$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065585911217586179/0/3132302e33312e37322e302f32312d3234203d3e2033343931.roa File: 3132302e33312e37322e302f32312d3234203d3e2033343931.roa (raw, json) Hash identifier: YxGDXKb08ARdqkHvpgXchjzies7y3lKojJN+6+CFUXQ= Subject key identifier: 04:97:36:06:49:2C:6A:A8:F8:12:DD:49:44:1A:8C:04:5E:82:08:1A Certificate issuer: /CN=18841C63CD89383303F1BA048085C2212B03B0BD Certificate serial: 0BD864CD6BE43D4DE8768BAD220511CDECC7F4DB Authority key identifier: 18:84:1C:63:CD:89:38:33:03:F1:BA:04:80:85:C2:21:2B:03:B0:BD Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/18841C63CD89383303F1BA048085C2212B03B0BD.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/0/3132302e33312e37322e302f32312d3234203d3e2033343931.roa Signing time: Tue 26 May 2026 08:07:10 +0000 ROA not before: Tue 26 May 2026 08:02:10 +0000 ROA not after: Tue 25 May 2027 08:07:10 +0000 asID: 3491 IP address blocks: 120.31.72.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/0/18841C63CD89383303F1BA048085C2212B03B0BD.crl rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/0/18841C63CD89383303F1BA048085C2212B03B0BD.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/18841C63CD89383303F1BA048085C2212B03B0BD.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Jun 2026 23:56:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:d8:64:cd:6b:e4:3d:4d:e8:76:8b:ad:22:05:11:cd:ec:c7:f4:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18841C63CD89383303F1BA048085C2212B03B0BD Validity Not Before: May 26 08:02:10 2026 GMT Not After : May 25 08:07:10 2027 GMT Subject: CN=04973606492C6AA8F812DD49441A8C045E82081A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:e9:ed:0c:e7:eb:1d:2a:11:3c:57:a1:c8:9a: fc:2c:98:90:a6:58:a5:39:aa:fe:ff:0c:3a:ed:86: e7:8c:ab:dd:dc:7a:b2:d0:77:a0:f4:09:dd:bf:0d: 85:63:60:cd:67:97:1c:3b:85:67:55:d2:49:96:2a: 13:da:9a:7c:ad:9e:d6:d8:22:b1:fe:33:63:2b:22: 0e:f6:61:45:f4:af:05:2a:f3:c1:87:73:9f:1f:8d: 73:4f:d2:c9:f9:12:96:50:5a:bb:1c:cc:9e:b0:8d: 73:46:21:97:c0:3f:55:9a:86:76:07:f2:b0:81:55: 66:f6:f3:4c:be:72:88:e8:f2:8f:29:17:96:b9:71: 31:9b:6b:03:ae:d8:ce:17:fd:2e:aa:e2:10:1c:85: 79:c5:59:24:99:e8:1c:21:0b:0b:4a:7f:ea:08:7b: 4b:e2:00:fb:40:df:f6:5d:40:dc:1b:49:ef:10:fc: c9:03:fa:b9:86:03:d9:40:f9:36:e4:7d:32:48:63: f6:f6:0d:bb:d8:e6:7b:f0:da:58:7e:0a:f1:62:d1: eb:dc:7e:a4:45:60:33:16:c5:17:9b:78:b6:02:61: 31:2e:b1:ca:c1:d8:dd:97:43:28:39:f1:21:69:99: ee:7a:f0:08:aa:e6:2d:16:4d:b9:60:8d:bf:00:e2: 11:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:97:36:06:49:2C:6A:A8:F8:12:DD:49:44:1A:8C:04:5E:82:08:1A X509v3 Authority Key Identifier: keyid:18:84:1C:63:CD:89:38:33:03:F1:BA:04:80:85:C2:21:2B:03:B0:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/0/18841C63CD89383303F1BA048085C2212B03B0BD.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/18841C63CD89383303F1BA048085C2212B03B0BD.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/0/3132302e33312e37322e302f32312d3234203d3e2033343931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 120.31.72.0/21 Signature Algorithm: sha256WithRSAEncryption 9b:18:c3:37:c3:3a:89:06:f5:23:83:4f:f0:a2:cd:6e:1b:ee: 2a:b2:6f:71:96:e5:04:e2:b7:fc:e9:4f:53:61:b8:96:f9:1d: 07:b7:36:b0:b5:00:48:e6:c4:86:eb:c2:94:70:d0:d3:cf:92: be:18:50:14:c6:7a:67:92:6e:e1:2d:80:19:7d:c2:45:32:9a: 9a:d5:dc:e3:c2:3c:5e:c3:9b:15:ec:f1:8d:41:44:4a:f2:a2: 38:24:bb:19:3f:18:db:2f:c6:4b:23:0a:f7:29:8a:aa:41:32: a8:6d:5a:6d:24:1f:60:98:e7:d6:85:23:41:91:61:64:ab:7d: a3:b0:6a:08:fd:8e:c5:19:71:eb:37:10:be:19:a0:cf:5f:82: 11:da:9b:85:89:00:2c:35:cb:53:94:cf:f5:0c:e7:e4:bd:de: f8:08:da:ef:ba:78:c5:35:c6:59:14:cb:a8:71:69:96:7a:f4: 2d:8c:3e:34:d6:af:b4:62:26:fb:04:e2:c8:71:70:b1:67:cd: a4:03:a3:5f:0f:3e:de:71:76:d1:6d:1f:bc:8f:31:6a:34:37: 02:00:77:67:34:c2:55:d7:2e:a9:af:5f:0f:82:59:13:5d:af: f1:a4:e4:24:4c:b0:1f:a2:58:8a:6a:a8:4a:c4:27:7b:1b:ce: 64:64:c4:f8 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUC9hkzWvkPU3odoutIgURzezH9NswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTg4NDFDNjNDRDg5MzgzMzAzRjFCQTA0ODA4NUMyMjEy QjAzQjBCRDAeFw0yNjA1MjYwODAyMTBaFw0yNzA1MjUwODA3MTBaMDMxMTAvBgNV BAMTKDA0OTczNjA2NDkyQzZBQThGODEyREQ0OTQ0MUE4QzA0NUU4MjA4MUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCJ6e0M5+sdKhE8V6HImvwsmJCm WKU5qv7/DDrthueMq93cerLQd6D0Cd2/DYVjYM1nlxw7hWdV0kmWKhPamnytntbY IrH+M2MrIg72YUX0rwUq88GHc58fjXNP0sn5EpZQWrsczJ6wjXNGIZfAP1WahnYH 8rCBVWb280y+cojo8o8pF5a5cTGbawOu2M4X/S6q4hAchXnFWSSZ6BwhCwtKf+oI e0viAPtA3/ZdQNwbSe8Q/MkD+rmGA9lA+TbkfTJIY/b2DbvY5nvw2lh+CvFi0evc fqRFYDMWxRebeLYCYTEuscrB2N2XQyg58SFpme568Aiq5i0WTblgjb8A4hExAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUBJc2Bkksaqj4Et1JRBqMBF6CCBowHwYDVR0j BBgwFoAUGIQcY82JODMD8boEgIXCISsDsL0wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4NTkxMTIxNzU4NjE3OS8wLzE4ODQxQzYzQ0Q4OTM4MzMwM0YxQkEwNDgwODVD MjIxMkIwM0IwQkQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMTg4NDFDNjNDRDg5MzgzMzAzRjFCQTA0ODA4NUMyMjEyQjAzQjBCRC5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTg1OTExMjE3NTg2MTc5LzAvMzEzMjMwMmUzMzMx MmUzNzMyMmUzMDJmMzIzMTJkMzIzNDIwM2QzZTIwMzMzNDM5MzEucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAN4H0gwDQYJKoZIhvcNAQELBQADggEBAJsYwzfDOokG9SODT/CizW4b7iqyb3GW 5QTit/zpT1NhuJb5HQe3NrC1AEjmxIbrwpRw0NPPkr4YUBTGemeSbuEtgBl9wkUy mprV3OPCPF7DmxXs8Y1BREryojgkuxk/GNsvxksjCvcpiqpBMqhtWm0kH2CY59aF I0GRYWSrfaOwagj9jsUZces3EL4ZoM9fghHam4WJACw1y1OUz/UM5+S93vgI2u+6 eMU1xlkUy6hxaZZ69C2MPjTWr7RiJvsE4shxcLFnzaQDo18PPt5xdtFtH7yPMWo0 NwIAd2c0wlXXLqmvXw+CWRNdr/Gk5CRMsB+iWIpqqErEJ3sbzmRkxPg= -----END CERTIFICATE-----Generated at Sat Jun 6 14:54:15 2026 by rpki-client