$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065588553129525251/0/3131392e35392e3132382e302f32322d3234203d3e20323133373035.roa File: 3131392e35392e3132382e302f32322d3234203d3e20323133373035.roa (raw, json) Hash identifier: 8HVNCgxhmzFDQxvRedCB7iz7hzWPNiltDsUavD9nBJM= Subject key identifier: D7:38:19:19:4B:6F:17:A7:D3:B8:A8:13:1A:BC:45:55:50:E8:C0:8A Certificate issuer: /CN=E893434A32058DAFE9758FDA7B36659444C9EF8E Certificate serial: 5B9FA2F61D59603E15C6E170389B2EF46EECA64A Authority key identifier: E8:93:43:4A:32:05:8D:AF:E9:75:8F:DA:7B:36:65:94:44:C9:EF:8E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/3131392e35392e3132382e302f32322d3234203d3e20323133373035.roa Signing time: Tue 17 Mar 2026 10:31:28 +0000 ROA not before: Tue 17 Mar 2026 10:26:28 +0000 ROA not after: Tue 16 Mar 2027 10:31:28 +0000 asID: 213705 IP address blocks: 119.59.128.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.crl rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Mar 2026 08:47:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:9f:a2:f6:1d:59:60:3e:15:c6:e1:70:38:9b:2e:f4:6e:ec:a6:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E893434A32058DAFE9758FDA7B36659444C9EF8E Validity Not Before: Mar 17 10:26:28 2026 GMT Not After : Mar 16 10:31:28 2027 GMT Subject: CN=D73819194B6F17A7D3B8A8131ABC455550E8C08A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:0b:d9:3f:90:ef:4d:28:ba:ee:1b:63:1d:11: 57:5d:ae:d0:bf:8b:55:55:ae:d5:9d:82:47:f4:92: a6:b9:d7:ed:60:f1:bf:e4:0a:df:8b:06:7d:8f:2d: 61:55:26:5b:ee:ef:6a:fe:f1:97:df:e4:fb:98:97: 4b:dd:b9:38:ef:cd:bb:75:a5:25:5d:a1:23:8d:ab: 31:5c:d2:3d:47:1e:bf:b5:5b:39:36:51:4d:e1:df: 0d:94:b8:8e:28:43:00:71:1b:a4:4a:3a:89:cd:62: 45:96:39:11:98:e9:ee:e3:6d:a4:31:39:62:56:f1: ef:a3:26:36:f8:72:b5:c1:f9:10:62:4b:b7:a7:b0: f1:88:4d:ae:d1:78:87:6b:57:5e:94:6e:c9:71:3b: ed:8b:0f:12:a7:10:d2:ed:7a:4e:ad:6b:3e:00:86: a5:89:c6:ca:20:66:95:bf:3e:5c:28:bc:62:ee:9a: 07:76:eb:c6:e0:6e:96:c1:c3:65:ac:52:5d:14:a4: e4:08:1d:84:49:4d:89:9c:e6:c1:1b:00:59:b9:83: ea:05:e7:31:61:fa:aa:c7:35:eb:96:31:fc:79:4d: af:fe:6d:ca:d8:ea:fe:06:f7:05:cd:b8:06:48:a2: b0:b7:68:b2:18:69:f5:a8:69:e4:38:1a:d5:68:ab: 50:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:38:19:19:4B:6F:17:A7:D3:B8:A8:13:1A:BC:45:55:50:E8:C0:8A X509v3 Authority Key Identifier: keyid:E8:93:43:4A:32:05:8D:AF:E9:75:8F:DA:7B:36:65:94:44:C9:EF:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/3131392e35392e3132382e302f32322d3234203d3e20323133373035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.59.128.0/22 Signature Algorithm: sha256WithRSAEncryption 01:76:f6:48:01:34:38:89:74:c1:e1:3a:de:b9:40:64:33:2c: f2:26:ac:a9:c0:9a:ef:75:5b:92:74:0c:b8:8d:bf:fc:c5:76: 9a:06:04:bd:06:94:bd:0a:9a:00:71:cf:15:05:75:83:5a:11: 05:05:29:2f:ff:a9:95:4d:b4:16:78:32:9d:ea:37:a7:a1:bc: d1:9b:13:3d:39:ea:2e:28:13:17:f4:b3:f2:ed:c6:b8:bf:e9: 5c:9c:1b:e5:77:3f:27:c7:26:69:8e:33:55:d3:61:16:d8:0b: 61:11:57:b5:65:be:e0:01:5b:75:37:f5:12:a0:ec:7c:7c:dc: 8f:e3:b9:be:fb:ca:d4:8a:d6:8e:39:d0:2e:75:9e:e6:76:f8: bb:c4:25:c8:6f:bf:7c:73:17:77:07:c1:49:b1:1d:c5:f0:ba: 2b:72:e0:95:36:5d:57:f7:2d:5d:03:20:78:40:e1:64:c1:fc: 70:2e:9e:e1:8e:40:1d:aa:99:c7:6d:f1:d8:8c:20:d4:29:e4: a9:c6:e2:27:60:1b:94:15:0c:c4:cc:9f:18:b6:49:bc:65:63: 61:58:54:b0:95:db:16:b8:aa:7a:ba:44:71:f0:ab:ed:4b:b0: 8c:8f:7d:6d:01:8e:bc:76:cf:78:4e:a5:22:bb:7e:05:26:75: da:9c:67:9e -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUW5+i9h1ZYD4VxuFwOJsu9G7spkowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTg5MzQzNEEzMjA1OERBRkU5NzU4RkRBN0IzNjY1OTQ0 NEM5RUY4RTAeFw0yNjAzMTcxMDI2MjhaFw0yNzAzMTYxMDMxMjhaMDMxMTAvBgNV BAMTKEQ3MzgxOTE5NEI2RjE3QTdEM0I4QTgxMzFBQkM0NTU1NTBFOEMwOEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpC9k/kO9NKLruG2MdEVddrtC/ i1VVrtWdgkf0kqa51+1g8b/kCt+LBn2PLWFVJlvu72r+8Zff5PuYl0vduTjvzbt1 pSVdoSONqzFc0j1HHr+1Wzk2UU3h3w2UuI4oQwBxG6RKOonNYkWWORGY6e7jbaQx OWJW8e+jJjb4crXB+RBiS7ensPGITa7ReIdrV16UbslxO+2LDxKnENLtek6taz4A hqWJxsogZpW/PlwovGLumgd268bgbpbBw2WsUl0UpOQIHYRJTYmc5sEbAFm5g+oF 5zFh+qrHNeuWMfx5Ta/+bcrY6v4G9wXNuAZIorC3aLIYafWoaeQ4GtVoq1AlAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQU1zgZGUtvF6fTuKgTGrxFVVDowIowHwYDVR0j BBgwFoAU6JNDSjIFja/pdY/aezZllETJ744wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4ODU1MzEyOTUyNTI1MS8wL0U4OTM0MzRBMzIwNThEQUZFOTc1OEZEQTdCMzY2 NTk0NDRDOUVGOEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRTg5MzQzNEEzMjA1OERBRkU5NzU4RkRBN0IzNjY1OTQ0NEM5RUY4RS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1ODg1NTMxMjk1MjUyNTEvMC8zMTMxMzkyZTM1 MzkyZTMxMzIzODJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDMyMzEzMzM3MzAzNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAnc7gDANBgkqhkiG9w0BAQsFAAOCAQEAAXb2SAE0OIl0weE63rlA ZDMs8iasqcCa73VbknQMuI2//MV2mgYEvQaUvQqaAHHPFQV1g1oRBQUpL/+plU20 Fngyneo3p6G80ZsTPTnqLigTF/Sz8u3GuL/pXJwb5Xc/J8cmaY4zVdNhFtgLYRFX tWW+4AFbdTf1EqDsfHzcj+O5vvvK1IrWjjnQLnWe5nb4u8QlyG+/fHMXdwfBSbEd xfC6K3LglTZdV/ctXQMgeEDhZMH8cC6e4Y5AHaqZx23x2Iwg1CnkqcbiJ2AblBUM xMyfGLZJvGVjYVhUsJXbFriqerpEcfCr7UuwjI99bQGOvHbPeE6lIrt+BSZ12pxn ng== -----END CERTIFICATE-----Generated at Sat Mar 21 12:18:24 2026 by rpki-client