$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1100955007496224770/0/AS152120.roa File: AS152120.roa (raw, json) Hash identifier: Qbns3jTpPiZ4HvTvydl/LN6gM52cFh04J88DXulOgjc= Subject key identifier: BB:06:3E:16:7E:12:07:EF:13:61:1D:7E:81:20:B6:50:0E:E4:DB:D6 Certificate issuer: /CN=78A1695C768D09B6CA7E1978308E54BE84FEBAAE Certificate serial: 1BDB033E2169B606001D9638371F1D906BE9CFB4 Authority key identifier: 78:A1:69:5C:76:8D:09:B6:CA:7E:19:78:30:8E:54:BE:84:FE:BA:AE Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/78A1695C768D09B6CA7E1978308E54BE84FEBAAE.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1100955007496224770/0/AS152120.roa Signing time: Fri 29 May 2026 00:17:12 +0000 ROA not before: Fri 29 May 2026 00:12:12 +0000 ROA not after: Fri 28 May 2027 00:17:12 +0000 asID: 152120 IP address blocks: 116.130.23.0/24 maxlen: 24 116.130.24.0/24 maxlen: 24 116.130.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1100955007496224770/0/78A1695C768D09B6CA7E1978308E54BE84FEBAAE.crl rsync://rpki-rps.cnnic.cn/repo/A1100955007496224770/0/78A1695C768D09B6CA7E1978308E54BE84FEBAAE.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/78A1695C768D09B6CA7E1978308E54BE84FEBAAE.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 15:28:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:db:03:3e:21:69:b6:06:00:1d:96:38:37:1f:1d:90:6b:e9:cf:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=78A1695C768D09B6CA7E1978308E54BE84FEBAAE Validity Not Before: May 29 00:12:12 2026 GMT Not After : May 28 00:17:12 2027 GMT Subject: CN=BB063E167E1207EF13611D7E8120B6500EE4DBD6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:fb:e1:16:a5:c9:dd:4c:7d:b7:18:ec:99:4b: 01:a7:4f:07:da:1b:75:1b:82:bc:3c:12:b1:9a:a2: c9:a0:bd:2b:d6:ce:b4:51:ff:1d:eb:c4:4f:c4:1a: 1e:36:94:26:1b:c9:d4:6b:b7:7e:fe:b2:f0:76:c3: c8:40:24:cd:eb:8b:ed:a4:ca:47:70:57:a9:31:33: bc:30:29:41:82:a3:26:a6:16:43:b7:21:7d:b2:63: 59:dc:fa:a6:33:40:cc:6b:be:00:37:52:17:19:07: 05:49:f0:23:07:c1:cd:2c:3e:2a:ce:63:cd:67:da: f3:21:bf:9a:94:c4:f1:e1:af:9e:56:b4:da:15:9c: 9b:21:dc:a7:d4:ee:c9:6c:92:32:b8:53:43:c5:c3: 3c:51:2f:f6:73:7b:c7:3b:6d:99:03:0d:1b:2d:7c: 9b:05:a3:6e:d3:7b:cf:93:6d:09:a6:05:19:8c:a4: 06:06:5a:58:ed:e8:3b:54:18:69:45:9e:46:af:6b: 23:4d:91:d9:3e:a5:61:9a:2c:e4:f1:89:b5:b3:52: e2:4e:fc:7f:05:c4:cb:9d:2f:ce:04:26:13:61:80: 8c:ff:b2:88:a8:11:86:3a:7c:f8:65:d0:86:7d:99: eb:7a:a2:1c:7c:a1:ed:01:d5:67:fd:60:8d:bf:7f: 39:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:06:3E:16:7E:12:07:EF:13:61:1D:7E:81:20:B6:50:0E:E4:DB:D6 X509v3 Authority Key Identifier: keyid:78:A1:69:5C:76:8D:09:B6:CA:7E:19:78:30:8E:54:BE:84:FE:BA:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1100955007496224770/0/78A1695C768D09B6CA7E1978308E54BE84FEBAAE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/78A1695C768D09B6CA7E1978308E54BE84FEBAAE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1100955007496224770/0/AS152120.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.130.23.0-116.130.25.255 Signature Algorithm: sha256WithRSAEncryption 56:d9:dc:fd:cf:03:4e:18:1f:93:49:e7:8b:a3:06:d3:09:2b: b7:47:b7:47:89:e3:25:1a:ed:03:3e:92:62:72:95:3a:e6:e9: 02:08:a6:1c:52:6d:50:c4:e5:08:3a:1d:65:19:e9:9c:29:34: 9b:01:f2:3a:51:be:12:99:8b:13:31:e6:ac:e4:fe:4d:2f:9f: 12:44:df:01:78:1e:61:3b:23:03:c3:4d:62:a7:d8:51:69:a2: 74:02:54:3a:87:63:2c:bd:9a:97:62:78:90:a3:05:8a:34:fa: 87:e7:ca:35:91:6b:40:10:33:78:90:ca:dc:72:b2:af:8a:0a: 11:f2:19:c5:1c:5d:71:fa:32:02:89:e0:0e:75:61:cc:4a:cc: 08:37:0e:df:d9:d3:ca:07:65:f2:96:dc:36:f2:42:8b:dd:b2: 63:e1:59:35:9b:4a:0c:6b:63:be:a6:93:90:f9:16:f3:f0:a3: 3b:10:3a:33:f8:32:08:cf:e9:3a:42:2d:b0:d2:83:c4:3b:f6: 32:1b:e2:db:35:87:a7:4c:1b:56:49:cd:ce:f9:5d:8f:aa:d4: 86:a5:a2:db:23:59:84:f9:a7:17:72:d6:6e:5d:67:22:3f:44: 2f:9b:da:05:17:8b:dd:a0:c4:2d:c2:ad:82:0e:4e:31:a1:4f: cf:dc:cb:b3 -----BEGIN CERTIFICATE----- MIIE4jCCA8qgAwIBAgIUG9sDPiFptgYAHZY4Nx8dkGvpz7QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzhBMTY5NUM3NjhEMDlCNkNBN0UxOTc4MzA4RTU0QkU4 NEZFQkFBRTAeFw0yNjA1MjkwMDEyMTJaFw0yNzA1MjgwMDE3MTJaMDMxMTAvBgNV BAMTKEJCMDYzRTE2N0UxMjA3RUYxMzYxMUQ3RTgxMjBCNjUwMEVFNERCRDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4++EWpcndTH23GOyZSwGnTwfa G3Ubgrw8ErGaosmgvSvWzrRR/x3rxE/EGh42lCYbydRrt37+svB2w8hAJM3ri+2k ykdwV6kxM7wwKUGCoyamFkO3IX2yY1nc+qYzQMxrvgA3UhcZBwVJ8CMHwc0sPirO Y81n2vMhv5qUxPHhr55WtNoVnJsh3KfU7slskjK4U0PFwzxRL/Zze8c7bZkDDRst fJsFo27Te8+TbQmmBRmMpAYGWljt6DtUGGlFnkavayNNkdk+pWGaLOTxibWzUuJO /H8FxMudL84EJhNhgIz/soioEYY6fPhl0IZ9met6ohx8oe0B1Wf9YI2/fzmhAgMB AAGjggHsMIIB6DAdBgNVHQ4EFgQUuwY+Fn4SB+8TYR1+gSC2UA7k29YwHwYDVR0j BBgwFoAUeKFpXHaNCbbKfhl4MI5UvoT+uq4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw MDk1NTAwNzQ5NjIyNDc3MC8wLzc4QTE2OTVDNzY4RDA5QjZDQTdFMTk3ODMwOEU1 NEJFODRGRUJBQUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNzhBMTY5NUM3NjhEMDlCNkNBN0UxOTc4MzA4RTU0QkU4NEZFQkFBRS5jZXIw XgYIKwYBBQUHAQsEUjBQME4GCCsGAQUFBzALhkJyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTExMDA5NTUwMDc0OTYyMjQ3NzAvMC9BUzE1MjEyMC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAnBggrBgEFBQcBBwEB/wQYMBYwFAQC AAEwDjAMAwQAdIIXAwQBdIIYMA0GCSqGSIb3DQEBCwUAA4IBAQBW2dz9zwNOGB+T SeeLowbTCSu3R7dHieMlGu0DPpJicpU65ukCCKYcUm1QxOUIOh1lGemcKTSbAfI6 Ub4SmYsTMeas5P5NL58SRN8BeB5hOyMDw01ip9hRaaJ0AlQ6h2MsvZqXYniQowWK NPqH58o1kWtAEDN4kMrccrKvigoR8hnFHF1x+jICieAOdWHMSswINw7f2dPKB2Xy ltw28kKL3bJj4Vk1m0oMa2O+ppOQ+Rbz8KM7EDoz+DIIz+k6Qi2w0oPEO/YyG+Lb NYenTBtWSc3O+V2PqtSGpaLbI1mE+acXctZuXWciP0Qvm9oFF4vdoMQtwq2CDk4x oU/P3Muz -----END CERTIFICATE-----Generated at Fri May 29 23:49:10 2026 by rpki-client