$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065585911217586179/0/3132302e33312e37322e302f32312d3234203d3e20323037353530.roa File: 3132302e33312e37322e302f32312d3234203d3e20323037353530.roa (raw, json) Hash identifier: 0HoqI4mWTC2TOlrclUzw2EHijGuaMPc6ZplKDU8IZzg= Subject key identifier: 67:CA:EF:49:9E:12:7E:CC:6C:49:B3:76:37:C0:17:D0:49:30:67:AF Certificate issuer: /CN=18841C63CD89383303F1BA048085C2212B03B0BD Certificate serial: 33DC13AC2519D8D35971E8C3DB5D00B07275D90E Authority key identifier: 18:84:1C:63:CD:89:38:33:03:F1:BA:04:80:85:C2:21:2B:03:B0:BD Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/18841C63CD89383303F1BA048085C2212B03B0BD.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/0/3132302e33312e37322e302f32312d3234203d3e20323037353530.roa Signing time: Tue 02 Jun 2026 08:18:51 +0000 ROA not before: Tue 02 Jun 2026 08:13:51 +0000 ROA not after: Tue 01 Jun 2027 08:18:51 +0000 asID: 207550 IP address blocks: 120.31.72.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/0/18841C63CD89383303F1BA048085C2212B03B0BD.crl rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/0/18841C63CD89383303F1BA048085C2212B03B0BD.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/18841C63CD89383303F1BA048085C2212B03B0BD.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jun 2026 10:16:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:dc:13:ac:25:19:d8:d3:59:71:e8:c3:db:5d:00:b0:72:75:d9:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18841C63CD89383303F1BA048085C2212B03B0BD Validity Not Before: Jun 2 08:13:51 2026 GMT Not After : Jun 1 08:18:51 2027 GMT Subject: CN=67CAEF499E127ECC6C49B37637C017D0493067AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:84:a3:14:75:3e:09:9d:c4:a2:d3:70:d5:23: 86:c9:c1:09:1b:8e:44:2f:88:f8:4e:50:0c:b3:2d: df:9c:48:af:aa:72:1a:c0:7c:8b:71:a5:9f:7b:ee: f5:05:07:9b:47:2c:ff:3c:5b:20:2c:e9:d7:dd:65: d4:b7:87:ff:6a:78:25:45:b3:ca:43:65:c3:01:b2: 78:39:1f:a9:39:76:9d:b4:51:1f:43:37:1a:b1:9b: 27:c0:ca:9d:af:ce:2d:df:d4:13:7c:e9:ab:f8:ec: db:a5:93:36:4c:f2:cf:54:7a:1c:4d:43:78:3a:3a: bc:3b:60:16:0a:52:a4:e4:9c:a0:dc:cb:87:33:2c: cf:e4:65:65:63:0e:be:4b:10:48:25:33:a6:0d:8d: 47:04:ed:1c:24:39:15:a3:aa:28:2b:43:8e:43:7d: 41:87:3b:5e:d1:2a:97:c6:32:b9:d1:e0:ec:95:3a: 62:f3:d3:9e:59:dc:ff:03:0b:62:44:07:60:cf:3a: 4c:e5:a9:14:ef:4f:c4:84:40:0a:26:82:9d:70:b1: cd:c4:a2:2b:62:0b:11:6b:6a:04:8b:e3:e3:83:36: 23:5f:83:34:2b:88:e5:77:59:a0:45:98:9d:f2:5b: d9:00:b4:c5:ee:a1:fc:d6:f5:e9:24:5f:27:54:33: 9a:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:CA:EF:49:9E:12:7E:CC:6C:49:B3:76:37:C0:17:D0:49:30:67:AF X509v3 Authority Key Identifier: keyid:18:84:1C:63:CD:89:38:33:03:F1:BA:04:80:85:C2:21:2B:03:B0:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/0/18841C63CD89383303F1BA048085C2212B03B0BD.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/18841C63CD89383303F1BA048085C2212B03B0BD.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/0/3132302e33312e37322e302f32312d3234203d3e20323037353530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 120.31.72.0/21 Signature Algorithm: sha256WithRSAEncryption 11:cd:8a:47:de:a1:70:19:f6:b5:7c:ff:e3:c4:69:bc:25:cc: b6:e3:74:f9:c5:79:89:1b:be:25:3b:f7:8b:c9:14:6f:34:7f: 74:3a:58:fc:ec:d3:9e:56:59:b2:01:3e:05:a4:63:e5:a5:7f: a5:f9:91:eb:ef:b9:e0:11:42:23:40:64:5f:48:82:69:38:5a: eb:cd:60:c4:c6:75:a1:ea:3e:3c:da:4f:75:79:51:61:fa:25: 7d:97:1c:2b:92:3d:c1:9e:37:d5:dc:8b:22:46:6e:d3:ae:8a: a4:9d:6b:34:a3:ab:c9:c5:98:87:af:b7:7a:d3:f6:c7:49:7c: f6:8f:0a:50:11:cf:c4:90:3c:f3:b1:63:1c:f9:27:d6:18:e6: a7:e4:87:73:5d:e1:68:87:21:b2:e2:8f:ae:42:8d:1e:6d:fd: db:c7:08:f8:0d:72:dd:6b:f3:34:3d:c7:37:fe:f9:0e:f9:6a: 10:4e:84:35:8f:bf:29:bd:b9:df:0d:5e:dc:13:97:d2:74:b9: 61:bb:b4:5c:cf:ac:76:a5:66:f4:af:ec:a4:5c:61:e8:d7:d4: 7e:b5:46:41:c6:d1:b9:fe:29:78:2c:ab:47:b4:a0:2f:40:39: c5:36:be:39:b6:15:0c:21:65:49:ae:f3:2f:9f:dd:ae:64:17: 9d:19:75:44 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUM9wTrCUZ2NNZcejD210AsHJ12Q4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTg4NDFDNjNDRDg5MzgzMzAzRjFCQTA0ODA4NUMyMjEy QjAzQjBCRDAeFw0yNjA2MDIwODEzNTFaFw0yNzA2MDEwODE4NTFaMDMxMTAvBgNV BAMTKDY3Q0FFRjQ5OUUxMjdFQ0M2QzQ5QjM3NjM3QzAxN0QwNDkzMDY3QUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1hKMUdT4JncSi03DVI4bJwQkb jkQviPhOUAyzLd+cSK+qchrAfItxpZ977vUFB5tHLP88WyAs6dfdZdS3h/9qeCVF s8pDZcMBsng5H6k5dp20UR9DNxqxmyfAyp2vzi3f1BN86av47NulkzZM8s9UehxN Q3g6Orw7YBYKUqTknKDcy4czLM/kZWVjDr5LEEglM6YNjUcE7RwkORWjqigrQ45D fUGHO17RKpfGMrnR4OyVOmLz055Z3P8DC2JEB2DPOkzlqRTvT8SEQAomgp1wsc3E oitiCxFragSL4+ODNiNfgzQriOV3WaBFmJ3yW9kAtMXuofzW9ekkXydUM5qlAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUZ8rvSZ4SfsxsSbN2N8AX0EkwZ68wHwYDVR0j BBgwFoAUGIQcY82JODMD8boEgIXCISsDsL0wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4NTkxMTIxNzU4NjE3OS8wLzE4ODQxQzYzQ0Q4OTM4MzMwM0YxQkEwNDgwODVD MjIxMkIwM0IwQkQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMTg4NDFDNjNDRDg5MzgzMzAzRjFCQTA0ODA4NUMyMjEyQjAzQjBCRC5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU4NTkxMTIxNzU4NjE3OS8wLzMxMzIzMDJlMzMz MTJlMzczMjJlMzAyZjMyMzEyZDMyMzQyMDNkM2UyMDMyMzAzNzM1MzUzMC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEA3gfSDANBgkqhkiG9w0BAQsFAAOCAQEAEc2KR96hcBn2tXz/48RpvCXM tuN0+cV5iRu+JTv3i8kUbzR/dDpY/OzTnlZZsgE+BaRj5aV/pfmR6++54BFCI0Bk X0iCaTha681gxMZ1oeo+PNpPdXlRYfolfZccK5I9wZ431dyLIkZu066KpJ1rNKOr ycWYh6+3etP2x0l89o8KUBHPxJA887FjHPkn1hjmp+SHc13haIchsuKPrkKNHm39 28cI+A1y3WvzND3HN/75DvlqEE6ENY+/Kb253w1e3BOX0nS5Ybu0XM+sdqVm9K/s pFxh6NfUfrVGQcbRuf4peCyrR7SgL0A5xTa+ObYVDCFlSa7zL5/drmQXnRl1RA== -----END CERTIFICATE-----Generated at Tue Jun 2 21:25:17 2026 by rpki-client