$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065591195721596929/0/3138302e3232332e34382e302f32302d3234203d3e203138383131.roa File: 3138302e3232332e34382e302f32302d3234203d3e203138383131.roa (raw, json) Hash identifier: Q4iJCHSjpD+TsepVXsFgRkYFUUBWJBU8jcaN92MdLMY= Subject key identifier: B9:CA:59:90:5E:2E:39:67:A9:8D:C5:FA:FC:2D:40:13:1E:3A:6F:79 Certificate issuer: /CN=0C02007C391DB5414355DE1A053D4E6D06CDD2CE Certificate serial: 4928C3D61CFEFA4A503C7DBBC1BC70778657C0B5 Authority key identifier: 0C:02:00:7C:39:1D:B5:41:43:55:DE:1A:05:3D:4E:6D:06:CD:D2:CE Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/0C02007C391DB5414355DE1A053D4E6D06CDD2CE.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065591195721596929/0/3138302e3232332e34382e302f32302d3234203d3e203138383131.roa Signing time: Tue 26 May 2026 08:07:40 +0000 ROA not before: Tue 26 May 2026 08:02:40 +0000 ROA not after: Tue 25 May 2027 08:07:40 +0000 asID: 18811 IP address blocks: 180.223.48.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065591195721596929/0/0C02007C391DB5414355DE1A053D4E6D06CDD2CE.crl rsync://rpki-rps.cnnic.cn/repo/A1065591195721596929/0/0C02007C391DB5414355DE1A053D4E6D06CDD2CE.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/0C02007C391DB5414355DE1A053D4E6D06CDD2CE.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 11:12:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:28:c3:d6:1c:fe:fa:4a:50:3c:7d:bb:c1:bc:70:77:86:57:c0:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0C02007C391DB5414355DE1A053D4E6D06CDD2CE Validity Not Before: May 26 08:02:40 2026 GMT Not After : May 25 08:07:40 2027 GMT Subject: CN=B9CA59905E2E3967A98DC5FAFC2D40131E3A6F79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:b5:98:d3:e0:61:25:43:c8:ad:e7:f0:55:77: 3a:13:95:32:0f:7b:31:85:1b:41:99:47:61:53:3d: c5:6a:1c:3b:72:b2:25:cc:d4:58:49:df:bf:c5:22: 7f:9e:02:43:98:c7:7a:e8:7a:14:ec:a0:86:98:9b: f1:b7:ef:07:70:42:ad:5f:db:e3:21:67:1d:3f:2d: 6b:c8:91:5a:65:bb:6c:4d:2e:6b:df:49:cc:de:62: f5:55:84:08:b9:43:9f:06:eb:5a:14:a8:44:dd:31: 0f:b4:65:42:a4:43:92:c4:28:84:68:a9:16:fb:b7: 7b:63:11:8c:5f:9d:4f:56:41:08:dd:16:44:9a:da: f4:f4:3e:0b:5c:51:6d:ac:9e:f8:ba:c2:7f:3d:8a: 66:15:95:25:35:6b:a7:33:6e:99:33:fd:db:c9:fe: 73:18:64:17:67:a6:0e:5c:1b:da:04:b4:a4:1f:85: 4e:a2:fa:ed:57:02:94:2e:67:df:0f:05:f5:8b:bb: 30:7b:87:b3:af:f3:db:00:61:15:62:73:d2:75:6e: fc:29:0d:1c:89:45:29:0b:9e:12:6b:83:a1:56:29: 0a:e3:cb:71:77:c3:f4:bf:31:a2:61:17:4f:a1:10: 22:55:5f:83:43:b1:39:44:6b:28:b7:12:e6:0d:b4: 7b:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:CA:59:90:5E:2E:39:67:A9:8D:C5:FA:FC:2D:40:13:1E:3A:6F:79 X509v3 Authority Key Identifier: keyid:0C:02:00:7C:39:1D:B5:41:43:55:DE:1A:05:3D:4E:6D:06:CD:D2:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065591195721596929/0/0C02007C391DB5414355DE1A053D4E6D06CDD2CE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/0C02007C391DB5414355DE1A053D4E6D06CDD2CE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065591195721596929/0/3138302e3232332e34382e302f32302d3234203d3e203138383131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.223.48.0/20 Signature Algorithm: sha256WithRSAEncryption 7e:b3:9d:67:01:33:4f:7d:5c:1a:b0:fb:40:b8:23:3f:0a:95: 1c:36:8b:6c:47:23:af:3c:02:96:98:d5:c5:e3:2d:ad:a3:c4: 49:91:38:ec:40:9a:d1:62:7c:a2:54:72:e2:7e:6e:05:19:97: e1:a6:dc:45:40:bf:72:83:69:ee:c6:9d:29:ad:c6:74:de:6d: 68:67:e4:c8:d2:d0:ed:11:1f:ac:bc:4d:f2:48:56:b8:6a:d7: a8:63:b6:c0:13:15:c5:f1:55:47:22:fa:75:e8:d3:e4:d8:07: 61:b4:b7:04:d2:3f:9c:be:7f:00:08:75:de:91:4c:d7:b5:29: cb:d4:5b:17:c7:56:85:78:ef:43:89:46:78:b7:22:d4:8c:b3: 62:81:11:42:40:1c:84:42:21:fb:ac:b8:03:0a:44:3d:a8:a6: 41:08:3a:94:80:0f:70:6b:61:87:5c:3e:70:e4:b0:5d:f9:b6: 8a:ef:83:49:1c:40:7a:af:b1:c6:f4:4e:b1:56:c3:9a:51:e9: 1e:22:fe:12:d3:23:30:43:87:19:20:57:83:c1:0f:57:4c:44: b4:8a:1b:77:99:db:01:dd:9e:11:35:90:f4:ca:f5:d7:09:e3: 09:49:0d:23:2e:ef:bc:b3:26:99:eb:c9:77:57:f7:4f:83:6a: 64:1c:35:b9 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUSSjD1hz++kpQPH27wbxwd4ZXwLUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEMwMjAwN0MzOTFEQjU0MTQzNTVERTFBMDUzRDRFNkQw NkNERDJDRTAeFw0yNjA1MjYwODAyNDBaFw0yNzA1MjUwODA3NDBaMDMxMTAvBgNV BAMTKEI5Q0E1OTkwNUUyRTM5NjdBOThEQzVGQUZDMkQ0MDEzMUUzQTZGNzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbtZjT4GElQ8it5/BVdzoTlTIP ezGFG0GZR2FTPcVqHDtysiXM1FhJ37/FIn+eAkOYx3roehTsoIaYm/G37wdwQq1f 2+MhZx0/LWvIkVplu2xNLmvfSczeYvVVhAi5Q58G61oUqETdMQ+0ZUKkQ5LEKIRo qRb7t3tjEYxfnU9WQQjdFkSa2vT0PgtcUW2snvi6wn89imYVlSU1a6czbpkz/dvJ /nMYZBdnpg5cG9oEtKQfhU6i+u1XApQuZ98PBfWLuzB7h7Ov89sAYRVic9J1bvwp DRyJRSkLnhJrg6FWKQrjy3F3w/S/MaJhF0+hECJVX4NDsTlEayi3EuYNtHs/AgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUucpZkF4uOWepjcX6/C1AEx46b3kwHwYDVR0j BBgwFoAUDAIAfDkdtUFDVd4aBT1ObQbN0s4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU5MTE5NTcyMTU5NjkyOS8wLzBDMDIwMDdDMzkxREI1NDE0MzU1REUxQTA1M0Q0 RTZEMDZDREQyQ0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMEMwMjAwN0MzOTFEQjU0MTQzNTVERTFBMDUzRDRFNkQwNkNERDJDRS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU5MTE5NTcyMTU5NjkyOS8wLzMxMzgzMDJlMzIz MjMzMmUzNDM4MmUzMDJmMzIzMDJkMzIzNDIwM2QzZTIwMzEzODM4MzEzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEBLTfMDANBgkqhkiG9w0BAQsFAAOCAQEAfrOdZwEzT31cGrD7QLgjPwqV HDaLbEcjrzwClpjVxeMtraPESZE47ECa0WJ8olRy4n5uBRmX4abcRUC/coNp7sad Ka3GdN5taGfkyNLQ7REfrLxN8khWuGrXqGO2wBMVxfFVRyL6dejT5NgHYbS3BNI/ nL5/AAh13pFM17Upy9RbF8dWhXjvQ4lGeLci1IyzYoERQkAchEIh+6y4AwpEPaim QQg6lIAPcGthh1w+cOSwXfm2iu+DSRxAeq+xxvROsVbDmlHpHiL+EtMjMEOHGSBX g8EPV0xEtIobd5nbAd2eETWQ9Mr11wnjCUkNIy7vvLMmmevJd1f3T4NqZBw1uQ== -----END CERTIFICATE-----Generated at Thu Jun 11 16:27:24 2026 by rpki-client