$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065588553129525251/0/AS399461.roa File: AS399461.roa (raw, json) Hash identifier: R3f9heDWioCWK+THCrmcedswB3q4fSozHEv5QnAigq8= Subject key identifier: 10:FA:6B:AD:2B:47:D5:97:9E:1C:BA:59:3E:D2:73:B7:6B:ED:4A:E3 Certificate issuer: /CN=E893434A32058DAFE9758FDA7B36659444C9EF8E Certificate serial: 552B1607F5A45BDF5A746274D743F39A0023DF0D Authority key identifier: E8:93:43:4A:32:05:8D:AF:E9:75:8F:DA:7B:36:65:94:44:C9:EF:8E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/AS399461.roa Signing time: Tue 02 Jun 2026 08:07:59 +0000 ROA not before: Tue 02 Jun 2026 08:02:59 +0000 ROA not after: Tue 01 Jun 2027 08:07:59 +0000 asID: 399461 IP address blocks: 124.42.192.0/22 maxlen: 24 124.42.204.0/22 maxlen: 24 124.42.212.0/22 maxlen: 24 124.42.220.0/22 maxlen: 24 124.42.240.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.crl rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Jun 2026 08:07:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:2b:16:07:f5:a4:5b:df:5a:74:62:74:d7:43:f3:9a:00:23:df:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E893434A32058DAFE9758FDA7B36659444C9EF8E Validity Not Before: Jun 2 08:02:59 2026 GMT Not After : Jun 1 08:07:59 2027 GMT Subject: CN=10FA6BAD2B47D5979E1CBA593ED273B76BED4AE3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:08:2d:f3:22:3e:01:50:0a:b6:b9:31:c0:d3: 77:a4:ff:87:e7:d2:f5:d8:21:a5:2a:d4:10:03:47: da:4d:92:69:4d:67:43:ce:1d:b1:2f:10:bf:63:86: 87:00:6b:57:ad:37:d5:82:15:3e:d8:30:87:e2:34: 44:ea:d8:b4:95:da:9b:e3:07:6b:a8:c3:aa:4b:74: a1:9d:dd:64:ca:60:d5:b9:f1:1b:76:37:3a:6e:25: 9f:02:14:74:76:a9:78:03:01:cd:71:96:23:02:df: d9:cf:12:e1:7f:b4:0c:8c:87:94:d8:41:65:53:18: 9b:26:65:7f:b5:4d:c8:03:36:6b:05:1e:3a:e6:90: 37:c3:c8:7b:6b:8a:43:34:c6:74:d0:9e:13:be:95: 90:63:bb:8a:0e:48:d6:86:62:4d:fd:af:a6:8d:c8: 53:ca:52:31:27:51:65:0f:a7:3e:1d:af:ea:5b:5a: 30:bd:bc:d2:54:70:eb:b7:39:62:9f:a3:54:ae:47: 09:ed:60:5a:b1:40:47:3f:12:46:ec:f9:ef:ff:f0: f6:fc:be:7e:92:c6:18:c6:cc:5c:cc:d8:7a:75:d3: 0e:60:90:5c:d3:e1:3b:e5:13:5a:fd:2e:09:b2:9a: fc:de:e9:af:b6:f4:63:67:49:0a:9b:e3:af:2c:a5: 3a:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:FA:6B:AD:2B:47:D5:97:9E:1C:BA:59:3E:D2:73:B7:6B:ED:4A:E3 X509v3 Authority Key Identifier: keyid:E8:93:43:4A:32:05:8D:AF:E9:75:8F:DA:7B:36:65:94:44:C9:EF:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/AS399461.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 124.42.192.0/22 124.42.204.0/22 124.42.212.0/22 124.42.220.0/22 124.42.240.0/22 Signature Algorithm: sha256WithRSAEncryption b7:21:71:6b:aa:81:e4:10:b7:9f:6d:f9:30:f5:09:ed:b7:68: f6:05:13:5d:76:e7:c2:1f:cb:b3:37:19:60:88:a3:ae:c3:30: c0:e5:ab:da:10:d5:3a:fa:a3:a2:a9:2a:c6:3f:bc:ec:e8:d4: ec:2d:64:ea:52:a9:f5:e3:08:e4:36:58:12:1a:86:b5:c5:85: 1d:25:f6:1b:e8:fc:47:c9:90:a7:7d:ab:3b:ec:ac:a7:93:00: 0c:60:a7:60:0b:a6:99:be:4b:87:59:16:5a:46:99:08:f5:6a: 5d:20:95:ce:11:d5:1b:51:05:88:a5:8f:44:e1:32:40:c3:3c: 7f:d4:c4:dc:26:d1:ad:bc:c5:7d:92:b6:33:09:69:5f:cb:ba: 3d:00:16:0a:5c:eb:32:fe:21:17:bb:92:cd:35:25:d6:63:a6: d1:40:e7:8f:ca:1d:18:88:50:d9:74:ef:c1:9a:6c:41:6e:1a: 10:d9:96:c6:4b:31:2b:ca:6a:97:64:e3:00:ca:ae:e5:70:4b: 48:f1:15:a2:4b:99:42:e0:67:f2:c7:10:37:58:48:26:a8:7d: 42:f5:3c:f2:77:42:88:e7:96:99:3e:87:1c:67:d2:8d:46:b1: 1a:46:02:b3:31:74:88:8f:39:86:01:a0:0e:d2:9d:24:22:8e: 98:8a:f6:49 -----BEGIN CERTIFICATE----- MIIE8jCCA9qgAwIBAgIUVSsWB/WkW99adGJ010PzmgAj3w0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTg5MzQzNEEzMjA1OERBRkU5NzU4RkRBN0IzNjY1OTQ0 NEM5RUY4RTAeFw0yNjA2MDIwODAyNTlaFw0yNzA2MDEwODA3NTlaMDMxMTAvBgNV BAMTKDEwRkE2QkFEMkI0N0Q1OTc5RTFDQkE1OTNFRDI3M0I3NkJFRDRBRTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwCC3zIj4BUAq2uTHA03ek/4fn 0vXYIaUq1BADR9pNkmlNZ0POHbEvEL9jhocAa1etN9WCFT7YMIfiNETq2LSV2pvj B2uow6pLdKGd3WTKYNW58Rt2NzpuJZ8CFHR2qXgDAc1xliMC39nPEuF/tAyMh5TY QWVTGJsmZX+1TcgDNmsFHjrmkDfDyHtrikM0xnTQnhO+lZBju4oOSNaGYk39r6aN yFPKUjEnUWUPpz4dr+pbWjC9vNJUcOu3OWKfo1SuRwntYFqxQEc/Ekbs+e//8Pb8 vn6SxhjGzFzM2Hp10w5gkFzT4TvlE1r9Lgmymvze6a+29GNnSQqb468spToRAgMB AAGjggH8MIIB+DAdBgNVHQ4EFgQUEPprrStH1ZeeHLpZPtJzt2vtSuMwHwYDVR0j BBgwFoAU6JNDSjIFja/pdY/aezZllETJ744wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4ODU1MzEyOTUyNTI1MS8wL0U4OTM0MzRBMzIwNThEQUZFOTc1OEZEQTdCMzY2 NTk0NDRDOUVGOEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRTg5MzQzNEEzMjA1OERBRkU5NzU4RkRBN0IzNjY1OTQ0NEM5RUY4RS5jZXIw XgYIKwYBBQUHAQsEUjBQME4GCCsGAQUFBzALhkJyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU1ODg1NTMxMjk1MjUyNTEvMC9BUzM5OTQ2MS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA3BggrBgEFBQcBBwEB/wQoMCYwJAQC AAEwHgMEAnwqwAMEAnwqzAMEAnwq1AMEAnwq3AMEAnwq8DANBgkqhkiG9w0BAQsF AAOCAQEAtyFxa6qB5BC3n235MPUJ7bdo9gUTXXbnwh/LszcZYIijrsMwwOWr2hDV Ovqjoqkqxj+87OjU7C1k6lKp9eMI5DZYEhqGtcWFHSX2G+j8R8mQp32rO+ysp5MA DGCnYAummb5Lh1kWWkaZCPVqXSCVzhHVG1EFiKWPROEyQMM8f9TE3CbRrbzFfZK2 MwlpX8u6PQAWClzrMv4hF7uSzTUl1mOm0UDnj8odGIhQ2XTvwZpsQW4aENmWxksx K8pql2TjAMqu5XBLSPEVokuZQuBn8scQN1hIJqh9QvU88ndCiOeWmT6HHGfSjUax GkYCszF0iI85hgGgDtKdJCKOmIr2SQ== -----END CERTIFICATE-----Generated at Mon Jun 8 20:54:52 2026 by rpki-client