$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065585911217586179/0/3132302e33312e36342e302f32332d3234203d3e2033343931.roa File: 3132302e33312e36342e302f32332d3234203d3e2033343931.roa (raw, json) Hash identifier: ZjqaPjRHoOYgt9crs7MCvdTzvcaaWH3K94vsc9QGtvs= Subject key identifier: B8:C9:C6:24:D1:37:B4:52:EC:C0:98:82:1C:B6:F5:F8:BD:9F:F4:02 Certificate issuer: /CN=18841C63CD89383303F1BA048085C2212B03B0BD Certificate serial: 1F579540409A903033098F29514C1329CE0F6603 Authority key identifier: 18:84:1C:63:CD:89:38:33:03:F1:BA:04:80:85:C2:21:2B:03:B0:BD Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/18841C63CD89383303F1BA048085C2212B03B0BD.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/0/3132302e33312e36342e302f32332d3234203d3e2033343931.roa Signing time: Tue 26 May 2026 08:07:10 +0000 ROA not before: Tue 26 May 2026 08:02:10 +0000 ROA not after: Tue 25 May 2027 08:07:10 +0000 asID: 3491 IP address blocks: 120.31.64.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/0/18841C63CD89383303F1BA048085C2212B03B0BD.crl rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/0/18841C63CD89383303F1BA048085C2212B03B0BD.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/18841C63CD89383303F1BA048085C2212B03B0BD.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Jun 2026 23:56:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:57:95:40:40:9a:90:30:33:09:8f:29:51:4c:13:29:ce:0f:66:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18841C63CD89383303F1BA048085C2212B03B0BD Validity Not Before: May 26 08:02:10 2026 GMT Not After : May 25 08:07:10 2027 GMT Subject: CN=B8C9C624D137B452ECC098821CB6F5F8BD9FF402 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:d2:6b:fb:a6:56:e3:29:f1:a2:9c:9f:f5:8d: 8b:98:30:54:15:56:fa:cf:29:c7:2d:54:82:d9:44: e1:41:8e:a1:fd:d1:61:a2:6b:7d:e0:4e:a9:e0:22: 90:ea:bc:e9:ae:4a:fd:b5:0e:b7:38:da:13:f6:3e: 04:34:c4:04:37:54:3d:a3:39:f6:24:84:d7:1e:b5: d3:cb:a0:5a:dd:22:c1:71:3b:08:80:3e:c1:c3:f2: c9:50:82:68:52:e1:d3:2f:7f:a4:e4:dd:05:b2:4b: 47:97:64:fd:d1:57:95:d3:f8:8d:84:21:30:f4:63: 47:c3:64:d1:22:66:7f:98:33:23:d6:5b:3d:80:99: 80:80:5f:fd:f5:0f:92:5b:b8:e3:4b:48:7c:99:62: 50:1c:dd:aa:2c:79:1f:56:0d:a2:2b:31:53:c7:0c: c4:5a:3f:1d:74:01:94:6f:4b:64:6f:50:75:d8:ce: 82:07:89:47:43:39:28:28:52:c1:4b:20:35:69:3e: f0:e9:88:5b:46:b9:8f:13:c9:71:5e:16:87:29:d0: 39:13:0a:d9:c8:db:56:83:24:1f:f4:c5:47:9b:8d: ec:fc:17:02:d4:98:43:40:9c:12:28:48:a6:7d:06: cd:ea:dc:8e:b3:45:40:dc:23:4e:32:a7:ba:48:03: f8:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:C9:C6:24:D1:37:B4:52:EC:C0:98:82:1C:B6:F5:F8:BD:9F:F4:02 X509v3 Authority Key Identifier: keyid:18:84:1C:63:CD:89:38:33:03:F1:BA:04:80:85:C2:21:2B:03:B0:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/0/18841C63CD89383303F1BA048085C2212B03B0BD.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/18841C63CD89383303F1BA048085C2212B03B0BD.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/0/3132302e33312e36342e302f32332d3234203d3e2033343931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 120.31.64.0/23 Signature Algorithm: sha256WithRSAEncryption aa:a3:ec:01:7d:41:c5:7e:46:99:8e:7a:c1:f9:ed:be:87:90: 18:5f:62:12:8e:ec:0e:6c:b7:73:ff:ee:e1:5a:1e:37:0b:11: e7:e7:55:49:9e:f0:93:59:50:bc:ca:16:2b:1d:39:58:c2:9b: 92:50:1f:94:c5:7f:cf:d9:77:27:c9:36:40:fc:65:6b:48:30: af:f9:22:81:35:00:6d:cd:ed:ed:40:f4:b6:75:b1:78:8c:e0: 9f:b3:3d:d2:a8:f6:19:77:d3:a5:6a:31:b4:3f:0e:51:46:9b: d0:9c:96:35:d9:ed:c9:5c:56:06:72:9b:cb:78:7d:9b:1b:5a: 7e:fa:f7:5e:10:cd:a5:c6:c0:6e:8b:b3:6c:8b:37:12:c7:02: 62:d6:cd:03:24:b9:11:af:e6:73:36:02:f6:4e:49:2b:db:1c: 65:35:b8:f9:0e:97:85:4e:de:49:3f:d9:7c:67:42:be:07:be: bb:5b:4a:4c:de:e7:f4:ff:25:67:62:31:7e:8a:66:11:58:62: c8:65:59:59:e6:87:f3:54:c5:17:01:6a:94:69:5b:b8:c9:33: f5:0c:52:05:4f:38:dc:e8:0c:ea:03:79:93:56:f5:74:83:46: 5c:75:0a:ab:18:a7:aa:8c:b0:30:ca:38:ea:78:7c:71:7e:34: 4f:bc:77:ca -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUH1eVQECakDAzCY8pUUwTKc4PZgMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTg4NDFDNjNDRDg5MzgzMzAzRjFCQTA0ODA4NUMyMjEy QjAzQjBCRDAeFw0yNjA1MjYwODAyMTBaFw0yNzA1MjUwODA3MTBaMDMxMTAvBgNV BAMTKEI4QzlDNjI0RDEzN0I0NTJFQ0MwOTg4MjFDQjZGNUY4QkQ5RkY0MDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDw0mv7plbjKfGinJ/1jYuYMFQV VvrPKcctVILZROFBjqH90WGia33gTqngIpDqvOmuSv21Drc42hP2PgQ0xAQ3VD2j OfYkhNcetdPLoFrdIsFxOwiAPsHD8slQgmhS4dMvf6Tk3QWyS0eXZP3RV5XT+I2E ITD0Y0fDZNEiZn+YMyPWWz2AmYCAX/31D5JbuONLSHyZYlAc3aoseR9WDaIrMVPH DMRaPx10AZRvS2RvUHXYzoIHiUdDOSgoUsFLIDVpPvDpiFtGuY8TyXFeFocp0DkT CtnI21aDJB/0xUebjez8FwLUmENAnBIoSKZ9Bs3q3I6zRUDcI04yp7pIA/jZAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUuMnGJNE3tFLswJiCHLb1+L2f9AIwHwYDVR0j BBgwFoAUGIQcY82JODMD8boEgIXCISsDsL0wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4NTkxMTIxNzU4NjE3OS8wLzE4ODQxQzYzQ0Q4OTM4MzMwM0YxQkEwNDgwODVD MjIxMkIwM0IwQkQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMTg4NDFDNjNDRDg5MzgzMzAzRjFCQTA0ODA4NUMyMjEyQjAzQjBCRC5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTg1OTExMjE3NTg2MTc5LzAvMzEzMjMwMmUzMzMx MmUzNjM0MmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzMzNDM5MzEucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAF4H0AwDQYJKoZIhvcNAQELBQADggEBAKqj7AF9QcV+RpmOesH57b6HkBhfYhKO 7A5st3P/7uFaHjcLEefnVUme8JNZULzKFisdOVjCm5JQH5TFf8/ZdyfJNkD8ZWtI MK/5IoE1AG3N7e1A9LZ1sXiM4J+zPdKo9hl306VqMbQ/DlFGm9CcljXZ7clcVgZy m8t4fZsbWn76914QzaXGwG6Ls2yLNxLHAmLWzQMkuRGv5nM2AvZOSSvbHGU1uPkO l4VO3kk/2XxnQr4HvrtbSkze5/T/JWdiMX6KZhFYYshlWVnmh/NUxRcBapRpW7jJ M/UMUgVPONzoDOoDeZNW9XSDRlx1CqsYp6qMsDDKOOp4fHF+NE+8d8o= -----END CERTIFICATE-----Generated at Sat Jun 6 14:54:17 2026 by rpki-client