$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098988489464086530/0/3131382e3234322e302e302f32322d3232203d3e2034383132.roa File: 3131382e3234322e302e302f32322d3232203d3e2034383132.roa (raw, json) Hash identifier: 58I4ydCCcF9hQm4ALM8HdXPHeUsscGP0Ad1DVSViNOs= Subject key identifier: 0D:16:89:E2:E5:7C:BD:CE:84:FD:6C:88:74:C8:FB:2F:DD:7C:70:39 Certificate issuer: /CN=A7133A09AC078B101CB7980FE646810280C0D64F Certificate serial: 19CDE2494A4AD153F23CB92E9F8B780F7E00CD42 Authority key identifier: A7:13:3A:09:AC:07:8B:10:1C:B7:98:0F:E6:46:81:02:80:C0:D6:4F Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A7133A09AC078B101CB7980FE646810280C0D64F.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098988489464086530/0/3131382e3234322e302e302f32322d3232203d3e2034383132.roa Signing time: Wed 22 Apr 2026 09:42:51 +0000 ROA not before: Wed 22 Apr 2026 09:37:51 +0000 ROA not after: Wed 21 Apr 2027 09:42:51 +0000 asID: 4812 IP address blocks: 118.242.0.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098988489464086530/0/A7133A09AC078B101CB7980FE646810280C0D64F.crl rsync://rpki-rps.cnnic.cn/repo/A1098988489464086530/0/A7133A09AC078B101CB7980FE646810280C0D64F.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A7133A09AC078B101CB7980FE646810280C0D64F.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 05:16:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:cd:e2:49:4a:4a:d1:53:f2:3c:b9:2e:9f:8b:78:0f:7e:00:cd:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A7133A09AC078B101CB7980FE646810280C0D64F Validity Not Before: Apr 22 09:37:51 2026 GMT Not After : Apr 21 09:42:51 2027 GMT Subject: CN=0D1689E2E57CBDCE84FD6C8874C8FB2FDD7C7039 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:56:1d:b1:db:9f:b9:ad:0e:e8:69:43:08:7b: e3:b0:3b:5a:80:7a:24:47:38:70:9d:ac:ed:4e:11: 4c:4a:bb:10:9a:eb:b6:ec:02:bf:06:c0:15:1f:d4: 77:3c:12:7f:43:3b:96:ce:f1:bb:af:8a:df:5b:40: ac:8f:3a:dc:10:57:db:6e:bb:09:6d:d1:7d:23:3c: e4:4b:e1:cc:92:ab:03:f6:15:70:f7:33:9f:b1:78: 61:76:9d:72:b6:1e:33:40:fc:4e:19:89:92:35:f4: 10:4e:f3:97:8e:4f:ec:6c:18:2b:17:8b:fa:0b:66: 45:74:df:86:2b:1d:53:e7:65:4b:4a:94:fd:2e:7c: 82:7b:74:77:fc:58:19:b6:be:69:73:be:3e:5f:50: f8:e4:bb:33:19:bf:28:be:46:e6:50:bf:fe:9a:60: b1:d2:4b:dd:1f:96:74:ca:8d:36:ee:82:6b:72:60: ce:fd:d9:50:4a:d4:a2:75:55:a5:03:ed:20:3e:78: 62:a2:2a:44:d7:86:fe:53:21:81:df:9c:5b:0c:45: d4:69:9b:20:1b:f4:d0:1c:aa:33:09:b5:fc:8a:d2: 54:ba:28:2f:05:3c:68:b6:c6:d5:3a:67:fd:89:ce: f4:b6:ef:28:d8:81:ca:b6:21:aa:29:ea:ce:c4:d8: f4:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:16:89:E2:E5:7C:BD:CE:84:FD:6C:88:74:C8:FB:2F:DD:7C:70:39 X509v3 Authority Key Identifier: keyid:A7:13:3A:09:AC:07:8B:10:1C:B7:98:0F:E6:46:81:02:80:C0:D6:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098988489464086530/0/A7133A09AC078B101CB7980FE646810280C0D64F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A7133A09AC078B101CB7980FE646810280C0D64F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098988489464086530/0/3131382e3234322e302e302f32322d3232203d3e2034383132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 118.242.0.0/22 Signature Algorithm: sha256WithRSAEncryption c4:42:59:dd:8d:cb:4e:e5:01:80:af:d3:89:9f:ba:17:fc:70: 65:bc:d4:8f:b4:f4:58:90:a6:8a:fd:98:2b:ba:17:1d:05:4b: 13:3a:48:65:03:eb:31:70:74:15:8b:a2:0f:6b:63:89:80:c8: 2a:03:d1:06:ec:e0:33:ba:04:9a:ba:28:ff:6a:f9:c9:74:84: b3:5c:e4:01:04:f3:3e:62:33:9a:a7:5e:60:fe:70:62:62:8b: 26:24:8e:4a:73:7e:30:f5:bb:d7:2d:02:19:56:44:6f:83:d3: 7e:19:3c:ba:ad:92:59:f9:e0:0d:c6:c5:b5:ca:6b:88:49:28: ad:53:c3:9a:6a:f4:13:c9:3e:90:3d:64:d3:ec:f2:dc:eb:02: ed:b1:07:2d:a7:52:58:27:4f:a7:bb:cf:5f:3c:ad:c3:75:a9: 28:b1:53:27:f6:d8:28:b1:e1:d6:c9:16:bf:0a:e6:62:9d:f8: 30:08:8c:9d:9c:7f:75:5f:b1:e4:0c:a0:b4:48:8b:56:de:cc: b8:07:b9:bf:66:e4:08:cd:bb:99:89:5d:75:21:bd:76:87:d0: 22:f5:28:aa:7d:65:a3:fb:d6:85:0e:c9:94:66:73:af:a0:ef: d4:14:4b:31:84:db:12:0c:c0:55:f8:ad:16:ab:ed:f4:7a:ba: ec:d2:1e:72 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUGc3iSUpK0VPyPLkun4t4D34AzUIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTcxMzNBMDlBQzA3OEIxMDFDQjc5ODBGRTY0NjgxMDI4 MEMwRDY0RjAeFw0yNjA0MjIwOTM3NTFaFw0yNzA0MjEwOTQyNTFaMDMxMTAvBgNV BAMTKDBEMTY4OUUyRTU3Q0JEQ0U4NEZENkM4ODc0QzhGQjJGREQ3QzcwMzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmVh2x25+5rQ7oaUMIe+OwO1qA eiRHOHCdrO1OEUxKuxCa67bsAr8GwBUf1Hc8En9DO5bO8buvit9bQKyPOtwQV9tu uwlt0X0jPORL4cySqwP2FXD3M5+xeGF2nXK2HjNA/E4ZiZI19BBO85eOT+xsGCsX i/oLZkV034YrHVPnZUtKlP0ufIJ7dHf8WBm2vmlzvj5fUPjkuzMZvyi+RuZQv/6a YLHSS90flnTKjTbugmtyYM792VBK1KJ1VaUD7SA+eGKiKkTXhv5TIYHfnFsMRdRp myAb9NAcqjMJtfyK0lS6KC8FPGi2xtU6Z/2JzvS27yjYgcq2Iaop6s7E2PT1AgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUDRaJ4uV8vc6E/WyIdMj7L918cDkwHwYDVR0j BBgwFoAUpxM6CawHixAct5gP5kaBAoDA1k8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODk4ODQ4OTQ2NDA4NjUzMC8wL0E3MTMzQTA5QUMwNzhCMTAxQ0I3OTgwRkU2NDY4 MTAyODBDMEQ2NEYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQTcxMzNBMDlBQzA3OEIxMDFDQjc5ODBGRTY0NjgxMDI4MEMwRDY0Ri5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk4OTg4NDg5NDY0MDg2NTMwLzAvMzEzMTM4MmUzMjM0 MzIyZTMwMmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzQzODMxMzIucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJ28gAwDQYJKoZIhvcNAQELBQADggEBAMRCWd2Ny07lAYCv04mfuhf8cGW81I+0 9FiQpor9mCu6Fx0FSxM6SGUD6zFwdBWLog9rY4mAyCoD0Qbs4DO6BJq6KP9q+cl0 hLNc5AEE8z5iM5qnXmD+cGJiiyYkjkpzfjD1u9ctAhlWRG+D034ZPLqtkln54A3G xbXKa4hJKK1Tw5pq9BPJPpA9ZNPs8tzrAu2xBy2nUlgnT6e7z188rcN1qSixUyf2 2Cix4dbJFr8K5mKd+DAIjJ2cf3VfseQMoLRIi1bezLgHub9m5AjNu5mJXXUhvXaH 0CL1KKp9ZaP71oUOyZRmc6+g79QUSzGE2xIMwFX4rRar7fR6uuzSHnI= -----END CERTIFICATE-----Generated at Mon Apr 27 08:24:34 2026 by rpki-client