$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065585649345691650/0/3231302e37382e39362e302f31392d3234203d3e2034383131.roa File: 3231302e37382e39362e302f31392d3234203d3e2034383131.roa (raw, json) Hash identifier: IYrSZ9qhfcBotNGAmKzV4/13HD4woiAmHZChIv5Cs+4= Subject key identifier: DA:88:49:C7:9A:6D:9C:23:5D:5B:1D:19:99:CB:6A:72:05:23:84:76 Certificate issuer: /CN=30774653B3B7BF15B38B8BBFFD73A5C2D1EEF38F Certificate serial: 48CF221A231090FD529E41E43AF18F86D661E414 Authority key identifier: 30:77:46:53:B3:B7:BF:15:B3:8B:8B:BF:FD:73:A5:C2:D1:EE:F3:8F Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/30774653B3B7BF15B38B8BBFFD73A5C2D1EEF38F.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065585649345691650/0/3231302e37382e39362e302f31392d3234203d3e2034383131.roa Signing time: Thu 21 May 2026 09:40:54 +0000 ROA not before: Thu 21 May 2026 09:35:54 +0000 ROA not after: Thu 20 May 2027 09:40:54 +0000 asID: 4811 IP address blocks: 210.78.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065585649345691650/0/30774653B3B7BF15B38B8BBFFD73A5C2D1EEF38F.crl rsync://rpki-rps.cnnic.cn/repo/A1065585649345691650/0/30774653B3B7BF15B38B8BBFFD73A5C2D1EEF38F.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/30774653B3B7BF15B38B8BBFFD73A5C2D1EEF38F.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 15:28:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:cf:22:1a:23:10:90:fd:52:9e:41:e4:3a:f1:8f:86:d6:61:e4:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30774653B3B7BF15B38B8BBFFD73A5C2D1EEF38F Validity Not Before: May 21 09:35:54 2026 GMT Not After : May 20 09:40:54 2027 GMT Subject: CN=DA8849C79A6D9C235D5B1D1999CB6A7205238476 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d2:a6:6f:1d:07:e6:94:60:ee:83:d5:e5:9b: a8:1f:a9:37:2e:87:2f:b7:3b:e0:68:c7:40:4f:30: 0a:38:1c:d5:af:94:be:ac:be:75:bf:ca:6d:d1:a5: d6:d2:f5:a8:5b:d7:25:31:62:85:63:68:db:20:40: 7c:33:2d:a0:cc:10:7a:c4:c7:84:2e:e5:e5:63:19: 4f:ba:05:37:1e:c7:c7:5e:e8:b6:83:19:f8:75:e1: 73:42:81:5c:2a:0c:2d:53:db:2d:64:3b:a6:77:34: f3:6f:71:85:03:10:a3:5e:15:70:46:26:ab:cd:75: f5:f0:0a:9c:3b:2b:93:59:24:72:17:61:c7:6c:24: a0:1c:e7:90:5b:00:f1:6c:fc:66:59:d2:94:7d:40: a5:d7:60:69:80:45:cf:4f:56:a0:97:2e:6f:73:9d: 64:c3:9c:19:29:71:f8:64:b2:5a:73:81:d9:61:47: d7:03:56:e7:2f:8a:8e:3e:f1:58:7b:d4:3f:5e:72: 57:ec:31:71:c3:6f:8f:f7:aa:3d:e2:92:f4:2f:aa: b4:0b:cc:af:3d:1f:63:a0:1d:37:f3:f9:2a:ae:71: 1e:68:c2:1c:c3:f8:10:6f:ed:fe:9a:9d:1f:6a:08: 19:14:9e:59:cb:41:7d:bf:e2:d2:81:71:12:8d:6e: 9d:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:88:49:C7:9A:6D:9C:23:5D:5B:1D:19:99:CB:6A:72:05:23:84:76 X509v3 Authority Key Identifier: keyid:30:77:46:53:B3:B7:BF:15:B3:8B:8B:BF:FD:73:A5:C2:D1:EE:F3:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065585649345691650/0/30774653B3B7BF15B38B8BBFFD73A5C2D1EEF38F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/30774653B3B7BF15B38B8BBFFD73A5C2D1EEF38F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065585649345691650/0/3231302e37382e39362e302f31392d3234203d3e2034383131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.78.96.0/19 Signature Algorithm: sha256WithRSAEncryption 93:fe:19:00:da:ac:7b:05:b7:f2:22:f8:ac:62:ae:dd:df:84: b5:86:83:1d:c6:17:90:28:30:f2:2d:34:91:08:28:29:3b:34: 1c:b1:0c:fd:13:05:8d:62:8d:67:b6:15:e8:52:cc:18:d9:33: e2:66:9e:54:7f:45:a4:42:c2:e3:ed:5e:17:0e:d0:e3:da:bd: 97:df:40:99:5e:07:4c:de:89:2a:05:b0:da:1d:55:7d:e1:cc: 88:df:8a:b4:e9:93:bd:a8:cc:20:57:16:84:f7:13:e1:d0:4e: 77:d9:9f:0e:13:e7:d3:37:09:8b:3e:4e:59:7c:f6:5b:67:9e: d2:5d:e2:b4:1b:6d:37:c3:d2:26:ea:5a:e4:2c:73:d7:3c:7d: 93:2d:94:1f:26:ee:d9:ce:cb:d8:52:bc:4c:4a:8b:50:5c:05: 2f:b8:a2:71:82:ce:e4:68:d2:3a:f2:f8:de:b9:f2:fa:c8:9d: ce:04:92:df:b4:02:bb:e0:fb:9b:99:d6:24:4a:35:7f:57:70: 30:94:8e:71:74:f3:9e:a6:a0:ce:37:07:88:b8:92:92:c2:51: a8:86:8f:0d:ed:d8:9f:fd:a6:4a:8f:9a:e9:c2:a0:ca:c3:c8: e1:6b:e1:e6:ca:3b:ab:4e:d4:f9:84:d3:19:99:c5:c0:9d:cf: 38:9e:51:a5 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUSM8iGiMQkP1SnkHkOvGPhtZh5BQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzA3NzQ2NTNCM0I3QkYxNUIzOEI4QkJGRkQ3M0E1QzJE MUVFRjM4RjAeFw0yNjA1MjEwOTM1NTRaFw0yNzA1MjAwOTQwNTRaMDMxMTAvBgNV BAMTKERBODg0OUM3OUE2RDlDMjM1RDVCMUQxOTk5Q0I2QTcyMDUyMzg0NzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+0qZvHQfmlGDug9Xlm6gfqTcu hy+3O+Box0BPMAo4HNWvlL6svnW/ym3RpdbS9ahb1yUxYoVjaNsgQHwzLaDMEHrE x4Qu5eVjGU+6BTcex8de6LaDGfh14XNCgVwqDC1T2y1kO6Z3NPNvcYUDEKNeFXBG JqvNdfXwCpw7K5NZJHIXYcdsJKAc55BbAPFs/GZZ0pR9QKXXYGmARc9PVqCXLm9z nWTDnBkpcfhkslpzgdlhR9cDVucvio4+8Vh71D9eclfsMXHDb4/3qj3ikvQvqrQL zK89H2OgHTfz+SqucR5owhzD+BBv7f6anR9qCBkUnlnLQX2/4tKBcRKNbp2lAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQU2ohJx5ptnCNdWx0ZmctqcgUjhHYwHwYDVR0j BBgwFoAUMHdGU7O3vxWzi4u//XOlwtHu848wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4NTY0OTM0NTY5MTY1MC8wLzMwNzc0NjUzQjNCN0JGMTVCMzhCOEJCRkZENzNB NUMyRDFFRUYzOEYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMzA3NzQ2NTNCM0I3QkYxNUIzOEI4QkJGRkQ3M0E1QzJEMUVFRjM4Ri5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTg1NjQ5MzQ1NjkxNjUwLzAvMzIzMTMwMmUzNzM4 MmUzOTM2MmUzMDJmMzEzOTJkMzIzNDIwM2QzZTIwMzQzODMxMzEucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAXSTmAwDQYJKoZIhvcNAQELBQADggEBAJP+GQDarHsFt/Ii+Kxirt3fhLWGgx3G F5AoMPItNJEIKCk7NByxDP0TBY1ijWe2FehSzBjZM+JmnlR/RaRCwuPtXhcO0OPa vZffQJleB0zeiSoFsNodVX3hzIjfirTpk72ozCBXFoT3E+HQTnfZnw4T59M3CYs+ Tll89ltnntJd4rQbbTfD0ibqWuQsc9c8fZMtlB8m7tnOy9hSvExKi1BcBS+4onGC zuRo0jry+N658vrInc4Ekt+0Arvg+5uZ1iRKNX9XcDCUjnF0856moM43B4i4kpLC UaiGjw3t2J/9pkqPmunCoMrDyOFr4ebKO6tO1PmE0xmZxcCdzzieUaU= -----END CERTIFICATE-----Generated at Sat May 30 00:41:52 2026 by rpki-client