$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065585911217586179/0/3132302e33312e36342e302f32332d3234203d3e20323037353530.roa File: 3132302e33312e36342e302f32332d3234203d3e20323037353530.roa (raw, json) Hash identifier: b4ILeZj1ZFfWFbTnyt49QlzYZnh9yIc9QHh29nwR0R4= Subject key identifier: CA:F9:49:F2:F1:58:31:04:8B:90:7F:B9:39:67:F5:3A:3E:82:D0:0A Certificate issuer: /CN=18841C63CD89383303F1BA048085C2212B03B0BD Certificate serial: 1271286CAAB5260D79820BC19B4D428E52D1C26B Authority key identifier: 18:84:1C:63:CD:89:38:33:03:F1:BA:04:80:85:C2:21:2B:03:B0:BD Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/18841C63CD89383303F1BA048085C2212B03B0BD.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/0/3132302e33312e36342e302f32332d3234203d3e20323037353530.roa Signing time: Tue 02 Jun 2026 08:18:51 +0000 ROA not before: Tue 02 Jun 2026 08:13:51 +0000 ROA not after: Tue 01 Jun 2027 08:18:51 +0000 asID: 207550 IP address blocks: 120.31.64.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/0/18841C63CD89383303F1BA048085C2212B03B0BD.crl rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/0/18841C63CD89383303F1BA048085C2212B03B0BD.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/18841C63CD89383303F1BA048085C2212B03B0BD.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jun 2026 10:16:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:71:28:6c:aa:b5:26:0d:79:82:0b:c1:9b:4d:42:8e:52:d1:c2:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18841C63CD89383303F1BA048085C2212B03B0BD Validity Not Before: Jun 2 08:13:51 2026 GMT Not After : Jun 1 08:18:51 2027 GMT Subject: CN=CAF949F2F15831048B907FB93967F53A3E82D00A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:08:34:d4:6c:ce:90:00:11:75:df:58:fc:d0: 55:d3:76:3d:f9:5e:ab:82:14:54:3a:f3:17:9b:49: 71:10:b8:32:fd:45:bd:0e:fd:cf:81:71:a6:0a:cb: ba:6b:cc:84:b6:38:ba:22:04:c1:9d:a6:74:f2:0c: f2:6e:74:1c:a2:4d:a7:a5:c8:89:c9:8e:c0:3c:40: 86:01:8b:0f:2c:13:ec:63:cf:52:ab:88:35:b1:ba: 89:2d:8f:bc:38:2d:9f:b2:bc:f2:14:e1:e2:25:83: 00:86:b9:73:e9:2f:ea:62:d3:a6:56:c2:53:f2:eb: 24:0c:b2:ad:24:8f:a8:89:50:52:24:1f:64:1e:bf: 17:ba:b0:01:d4:14:66:3b:e9:b3:c6:b3:54:f7:a2: fd:4b:7f:33:89:f6:af:11:da:f8:38:59:23:b5:39: e3:07:63:88:03:04:83:f4:7e:19:41:15:76:f5:33: b4:c3:7c:bd:bc:7d:81:29:f2:94:72:a0:7b:e4:d5: c6:cb:8f:b9:8a:23:98:99:f0:a3:9d:23:36:5e:aa: 52:89:51:16:5b:2c:f7:e7:32:79:d1:2b:04:18:ab: b5:cd:ea:47:e9:ac:84:aa:5e:a9:38:f7:51:cf:88: f4:9c:7a:f9:63:81:78:de:64:ce:b1:d0:5c:1a:81: f3:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:F9:49:F2:F1:58:31:04:8B:90:7F:B9:39:67:F5:3A:3E:82:D0:0A X509v3 Authority Key Identifier: keyid:18:84:1C:63:CD:89:38:33:03:F1:BA:04:80:85:C2:21:2B:03:B0:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/0/18841C63CD89383303F1BA048085C2212B03B0BD.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/18841C63CD89383303F1BA048085C2212B03B0BD.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/0/3132302e33312e36342e302f32332d3234203d3e20323037353530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 120.31.64.0/23 Signature Algorithm: sha256WithRSAEncryption 9f:1f:11:14:d2:c9:69:df:d7:b7:79:cb:86:82:92:0f:37:8b: 8f:1c:9d:35:37:02:6d:7e:ce:c7:d3:78:95:e0:27:42:e1:76: 33:f9:46:2d:b0:79:69:ca:b2:39:36:19:c0:2c:5f:bf:cb:32: c4:e0:e6:a6:f5:72:3f:d9:fd:7f:94:1c:1b:f9:de:dd:48:b4: 43:00:32:9e:fa:2a:3e:69:bf:db:3a:59:b7:cf:95:78:d6:66: e5:3d:6b:75:ff:92:2b:29:df:90:52:f4:36:89:5a:a3:16:13: 70:c6:3a:e3:1d:4a:46:9f:6c:b7:8f:c6:6b:fd:f6:c1:59:6c: 37:ec:cc:1b:4b:ce:af:78:63:0b:6b:af:06:a8:24:75:28:e0: 2d:e7:7d:de:c2:03:7e:21:07:7d:4b:ef:12:c0:7f:7d:83:d6: 30:e5:55:27:2b:70:5d:1b:26:89:b7:da:7b:b3:93:72:d4:40: 18:5a:e8:db:60:68:42:15:63:d1:13:30:67:0d:ec:c6:fc:eb: f4:ec:f2:ef:7f:f5:cc:2e:a0:50:4a:ef:3d:41:96:2b:a7:92: a2:e5:0c:bb:88:af:e3:23:3d:d9:db:85:80:b6:d0:f1:cc:ef: 6f:5f:a6:54:cf:d7:64:ac:2b:de:77:ea:b4:bc:b4:56:5b:55: 87:43:c2:f7 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUEnEobKq1Jg15ggvBm01CjlLRwmswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTg4NDFDNjNDRDg5MzgzMzAzRjFCQTA0ODA4NUMyMjEy QjAzQjBCRDAeFw0yNjA2MDIwODEzNTFaFw0yNzA2MDEwODE4NTFaMDMxMTAvBgNV BAMTKENBRjk0OUYyRjE1ODMxMDQ4QjkwN0ZCOTM5NjdGNTNBM0U4MkQwMEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDyCDTUbM6QABF131j80FXTdj35 XquCFFQ68xebSXEQuDL9Rb0O/c+BcaYKy7przIS2OLoiBMGdpnTyDPJudByiTael yInJjsA8QIYBiw8sE+xjz1KriDWxuoktj7w4LZ+yvPIU4eIlgwCGuXPpL+pi06ZW wlPy6yQMsq0kj6iJUFIkH2Qevxe6sAHUFGY76bPGs1T3ov1LfzOJ9q8R2vg4WSO1 OeMHY4gDBIP0fhlBFXb1M7TDfL28fYEp8pRyoHvk1cbLj7mKI5iZ8KOdIzZeqlKJ URZbLPfnMnnRKwQYq7XN6kfprISqXqk491HPiPScevljgXjeZM6x0FwagfMhAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUyvlJ8vFYMQSLkH+5OWf1Oj6C0AowHwYDVR0j BBgwFoAUGIQcY82JODMD8boEgIXCISsDsL0wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4NTkxMTIxNzU4NjE3OS8wLzE4ODQxQzYzQ0Q4OTM4MzMwM0YxQkEwNDgwODVD MjIxMkIwM0IwQkQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMTg4NDFDNjNDRDg5MzgzMzAzRjFCQTA0ODA4NUMyMjEyQjAzQjBCRC5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU4NTkxMTIxNzU4NjE3OS8wLzMxMzIzMDJlMzMz MTJlMzYzNDJlMzAyZjMyMzMyZDMyMzQyMDNkM2UyMDMyMzAzNzM1MzUzMC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAXgfQDANBgkqhkiG9w0BAQsFAAOCAQEAnx8RFNLJad/Xt3nLhoKSDzeL jxydNTcCbX7Ox9N4leAnQuF2M/lGLbB5acqyOTYZwCxfv8syxODmpvVyP9n9f5Qc G/ne3Ui0QwAynvoqPmm/2zpZt8+VeNZm5T1rdf+SKynfkFL0NolaoxYTcMY64x1K Rp9st4/Ga/32wVlsN+zMG0vOr3hjC2uvBqgkdSjgLed93sIDfiEHfUvvEsB/fYPW MOVVJytwXRsmibfae7OTctRAGFro22BoQhVj0RMwZw3sxvzr9Ozy73/1zC6gUErv PUGWK6eSouUMu4iv4yM92duFgLbQ8czvb1+mVM/XZKwr3nfqtLy0VltVh0PC9w== -----END CERTIFICATE-----Generated at Tue Jun 2 21:25:20 2026 by rpki-client