$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065588553129525251/0/AS198486.roa File: AS198486.roa (raw, json) Hash identifier: GzHyV4E5ft7kY7hRmfkbUhxEfcgcuzTnZFgtuknE8yE= Subject key identifier: 12:E5:5D:D3:C5:C7:A0:0E:02:8B:71:B0:43:C2:26:00:B5:34:F0:20 Certificate issuer: /CN=E893434A32058DAFE9758FDA7B36659444C9EF8E Certificate serial: 39F2E913FEBB6CF17389B158EA67678A24E21677 Authority key identifier: E8:93:43:4A:32:05:8D:AF:E9:75:8F:DA:7B:36:65:94:44:C9:EF:8E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/AS198486.roa Signing time: Tue 02 Jun 2026 08:07:59 +0000 ROA not before: Tue 02 Jun 2026 08:02:59 +0000 ROA not after: Tue 01 Jun 2027 08:07:59 +0000 asID: 198486 IP address blocks: 119.59.128.0/24 maxlen: 24 119.59.129.0/24 maxlen: 24 119.59.130.0/24 maxlen: 24 119.59.131.0/24 maxlen: 24 123.98.1.0/24 maxlen: 24 123.98.2.0/24 maxlen: 24 123.98.3.0/24 maxlen: 24 123.98.4.0/24 maxlen: 24 123.98.5.0/24 maxlen: 24 123.98.6.0/24 maxlen: 24 123.98.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.crl rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Jun 2026 08:07:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:f2:e9:13:fe:bb:6c:f1:73:89:b1:58:ea:67:67:8a:24:e2:16:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E893434A32058DAFE9758FDA7B36659444C9EF8E Validity Not Before: Jun 2 08:02:59 2026 GMT Not After : Jun 1 08:07:59 2027 GMT Subject: CN=12E55DD3C5C7A00E028B71B043C22600B534F020 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:b0:31:b4:b5:e0:18:75:79:6c:0e:e0:65:2f: 71:9b:b9:88:cf:24:97:0b:bb:73:72:c9:f7:ea:62: bb:7e:27:57:e4:e8:d8:ce:44:54:64:7c:9c:84:e0: 36:1e:d4:29:23:a0:19:24:4d:23:bf:fb:f4:19:39: 58:b6:50:d1:de:a7:1e:aa:d1:b4:fa:1f:1d:0e:cb: 1a:81:c6:ee:ef:ed:1d:aa:24:91:d8:e3:24:51:1d: f1:d1:57:b5:d0:8c:79:08:4b:12:f5:4f:ab:91:dc: 80:10:d5:c2:4d:96:80:d1:16:04:63:6f:1b:4c:a2: cf:9c:04:f5:e9:3b:7a:56:ca:be:7b:c0:b6:8a:93: 50:6b:71:46:3a:6a:12:a0:ad:40:86:ef:af:ff:72: 11:e1:76:e6:2a:94:f4:7d:1b:51:d7:63:75:ee:96: 45:c6:6b:0a:f7:e5:05:ba:4d:be:52:dd:6f:83:77: 6e:2f:f7:9d:5c:8b:a9:d8:53:31:5f:c8:b8:38:41: ef:c4:62:d3:d3:02:22:da:6b:86:31:e4:0c:42:29: 56:31:85:34:3c:01:99:a2:f3:df:50:e7:32:f2:28: e5:98:51:ac:9a:42:da:87:f8:77:5b:ba:79:52:94: 32:b2:a8:0c:42:3b:92:61:4d:9a:1d:c3:cb:de:ea: c4:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:E5:5D:D3:C5:C7:A0:0E:02:8B:71:B0:43:C2:26:00:B5:34:F0:20 X509v3 Authority Key Identifier: keyid:E8:93:43:4A:32:05:8D:AF:E9:75:8F:DA:7B:36:65:94:44:C9:EF:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/AS198486.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.59.128.0/22 123.98.1.0-123.98.7.255 Signature Algorithm: sha256WithRSAEncryption 41:ab:fe:40:b4:dd:8c:32:23:41:39:25:af:22:bc:3c:49:6d: fb:9a:b1:56:73:0d:b7:e0:33:a1:1c:75:3c:0e:82:d3:8b:a2: 9c:9c:d4:9f:59:ba:33:f5:d6:58:9c:21:50:72:2f:66:85:00: 4b:5c:41:7d:ae:e7:ac:39:4d:f5:a3:51:62:03:31:f5:f0:04: 66:df:05:19:b1:93:01:cf:f0:4d:d0:de:7f:d8:63:5a:09:de: ba:a7:75:84:fe:3b:fc:5c:4b:03:32:38:42:1b:00:2e:6b:12: ed:51:e0:c6:85:55:f5:54:a8:ef:0b:69:02:19:de:05:f9:06: 84:81:ff:00:b7:b1:e6:cb:dc:a9:d9:82:ed:27:7d:64:29:1a: 5a:8e:3e:cd:7f:02:cc:87:f3:2c:38:fa:d4:0c:d3:2d:05:37: 48:f6:5e:31:4c:59:d8:c6:31:84:e1:b5:97:7e:41:76:b5:f9: f9:0f:f4:8e:b1:63:5e:ee:92:3b:b4:b7:ac:ef:07:41:59:1e: 43:35:6b:56:27:e5:64:53:59:32:b6:fb:e4:34:78:af:25:dd: 03:0b:f1:4c:a8:07:65:50:b6:ac:95:d2:7e:59:7a:e1:9d:99: 3c:b8:81:90:d8:f5:e8:09:09:e0:28:9d:3d:2e:8d:3d:59:7c: 75:69:7a:5f -----BEGIN CERTIFICATE----- MIIE6DCCA9CgAwIBAgIUOfLpE/67bPFzibFY6mdniiTiFncwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTg5MzQzNEEzMjA1OERBRkU5NzU4RkRBN0IzNjY1OTQ0 NEM5RUY4RTAeFw0yNjA2MDIwODAyNTlaFw0yNzA2MDEwODA3NTlaMDMxMTAvBgNV BAMTKDEyRTU1REQzQzVDN0EwMEUwMjhCNzFCMDQzQzIyNjAwQjUzNEYwMjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnsDG0teAYdXlsDuBlL3GbuYjP JJcLu3NyyffqYrt+J1fk6NjORFRkfJyE4DYe1CkjoBkkTSO/+/QZOVi2UNHepx6q 0bT6Hx0OyxqBxu7v7R2qJJHY4yRRHfHRV7XQjHkISxL1T6uR3IAQ1cJNloDRFgRj bxtMos+cBPXpO3pWyr57wLaKk1BrcUY6ahKgrUCG76//chHhduYqlPR9G1HXY3Xu lkXGawr35QW6Tb5S3W+Dd24v951ci6nYUzFfyLg4Qe/EYtPTAiLaa4Yx5AxCKVYx hTQ8AZmi899Q5zLyKOWYUayaQtqH+HdbunlSlDKyqAxCO5JhTZodw8ve6sQdAgMB AAGjggHyMIIB7jAdBgNVHQ4EFgQUEuVd08XHoA4Ci3GwQ8ImALU08CAwHwYDVR0j BBgwFoAU6JNDSjIFja/pdY/aezZllETJ744wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4ODU1MzEyOTUyNTI1MS8wL0U4OTM0MzRBMzIwNThEQUZFOTc1OEZEQTdCMzY2 NTk0NDRDOUVGOEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRTg5MzQzNEEzMjA1OERBRkU5NzU4RkRBN0IzNjY1OTQ0NEM5RUY4RS5jZXIw XgYIKwYBBQUHAQsEUjBQME4GCCsGAQUFBzALhkJyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU1ODg1NTMxMjk1MjUyNTEvMC9BUzE5ODQ4Ni5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAtBggrBgEFBQcBBwEB/wQeMBwwGgQC AAEwFAMEAnc7gDAMAwQAe2IBAwQDe2IAMA0GCSqGSIb3DQEBCwUAA4IBAQBBq/5A tN2MMiNBOSWvIrw8SW37mrFWcw234DOhHHU8DoLTi6KcnNSfWboz9dZYnCFQci9m hQBLXEF9ruesOU31o1FiAzH18ARm3wUZsZMBz/BN0N5/2GNaCd66p3WE/jv8XEsD MjhCGwAuaxLtUeDGhVX1VKjvC2kCGd4F+QaEgf8At7Hmy9yp2YLtJ31kKRpajj7N fwLMh/MsOPrUDNMtBTdI9l4xTFnYxjGE4bWXfkF2tfn5D/SOsWNe7pI7tLes7wdB WR5DNWtWJ+VkU1kytvvkNHivJd0DC/FMqAdlULasldJ+WXrhnZk8uIGQ2PXoCQng KJ09Lo09WXx1aXpf -----END CERTIFICATE-----Generated at Mon Jun 8 20:54:15 2026 by rpki-client