11: 6b:53:26:bf:be:09:aa:99:e7:45:a3:e1:53:5e:1c:b9:12:cd: 8f:52:d2:8c:a2:47:6b:f1:ab:18:06:a0:65:93:2d:04:fe:43: 05:a6:7a:ab:64:b0:98:9f:79:be:5c:64:9a:48:6a:65:05:67: a4:e1:79:03:6c:48:48:b0:ea:78:ce:a5:21:b4:5b:91:d2:61: 83:ee:a4:51:48:ef:c9:75:f3:ba:f6:e7:04:0a:d7:2f:93:1e: fd:25:d7:19:de:da:7a:1b:0f:f4:43:ac:06:9a:16:b1:2c:70: af:da:5d:8b:22:93:a2:71:ca:28:79:73:27:4f:2c:d1:c2:5b: 87:90:8b:eb:db:28:e1:fb:63:95:e1:89:80:8e:4a:bb:65:d7: 8b:6e:4e:a9:8d:48:95:06:32:2c:ec:54:9c:0b:f5:ba:d2:5e: a9:8c:19:bf:9a:a8:db:f5:29:0c:76:d3:27:48:1c:5d:58:fa: 4a:99:27:03:24:1d:24:78:71:21:88:01:f0:24:ed:32:4c:a9: 7b:7e:04:85:cd:1a:b5:68:0d:e2:d9:97:11:10:18:ca:3e:61: dd:8f:86:48:26:8c:e7:2c:dc:17:d7:e6:82:d5:2f:b0:e2:98: bf:03:b8:c5 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgIUQ7cPu6KHO3JTL4qchOYJwbeKKo4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZBQjI3NDUyRDgwRDI3MDU4MkU4OEMzRjc3RjEzNzM0 QTMxNzIwRDAeFw0yNjA1MjkwNzIyMjJaFw0yNzA1MjgwNzI3MjJaMDMxMTAvBgNV BAMTKDE4Rjc5Q0FDQzc2RjIxODYxMkZDMzU5QjAxNkI3QzU4RTYyREIyODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCMUowudNPkOeObAsHC+118UIGr ZUt0KANXdbXhyO9Cor+gYG29S/45hBcxPrYu5yUYxZ5InQR03cEvrM3eY/JLmSes /+p/yjJIrMbYID+C+NQ+qNWnBfJy6VWpgcfp3StwWuDe1BMESIt5OY7jC7QE9sUm /cfBDnJy4frBa7wMUpcyDZrVZet9yJAXNSLQHR3KoEDfVFQ4cMCofJK7SSfAtBXA sDrjBjCz6Rye9IjEAZMmLRnZmoIXdhaplNT1RjnKpo6JV5+RCMF5iSU7IcMdbyRt vAZmlp3z/UYS17ID3Gc9vIPhLL3p73vXdhSk4aLp5C+TERyUjg9kI9W2Nx/hAgMB AAGjggIJMIICBTAdBgNVHQ4EFgQUGPecrMdvIYYS/DWbAWt8WOYtsoUwHwYDVR0j BBgwFoAUj6snRS2A0nBYLojD938Tc0oxcg0wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4MzIyMTk3MjI3MTEwNy8wLzhGQUIyNzQ1MkQ4MEQyNzA1ODJFODhDM0Y3N0Yx MzczNEEzMTcyMEQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOEZBQjI3NDUyRDgwRDI3MDU4MkU4OEMzRjc3RjEzNzM0QTMxNzIwRC5jZXIw gYIGCCsGAQUFBwELBHYwdDByBggrBgEFBQcwC4ZmcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTgzMjIxOTcyMjcxMTA3LzAvMzEzMTM1MmUzMTM3 MzQyZTMwMmUzMDJmMzEzODJkMzEzODIwM2QzZTIwMzAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAZzrgAw DQYJKoZIhvcNAQELBQADggEBAA8SHLdrKYDkBFgFAG+g/2FSEWtTJr++CaqZ50Wj 4VNeHLkSzY9S0oyiR2vxqxgGoGWTLQT+QwWmeqtksJifeb5cZJpIamUFZ6TheQNs SEiw6njOpSG0W5HSYYPupFFI78l187r25wQK1y+THv0l1xne2nobD/RDrAaaFrEs cK/aXYsik6Jxyih5cydPLNHCW4eQi+vbKOH7Y5XhiYCOSrtl14tuTqmNSJUGMizs VJwL9brSXqmMGb+aqNv1KQx20ydIHF1Y+kqZJwMkHSR4cSGIAfAk7TJMqXt+BIXN GrVoDeLZlxEQGMo+Yd2PhkgmjOcs3BfX5oLVL7DimL8DuMU= -----END CERTIFICATE-----Generated at Fri May 29 23:49:58 2026 by rpki-client