$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065588553129525251/0/AS399138.roa File: AS399138.roa (raw, json) Hash identifier: 3ubsZZEKVePPjjhmAPX4zwB2/kQmSevcvH2TT+fnfP8= Subject key identifier: F5:A2:AA:6B:BE:34:1B:9E:DD:7F:09:C4:AE:13:7F:63:20:2E:61:C6 Certificate issuer: /CN=E893434A32058DAFE9758FDA7B36659444C9EF8E Certificate serial: 74338FFC200CF547B15D7C2C60901C8C80BBE0D7 Authority key identifier: E8:93:43:4A:32:05:8D:AF:E9:75:8F:DA:7B:36:65:94:44:C9:EF:8E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/AS399138.roa Signing time: Tue 02 Jun 2026 08:07:59 +0000 ROA not before: Tue 02 Jun 2026 08:02:59 +0000 ROA not after: Tue 01 Jun 2027 08:07:59 +0000 asID: 399138 IP address blocks: 124.42.128.0/22 maxlen: 24 124.42.136.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.crl rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Jun 2026 08:07:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:33:8f:fc:20:0c:f5:47:b1:5d:7c:2c:60:90:1c:8c:80:bb:e0:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E893434A32058DAFE9758FDA7B36659444C9EF8E Validity Not Before: Jun 2 08:02:59 2026 GMT Not After : Jun 1 08:07:59 2027 GMT Subject: CN=F5A2AA6BBE341B9EDD7F09C4AE137F63202E61C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:19:9d:14:f2:95:7c:e9:d1:31:8f:a0:2a:66: 28:05:a0:70:fa:8d:4d:a7:30:6c:b2:2e:66:bb:88: ce:2d:be:5a:14:0c:b3:9e:71:27:50:76:bc:6b:f8: 84:7a:13:53:15:45:ed:01:c2:37:a8:76:d9:c2:cb: 01:57:0e:63:e3:69:39:45:a2:ed:c5:76:c9:06:59: 41:64:af:da:88:d4:a6:ed:5b:e0:1f:dc:b4:1a:5a: c1:58:0d:52:ee:8d:d9:13:0e:e1:aa:f0:b2:c6:1d: c5:2c:f5:ef:2d:ad:2f:13:92:0d:44:13:1d:ec:d0: b3:aa:d6:69:4d:7e:55:48:e3:20:4c:a6:b5:db:51: e7:16:63:1e:62:9c:7a:be:38:a6:98:b7:ac:14:22: c9:c5:d2:9d:8b:68:ef:85:06:4e:9a:e1:fd:34:7f: f7:75:6c:1c:64:12:b1:6b:ae:23:e1:c8:68:15:4f: 9b:39:08:18:8d:6b:08:b3:22:25:e4:bd:4a:dc:35: 20:93:1f:ad:b7:c3:14:28:59:ab:20:f8:55:a1:83: e5:d5:6d:ff:86:61:7f:34:3d:f9:e7:29:cb:0f:82: 03:17:fe:ea:b4:4d:e0:5f:c9:52:2c:eb:56:0d:ab: 1f:2c:96:1f:d2:c8:9e:35:0d:ac:93:a0:db:1d:14: ec:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:A2:AA:6B:BE:34:1B:9E:DD:7F:09:C4:AE:13:7F:63:20:2E:61:C6 X509v3 Authority Key Identifier: keyid:E8:93:43:4A:32:05:8D:AF:E9:75:8F:DA:7B:36:65:94:44:C9:EF:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/AS399138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 124.42.128.0/22 124.42.136.0/22 Signature Algorithm: sha256WithRSAEncryption 65:60:b8:da:4f:bd:65:22:77:af:4f:71:a1:ed:a7:1b:87:f6: 7f:e6:70:8e:dd:e2:b0:db:b9:7b:1b:e7:26:7b:1f:0a:42:9c: b8:af:2a:97:b8:5b:fe:62:85:53:c0:5e:56:3d:65:d7:b8:21: a5:7c:bb:82:53:c8:10:a7:6b:27:59:d3:ad:34:54:0a:73:53: 7c:84:3f:05:31:ef:3a:59:b1:81:ce:11:2b:ad:84:94:65:fd: 60:9e:5a:74:28:7d:bf:68:b1:fb:b3:b8:32:7d:3c:50:d5:aa: dd:cb:33:65:43:0e:58:56:b1:c1:6c:ed:d9:f8:4b:c7:2c:5b: b0:5b:21:e0:6c:52:4c:86:b6:c0:40:a9:0b:34:90:76:3b:00: 28:59:ae:2c:4e:16:5a:12:13:c6:ff:74:75:8c:5d:8c:50:89: 2a:36:a7:e9:49:4d:c4:7b:e7:84:c2:b3:fc:3a:b0:3d:1f:d1: d9:cb:c3:5e:f8:85:67:c8:83:fb:16:d5:e5:a4:ac:7d:42:76: 57:5b:7e:34:0f:f8:0c:80:54:a8:6d:e3:e8:2c:7a:b0:f2:3e: 4b:04:fe:8f:57:08:7a:c2:a4:4e:9e:37:04:09:e2:26:3c:17: 40:76:e4:b8:e2:58:79:3c:f1:91:d3:1c:25:bc:ba:2d:de:65: 9f:32:9d:10 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUdDOP/CAM9UexXXwsYJAcjIC74NcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTg5MzQzNEEzMjA1OERBRkU5NzU4RkRBN0IzNjY1OTQ0 NEM5RUY4RTAeFw0yNjA2MDIwODAyNTlaFw0yNzA2MDEwODA3NTlaMDMxMTAvBgNV BAMTKEY1QTJBQTZCQkUzNDFCOUVERDdGMDlDNEFFMTM3RjYzMjAyRTYxQzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeGZ0U8pV86dExj6AqZigFoHD6 jU2nMGyyLma7iM4tvloUDLOecSdQdrxr+IR6E1MVRe0BwjeodtnCywFXDmPjaTlF ou3FdskGWUFkr9qI1KbtW+Af3LQaWsFYDVLujdkTDuGq8LLGHcUs9e8trS8Tkg1E Ex3s0LOq1mlNflVI4yBMprXbUecWYx5inHq+OKaYt6wUIsnF0p2LaO+FBk6a4f00 f/d1bBxkErFrriPhyGgVT5s5CBiNawizIiXkvUrcNSCTH623wxQoWasg+FWhg+XV bf+GYX80PfnnKcsPggMX/uq0TeBfyVIs61YNqx8slh/SyJ41DayToNsdFOybAgMB AAGjggHqMIIB5jAdBgNVHQ4EFgQU9aKqa740G57dfwnErhN/YyAuYcYwHwYDVR0j BBgwFoAU6JNDSjIFja/pdY/aezZllETJ744wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4ODU1MzEyOTUyNTI1MS8wL0U4OTM0MzRBMzIwNThEQUZFOTc1OEZEQTdCMzY2 NTk0NDRDOUVGOEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRTg5MzQzNEEzMjA1OERBRkU5NzU4RkRBN0IzNjY1OTQ0NEM5RUY4RS5jZXIw XgYIKwYBBQUHAQsEUjBQME4GCCsGAQUFBzALhkJyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU1ODg1NTMxMjk1MjUyNTEvMC9BUzM5OTEzOC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQwEgQC AAEwDAMEAnwqgAMEAnwqiDANBgkqhkiG9w0BAQsFAAOCAQEAZWC42k+9ZSJ3r09x oe2nG4f2f+Zwjt3isNu5exvnJnsfCkKcuK8ql7hb/mKFU8BeVj1l17ghpXy7glPI EKdrJ1nTrTRUCnNTfIQ/BTHvOlmxgc4RK62ElGX9YJ5adCh9v2ix+7O4Mn08UNWq 3cszZUMOWFaxwWzt2fhLxyxbsFsh4GxSTIa2wECpCzSQdjsAKFmuLE4WWhITxv90 dYxdjFCJKjan6UlNxHvnhMKz/DqwPR/R2cvDXviFZ8iD+xbV5aSsfUJ2V1t+NA/4 DIBUqG3j6Cx6sPI+SwT+j1cIesKkTp43BAniJjwXQHbkuOJYeTzxkdMcJby6Ld5l nzKdEA== -----END CERTIFICATE-----Generated at Mon Jun 8 20:55:38 2026 by rpki-client