$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065585911217586179/0/3132302e33312e3135322e302f32312d3234203d3e2030.roa File: 3132302e33312e3135322e302f32312d3234203d3e2030.roa (raw, json) Hash identifier: FsvCZUbaG3hRlZH6kUmFkegVgxRRyCSmMilMjQWqGss= Subject key identifier: A3:2E:6F:76:B3:81:DD:3C:1E:EC:39:A6:24:94:22:2D:3B:E4:BA:39 Certificate issuer: /CN=18841C63CD89383303F1BA048085C2212B03B0BD Certificate serial: 38A96BA8CA5164A03CB5AD72F9DE8A3FF99E3858 Authority key identifier: 18:84:1C:63:CD:89:38:33:03:F1:BA:04:80:85:C2:21:2B:03:B0:BD Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/18841C63CD89383303F1BA048085C2212B03B0BD.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/0/3132302e33312e3135322e302f32312d3234203d3e2030.roa Signing time: Wed 17 Jun 2026 02:41:41 +0000 ROA not before: Wed 17 Jun 2026 02:36:41 +0000 ROA not after: Wed 16 Jun 2027 02:41:41 +0000 asID: 0 IP address blocks: 120.31.152.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/0/18841C63CD89383303F1BA048085C2212B03B0BD.crl rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/0/18841C63CD89383303F1BA048085C2212B03B0BD.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/18841C63CD89383303F1BA048085C2212B03B0BD.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 12:28:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:a9:6b:a8:ca:51:64:a0:3c:b5:ad:72:f9:de:8a:3f:f9:9e:38:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18841C63CD89383303F1BA048085C2212B03B0BD Validity Not Before: Jun 17 02:36:41 2026 GMT Not After : Jun 16 02:41:41 2027 GMT Subject: CN=A32E6F76B381DD3C1EEC39A62494222D3BE4BA39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:0e:bf:a6:8f:41:c0:cc:02:25:df:e6:98:5e: 03:cf:62:0b:d1:01:7b:1d:ef:2a:79:a7:ba:17:29: 89:c3:ec:ef:bb:70:fe:89:92:36:93:23:a0:44:3b: 59:98:86:7d:83:d3:10:45:6a:04:e2:2a:53:6f:07: 45:a8:1b:d6:fe:94:6a:cb:ea:f7:bb:e6:fd:62:47: 52:88:16:fb:22:27:ad:e3:6e:fc:60:f2:44:17:92: c5:15:84:fc:ed:05:08:b7:b7:b0:e0:38:56:f9:1c: 4e:c2:28:d6:d5:be:60:bc:76:3d:23:fe:52:28:6d: 79:8c:a5:ae:f6:f0:35:ec:62:7e:0a:6c:67:fb:a0: 0e:ef:ed:74:09:e6:52:d1:04:da:01:57:a2:57:09: e0:54:b2:ad:5f:9f:5f:d2:15:10:93:a0:b5:3f:a3: 72:b8:0f:34:a1:a6:21:52:8b:f3:39:b8:80:75:8e: 75:fb:e7:b3:88:f9:13:f2:60:7d:7f:40:0f:90:2c: a4:7f:70:4a:37:c8:52:66:bb:87:0a:cc:69:f4:3e: ca:a4:70:27:74:34:d5:0e:99:34:13:28:62:c7:25: 14:07:58:09:ab:75:f8:3a:ba:8e:cc:3a:5a:28:42: da:be:c0:b5:4a:7c:38:e5:d8:43:8b:b5:8f:cf:94: 0b:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:2E:6F:76:B3:81:DD:3C:1E:EC:39:A6:24:94:22:2D:3B:E4:BA:39 X509v3 Authority Key Identifier: keyid:18:84:1C:63:CD:89:38:33:03:F1:BA:04:80:85:C2:21:2B:03:B0:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/0/18841C63CD89383303F1BA048085C2212B03B0BD.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/18841C63CD89383303F1BA048085C2212B03B0BD.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/0/3132302e33312e3135322e302f32312d3234203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 120.31.152.0/21 Signature Algorithm: sha256WithRSAEncryption 5d:66:95:46:bd:41:18:58:9a:28:1b:05:3c:d7:78:24:fb:10: 83:5e:fc:2f:d1:fa:9d:9c:d9:94:e6:25:7d:e9:67:8f:9b:89: bd:f6:05:bb:be:87:37:b9:14:77:16:6d:05:30:81:ab:29:c4: f4:83:92:b4:66:8c:24:30:27:b9:84:48:9d:ff:a0:23:7b:fb: d9:24:fb:bc:e8:ec:75:65:a9:b4:76:b6:66:72:99:d0:74:3b: 64:a6:40:66:3d:f2:5e:17:a1:40:c6:d9:aa:de:cd:90:ea:e6: 3e:d6:6b:ae:9e:eb:82:8d:1b:23:e7:1a:52:11:de:2b:d0:7a: 25:73:f0:ca:87:30:e2:42:bf:e9:e8:c0:e9:5c:db:7f:14:46: 94:0c:45:a0:6a:8f:c3:7a:be:e8:4b:d7:05:72:b7:b1:27:e8: 0b:e8:9f:39:76:b4:bf:cd:e9:5e:17:61:7d:8c:a5:4e:76:5b: 4e:ee:93:f6:38:3e:5f:67:54:52:da:38:39:0e:f5:ff:eb:f7: c0:e4:ca:21:a5:21:5e:70:7f:2d:03:2b:af:c6:a7:9e:97:f1: 5b:bf:2f:9f:59:c9:8a:54:da:73:65:82:5b:8a:40:38:87:74: f5:ec:f2:46:a3:be:9a:1c:f1:66:c5:1e:30:95:10:ba:23:62: 6d:eb:7b:be -----BEGIN CERTIFICATE----- MIIFATCCA+mgAwIBAgIUOKlrqMpRZKA8ta1y+d6KP/meOFgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTg4NDFDNjNDRDg5MzgzMzAzRjFCQTA0ODA4NUMyMjEy QjAzQjBCRDAeFw0yNjA2MTcwMjM2NDFaFw0yNzA2MTYwMjQxNDFaMDMxMTAvBgNV BAMTKEEzMkU2Rjc2QjM4MUREM0MxRUVDMzlBNjI0OTQyMjJEM0JFNEJBMzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqDr+mj0HAzAIl3+aYXgPPYgvR AXsd7yp5p7oXKYnD7O+7cP6JkjaTI6BEO1mYhn2D0xBFagTiKlNvB0WoG9b+lGrL 6ve75v1iR1KIFvsiJ63jbvxg8kQXksUVhPztBQi3t7DgOFb5HE7CKNbVvmC8dj0j /lIobXmMpa728DXsYn4KbGf7oA7v7XQJ5lLRBNoBV6JXCeBUsq1fn1/SFRCToLU/ o3K4DzShpiFSi/M5uIB1jnX757OI+RPyYH1/QA+QLKR/cEo3yFJmu4cKzGn0Psqk cCd0NNUOmTQTKGLHJRQHWAmrdfg6uo7MOlooQtq+wLVKfDjl2EOLtY/PlAuJAgMB AAGjggILMIICBzAdBgNVHQ4EFgQUoy5vdrOB3Twe7DmmJJQiLTvkujkwHwYDVR0j BBgwFoAUGIQcY82JODMD8boEgIXCISsDsL0wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4NTkxMTIxNzU4NjE3OS8wLzE4ODQxQzYzQ0Q4OTM4MzMwM0YxQkEwNDgwODVD MjIxMkIwM0IwQkQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMTg4NDFDNjNDRDg5MzgzMzAzRjFCQTA0ODA4NUMyMjEyQjAzQjBCRC5jZXIw gYQGCCsGAQUFBwELBHgwdjB0BggrBgEFBQcwC4ZocnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTg1OTExMjE3NTg2MTc5LzAvMzEzMjMwMmUzMzMx MmUzMTM1MzIyZTMwMmYzMjMxMmQzMjM0MjAzZDNlMjAzMC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3gf mDANBgkqhkiG9w0BAQsFAAOCAQEAXWaVRr1BGFiaKBsFPNd4JPsQg178L9H6nZzZ lOYlfelnj5uJvfYFu76HN7kUdxZtBTCBqynE9IOStGaMJDAnuYRInf+gI3v72ST7 vOjsdWWptHa2ZnKZ0HQ7ZKZAZj3yXhehQMbZqt7NkOrmPtZrrp7rgo0bI+caUhHe K9B6JXPwyocw4kK/6ejA6VzbfxRGlAxFoGqPw3q+6EvXBXK3sSfoC+ifOXa0v83p XhdhfYylTnZbTu6T9jg+X2dUUto4OQ71/+v3wOTKIaUhXnB/LQMrr8annpfxW78v n1nJilTac2WCW4pAOId09ezyRqO+mhzxZsUeMJUQuiNibet7vg== -----END CERTIFICATE-----Generated at Sat Jun 20 04:11:40 2026 by rpki-client