$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065591195721596929/0/3138302e3232332e302e302f31392d3234203d3e2039333034.roa File: 3138302e3232332e302e302f31392d3234203d3e2039333034.roa (raw, json) Hash identifier: crAv+Nusn+K/gEUsD/IlQd2PJQzJmwWtxfXLp9Z5FKM= Subject key identifier: E5:A8:32:78:19:8E:4C:C7:8D:A6:7B:4A:8D:CF:1C:43:22:EE:6C:3C Certificate issuer: /CN=0C02007C391DB5414355DE1A053D4E6D06CDD2CE Certificate serial: 62EFE311247A133AC80808AC48A75FCD6ED04879 Authority key identifier: 0C:02:00:7C:39:1D:B5:41:43:55:DE:1A:05:3D:4E:6D:06:CD:D2:CE Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/0C02007C391DB5414355DE1A053D4E6D06CDD2CE.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065591195721596929/0/3138302e3232332e302e302f31392d3234203d3e2039333034.roa Signing time: Tue 26 May 2026 08:05:50 +0000 ROA not before: Tue 26 May 2026 08:00:50 +0000 ROA not after: Tue 25 May 2027 08:05:50 +0000 asID: 9304 IP address blocks: 180.223.0.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065591195721596929/0/0C02007C391DB5414355DE1A053D4E6D06CDD2CE.crl rsync://rpki-rps.cnnic.cn/repo/A1065591195721596929/0/0C02007C391DB5414355DE1A053D4E6D06CDD2CE.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/0C02007C391DB5414355DE1A053D4E6D06CDD2CE.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jun 2026 11:11:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:ef:e3:11:24:7a:13:3a:c8:08:08:ac:48:a7:5f:cd:6e:d0:48:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0C02007C391DB5414355DE1A053D4E6D06CDD2CE Validity Not Before: May 26 08:00:50 2026 GMT Not After : May 25 08:05:50 2027 GMT Subject: CN=E5A83278198E4CC78DA67B4A8DCF1C4322EE6C3C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:c8:68:6c:31:b7:41:d6:7c:20:c1:8a:61:15: ce:fb:8e:84:f6:04:1a:80:9b:4b:9a:f9:d3:4d:90: b6:0b:af:71:b9:53:04:79:1a:c9:f2:73:f3:48:49: 07:ee:99:89:bc:d2:c7:92:44:97:02:b8:33:25:b2: 52:b4:9b:e9:f8:98:86:7a:45:da:37:80:dd:e4:93: f9:ee:28:99:02:54:91:ac:90:b4:eb:73:2a:f6:28: 6f:f4:a3:f6:d6:66:4f:c7:1d:b3:55:ee:0f:6a:ce: a3:7f:d2:00:50:d1:d8:ef:29:3b:d5:90:b0:6f:4e: 09:2c:99:5b:03:ff:10:9c:31:be:53:e4:a8:ee:49: 86:88:39:0e:54:2b:19:d0:fa:5d:d5:79:a3:2a:69: 60:e2:21:ca:13:f5:33:ea:50:c0:20:75:55:e4:c0: 5b:20:4d:02:fa:16:9e:fb:bf:e3:4d:b6:cf:2e:38: f2:6e:c6:5f:5a:5a:2e:0d:cb:db:9c:9a:40:91:b6: 06:f7:ac:78:d8:4a:ce:a7:50:26:cd:7c:7d:e2:ce: 8f:8e:f9:bf:4c:c0:67:52:58:9c:c5:58:c0:ce:19: 3c:9e:07:81:de:26:21:89:1e:7d:2e:9e:2d:14:19: b3:80:cd:b5:59:59:02:26:df:c5:34:95:82:39:a6: a0:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:A8:32:78:19:8E:4C:C7:8D:A6:7B:4A:8D:CF:1C:43:22:EE:6C:3C X509v3 Authority Key Identifier: keyid:0C:02:00:7C:39:1D:B5:41:43:55:DE:1A:05:3D:4E:6D:06:CD:D2:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065591195721596929/0/0C02007C391DB5414355DE1A053D4E6D06CDD2CE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/0C02007C391DB5414355DE1A053D4E6D06CDD2CE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065591195721596929/0/3138302e3232332e302e302f31392d3234203d3e2039333034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.223.0.0/19 Signature Algorithm: sha256WithRSAEncryption 09:98:68:d7:ea:c5:21:b1:c7:87:53:d2:05:23:ff:c7:aa:ee: ff:c3:b8:3d:c8:ea:2a:32:cb:e1:94:e1:0c:38:ab:f6:12:ac: a5:46:aa:48:f8:8c:9e:db:60:b5:0a:f4:e5:e7:dc:fc:db:17: ef:5b:58:17:17:1f:46:6c:e1:64:f4:0e:7b:a8:1a:5e:e7:3c: 8b:6a:f7:e8:6e:b6:7e:d7:f1:38:f1:6a:fd:d2:4f:b5:7a:03: 8b:49:3e:fc:74:f9:c3:83:1f:0d:5e:1a:e1:5d:15:d9:f9:f3: 68:7d:0c:8f:6e:f2:ee:98:12:8d:8c:dc:5b:8d:21:f6:52:e1: 1a:75:f5:a9:25:a9:a3:10:36:36:f3:78:7f:c9:49:0b:9b:a8: ca:50:c6:b1:9b:d6:f9:e2:ed:db:b2:d6:0f:dd:57:20:eb:78: ac:9f:a8:9d:b5:06:4b:f7:47:68:43:0f:05:e6:39:7f:d2:b3: c6:57:06:5e:2f:70:44:b7:89:ab:4e:57:69:fc:89:0c:f4:1e: ac:63:13:94:82:f9:6a:ff:a0:3e:29:b4:f3:30:f8:b5:be:a5: 4b:12:84:c4:ce:ce:8c:5d:d0:36:bd:17:c8:ab:a0:f5:18:d6: 28:6e:a0:3e:66:91:2f:37:aa:c5:db:d3:00:81:d0:fe:bf:76: a7:e1:c0:ac -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUYu/jESR6EzrICAisSKdfzW7QSHkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEMwMjAwN0MzOTFEQjU0MTQzNTVERTFBMDUzRDRFNkQw NkNERDJDRTAeFw0yNjA1MjYwODAwNTBaFw0yNzA1MjUwODA1NTBaMDMxMTAvBgNV BAMTKEU1QTgzMjc4MTk4RTRDQzc4REE2N0I0QThEQ0YxQzQzMjJFRTZDM0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcyGhsMbdB1nwgwYphFc77joT2 BBqAm0ua+dNNkLYLr3G5UwR5Gsnyc/NISQfumYm80seSRJcCuDMlslK0m+n4mIZ6 Rdo3gN3kk/nuKJkCVJGskLTrcyr2KG/0o/bWZk/HHbNV7g9qzqN/0gBQ0djvKTvV kLBvTgksmVsD/xCcMb5T5KjuSYaIOQ5UKxnQ+l3VeaMqaWDiIcoT9TPqUMAgdVXk wFsgTQL6Fp77v+NNts8uOPJuxl9aWi4Ny9ucmkCRtgb3rHjYSs6nUCbNfH3izo+O +b9MwGdSWJzFWMDOGTyeB4HeJiGJHn0uni0UGbOAzbVZWQIm38U0lYI5pqCFAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQU5agyeBmOTMeNpntKjc8cQyLubDwwHwYDVR0j BBgwFoAUDAIAfDkdtUFDVd4aBT1ObQbN0s4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU5MTE5NTcyMTU5NjkyOS8wLzBDMDIwMDdDMzkxREI1NDE0MzU1REUxQTA1M0Q0 RTZEMDZDREQyQ0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMEMwMjAwN0MzOTFEQjU0MTQzNTVERTFBMDUzRDRFNkQwNkNERDJDRS5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTkxMTk1NzIxNTk2OTI5LzAvMzEzODMwMmUzMjMy MzMyZTMwMmUzMDJmMzEzOTJkMzIzNDIwM2QzZTIwMzkzMzMwMzQucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAW03wAwDQYJKoZIhvcNAQELBQADggEBAAmYaNfqxSGxx4dT0gUj/8eq7v/DuD3I 6ioyy+GU4Qw4q/YSrKVGqkj4jJ7bYLUK9OXn3PzbF+9bWBcXH0Zs4WT0DnuoGl7n PItq9+hutn7X8Tjxav3ST7V6A4tJPvx0+cODHw1eGuFdFdn582h9DI9u8u6YEo2M 3FuNIfZS4Rp19aklqaMQNjbzeH/JSQubqMpQxrGb1vni7duy1g/dVyDreKyfqJ21 Bkv3R2hDDwXmOX/Ss8ZXBl4vcES3iatOV2n8iQz0HqxjE5SC+Wr/oD4ptPMw+LW+ pUsShMTOzoxd0Da9F8iroPUY1ihuoD5mkS83qsXb0wCB0P6/dqfhwKw= -----END CERTIFICATE-----Generated at Tue Jun 2 20:51:09 2026 by rpki-client