$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096626934726524930/0/3131392e33382e382e302f32312d3231203d3e2030.roa File: 3131392e33382e382e302f32312d3231203d3e2030.roa (raw, json) Hash identifier: TSfANWG1UodRq6WAepOAW+1UUDbGV5JDrXlpD0fMcuY= Subject key identifier: F2:39:26:76:5A:0D:F1:D2:2F:E0:1C:D3:5D:3A:F8:32:6A:D0:D9:F0 Certificate issuer: /CN=EC6FB1425B2ECD896A81D7A4E1CABBD8EE58BBD3 Certificate serial: 68A707BE946E6C92F84169204F6E928006C18370 Authority key identifier: EC:6F:B1:42:5B:2E:CD:89:6A:81:D7:A4:E1:CA:BB:D8:EE:58:BB:D3 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/EC6FB1425B2ECD896A81D7A4E1CABBD8EE58BBD3.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096626934726524930/0/3131392e33382e382e302f32312d3231203d3e2030.roa Signing time: Thu 28 May 2026 01:35:52 +0000 ROA not before: Thu 28 May 2026 01:30:52 +0000 ROA not after: Thu 27 May 2027 01:35:52 +0000 asID: 0 IP address blocks: 119.38.8.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096626934726524930/0/EC6FB1425B2ECD896A81D7A4E1CABBD8EE58BBD3.crl rsync://rpki-rps.cnnic.cn/repo/A1096626934726524930/0/EC6FB1425B2ECD896A81D7A4E1CABBD8EE58BBD3.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/EC6FB1425B2ECD896A81D7A4E1CABBD8EE58BBD3.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 15:28:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:a7:07:be:94:6e:6c:92:f8:41:69:20:4f:6e:92:80:06:c1:83:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EC6FB1425B2ECD896A81D7A4E1CABBD8EE58BBD3 Validity Not Before: May 28 01:30:52 2026 GMT Not After : May 27 01:35:52 2027 GMT Subject: CN=F23926765A0DF1D22FE01CD35D3AF8326AD0D9F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:39:86:45:28:84:9f:23:8b:8e:40:d3:5f:47: ac:b3:40:5a:d2:28:98:93:ea:94:29:5b:02:03:e1: f1:88:8d:7c:6e:f2:22:0b:d0:70:ca:40:d5:81:b1: b4:1d:f6:1d:df:3e:ce:69:61:5c:67:f6:c6:85:52: 73:19:98:dc:ec:1f:f8:90:c0:0f:59:40:83:ab:f4: aa:bd:67:a4:f8:4b:6a:fe:76:51:69:4e:6d:fc:e0: 64:f5:8c:fc:5d:2d:c0:ad:10:1c:79:3f:61:58:54: 8b:5e:2a:76:45:d0:dc:bc:83:a2:5a:ae:6a:99:66: 86:59:bd:ba:11:43:81:a5:81:41:9b:65:63:38:1a: ef:af:39:c5:89:f3:9e:72:8c:c5:29:92:a4:64:1a: 8d:ef:9a:10:ff:9d:d4:84:3a:fc:b1:b8:06:ff:ef: 31:54:78:cc:73:48:24:6b:42:e2:ca:c7:78:d0:80: 91:f8:f5:a1:ba:ea:bd:2e:6c:a7:b5:67:ba:a5:eb: 55:3b:a0:20:dd:5d:31:7d:06:ff:81:27:b3:61:73: ea:fc:10:24:82:fa:9b:7d:04:37:35:57:b9:09:83: 6e:0d:cc:b5:ed:a5:37:cb:27:2f:30:6d:f6:bf:9c: 2e:32:2f:ef:03:5d:bf:e2:01:6f:82:32:f2:33:3d: 39:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:39:26:76:5A:0D:F1:D2:2F:E0:1C:D3:5D:3A:F8:32:6A:D0:D9:F0 X509v3 Authority Key Identifier: keyid:EC:6F:B1:42:5B:2E:CD:89:6A:81:D7:A4:E1:CA:BB:D8:EE:58:BB:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096626934726524930/0/EC6FB1425B2ECD896A81D7A4E1CABBD8EE58BBD3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/EC6FB1425B2ECD896A81D7A4E1CABBD8EE58BBD3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096626934726524930/0/3131392e33382e382e302f32312d3231203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.38.8.0/21 Signature Algorithm: sha256WithRSAEncryption 2a:52:e4:78:90:d3:7b:4b:fc:e7:69:85:e3:f1:45:ad:44:20: df:7b:fc:d6:42:d6:46:18:42:80:fa:8e:76:32:be:d7:23:fd: d3:c1:fa:4e:48:01:5e:55:89:e9:41:ea:f4:58:75:e3:92:a2: 01:fc:ce:ad:88:ce:20:7a:a9:90:cd:11:42:ad:93:64:3f:14: c9:f2:ca:e2:d6:1a:13:10:e0:59:b5:d1:4b:d1:ed:42:ba:14: f6:f5:ec:33:81:71:31:d4:05:90:40:d1:ff:df:1b:63:f1:31: e2:4f:12:55:73:1c:d4:e3:bc:44:b6:dc:09:02:3e:00:ab:e8: 88:8f:51:de:28:7b:9c:5c:e0:ba:67:f9:67:ce:07:a6:00:33: 4b:65:c9:4f:04:d4:41:75:bb:b6:2d:9f:db:19:65:ce:bb:4e: 55:1a:fd:e9:94:17:f3:71:b1:65:c6:37:19:84:99:e2:f1:44: 05:c0:5c:77:a9:57:1a:e7:c6:a2:04:b5:d6:59:61:38:f7:33: 7e:75:c8:a6:ef:8f:c0:c6:43:0d:6e:e6:24:74:5b:d9:11:90: 3f:e2:27:ad:d4:a6:f6:5d:9f:a4:e0:03:5a:e0:5b:e8:1b:be: 0b:e4:ab:50:ef:c6:ca:38:71:80:42:cf:62:52:8f:b8:7c:99: a2:fe:3d:da -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgIUaKcHvpRubJL4QWkgT26SgAbBg3AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUM2RkIxNDI1QjJFQ0Q4OTZBODFEN0E0RTFDQUJCRDhF RTU4QkJEMzAeFw0yNjA1MjgwMTMwNTJaFw0yNzA1MjcwMTM1NTJaMDMxMTAvBgNV BAMTKEYyMzkyNjc2NUEwREYxRDIyRkUwMUNEMzVEM0FGODMyNkFEMEQ5RjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdOYZFKISfI4uOQNNfR6yzQFrS KJiT6pQpWwID4fGIjXxu8iIL0HDKQNWBsbQd9h3fPs5pYVxn9saFUnMZmNzsH/iQ wA9ZQIOr9Kq9Z6T4S2r+dlFpTm384GT1jPxdLcCtEBx5P2FYVIteKnZF0Ny8g6Ja rmqZZoZZvboRQ4GlgUGbZWM4Gu+vOcWJ855yjMUpkqRkGo3vmhD/ndSEOvyxuAb/ 7zFUeMxzSCRrQuLKx3jQgJH49aG66r0ubKe1Z7ql61U7oCDdXTF9Bv+BJ7Nhc+r8 ECSC+pt9BDc1V7kJg24NzLXtpTfLJy8wbfa/nC4yL+8DXb/iAW+CMvIzPTnBAgMB AAGjggIHMIICAzAdBgNVHQ4EFgQU8jkmdloN8dIv4BzTXTr4MmrQ2fAwHwYDVR0j BBgwFoAU7G+xQlsuzYlqgdek4cq72O5Yu9MwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjYyNjkzNDcyNjUyNDkzMC8wL0VDNkZCMTQyNUIyRUNEODk2QTgxRDdBNEUxQ0FC QkQ4RUU1OEJCRDMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRUM2RkIxNDI1QjJFQ0Q4OTZBODFEN0E0RTFDQUJCRDhFRTU4QkJEMy5jZXIw gYAGCCsGAQUFBwELBHQwcjBwBggrBgEFBQcwC4ZkcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk2NjI2OTM0NzI2NTI0OTMwLzAvMzEzMTM5MmUzMzM4 MmUzODJlMzAyZjMyMzEyZDMyMzEyMDNkM2UyMDMwLnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDdyYIMA0G CSqGSIb3DQEBCwUAA4IBAQAqUuR4kNN7S/znaYXj8UWtRCDfe/zWQtZGGEKA+o52 Mr7XI/3TwfpOSAFeVYnpQer0WHXjkqIB/M6tiM4geqmQzRFCrZNkPxTJ8sri1hoT EOBZtdFL0e1CuhT29ewzgXEx1AWQQNH/3xtj8THiTxJVcxzU47xEttwJAj4Aq+iI j1HeKHucXOC6Z/lnzgemADNLZclPBNRBdbu2LZ/bGWXOu05VGv3plBfzcbFlxjcZ hJni8UQFwFx3qVca58aiBLXWWWE49zN+dcim74/AxkMNbuYkdFvZEZA/4iet1Kb2 XZ+k4ANa4FvoG74L5KtQ78bKOHGAQs9iUo+4fJmi/j3a -----END CERTIFICATE-----Generated at Fri May 29 22:55:54 2026 by rpki-client