$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065585389265223681/1/3133392e392e31342e302f32342d3234203d3e203535393930.roa File: 3133392e392e31342e302f32342d3234203d3e203535393930.roa (raw, json) Hash identifier: /oyQEfPUt1oNUG6QclzYO491hGFayvump+ReQV1bbkc= Subject key identifier: 04:94:4E:39:66:5F:E3:4D:AA:FB:F7:AA:92:3B:04:95:FB:9E:33:7D Certificate issuer: /CN=AE1431CDCA3C52456B0146C49D5EEE32961D793D Certificate serial: 2F5CA6962B500938CABE0B36B32427F63B46FFEF Authority key identifier: AE:14:31:CD:CA:3C:52:45:6B:01:46:C4:9D:5E:EE:32:96:1D:79:3D Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/AE1431CDCA3C52456B0146C49D5EEE32961D793D.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065585389265223681/1/3133392e392e31342e302f32342d3234203d3e203535393930.roa Signing time: Wed 27 May 2026 14:36:45 +0000 ROA not before: Wed 27 May 2026 14:31:45 +0000 ROA not after: Wed 26 May 2027 14:36:45 +0000 asID: 55990 IP address blocks: 139.9.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065585389265223681/1/AE1431CDCA3C52456B0146C49D5EEE32961D793D.crl rsync://rpki-rps.cnnic.cn/repo/A1065585389265223681/1/AE1431CDCA3C52456B0146C49D5EEE32961D793D.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/AE1431CDCA3C52456B0146C49D5EEE32961D793D.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 19:24:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:5c:a6:96:2b:50:09:38:ca:be:0b:36:b3:24:27:f6:3b:46:ff:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AE1431CDCA3C52456B0146C49D5EEE32961D793D Validity Not Before: May 27 14:31:45 2026 GMT Not After : May 26 14:36:45 2027 GMT Subject: CN=04944E39665FE34DAAFBF7AA923B0495FB9E337D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:6b:1b:56:f3:0d:04:ea:98:08:14:d4:fb:e5: 08:0e:e7:dd:bd:c5:49:08:a2:01:d4:d5:30:17:1f: 85:22:0c:58:10:1c:36:a0:a2:f7:99:f4:e7:b4:e8: e5:dd:40:9b:4c:2c:6d:3c:71:29:8d:6b:18:da:74: 98:8b:9a:9e:a5:94:34:71:ca:7a:57:63:f7:cf:b9: 2d:9a:70:13:76:64:83:a4:19:df:3a:da:60:a5:e1: 47:53:07:b4:46:30:4d:e9:5c:8d:8d:f8:66:bd:95: 8d:8e:79:38:13:96:08:7d:15:b7:e3:9e:e7:71:b5: 8f:ec:bf:8c:69:39:51:b6:1e:6f:53:2c:d4:9f:35: 73:ed:88:f4:98:62:3d:6c:6f:01:8a:dc:a0:c6:d1: c1:be:5e:e1:91:46:92:00:ce:23:ff:24:76:25:8a: 4d:fd:10:82:40:d4:4d:71:64:5d:59:fc:0b:b8:05: b0:a7:3e:7a:6c:92:33:be:14:30:dd:5c:33:04:f3: 3a:7a:b0:55:f7:51:41:16:be:b3:b0:36:d9:60:12: cd:30:f7:ca:29:bd:3a:02:52:36:bc:df:ad:a0:fc: 08:21:8d:8b:f4:dd:86:72:41:65:fc:71:24:36:e9: 56:d5:f6:8a:cc:ea:a1:5e:c2:ac:81:03:56:bf:2e: f2:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:94:4E:39:66:5F:E3:4D:AA:FB:F7:AA:92:3B:04:95:FB:9E:33:7D X509v3 Authority Key Identifier: keyid:AE:14:31:CD:CA:3C:52:45:6B:01:46:C4:9D:5E:EE:32:96:1D:79:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065585389265223681/1/AE1431CDCA3C52456B0146C49D5EEE32961D793D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/AE1431CDCA3C52456B0146C49D5EEE32961D793D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065585389265223681/1/3133392e392e31342e302f32342d3234203d3e203535393930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.9.14.0/24 Signature Algorithm: sha256WithRSAEncryption 15:0e:e9:60:14:db:b4:ff:ae:ba:ce:7c:91:36:be:8a:68:b4: cb:1f:09:38:b3:a4:ae:e2:17:38:7b:98:35:23:0a:2f:c8:26: f8:0b:56:eb:34:76:00:76:ec:ce:ea:3d:ac:40:bf:46:d5:67: ec:dd:73:a8:8f:77:3a:eb:2b:63:a0:f8:96:b3:14:c6:5c:dd: 07:16:36:48:53:ac:b7:b0:79:c2:74:f0:b9:09:32:f5:ed:d9: d8:fe:70:c0:c8:78:48:b3:bc:b4:71:2c:a9:d2:15:d1:cc:bd: dc:5d:7b:36:9a:97:8f:21:f8:14:d7:7b:93:89:fe:31:46:34: be:5d:7d:7f:92:0a:8c:c3:a6:5c:e0:cf:31:8c:5b:75:48:d8: 08:e3:e7:9f:35:bb:40:ed:17:82:c2:18:c4:36:53:90:73:7f: f2:8d:9a:e9:8e:46:c5:9f:f3:36:ce:cc:02:25:63:c3:43:9e: 6b:c5:96:28:4b:88:cd:53:f0:e6:3d:82:c6:a8:09:19:80:5d: 53:65:53:d5:41:ba:c0:82:45:8f:25:4d:6e:1c:a2:a0:86:6e: a4:54:c3:1a:2d:1e:2d:0d:3a:e9:95:16:82:25:ed:50:89:35: b2:7a:44:29:d2:51:be:a4:b0:28:c5:a6:93:4f:91:de:e1:4d: 2f:f8:7d:b0 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUL1ymlitQCTjKvgs2syQn9jtG/+8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUUxNDMxQ0RDQTNDNTI0NTZCMDE0NkM0OUQ1RUVFMzI5 NjFENzkzRDAeFw0yNjA1MjcxNDMxNDVaFw0yNzA1MjYxNDM2NDVaMDMxMTAvBgNV BAMTKDA0OTQ0RTM5NjY1RkUzNERBQUZCRjdBQTkyM0IwNDk1RkI5RTMzN0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5axtW8w0E6pgIFNT75QgO5929 xUkIogHU1TAXH4UiDFgQHDagoveZ9Oe06OXdQJtMLG08cSmNaxjadJiLmp6llDRx ynpXY/fPuS2acBN2ZIOkGd862mCl4UdTB7RGME3pXI2N+Ga9lY2OeTgTlgh9Fbfj nudxtY/sv4xpOVG2Hm9TLNSfNXPtiPSYYj1sbwGK3KDG0cG+XuGRRpIAziP/JHYl ik39EIJA1E1xZF1Z/Au4BbCnPnpskjO+FDDdXDME8zp6sFX3UUEWvrOwNtlgEs0w 98opvToCUja8362g/AghjYv03YZyQWX8cSQ26VbV9orM6qFewqyBA1a/LvJ/AgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUBJROOWZf402q+/eqkjsElfueM30wHwYDVR0j BBgwFoAUrhQxzco8UkVrAUbEnV7uMpYdeT0wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4NTM4OTI2NTIyMzY4MS8xL0FFMTQzMUNEQ0EzQzUyNDU2QjAxNDZDNDlENUVF RTMyOTYxRDc5M0QuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvQUUxNDMxQ0RDQTNDNTI0NTZCMDE0NkM0OUQ1RUVFMzI5NjFENzkzRC5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTg1Mzg5MjY1MjIzNjgxLzEvMzEzMzM5MmUzOTJl MzEzNDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM1MzUzOTM5MzAucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BACLCQ4wDQYJKoZIhvcNAQELBQADggEBABUO6WAU27T/rrrOfJE2vopotMsfCTiz pK7iFzh7mDUjCi/IJvgLVus0dgB27M7qPaxAv0bVZ+zdc6iPdzrrK2Og+JazFMZc 3QcWNkhTrLewecJ08LkJMvXt2dj+cMDIeEizvLRxLKnSFdHMvdxdezaal48h+BTX e5OJ/jFGNL5dfX+SCozDplzgzzGMW3VI2Ajj5581u0DtF4LCGMQ2U5Bzf/KNmumO RsWf8zbOzAIlY8NDnmvFlihLiM1T8OY9gsaoCRmAXVNlU9VBusCCRY8lTW4coqCG bqRUwxotHi0NOumVFoIl7VCJNbJ6RCnSUb6ksCjFppNPkd7hTS/4fbA= -----END CERTIFICATE-----Generated at Fri Jun 12 04:56:05 2026 by rpki-client