$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065585911217586179/0/3132302e33312e302e302f31382d3234203d3e20323037353530.roa File: 3132302e33312e302e302f31382d3234203d3e20323037353530.roa (raw, json) Hash identifier: ymAeWTSYXvQsPPuMeQyI2ijZ+y715PsGZrmK6qrlIcU= Subject key identifier: AD:57:FD:54:F1:13:6D:43:E2:E9:91:F1:68:6A:B1:65:6D:A4:38:DF Certificate issuer: /CN=18841C63CD89383303F1BA048085C2212B03B0BD Certificate serial: 3D3849B2DD2A9B645421B52EBBA88A78F008B7EA Authority key identifier: 18:84:1C:63:CD:89:38:33:03:F1:BA:04:80:85:C2:21:2B:03:B0:BD Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/18841C63CD89383303F1BA048085C2212B03B0BD.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/0/3132302e33312e302e302f31382d3234203d3e20323037353530.roa Signing time: Tue 02 Jun 2026 08:18:51 +0000 ROA not before: Tue 02 Jun 2026 08:13:51 +0000 ROA not after: Tue 01 Jun 2027 08:18:51 +0000 asID: 207550 IP address blocks: 120.31.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/0/18841C63CD89383303F1BA048085C2212B03B0BD.crl rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/0/18841C63CD89383303F1BA048085C2212B03B0BD.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/18841C63CD89383303F1BA048085C2212B03B0BD.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jun 2026 10:16:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:38:49:b2:dd:2a:9b:64:54:21:b5:2e:bb:a8:8a:78:f0:08:b7:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18841C63CD89383303F1BA048085C2212B03B0BD Validity Not Before: Jun 2 08:13:51 2026 GMT Not After : Jun 1 08:18:51 2027 GMT Subject: CN=AD57FD54F1136D43E2E991F1686AB1656DA438DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:d3:9f:36:cc:c0:6c:40:0a:92:40:9b:56:fd: 90:4d:f1:87:e2:42:90:6a:38:26:a3:af:5f:8f:2a: 76:8a:df:15:56:bc:ab:f5:5c:17:bd:a5:68:81:ed: d4:98:46:c0:25:bf:ca:53:fe:7e:7a:dd:34:14:2d: 69:0f:71:74:44:9d:ca:9e:95:ec:c9:02:9f:de:64: ea:1e:14:35:f8:e8:b3:93:02:f6:38:be:35:d7:94: 31:71:13:39:56:31:b5:49:67:12:5c:fa:b9:ec:de: 12:16:11:8d:0b:4c:5d:b1:a1:a1:ad:d2:a6:8d:2b: 25:0d:af:3c:f5:9b:1f:03:2a:85:d2:9d:82:3d:b8: 83:ce:ac:5e:19:c5:4d:4c:cb:fb:65:69:6c:5d:30: df:5f:cb:64:80:22:ad:1d:3b:1c:f2:20:05:5c:4a: 51:96:5b:76:60:93:1c:f5:48:03:cf:be:d7:47:7c: b3:a2:dd:2b:14:84:13:ab:69:1e:77:7e:7f:2a:9f: 5b:86:8f:c9:52:8c:68:a1:70:b0:57:d5:df:ef:6d: 20:39:a4:32:f7:d7:72:f8:9f:c0:a5:3f:49:7b:eb: af:2b:98:6f:3c:93:ed:de:f4:66:e5:ae:c7:cd:fe: 71:2b:3d:14:f9:65:12:06:f2:8a:54:5d:2a:6f:39: 95:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:57:FD:54:F1:13:6D:43:E2:E9:91:F1:68:6A:B1:65:6D:A4:38:DF X509v3 Authority Key Identifier: keyid:18:84:1C:63:CD:89:38:33:03:F1:BA:04:80:85:C2:21:2B:03:B0:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/0/18841C63CD89383303F1BA048085C2212B03B0BD.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/18841C63CD89383303F1BA048085C2212B03B0BD.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/0/3132302e33312e302e302f31382d3234203d3e20323037353530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 120.31.0.0/18 Signature Algorithm: sha256WithRSAEncryption 96:70:77:e1:ae:d3:a6:97:a9:81:ef:95:63:6e:b9:e3:10:b7: 03:a6:af:50:f1:17:88:55:4f:f1:1e:11:65:a8:2a:1f:39:2d: bc:80:9c:a5:83:6e:c6:b4:b7:f9:a7:7c:48:ee:8e:41:c9:5e: 9c:3b:f6:5f:8d:94:f9:51:21:b7:48:09:1b:00:3a:5d:60:e9: 16:04:99:34:ed:66:70:80:a8:47:fd:e4:50:cd:69:7f:e6:e7: 0e:f4:9d:f6:1f:3a:5d:61:69:97:a0:92:40:0a:0a:44:c3:08: aa:64:82:2d:2c:5b:5a:a4:41:59:e0:ce:86:79:38:a1:e3:80: 90:bb:75:2b:38:f1:92:06:b8:63:47:56:2f:d0:0c:26:74:b0: 4e:ce:1b:49:1c:bc:ea:37:97:2e:df:9e:d7:4a:79:33:85:11: be:20:06:79:39:ef:43:c0:40:7a:f6:dd:4d:2f:43:76:e7:77: 99:3f:20:6a:ea:c9:b2:b6:d9:e9:bf:f9:53:32:44:a5:55:8b: df:7d:01:4d:68:72:ca:a4:fc:1f:e3:78:27:64:df:e6:23:f2: 03:5c:3b:c3:86:c0:5e:64:cb:5f:dc:7d:f7:40:8a:72:5e:53: b4:9c:e7:99:7a:57:68:d5:34:44:4d:27:be:b4:17:d3:47:9f: 3d:f1:de:69 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUPThJst0qm2RUIbUuu6iKePAIt+owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTg4NDFDNjNDRDg5MzgzMzAzRjFCQTA0ODA4NUMyMjEy QjAzQjBCRDAeFw0yNjA2MDIwODEzNTFaFw0yNzA2MDEwODE4NTFaMDMxMTAvBgNV BAMTKEFENTdGRDU0RjExMzZENDNFMkU5OTFGMTY4NkFCMTY1NkRBNDM4REYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDV0582zMBsQAqSQJtW/ZBN8Yfi QpBqOCajr1+PKnaK3xVWvKv1XBe9pWiB7dSYRsAlv8pT/n563TQULWkPcXREncqe lezJAp/eZOoeFDX46LOTAvY4vjXXlDFxEzlWMbVJZxJc+rns3hIWEY0LTF2xoaGt 0qaNKyUNrzz1mx8DKoXSnYI9uIPOrF4ZxU1My/tlaWxdMN9fy2SAIq0dOxzyIAVc SlGWW3Zgkxz1SAPPvtdHfLOi3SsUhBOraR53fn8qn1uGj8lSjGihcLBX1d/vbSA5 pDL313L4n8ClP0l7668rmG88k+3e9GblrsfN/nErPRT5ZRIG8opUXSpvOZWrAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUrVf9VPETbUPi6ZHxaGqxZW2kON8wHwYDVR0j BBgwFoAUGIQcY82JODMD8boEgIXCISsDsL0wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4NTkxMTIxNzU4NjE3OS8wLzE4ODQxQzYzQ0Q4OTM4MzMwM0YxQkEwNDgwODVD MjIxMkIwM0IwQkQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMTg4NDFDNjNDRDg5MzgzMzAzRjFCQTA0ODA4NUMyMjEyQjAzQjBCRC5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTg1OTExMjE3NTg2MTc5LzAvMzEzMjMwMmUzMzMx MmUzMDJlMzAyZjMxMzgyZDMyMzQyMDNkM2UyMDMyMzAzNzM1MzUzMC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBngfADANBgkqhkiG9w0BAQsFAAOCAQEAlnB34a7Tppepge+VY2654xC3A6av UPEXiFVP8R4RZagqHzktvICcpYNuxrS3+ad8SO6OQclenDv2X42U+VEht0gJGwA6 XWDpFgSZNO1mcICoR/3kUM1pf+bnDvSd9h86XWFpl6CSQAoKRMMIqmSCLSxbWqRB WeDOhnk4oeOAkLt1Kzjxkga4Y0dWL9AMJnSwTs4bSRy86jeXLt+e10p5M4URviAG eTnvQ8BAevbdTS9Ddud3mT8gaurJsrbZ6b/5UzJEpVWL330BTWhyyqT8H+N4J2Tf 5iPyA1w7w4bAXmTLX9x990CKcl5TtJznmXpXaNU0RE0nvrQX00efPfHeaQ== -----END CERTIFICATE-----Generated at Tue Jun 2 21:24:58 2026 by rpki-client