$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065591195721596929/0/3138302e3232332e3132382e302f31372d3234203d3e203138383131.roa File: 3138302e3232332e3132382e302f31372d3234203d3e203138383131.roa (raw, json) Hash identifier: Xp+MQxR0Py2HWTK+uPDbfreYoGok6ISJMOqDjhdl2Bw= Subject key identifier: 49:87:D5:1B:02:07:87:BA:CA:43:FF:0D:CB:DA:AA:91:D0:49:12:F5 Certificate issuer: /CN=0C02007C391DB5414355DE1A053D4E6D06CDD2CE Certificate serial: 57EF660995DBEC984B9B36D55344126B8B67C162 Authority key identifier: 0C:02:00:7C:39:1D:B5:41:43:55:DE:1A:05:3D:4E:6D:06:CD:D2:CE Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/0C02007C391DB5414355DE1A053D4E6D06CDD2CE.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065591195721596929/0/3138302e3232332e3132382e302f31372d3234203d3e203138383131.roa Signing time: Tue 26 May 2026 08:11:51 +0000 ROA not before: Tue 26 May 2026 08:06:51 +0000 ROA not after: Tue 25 May 2027 08:11:51 +0000 asID: 18811 IP address blocks: 180.223.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065591195721596929/0/0C02007C391DB5414355DE1A053D4E6D06CDD2CE.crl rsync://rpki-rps.cnnic.cn/repo/A1065591195721596929/0/0C02007C391DB5414355DE1A053D4E6D06CDD2CE.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/0C02007C391DB5414355DE1A053D4E6D06CDD2CE.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 08:47:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:ef:66:09:95:db:ec:98:4b:9b:36:d5:53:44:12:6b:8b:67:c1:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0C02007C391DB5414355DE1A053D4E6D06CDD2CE Validity Not Before: May 26 08:06:51 2026 GMT Not After : May 25 08:11:51 2027 GMT Subject: CN=4987D51B020787BACA43FF0DCBDAAA91D04912F5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:8c:06:e7:67:99:80:21:83:62:d3:af:0a:2d: 65:d3:a9:d6:13:73:11:45:a4:cc:a3:83:8b:26:3a: 5d:a2:3d:2f:f6:d5:61:a4:e1:bd:b1:0c:9b:ae:9d: 2e:b8:7a:94:c2:2b:e6:f8:97:2d:a9:02:af:f7:39: 85:f6:58:40:74:7c:44:85:20:a7:f2:36:2e:a5:b0: 53:c9:ef:92:cc:31:cd:ec:4d:ad:c2:33:e5:4b:0a: 8a:d7:d6:9b:6b:1b:d6:6c:8e:20:26:84:0b:8f:39: 18:e8:92:a9:26:e0:8a:bf:a6:6b:9d:76:51:64:07: 7a:6f:37:4a:6a:4e:f4:28:59:a9:cd:22:00:ed:d8: 29:b5:d0:40:b6:da:65:f2:82:20:dd:59:fb:c6:c4: cd:af:40:55:33:5c:14:9c:7a:4d:ba:29:9e:f0:0a: d7:db:b2:be:d4:34:42:ae:20:a9:0f:d4:cd:6b:63: 15:68:d4:a6:61:f7:f2:65:3f:17:fa:24:33:22:cc: 31:bc:53:4f:3d:be:c9:5e:d3:92:7d:e8:74:7a:a2: f0:59:5e:5a:c0:00:b3:f2:c2:05:dc:80:b2:26:e9: 7d:e7:92:31:bb:87:ba:f7:f8:d4:d5:db:9b:e0:52: 79:9d:e0:30:03:b6:ba:5c:81:25:b4:e6:94:bc:f2: f5:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:87:D5:1B:02:07:87:BA:CA:43:FF:0D:CB:DA:AA:91:D0:49:12:F5 X509v3 Authority Key Identifier: keyid:0C:02:00:7C:39:1D:B5:41:43:55:DE:1A:05:3D:4E:6D:06:CD:D2:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065591195721596929/0/0C02007C391DB5414355DE1A053D4E6D06CDD2CE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/0C02007C391DB5414355DE1A053D4E6D06CDD2CE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065591195721596929/0/3138302e3232332e3132382e302f31372d3234203d3e203138383131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.223.128.0/17 Signature Algorithm: sha256WithRSAEncryption 49:11:3f:6f:ef:0d:0b:04:83:2b:55:16:fc:ba:e9:1e:2d:33: 52:89:c8:29:ae:c6:5f:0c:5b:3f:ea:d0:ed:59:95:17:f6:a6: d6:e5:89:53:da:0e:e1:9e:0a:f9:33:e6:ea:80:63:44:18:9b: 05:07:83:0c:54:b1:ba:a0:ab:f7:70:80:51:1d:db:b5:9e:24: 6a:b4:49:cb:5a:4b:bc:88:b2:35:eb:65:6f:78:31:6b:3a:15: aa:de:65:6d:a7:80:25:d6:68:fb:a7:96:da:fb:6b:f6:26:6e: 9a:2c:a5:4b:9f:c8:d9:98:8d:5e:73:f8:fe:e1:f8:f2:12:4c: af:04:57:7f:b9:06:3f:41:5b:bc:2b:be:84:40:3e:0a:b4:56: e4:03:72:0c:84:ad:c3:b1:ad:cc:01:7a:b4:b6:48:28:d8:e0: 5d:23:fd:e1:89:05:b7:3f:12:41:b2:61:a5:24:54:c9:fa:34: e2:a4:c0:ec:9f:e7:b2:07:4e:46:2a:ed:7a:93:4a:2f:25:fa: ef:c0:63:f5:29:fd:d3:73:29:c6:30:f7:7b:40:0e:3d:eb:24: 12:4c:24:e6:58:52:77:46:aa:32:48:e0:5c:de:47:d0:e8:8f: 14:16:f8:3c:5a:4f:40:3f:6c:10:2e:1b:18:cb:e1:1a:3d:45: a5:77:73:ac -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUV+9mCZXb7JhLmzbVU0QSa4tnwWIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEMwMjAwN0MzOTFEQjU0MTQzNTVERTFBMDUzRDRFNkQw NkNERDJDRTAeFw0yNjA1MjYwODA2NTFaFw0yNzA1MjUwODExNTFaMDMxMTAvBgNV BAMTKDQ5ODdENTFCMDIwNzg3QkFDQTQzRkYwRENCREFBQTkxRDA0OTEyRjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfjAbnZ5mAIYNi068KLWXTqdYT cxFFpMyjg4smOl2iPS/21WGk4b2xDJuunS64epTCK+b4ly2pAq/3OYX2WEB0fESF IKfyNi6lsFPJ75LMMc3sTa3CM+VLCorX1ptrG9ZsjiAmhAuPORjokqkm4Iq/pmud dlFkB3pvN0pqTvQoWanNIgDt2Cm10EC22mXygiDdWfvGxM2vQFUzXBScek26KZ7w Ctfbsr7UNEKuIKkP1M1rYxVo1KZh9/JlPxf6JDMizDG8U089vsle05J96HR6ovBZ XlrAALPywgXcgLIm6X3nkjG7h7r3+NTV25vgUnmd4DADtrpcgSW05pS88vUFAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUSYfVGwIHh7rKQ/8Ny9qqkdBJEvUwHwYDVR0j BBgwFoAUDAIAfDkdtUFDVd4aBT1ObQbN0s4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU5MTE5NTcyMTU5NjkyOS8wLzBDMDIwMDdDMzkxREI1NDE0MzU1REUxQTA1M0Q0 RTZEMDZDREQyQ0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMEMwMjAwN0MzOTFEQjU0MTQzNTVERTFBMDUzRDRFNkQwNkNERDJDRS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1OTExOTU3MjE1OTY5MjkvMC8zMTM4MzAyZTMy MzIzMzJlMzEzMjM4MmUzMDJmMzEzNzJkMzIzNDIwM2QzZTIwMzEzODM4MzEzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEB7TfgDANBgkqhkiG9w0BAQsFAAOCAQEASRE/b+8NCwSDK1UW/Lrp Hi0zUonIKa7GXwxbP+rQ7VmVF/am1uWJU9oO4Z4K+TPm6oBjRBibBQeDDFSxuqCr 93CAUR3btZ4karRJy1pLvIiyNetlb3gxazoVqt5lbaeAJdZo+6eW2vtr9iZumiyl S5/I2ZiNXnP4/uH48hJMrwRXf7kGP0FbvCu+hEA+CrRW5ANyDIStw7GtzAF6tLZI KNjgXSP94YkFtz8SQbJhpSRUyfo04qTA7J/nsgdORirtepNKLyX678Bj9Sn903Mp xjD3e0AOPeskEkwk5lhSd0aqMkjgXN5H0OiPFBb4PFpPQD9sEC4bGMvhGj1FpXdz rA== -----END CERTIFICATE-----Generated at Thu Jun 11 16:28:07 2026 by rpki-client