$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097387398460866561/0/3131392e33372e302e302f32332d3233203d3e2034383131.roa File: 3131392e33372e302e302f32332d3233203d3e2034383131.roa (raw, json) Hash identifier: ZWvPfn+2QH2S19QjYss/KIYl6JEoNec5El8+pViX1gE= Subject key identifier: 97:21:78:18:B5:C6:1C:2C:CD:76:C0:94:0E:FE:80:28:BC:B8:08:6A Certificate issuer: /CN=9A8AFA7F033956E0425F15B1070A606F5F3E424E Certificate serial: 35D9BEDDEFA6FB8CF8B9AB06E044B3C0795356CE Authority key identifier: 9A:8A:FA:7F:03:39:56:E0:42:5F:15:B1:07:0A:60:6F:5F:3E:42:4E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9A8AFA7F033956E0425F15B1070A606F5F3E424E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097387398460866561/0/3131392e33372e302e302f32332d3233203d3e2034383131.roa Signing time: Fri 05 Jun 2026 08:06:05 +0000 ROA not before: Fri 05 Jun 2026 08:01:05 +0000 ROA not after: Fri 04 Jun 2027 08:06:05 +0000 asID: 4811 IP address blocks: 119.37.0.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097387398460866561/0/9A8AFA7F033956E0425F15B1070A606F5F3E424E.crl rsync://rpki-rps.cnnic.cn/repo/A1097387398460866561/0/9A8AFA7F033956E0425F15B1070A606F5F3E424E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9A8AFA7F033956E0425F15B1070A606F5F3E424E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 13:33:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:d9:be:dd:ef:a6:fb:8c:f8:b9:ab:06:e0:44:b3:c0:79:53:56:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A8AFA7F033956E0425F15B1070A606F5F3E424E Validity Not Before: Jun 5 08:01:05 2026 GMT Not After : Jun 4 08:06:05 2027 GMT Subject: CN=97217818B5C61C2CCD76C0940EFE8028BCB8086A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:72:0e:74:30:e8:a4:b5:57:8a:07:21:4e:a5: 11:53:76:bb:41:fe:ec:e6:3d:75:ea:08:e5:c5:a4: ec:98:25:cd:8a:8e:03:fc:46:c3:66:58:43:c0:4e: 74:a6:b8:e8:b1:6f:77:86:a5:64:02:04:c2:06:71: 18:0b:a9:a2:8c:08:38:45:f5:4c:b3:8a:f8:ab:aa: 82:a8:9e:e9:aa:ca:c8:fc:d3:41:fe:78:33:a7:cd: 25:5e:97:d0:ec:0a:80:31:9f:55:47:53:1c:31:83: db:4b:d7:30:9f:5a:99:d6:5f:84:b1:cc:e9:af:91: 90:4e:b6:42:d3:0c:98:7a:b2:d1:c6:05:2b:a4:fc: 0c:d7:61:5a:77:8e:2d:1f:e9:46:47:fc:c7:48:86: 12:c1:e6:45:f0:79:55:bc:a4:16:c0:89:7e:2c:fc: a8:df:33:8f:54:76:9c:70:02:e1:6d:59:01:04:bb: 53:81:a4:df:1b:74:27:d4:a2:cf:1c:e3:f2:2b:81: 29:59:2a:2a:b8:52:db:ab:8c:fc:47:da:d5:d1:59: 5e:b2:7a:ec:77:62:fe:6c:75:3f:61:db:91:e4:e0: 5c:2e:19:2f:05:64:92:12:c8:83:f6:d4:8d:46:6d: 58:9e:4b:45:c6:92:0c:8e:2d:ac:f7:b4:9e:a2:f1: fa:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:21:78:18:B5:C6:1C:2C:CD:76:C0:94:0E:FE:80:28:BC:B8:08:6A X509v3 Authority Key Identifier: keyid:9A:8A:FA:7F:03:39:56:E0:42:5F:15:B1:07:0A:60:6F:5F:3E:42:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097387398460866561/0/9A8AFA7F033956E0425F15B1070A606F5F3E424E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9A8AFA7F033956E0425F15B1070A606F5F3E424E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097387398460866561/0/3131392e33372e302e302f32332d3233203d3e2034383131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.37.0.0/23 Signature Algorithm: sha256WithRSAEncryption 0a:76:81:cb:97:39:ba:ef:a6:a1:11:29:2f:37:94:24:ab:19: 79:f0:88:b8:d6:23:02:6b:97:8f:45:5a:76:c9:b8:f0:7e:75: 6a:a9:9c:f8:bc:35:2e:27:44:5e:2d:a8:56:bf:fb:ae:0a:7d: 9c:f2:17:67:45:85:b2:96:3a:be:f2:e8:7e:f3:19:a8:c2:94: 83:c2:4c:a3:89:bd:d5:17:14:3d:9d:bb:76:c2:8c:5e:93:75: 62:7e:a7:c1:b3:60:8a:2c:7c:db:17:bb:3c:69:53:ac:a6:f3: 0b:f0:e7:19:44:17:ff:cd:2c:35:63:51:73:b4:55:98:6a:c6: 8d:e1:ca:a4:61:ee:b1:e5:bf:af:6f:ff:40:a6:fe:6c:50:28: 77:a0:b7:96:8d:85:99:73:c8:94:14:81:d4:53:9e:8f:13:76: a4:44:38:bd:ef:79:ad:5f:41:56:05:05:ea:a2:7a:3c:0c:63: 5e:1f:e2:46:83:0e:3d:73:d5:55:84:91:28:32:68:c9:86:78: 57:e2:d2:ff:6e:37:0d:da:f8:bf:64:60:ab:db:00:bb:17:5f: 42:91:6f:4d:3b:fc:d6:a7:36:62:c7:7d:01:ec:fe:86:09:b7: dd:9b:90:b8:2a:98:c8:4b:af:b1:35:33:e9:a2:9f:53:ee:83: 8b:94:80:51 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgIUNdm+3e+m+4z4uasG4ESzwHlTVs4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE4QUZBN0YwMzM5NTZFMDQyNUYxNUIxMDcwQTYwNkY1 RjNFNDI0RTAeFw0yNjA2MDUwODAxMDVaFw0yNzA2MDQwODA2MDVaMDMxMTAvBgNV BAMTKDk3MjE3ODE4QjVDNjFDMkNDRDc2QzA5NDBFRkU4MDI4QkNCODA4NkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5cg50MOiktVeKByFOpRFTdrtB /uzmPXXqCOXFpOyYJc2KjgP8RsNmWEPATnSmuOixb3eGpWQCBMIGcRgLqaKMCDhF 9UyzivirqoKonumqysj800H+eDOnzSVel9DsCoAxn1VHUxwxg9tL1zCfWpnWX4Sx zOmvkZBOtkLTDJh6stHGBSuk/AzXYVp3ji0f6UZH/MdIhhLB5kXweVW8pBbAiX4s /KjfM49UdpxwAuFtWQEEu1OBpN8bdCfUos8c4/IrgSlZKiq4UturjPxH2tXRWV6y eux3Yv5sdT9h25Hk4FwuGS8FZJISyIP21I1GbVieS0XGkgyOLaz3tJ6i8fotAgMB AAGjggINMIICCTAdBgNVHQ4EFgQUlyF4GLXGHCzNdsCUDv6AKLy4CGowHwYDVR0j BBgwFoAUmor6fwM5VuBCXxWxBwpgb18+Qk4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzM4NzM5ODQ2MDg2NjU2MS8wLzlBOEFGQTdGMDMzOTU2RTA0MjVGMTVCMTA3MEE2 MDZGNUYzRTQyNEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOUE4QUZBN0YwMzM5NTZFMDQyNUYxNUIxMDcwQTYwNkY1RjNFNDI0RS5jZXIw gYYGCCsGAQUFBwELBHoweDB2BggrBgEFBQcwC4ZqcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk3Mzg3Mzk4NDYwODY2NTYxLzAvMzEzMTM5MmUzMzM3 MmUzMDJlMzAyZjMyMzMyZDMyMzMyMDNkM2UyMDM0MzgzMTMxLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB dyUAMA0GCSqGSIb3DQEBCwUAA4IBAQAKdoHLlzm676ahESkvN5Qkqxl58Ii41iMC a5ePRVp2ybjwfnVqqZz4vDUuJ0ReLahWv/uuCn2c8hdnRYWyljq+8uh+8xmowpSD wkyjib3VFxQ9nbt2woxek3VifqfBs2CKLHzbF7s8aVOspvML8OcZRBf/zSw1Y1Fz tFWYasaN4cqkYe6x5b+vb/9Apv5sUCh3oLeWjYWZc8iUFIHUU56PE3akRDi973mt X0FWBQXqono8DGNeH+JGgw49c9VVhJEoMmjJhnhX4tL/bjcN2vi/ZGCr2wC7F19C kW9NO/zWpzZix30B7P6GCbfdm5C4KpjIS6+xNTPpop9T7oOLlIBR -----END CERTIFICATE-----Generated at Thu Jun 11 23:49:21 2026 by rpki-client