$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097387398460866561/0/3131392e33372e3132382e302f31382d3138203d3e203539333434.roa File: 3131392e33372e3132382e302f31382d3138203d3e203539333434.roa (raw, json) Hash identifier: yFn/E8ZBW/Rl0wOhDWWXbydhJyP5junLbg5kKEBNU2k= Subject key identifier: 75:BF:EC:C5:F5:8A:1C:68:8A:98:52:A2:68:65:EC:9E:3F:A8:3D:BD Certificate issuer: /CN=9A8AFA7F033956E0425F15B1070A606F5F3E424E Certificate serial: BEE9FD606DFD71066A78CE9737BE24351BA261 Authority key identifier: 9A:8A:FA:7F:03:39:56:E0:42:5F:15:B1:07:0A:60:6F:5F:3E:42:4E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9A8AFA7F033956E0425F15B1070A606F5F3E424E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097387398460866561/0/3131392e33372e3132382e302f31382d3138203d3e203539333434.roa Signing time: Fri 24 Apr 2026 02:17:31 +0000 ROA not before: Fri 24 Apr 2026 02:12:31 +0000 ROA not after: Fri 23 Apr 2027 02:17:31 +0000 asID: 59344 IP address blocks: 119.37.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097387398460866561/0/9A8AFA7F033956E0425F15B1070A606F5F3E424E.crl rsync://rpki-rps.cnnic.cn/repo/A1097387398460866561/0/9A8AFA7F033956E0425F15B1070A606F5F3E424E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9A8AFA7F033956E0425F15B1070A606F5F3E424E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 04:52:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: be:e9:fd:60:6d:fd:71:06:6a:78:ce:97:37:be:24:35:1b:a2:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A8AFA7F033956E0425F15B1070A606F5F3E424E Validity Not Before: Apr 24 02:12:31 2026 GMT Not After : Apr 23 02:17:31 2027 GMT Subject: CN=75BFECC5F58A1C688A9852A26865EC9E3FA83DBD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f5:68:58:6b:de:2c:d5:f3:17:79:e7:6b:32: 41:e1:84:0b:58:77:62:b8:53:7c:2d:2e:63:1a:e2: c2:9c:aa:75:85:fc:82:5f:03:77:48:69:02:e1:45: 8e:2b:f0:7d:df:f1:16:d6:2f:53:a3:39:89:59:6e: 26:3e:9e:65:d7:03:6b:b4:71:2f:f2:6c:56:bb:38: c0:6d:ff:8c:cc:a5:42:97:a8:4d:d6:18:a7:0f:18: 57:c8:53:46:a5:46:b6:65:01:d8:07:52:5e:6e:3d: ed:be:55:1a:da:f1:ce:6f:28:c0:95:c7:83:86:39: 3a:90:90:fa:37:a5:78:0d:8e:fe:c7:59:81:09:c2: 2b:8a:a7:9f:5f:41:47:4d:91:76:c8:66:c2:b3:9a: 90:46:cb:3f:de:70:2f:71:2f:2c:25:ef:df:69:26: 08:15:57:0b:de:4b:46:90:c3:06:88:61:e1:27:5e: 13:f0:31:d8:b8:9a:d5:ae:38:93:bd:bd:43:49:7c: 7b:73:50:32:e4:f0:76:e5:99:22:b9:7e:3f:a3:68: c2:d5:ce:eb:f0:cf:13:f7:ac:35:f7:5d:74:2e:e5: 0a:30:3c:e7:29:8b:b9:82:0d:b7:bb:4f:08:6a:75: 05:43:42:59:43:7c:8e:46:74:ec:32:2c:51:1b:b5: b5:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:BF:EC:C5:F5:8A:1C:68:8A:98:52:A2:68:65:EC:9E:3F:A8:3D:BD X509v3 Authority Key Identifier: keyid:9A:8A:FA:7F:03:39:56:E0:42:5F:15:B1:07:0A:60:6F:5F:3E:42:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097387398460866561/0/9A8AFA7F033956E0425F15B1070A606F5F3E424E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9A8AFA7F033956E0425F15B1070A606F5F3E424E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097387398460866561/0/3131392e33372e3132382e302f31382d3138203d3e203539333434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.37.128.0/18 Signature Algorithm: sha256WithRSAEncryption 4f:69:4c:ba:bc:cd:8e:b4:97:0c:16:91:1b:1d:44:34:e2:87: 42:94:3c:4a:a3:a9:a9:52:f1:9a:df:e0:9a:fa:f6:7d:31:c2: 66:58:1f:8f:3c:0a:38:95:74:5d:b6:ea:53:46:d5:b3:17:b1: f0:c8:e4:5d:a8:a4:f5:1a:ae:4b:58:38:5f:2d:33:e6:e0:5b: 2d:75:ba:8b:23:f0:2d:55:e0:33:47:2d:70:89:3f:5b:6d:98: 34:a7:3e:e3:66:b4:bc:43:5c:e2:24:a7:7b:99:0d:c6:ac:61: a1:d9:94:f2:c8:ba:1e:20:e7:b7:a5:37:62:84:58:62:87:94: 27:16:5e:d1:2a:89:22:b8:23:b1:32:85:34:58:67:27:66:d3: fd:06:f4:db:f7:6d:5c:25:3b:c2:68:3d:d6:f3:86:89:d6:97: 79:c7:73:45:88:9b:b6:98:36:26:6b:8f:b7:9c:cb:e1:50:b5: c0:c2:48:b4:cd:5f:bb:da:6e:d0:da:66:15:e6:2d:ef:5b:6e: a0:79:34:9a:66:92:85:ac:a7:71:25:9b:bb:32:40:79:6e:96: f8:6b:43:4b:d8:ef:5c:49:11:42:78:eb:7f:e1:99:50:9e:14: 81:fc:f0:1d:cd:ad:3f:20:59:f1:d2:71:f3:44:04:33:c4:5f: d7:d6:b5:89 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUAL7p/WBt/XEGanjOlze+JDUbomEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE4QUZBN0YwMzM5NTZFMDQyNUYxNUIxMDcwQTYwNkY1 RjNFNDI0RTAeFw0yNjA0MjQwMjEyMzFaFw0yNzA0MjMwMjE3MzFaMDMxMTAvBgNV BAMTKDc1QkZFQ0M1RjU4QTFDNjg4QTk4NTJBMjY4NjVFQzlFM0ZBODNEQkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/9WhYa94s1fMXeedrMkHhhAtY d2K4U3wtLmMa4sKcqnWF/IJfA3dIaQLhRY4r8H3f8RbWL1OjOYlZbiY+nmXXA2u0 cS/ybFa7OMBt/4zMpUKXqE3WGKcPGFfIU0alRrZlAdgHUl5uPe2+VRra8c5vKMCV x4OGOTqQkPo3pXgNjv7HWYEJwiuKp59fQUdNkXbIZsKzmpBGyz/ecC9xLywl799p JggVVwveS0aQwwaIYeEnXhPwMdi4mtWuOJO9vUNJfHtzUDLk8HblmSK5fj+jaMLV zuvwzxP3rDX3XXQu5QowPOcpi7mCDbe7TwhqdQVDQllDfI5GdOwyLFEbtbUhAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUdb/sxfWKHGiKmFKiaGXsnj+oPb0wHwYDVR0j BBgwFoAUmor6fwM5VuBCXxWxBwpgb18+Qk4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzM4NzM5ODQ2MDg2NjU2MS8wLzlBOEFGQTdGMDMzOTU2RTA0MjVGMTVCMTA3MEE2 MDZGNUYzRTQyNEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOUE4QUZBN0YwMzM5NTZFMDQyNUYxNUIxMDcwQTYwNkY1RjNFNDI0RS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NzM4NzM5ODQ2MDg2NjU2MS8wLzMxMzEzOTJlMzMz NzJlMzEzMjM4MmUzMDJmMzEzODJkMzEzODIwM2QzZTIwMzUzOTMzMzQzNC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEBnclgDANBgkqhkiG9w0BAQsFAAOCAQEAT2lMurzNjrSXDBaRGx1ENOKH QpQ8SqOpqVLxmt/gmvr2fTHCZlgfjzwKOJV0XbbqU0bVsxex8MjkXaik9RquS1g4 Xy0z5uBbLXW6iyPwLVXgM0ctcIk/W22YNKc+42a0vENc4iSne5kNxqxhodmU8si6 HiDnt6U3YoRYYoeUJxZe0SqJIrgjsTKFNFhnJ2bT/Qb02/dtXCU7wmg91vOGidaX ecdzRYibtpg2JmuPt5zL4VC1wMJItM1fu9pu0NpmFeYt71tuoHk0mmaShayncSWb uzJAeW6W+GtDS9jvXEkRQnjrf+GZUJ4UgfzwHc2tPyBZ8dJx80QEM8Rf19a1iQ== -----END CERTIFICATE-----Generated at Mon Apr 27 11:00:48 2026 by rpki-client