$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065585911217586179/0/3132302e33312e37322e302f32312d3234203d3e2039333034.roa File: 3132302e33312e37322e302f32312d3234203d3e2039333034.roa (raw, json) Hash identifier: pX4wdtN+UhIsJ2OUYiWRBGP11Rn7emgm5u0KZRU1OQQ= Subject key identifier: 9B:8A:B9:90:4E:E1:60:1F:E1:E4:14:B4:E9:AE:AD:8F:91:E6:7B:86 Certificate issuer: /CN=18841C63CD89383303F1BA048085C2212B03B0BD Certificate serial: 4E79027245A46277EF27CAF4929EB0A27FE4197A Authority key identifier: 18:84:1C:63:CD:89:38:33:03:F1:BA:04:80:85:C2:21:2B:03:B0:BD Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/18841C63CD89383303F1BA048085C2212B03B0BD.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/0/3132302e33312e37322e302f32312d3234203d3e2039333034.roa Signing time: Tue 26 May 2026 08:03:29 +0000 ROA not before: Tue 26 May 2026 07:58:29 +0000 ROA not after: Tue 25 May 2027 08:03:29 +0000 asID: 9304 IP address blocks: 120.31.72.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/0/18841C63CD89383303F1BA048085C2212B03B0BD.crl rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/0/18841C63CD89383303F1BA048085C2212B03B0BD.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/18841C63CD89383303F1BA048085C2212B03B0BD.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jun 2026 10:16:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:79:02:72:45:a4:62:77:ef:27:ca:f4:92:9e:b0:a2:7f:e4:19:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18841C63CD89383303F1BA048085C2212B03B0BD Validity Not Before: May 26 07:58:29 2026 GMT Not After : May 25 08:03:29 2027 GMT Subject: CN=9B8AB9904EE1601FE1E414B4E9AEAD8F91E67B86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:18:d1:d9:d9:4b:2c:6c:42:5b:8c:4e:07:86: f8:8d:79:a7:80:12:7a:ec:07:4d:4d:b6:34:c8:48: 65:1b:e2:2e:b3:45:56:14:30:9c:f9:a6:44:08:25: 42:e9:e9:79:27:45:f7:69:97:8b:b0:12:90:81:69: 4f:99:ae:e9:9c:41:40:18:98:3a:12:56:13:24:25: 71:6c:59:ee:ae:1d:ca:b0:a6:dc:9e:2b:06:47:60: c9:27:58:a2:ce:47:6a:13:0f:1b:48:cd:0f:41:3c: f2:e6:6c:b9:30:ee:56:45:16:b9:b4:df:e9:72:44: 98:48:fe:91:99:93:ce:54:eb:c7:de:a7:6e:38:3f: c0:38:ae:fb:df:6b:bc:38:12:03:12:30:94:2d:75: b8:d7:42:0a:8c:28:11:89:d4:96:cb:3b:4b:b5:42: 11:65:57:07:29:89:66:ef:96:4f:cd:df:d8:dd:1f: 95:69:05:70:84:ed:73:97:80:ec:79:d2:39:7e:78: c9:bf:eb:bb:20:d4:e5:20:75:17:c1:60:c0:ae:ba: 1b:87:f2:d5:a7:bb:ba:f7:c5:96:28:ef:4f:46:f0: 56:21:4b:c9:de:9c:00:56:52:ed:32:56:e5:66:05: 9a:c7:ac:0a:35:f7:70:2a:69:09:19:eb:75:4d:b5: 95:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:8A:B9:90:4E:E1:60:1F:E1:E4:14:B4:E9:AE:AD:8F:91:E6:7B:86 X509v3 Authority Key Identifier: keyid:18:84:1C:63:CD:89:38:33:03:F1:BA:04:80:85:C2:21:2B:03:B0:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/0/18841C63CD89383303F1BA048085C2212B03B0BD.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/18841C63CD89383303F1BA048085C2212B03B0BD.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/0/3132302e33312e37322e302f32312d3234203d3e2039333034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 120.31.72.0/21 Signature Algorithm: sha256WithRSAEncryption 7d:b6:35:ea:cb:95:3d:20:98:d7:a8:f0:13:30:0b:1d:1c:8f: e4:6d:a8:12:4e:c1:51:f7:d3:f8:2a:9a:e6:11:35:f3:15:10: e9:6c:5c:d9:60:ff:c2:20:c1:05:f9:52:74:58:01:11:e1:bd: c1:66:cf:ae:b2:fb:7e:f3:fb:ac:8d:26:7e:c7:9c:7d:1e:14: 81:f2:99:5c:14:1b:92:b1:be:c1:32:ce:2e:d2:46:fd:e1:c2: 00:9c:fb:eb:8c:72:59:33:e4:8e:19:49:1a:ef:26:06:24:ae: d5:90:17:55:56:e2:ba:66:19:06:32:21:0f:42:fc:0d:10:4d: 45:bf:e6:a1:80:81:17:db:e7:4f:b4:9c:94:21:6d:2d:e1:9b: ab:54:67:b1:6d:4c:cf:cd:6f:4b:63:34:6b:ca:e7:15:d1:2e: bb:7b:d1:56:3a:51:41:85:b7:e2:ed:15:83:b8:bd:8e:72:c3: 72:1c:55:3d:83:80:32:28:1f:0c:80:36:07:b3:e2:e0:e0:33: b3:a5:f0:4b:91:e4:22:32:8d:7d:c5:16:ce:d6:53:7b:94:de: 5e:3c:b0:1c:ad:ec:44:1c:dd:22:1c:eb:39:f6:b2:ba:1a:99: fc:fb:8d:ae:23:b4:65:7b:0b:99:ab:fd:44:5e:75:1d:7d:20: f9:90:03:d4 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUTnkCckWkYnfvJ8r0kp6won/kGXowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTg4NDFDNjNDRDg5MzgzMzAzRjFCQTA0ODA4NUMyMjEy QjAzQjBCRDAeFw0yNjA1MjYwNzU4MjlaFw0yNzA1MjUwODAzMjlaMDMxMTAvBgNV BAMTKDlCOEFCOTkwNEVFMTYwMUZFMUU0MTRCNEU5QUVBRDhGOTFFNjdCODYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+GNHZ2UssbEJbjE4HhviNeaeA EnrsB01NtjTISGUb4i6zRVYUMJz5pkQIJULp6XknRfdpl4uwEpCBaU+ZrumcQUAY mDoSVhMkJXFsWe6uHcqwptyeKwZHYMknWKLOR2oTDxtIzQ9BPPLmbLkw7lZFFrm0 3+lyRJhI/pGZk85U68fep244P8A4rvvfa7w4EgMSMJQtdbjXQgqMKBGJ1JbLO0u1 QhFlVwcpiWbvlk/N39jdH5VpBXCE7XOXgOx50jl+eMm/67sg1OUgdRfBYMCuuhuH 8tWnu7r3xZYo709G8FYhS8nenABWUu0yVuVmBZrHrAo193AqaQkZ63VNtZUJAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUm4q5kE7hYB/h5BS06a6tj5Hme4YwHwYDVR0j BBgwFoAUGIQcY82JODMD8boEgIXCISsDsL0wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4NTkxMTIxNzU4NjE3OS8wLzE4ODQxQzYzQ0Q4OTM4MzMwM0YxQkEwNDgwODVD MjIxMkIwM0IwQkQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMTg4NDFDNjNDRDg5MzgzMzAzRjFCQTA0ODA4NUMyMjEyQjAzQjBCRC5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTg1OTExMjE3NTg2MTc5LzAvMzEzMjMwMmUzMzMx MmUzNzMyMmUzMDJmMzIzMTJkMzIzNDIwM2QzZTIwMzkzMzMwMzQucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAN4H0gwDQYJKoZIhvcNAQELBQADggEBAH22NerLlT0gmNeo8BMwCx0cj+RtqBJO wVH30/gqmuYRNfMVEOlsXNlg/8IgwQX5UnRYARHhvcFmz66y+37z+6yNJn7HnH0e FIHymVwUG5KxvsEyzi7SRv3hwgCc++uMclkz5I4ZSRrvJgYkrtWQF1VW4rpmGQYy IQ9C/A0QTUW/5qGAgRfb50+0nJQhbS3hm6tUZ7FtTM/Nb0tjNGvK5xXRLrt70VY6 UUGFt+LtFYO4vY5yw3IcVT2DgDIoHwyANgez4uDgM7Ol8EuR5CIyjX3FFs7WU3uU 3l48sByt7EQc3SIc6zn2sroamfz7ja4jtGV7C5mr/URedR19IPmQA9Q= -----END CERTIFICATE-----Generated at Tue Jun 2 20:51:13 2026 by rpki-client