$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095974252194103297/0/3138302e3138382e33332e302f32342d3234203d3e20313331353638.roa File: 3138302e3138382e33332e302f32342d3234203d3e20313331353638.roa (raw, json) Hash identifier: TFXsNMi5MyHO6XOegq/6d9iThX/zcUcrbEuxtcnaLgE= Subject key identifier: D2:B2:7F:9B:7E:21:7A:DE:88:3A:DB:D9:01:6C:94:2A:70:14:7A:38 Certificate issuer: /CN=77F12FCFBD1F1C5EE54102A663E246A6B318ABF9 Certificate serial: 297A2EA7C6AC7071A784B5DFCEE8CC454B9B817D Authority key identifier: 77:F1:2F:CF:BD:1F:1C:5E:E5:41:02:A6:63:E2:46:A6:B3:18:AB:F9 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/77F12FCFBD1F1C5EE54102A663E246A6B318ABF9.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095974252194103297/0/3138302e3138382e33332e302f32342d3234203d3e20313331353638.roa Signing time: Fri 29 May 2026 08:15:18 +0000 ROA not before: Fri 29 May 2026 08:10:18 +0000 ROA not after: Fri 28 May 2027 08:15:18 +0000 asID: 131568 IP address blocks: 180.188.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095974252194103297/0/77F12FCFBD1F1C5EE54102A663E246A6B318ABF9.crl rsync://rpki-rps.cnnic.cn/repo/A1095974252194103297/0/77F12FCFBD1F1C5EE54102A663E246A6B318ABF9.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/77F12FCFBD1F1C5EE54102A663E246A6B318ABF9.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 09:59:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:7a:2e:a7:c6:ac:70:71:a7:84:b5:df:ce:e8:cc:45:4b:9b:81:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=77F12FCFBD1F1C5EE54102A663E246A6B318ABF9 Validity Not Before: May 29 08:10:18 2026 GMT Not After : May 28 08:15:18 2027 GMT Subject: CN=D2B27F9B7E217ADE883ADBD9016C942A70147A38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:f4:67:cd:11:e8:f1:c1:40:b3:91:28:0f:93: a5:85:0a:4b:87:d9:93:00:19:4b:95:61:62:3f:01: 12:bd:ac:03:c7:49:df:e2:45:b0:03:c0:6e:91:2b: cc:48:c0:a1:a2:3a:65:76:37:0e:70:4e:4a:ea:2f: 30:82:77:4b:f7:6b:71:9e:2e:89:1b:ad:95:eb:75: 02:47:89:48:df:8c:83:fe:90:e3:32:22:58:14:98: e3:c3:9e:80:69:b2:a8:b2:8f:84:a3:07:32:90:85: a6:69:68:68:5a:ff:12:75:ee:51:7b:f7:d4:08:d8: 80:f5:eb:11:be:14:d9:92:23:1a:8d:40:a9:6d:5d: e2:f8:7b:70:58:8a:87:95:50:75:04:c5:c4:b6:40: c2:93:6b:cd:17:d7:0e:f3:95:aa:18:33:fb:48:b2: a1:a3:38:57:38:35:32:f0:58:85:b8:4d:26:82:0c: 33:01:b4:c8:38:27:2e:db:20:42:35:d5:06:c3:f8: 14:5b:4c:bc:c1:19:ae:be:24:9d:3b:0b:3d:86:f3: 08:f4:52:6b:e3:e9:19:f8:ad:6d:e1:83:84:8d:bd: 3c:9e:7e:c3:1b:36:f3:fb:4a:11:1f:50:ce:3d:ee: 7b:6e:32:f5:30:1a:5c:0f:f0:fc:ec:c5:83:26:ba: 9c:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:B2:7F:9B:7E:21:7A:DE:88:3A:DB:D9:01:6C:94:2A:70:14:7A:38 X509v3 Authority Key Identifier: keyid:77:F1:2F:CF:BD:1F:1C:5E:E5:41:02:A6:63:E2:46:A6:B3:18:AB:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095974252194103297/0/77F12FCFBD1F1C5EE54102A663E246A6B318ABF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/77F12FCFBD1F1C5EE54102A663E246A6B318ABF9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095974252194103297/0/3138302e3138382e33332e302f32342d3234203d3e20313331353638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.188.33.0/24 Signature Algorithm: sha256WithRSAEncryption 52:87:a5:36:d5:b9:ce:b3:2b:62:4b:26:ea:89:a4:f6:42:19: 6c:d8:c2:6f:86:6d:1b:be:35:6a:2d:97:b1:5e:7a:4e:b0:6c: d3:fa:e4:81:4d:a0:6f:d2:d5:d5:e9:8b:3f:1b:e3:af:39:92: db:9e:42:40:d3:16:64:17:aa:2a:c0:8f:14:ea:b3:0c:15:91: 3f:18:b7:b2:5e:f3:da:c8:28:ae:a2:a3:10:94:54:41:51:3d: 12:a7:fb:9a:65:bd:fe:ce:28:fa:63:13:61:ed:cc:d5:89:0a: 1c:8c:4b:47:b3:69:c7:d7:89:a3:cd:dc:4d:32:d9:7e:05:30: b2:d2:07:a4:25:dd:e8:8c:70:6c:1d:3c:b0:e7:fc:b4:c2:d0: df:dc:f2:10:5a:41:ab:c2:56:f7:35:80:73:40:30:97:59:93: fa:af:cd:1b:cb:04:f1:8b:e1:e1:69:59:be:8b:b8:de:2f:b0: 7c:23:5d:89:3e:48:f6:bc:63:a7:f0:4e:df:c6:2a:da:df:98: 68:63:b5:d2:65:f6:68:80:51:b0:61:87:c8:2c:22:1b:68:71: 16:7c:f2:0d:98:63:6d:65:a1:7c:73:8c:54:49:7e:0a:65:d2: e4:39:17:de:64:51:14:f8:cf:7a:ca:dc:8c:92:9f:b5:3f:7d: e3:96:57:ad -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUKXoup8ascHGnhLXfzujMRUubgX0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzdGMTJGQ0ZCRDFGMUM1RUU1NDEwMkE2NjNFMjQ2QTZC MzE4QUJGOTAeFw0yNjA1MjkwODEwMThaFw0yNzA1MjgwODE1MThaMDMxMTAvBgNV BAMTKEQyQjI3RjlCN0UyMTdBREU4ODNBREJEOTAxNkM5NDJBNzAxNDdBMzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDF9GfNEejxwUCzkSgPk6WFCkuH 2ZMAGUuVYWI/ARK9rAPHSd/iRbADwG6RK8xIwKGiOmV2Nw5wTkrqLzCCd0v3a3Ge LokbrZXrdQJHiUjfjIP+kOMyIlgUmOPDnoBpsqiyj4SjBzKQhaZpaGha/xJ17lF7 99QI2ID16xG+FNmSIxqNQKltXeL4e3BYioeVUHUExcS2QMKTa80X1w7zlaoYM/tI sqGjOFc4NTLwWIW4TSaCDDMBtMg4Jy7bIEI11QbD+BRbTLzBGa6+JJ07Cz2G8wj0 Umvj6Rn4rW3hg4SNvTyefsMbNvP7ShEfUM497ntuMvUwGlwP8PzsxYMmupzNAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQU0rJ/m34het6IOtvZAWyUKnAUejgwHwYDVR0j BBgwFoAUd/Evz70fHF7lQQKmY+JGprMYq/kwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTk3NDI1MjE5NDEwMzI5Ny8wLzc3RjEyRkNGQkQxRjFDNUVFNTQxMDJBNjYzRTI0 NkE2QjMxOEFCRjkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNzdGMTJGQ0ZCRDFGMUM1RUU1NDEwMkE2NjNFMjQ2QTZCMzE4QUJGOS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTU5NzQyNTIxOTQxMDMyOTcvMC8zMTM4MzAyZTMx MzgzODJlMzMzMzJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzMTM1MzYzOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEALS8ITANBgkqhkiG9w0BAQsFAAOCAQEAUoelNtW5zrMrYksm6omk 9kIZbNjCb4ZtG741ai2XsV56TrBs0/rkgU2gb9LV1emLPxvjrzmS255CQNMWZBeq KsCPFOqzDBWRPxi3sl7z2sgorqKjEJRUQVE9Eqf7mmW9/s4o+mMTYe3M1YkKHIxL R7Npx9eJo83cTTLZfgUwstIHpCXd6IxwbB08sOf8tMLQ39zyEFpBq8JW9zWAc0Aw l1mT+q/NG8sE8Yvh4WlZvou43i+wfCNdiT5I9rxjp/BO38Yq2t+YaGO10mX2aIBR sGGHyCwiG2hxFnzyDZhjbWWhfHOMVEl+CmXS5DkX3mRRFPjPesrcjJKftT9945ZX rQ== -----END CERTIFICATE-----Generated at Fri May 29 23:54:27 2026 by rpki-client