$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065588553129525251/0/AS213705.roa File: AS213705.roa (raw, json) Hash identifier: rtMOf5xum3IPgwByImAjDi4CITxbYPUjvDTJ7CcG7u8= Subject key identifier: 4A:8B:14:A3:CA:10:04:85:0F:CF:EE:E9:2E:84:15:12:9F:AB:47:D5 Certificate issuer: /CN=E893434A32058DAFE9758FDA7B36659444C9EF8E Certificate serial: 107C36CEAFF648FDAE87CB7ABC9BE0648941058B Authority key identifier: E8:93:43:4A:32:05:8D:AF:E9:75:8F:DA:7B:36:65:94:44:C9:EF:8E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/AS213705.roa Signing time: Tue 02 Jun 2026 08:07:59 +0000 ROA not before: Tue 02 Jun 2026 08:02:59 +0000 ROA not after: Tue 01 Jun 2027 08:07:59 +0000 asID: 213705 IP address blocks: 119.59.132.0/22 maxlen: 24 123.98.0.0/24 maxlen: 24 211.149.36.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.crl rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Jun 2026 08:07:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:7c:36:ce:af:f6:48:fd:ae:87:cb:7a:bc:9b:e0:64:89:41:05:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E893434A32058DAFE9758FDA7B36659444C9EF8E Validity Not Before: Jun 2 08:02:59 2026 GMT Not After : Jun 1 08:07:59 2027 GMT Subject: CN=4A8B14A3CA1004850FCFEEE92E8415129FAB47D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:b7:87:6a:59:49:73:65:9f:bb:6a:06:99:c2: 94:90:4a:46:13:b4:8c:d2:eb:c4:32:cf:b9:ef:8f: fc:67:e3:3b:32:6f:63:14:16:53:ea:20:d2:ea:38: 32:9e:de:15:68:6d:f1:74:07:80:da:53:1d:b2:c5: 5f:24:60:60:b5:55:5d:4d:b7:87:f8:c6:c3:99:62: c5:96:8c:33:bd:44:8e:bd:e4:46:f3:3f:3a:4e:24: 52:1c:ca:b4:33:81:4c:9c:73:18:bb:8d:7f:88:a7: 11:a5:6f:db:4f:34:c7:0d:ac:48:ef:11:0b:64:76: bd:85:f6:20:e0:55:ac:35:34:0e:d3:5e:8b:09:0f: b0:7b:3a:77:92:32:dd:51:d4:8c:9f:72:61:7e:ae: 8b:25:0d:11:2d:a1:95:ec:43:06:5a:8d:e1:bf:27: 2b:a7:71:b8:b7:89:0b:15:15:0f:81:6c:ff:06:f1: ea:3d:dc:cf:00:04:87:70:61:98:ff:09:67:dd:76: 56:05:eb:41:fa:59:7b:c0:20:0c:09:c5:7b:c5:0d: 09:9a:7d:7e:aa:f6:23:a2:17:72:eb:91:7e:a9:40: 99:d5:70:9d:0d:fe:93:9b:c6:09:af:c9:be:ef:86: a0:78:b6:08:59:d4:f7:c4:2a:77:66:1e:ce:1a:4c: 4b:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:8B:14:A3:CA:10:04:85:0F:CF:EE:E9:2E:84:15:12:9F:AB:47:D5 X509v3 Authority Key Identifier: keyid:E8:93:43:4A:32:05:8D:AF:E9:75:8F:DA:7B:36:65:94:44:C9:EF:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/AS213705.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.59.132.0/22 123.98.0.0/24 211.149.36.0/22 Signature Algorithm: sha256WithRSAEncryption 9d:2d:3c:dd:8d:0d:e5:69:c3:5f:60:6b:8e:9e:fc:8a:f7:ac: a1:fb:cf:bd:a2:99:33:21:cf:e3:9d:a9:43:48:d7:58:6d:92: 60:01:15:40:72:fc:0c:2a:72:ae:b0:0e:de:44:79:e8:07:0a: fe:88:72:45:54:62:ac:5c:48:3f:ec:9a:7c:1a:94:11:2a:c5: 8f:7c:4b:fd:32:27:bb:0f:b3:93:62:a6:76:2f:6f:ed:fe:47: 69:37:32:52:3a:00:2b:8e:b2:c6:ea:a3:94:55:ce:f8:de:5b: 99:ca:28:45:b3:39:1a:76:d8:33:76:61:99:b4:b4:06:c2:82: 6c:c5:ca:49:ad:1a:c0:22:d3:68:29:73:bf:05:34:78:13:8d: a1:d0:6e:16:ec:62:0d:79:8c:5b:e6:e0:80:5c:07:9c:0d:6e: da:99:95:15:ed:a1:c9:e9:23:20:d0:c0:50:70:64:c4:9b:88: 7f:91:a6:99:e1:3c:1c:6c:1f:27:51:a8:b4:84:9d:3f:7b:2a: 91:a8:5b:96:5a:19:99:59:09:36:38:6d:52:30:23:4c:d8:b8: 5b:2b:c7:a6:22:4b:f7:08:0c:3a:62:96:02:d0:2e:78:9a:dd: b0:54:f3:0c:f3:f1:5f:b8:d7:9d:08:6a:29:2f:a8:01:47:d9: 38:3e:bc:b5 -----BEGIN CERTIFICATE----- MIIE5jCCA86gAwIBAgIUEHw2zq/2SP2uh8t6vJvgZIlBBYswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTg5MzQzNEEzMjA1OERBRkU5NzU4RkRBN0IzNjY1OTQ0 NEM5RUY4RTAeFw0yNjA2MDIwODAyNTlaFw0yNzA2MDEwODA3NTlaMDMxMTAvBgNV BAMTKDRBOEIxNEEzQ0ExMDA0ODUwRkNGRUVFOTJFODQxNTEyOUZBQjQ3RDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1t4dqWUlzZZ+7agaZwpSQSkYT tIzS68Qyz7nvj/xn4zsyb2MUFlPqINLqODKe3hVobfF0B4DaUx2yxV8kYGC1VV1N t4f4xsOZYsWWjDO9RI695EbzPzpOJFIcyrQzgUyccxi7jX+IpxGlb9tPNMcNrEjv EQtkdr2F9iDgVaw1NA7TXosJD7B7OneSMt1R1IyfcmF+roslDREtoZXsQwZajeG/ Jyuncbi3iQsVFQ+BbP8G8eo93M8ABIdwYZj/CWfddlYF60H6WXvAIAwJxXvFDQma fX6q9iOiF3LrkX6pQJnVcJ0N/pObxgmvyb7vhqB4tghZ1PfEKndmHs4aTEtjAgMB AAGjggHwMIIB7DAdBgNVHQ4EFgQUSosUo8oQBIUPz+7pLoQVEp+rR9UwHwYDVR0j BBgwFoAU6JNDSjIFja/pdY/aezZllETJ744wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4ODU1MzEyOTUyNTI1MS8wL0U4OTM0MzRBMzIwNThEQUZFOTc1OEZEQTdCMzY2 NTk0NDRDOUVGOEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRTg5MzQzNEEzMjA1OERBRkU5NzU4RkRBN0IzNjY1OTQ0NEM5RUY4RS5jZXIw XgYIKwYBBQUHAQsEUjBQME4GCCsGAQUFBzALhkJyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU1ODg1NTMxMjk1MjUyNTEvMC9BUzIxMzcwNS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjArBggrBgEFBQcBBwEB/wQcMBowGAQC AAEwEgMEAnc7hAMEAHtiAAMEAtOVJDANBgkqhkiG9w0BAQsFAAOCAQEAnS083Y0N 5WnDX2Brjp78ivesofvPvaKZMyHP452pQ0jXWG2SYAEVQHL8DCpyrrAO3kR56AcK /ohyRVRirFxIP+yafBqUESrFj3xL/TInuw+zk2Kmdi9v7f5HaTcyUjoAK46yxuqj lFXO+N5bmcooRbM5GnbYM3ZhmbS0BsKCbMXKSa0awCLTaClzvwU0eBONodBuFuxi DXmMW+bggFwHnA1u2pmVFe2hyekjINDAUHBkxJuIf5GmmeE8HGwfJ1GotISdP3sq kahblloZmVkJNjhtUjAjTNi4WyvHpiJL9wgMOmKWAtAueJrdsFTzDPPxX7jXnQhq KS+oAUfZOD68tQ== -----END CERTIFICATE-----Generated at Mon Jun 8 20:57:33 2026 by rpki-client