$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065588553129525251/0/AS19211.roa File: AS19211.roa (raw, json) Hash identifier: wcnPDEqnqvwHWO1KWi2aWJbejjR1OdBWiXZX8clRvj0= Subject key identifier: C2:C7:8E:AC:4E:13:AD:C7:B3:F6:A2:CD:C8:E1:34:0B:20:1C:4F:EA Certificate issuer: /CN=E893434A32058DAFE9758FDA7B36659444C9EF8E Certificate serial: 3F288D0ECA6BB43CB347C326C20605FA31D3EF5A Authority key identifier: E8:93:43:4A:32:05:8D:AF:E9:75:8F:DA:7B:36:65:94:44:C9:EF:8E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/AS19211.roa Signing time: Tue 02 Jun 2026 08:07:59 +0000 ROA not before: Tue 02 Jun 2026 08:02:59 +0000 ROA not after: Tue 01 Jun 2027 08:07:59 +0000 asID: 19211 IP address blocks: 119.59.208.0/22 maxlen: 24 119.59.236.0/22 maxlen: 24 124.42.176.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.crl rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Jun 2026 08:07:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:28:8d:0e:ca:6b:b4:3c:b3:47:c3:26:c2:06:05:fa:31:d3:ef:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E893434A32058DAFE9758FDA7B36659444C9EF8E Validity Not Before: Jun 2 08:02:59 2026 GMT Not After : Jun 1 08:07:59 2027 GMT Subject: CN=C2C78EAC4E13ADC7B3F6A2CDC8E1340B201C4FEA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:45:f0:0c:d6:8b:03:e7:af:97:5b:89:52:7a: e3:4f:3f:d9:81:1c:22:1a:d1:57:93:62:41:96:4f: f9:76:09:62:19:75:3b:cc:82:d5:f4:db:9b:3a:11: 21:f1:dc:cc:16:99:89:31:20:89:e0:47:5a:64:d9: d1:ce:f0:29:52:e7:a6:12:38:a8:a6:b8:7f:7b:50: 1c:ea:6d:bb:de:e6:e5:84:58:51:f6:9e:b2:d6:3d: 52:83:0f:f5:d3:52:16:56:87:93:e3:63:25:26:ba: 63:56:94:c8:98:cd:a1:5a:58:d9:5d:22:b6:5c:4f: df:b7:4c:ef:49:58:db:e7:8d:4c:61:50:5a:01:b2: 02:7b:bc:2d:18:5d:2e:6e:36:72:c0:87:e8:2c:5f: 3e:2c:80:8a:4e:0e:d6:70:0f:05:ee:2a:17:4b:a4: 74:8f:de:5a:7c:00:00:4b:96:5f:df:90:b7:29:aa: 8a:97:a6:5f:fb:65:a1:0a:ab:38:2f:2d:04:f7:7b: 28:8f:64:88:0c:5e:73:26:98:76:13:07:a3:4b:75: c4:b9:d8:51:70:48:a8:77:16:e7:48:c4:d5:75:c7: 7e:46:bc:c7:4c:38:db:3c:79:59:23:96:b8:21:04: e6:e2:37:27:44:6d:09:b8:cb:14:d0:9a:e2:63:b1: 7d:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:C7:8E:AC:4E:13:AD:C7:B3:F6:A2:CD:C8:E1:34:0B:20:1C:4F:EA X509v3 Authority Key Identifier: keyid:E8:93:43:4A:32:05:8D:AF:E9:75:8F:DA:7B:36:65:94:44:C9:EF:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/AS19211.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.59.208.0/22 119.59.236.0/22 124.42.176.0/22 Signature Algorithm: sha256WithRSAEncryption bf:f1:d2:59:59:bc:b2:20:b5:64:23:0b:fe:bd:eb:bd:e4:89: 4c:3f:c4:62:78:85:39:a6:3c:c1:47:e3:49:dd:9c:c7:e0:ec: cb:dd:78:dd:24:a3:7e:c5:c4:e1:20:3c:f3:35:8d:0d:b7:3e: f7:59:02:e0:4c:01:59:d1:93:51:77:2a:12:74:88:43:f7:29: 76:ac:be:54:06:57:a6:40:6c:b2:52:ce:2a:9f:11:f1:94:58: 96:43:3e:87:55:cf:87:2a:a7:bc:86:22:0b:f0:a1:ef:f1:8f: 64:ce:9e:36:6b:00:c7:81:8a:c7:17:f9:9f:21:f2:9b:5b:28: ce:57:29:59:33:28:33:32:44:b1:2b:2a:28:25:0e:a4:81:b3: bd:4c:59:a9:03:a5:61:88:23:3f:12:2f:26:c7:44:b8:b7:d6: 89:18:60:5f:74:67:48:1e:93:6c:b3:45:df:c9:f7:8c:35:88: d5:58:aa:e6:41:bd:7c:37:1b:b4:5e:a2:56:67:b9:35:fb:71: 3c:92:6c:64:8e:17:2f:1b:f0:1d:f4:83:d6:94:e8:bc:63:f9: 01:44:81:42:1e:da:d2:d3:c1:cd:b6:d4:78:0d:bb:14:3e:bd: 0b:ee:73:0d:b6:97:b1:c7:75:fa:3a:b2:45:77:38:ba:94:38: 41:7e:5a:31 -----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgIUPyiNDsprtDyzR8MmwgYF+jHT71owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTg5MzQzNEEzMjA1OERBRkU5NzU4RkRBN0IzNjY1OTQ0 NEM5RUY4RTAeFw0yNjA2MDIwODAyNTlaFw0yNzA2MDEwODA3NTlaMDMxMTAvBgNV BAMTKEMyQzc4RUFDNEUxM0FEQzdCM0Y2QTJDREM4RTEzNDBCMjAxQzRGRUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9RfAM1osD56+XW4lSeuNPP9mB HCIa0VeTYkGWT/l2CWIZdTvMgtX025s6ESHx3MwWmYkxIIngR1pk2dHO8ClS56YS OKimuH97UBzqbbve5uWEWFH2nrLWPVKDD/XTUhZWh5PjYyUmumNWlMiYzaFaWNld IrZcT9+3TO9JWNvnjUxhUFoBsgJ7vC0YXS5uNnLAh+gsXz4sgIpODtZwDwXuKhdL pHSP3lp8AABLll/fkLcpqoqXpl/7ZaEKqzgvLQT3eyiPZIgMXnMmmHYTB6NLdcS5 2FFwSKh3FudIxNV1x35GvMdMONs8eVkjlrghBObiNydEbQm4yxTQmuJjsX0vAgMB AAGjggHvMIIB6zAdBgNVHQ4EFgQUwseOrE4Trcez9qLNyOE0CyAcT+owHwYDVR0j BBgwFoAU6JNDSjIFja/pdY/aezZllETJ744wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4ODU1MzEyOTUyNTI1MS8wL0U4OTM0MzRBMzIwNThEQUZFOTc1OEZEQTdCMzY2 NTk0NDRDOUVGOEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRTg5MzQzNEEzMjA1OERBRkU5NzU4RkRBN0IzNjY1OTQ0NEM5RUY4RS5jZXIw XQYIKwYBBQUHAQsEUTBPME0GCCsGAQUFBzALhkFyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU1ODg1NTMxMjk1MjUyNTEvMC9BUzE5MjExLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIA ATASAwQCdzvQAwQCdzvsAwQCfCqwMA0GCSqGSIb3DQEBCwUAA4IBAQC/8dJZWbyy ILVkIwv+veu95IlMP8RieIU5pjzBR+NJ3ZzH4OzL3XjdJKN+xcThIDzzNY0Ntz73 WQLgTAFZ0ZNRdyoSdIhD9yl2rL5UBlemQGyyUs4qnxHxlFiWQz6HVc+HKqe8hiIL 8KHv8Y9kzp42awDHgYrHF/mfIfKbWyjOVylZMygzMkSxKyooJQ6kgbO9TFmpA6Vh iCM/Ei8mx0S4t9aJGGBfdGdIHpNss0XfyfeMNYjVWKrmQb18Nxu0XqJWZ7k1+3E8 kmxkjhcvG/Ad9IPWlOi8Y/kBRIFCHtrS08HNttR4DbsUPr0L7nMNtpexx3X6OrJF dzi6lDhBflox -----END CERTIFICATE-----Generated at Mon Jun 8 20:58:38 2026 by rpki-client