$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1104968095178424325/0/3130312e39362e3132382e302f32302d3230203d3e2030.roa File: 3130312e39362e3132382e302f32302d3230203d3e2030.roa (raw, json) Hash identifier: 1xV9aP2gdc7Trs8xNwE/KOsAMShbKw7iwWZGWtS2IK0= Subject key identifier: AF:1A:79:49:2E:DD:A9:C4:2E:EB:8D:AD:25:81:4D:EE:07:96:FE:6A Certificate issuer: /CN=921E7CCEFADC9A05BFBE8A8B9EED4C95D4BA75EB Certificate serial: 1109C1C207097ACB01C921B5F33581F3A5895A3E Authority key identifier: 92:1E:7C:CE:FA:DC:9A:05:BF:BE:8A:8B:9E:ED:4C:95:D4:BA:75:EB Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/921E7CCEFADC9A05BFBE8A8B9EED4C95D4BA75EB.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1104968095178424325/0/3130312e39362e3132382e302f32302d3230203d3e2030.roa Signing time: Wed 20 May 2026 04:10:38 +0000 ROA not before: Wed 20 May 2026 04:05:38 +0000 ROA not after: Wed 19 May 2027 04:10:38 +0000 asID: 0 IP address blocks: 101.96.128.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1104968095178424325/0/921E7CCEFADC9A05BFBE8A8B9EED4C95D4BA75EB.crl rsync://rpki-rps.cnnic.cn/repo/A1104968095178424325/0/921E7CCEFADC9A05BFBE8A8B9EED4C95D4BA75EB.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/921E7CCEFADC9A05BFBE8A8B9EED4C95D4BA75EB.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 May 2026 02:27:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:09:c1:c2:07:09:7a:cb:01:c9:21:b5:f3:35:81:f3:a5:89:5a:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=921E7CCEFADC9A05BFBE8A8B9EED4C95D4BA75EB Validity Not Before: May 20 04:05:38 2026 GMT Not After : May 19 04:10:38 2027 GMT Subject: CN=AF1A79492EDDA9C42EEB8DAD25814DEE0796FE6A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:4d:30:72:40:28:0a:24:94:5a:ba:86:6e:e1: d3:86:5a:85:b2:2e:67:00:f9:52:0a:ce:b3:aa:0a: 19:e8:31:30:db:54:0c:d5:18:a9:04:9e:cb:0a:64: 54:51:29:ba:d1:2b:ca:10:01:0e:0f:46:f2:33:0a: cf:b7:da:ad:64:61:96:0a:d0:19:88:90:c0:4e:2c: 6b:46:fd:60:f6:d5:0d:26:a4:89:e5:e8:f7:85:5c: 29:f1:59:83:dd:28:87:97:63:ab:ff:79:cf:7b:7f: 9d:0f:54:5d:a2:62:2d:5c:f7:4d:3e:cf:ca:ec:c6: 41:c7:ca:11:48:73:51:0c:37:8a:4f:36:3c:38:18: 13:3d:ef:44:b3:87:32:15:d1:ec:0f:ea:48:fa:85: bd:2c:37:66:04:f9:5d:54:06:73:73:03:f3:de:41: 49:a3:f0:51:f3:89:e3:e0:8c:c5:4c:82:2c:73:94: 1b:ef:b4:37:da:0f:90:0e:2e:2e:8e:8e:7a:e2:10: c9:bb:a8:d2:a1:13:c6:3e:79:91:6f:df:37:7f:01: a4:e8:cd:be:50:2c:d5:0a:37:e4:70:d2:6e:63:50: 62:56:16:a2:89:34:8b:61:29:82:cb:aa:a3:7b:83: f8:8f:e6:af:ad:c2:e9:c8:1f:16:4a:91:42:f2:e2: 1d:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:1A:79:49:2E:DD:A9:C4:2E:EB:8D:AD:25:81:4D:EE:07:96:FE:6A X509v3 Authority Key Identifier: keyid:92:1E:7C:CE:FA:DC:9A:05:BF:BE:8A:8B:9E:ED:4C:95:D4:BA:75:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1104968095178424325/0/921E7CCEFADC9A05BFBE8A8B9EED4C95D4BA75EB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/921E7CCEFADC9A05BFBE8A8B9EED4C95D4BA75EB.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1104968095178424325/0/3130312e39362e3132382e302f32302d3230203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.96.128.0/20 Signature Algorithm: sha256WithRSAEncryption 78:a5:6a:eb:da:d5:5d:8c:54:a8:8c:e3:39:62:8a:9b:15:c6: b7:20:69:7f:40:1e:29:78:d8:7d:d3:1a:76:5b:40:81:f1:22: 57:03:0f:be:f0:24:41:38:f7:1d:e4:43:c2:40:8d:1c:19:bd: df:9f:5e:f8:be:e1:e9:03:f8:d5:0e:a6:ad:67:f0:06:67:2b: 50:71:1f:31:13:70:c6:c3:bd:0d:e5:cd:cd:ff:3d:cb:69:66: d4:63:44:67:aa:8f:f3:71:fd:f0:db:dc:28:2b:22:a0:fa:dc: c1:a9:48:f5:e6:09:a1:76:73:ca:c2:67:89:3a:8a:e3:50:17: 40:99:37:cc:7e:97:21:a2:b6:1f:fb:cf:1a:4b:59:9d:06:92: 4f:c4:fe:46:d0:39:d3:57:97:ce:61:25:c1:a7:8c:65:09:02: 88:13:da:25:62:15:45:2b:9a:4b:12:a5:56:2b:58:95:c5:8e: e7:90:de:9e:14:bd:dd:b7:89:8a:b3:89:df:d4:6d:94:2e:4a: bf:a8:45:ed:6d:bc:86:28:86:99:30:b1:d8:3c:40:2f:87:9d: 0c:21:c7:b9:56:31:4f:fc:db:7a:4e:ee:ef:98:54:0f:0a:ac: cd:ba:a0:16:dd:6e:b1:c4:e6:20:0a:bb:97:a2:8c:a9:d1:79: 47:c4:37:cf -----BEGIN CERTIFICATE----- MIIFATCCA+mgAwIBAgIUEQnBwgcJessBySG18zWB86WJWj4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIxRTdDQ0VGQURDOUEwNUJGQkU4QThCOUVFRDRDOTVE NEJBNzVFQjAeFw0yNjA1MjAwNDA1MzhaFw0yNzA1MTkwNDEwMzhaMDMxMTAvBgNV BAMTKEFGMUE3OTQ5MkVEREE5QzQyRUVCOERBRDI1ODE0REVFMDc5NkZFNkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5TTByQCgKJJRauoZu4dOGWoWy LmcA+VIKzrOqChnoMTDbVAzVGKkEnssKZFRRKbrRK8oQAQ4PRvIzCs+32q1kYZYK 0BmIkMBOLGtG/WD21Q0mpInl6PeFXCnxWYPdKIeXY6v/ec97f50PVF2iYi1c900+ z8rsxkHHyhFIc1EMN4pPNjw4GBM970SzhzIV0ewP6kj6hb0sN2YE+V1UBnNzA/Pe QUmj8FHziePgjMVMgixzlBvvtDfaD5AOLi6OjnriEMm7qNKhE8Y+eZFv3zd/AaTo zb5QLNUKN+Rw0m5jUGJWFqKJNIthKYLLqqN7g/iP5q+twunIHxZKkULy4h2zAgMB AAGjggILMIICBzAdBgNVHQ4EFgQUrxp5SS7dqcQu642tJYFN7geW/mowHwYDVR0j BBgwFoAUkh58zvrcmgW/voqLnu1MldS6deswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw NDk2ODA5NTE3ODQyNDMyNS8wLzkyMUU3Q0NFRkFEQzlBMDVCRkJFOEE4QjlFRUQ0 Qzk1RDRCQTc1RUIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTIxRTdDQ0VGQURDOUEwNUJGQkU4QThCOUVFRDRDOTVENEJBNzVFQi5jZXIw gYQGCCsGAQUFBwELBHgwdjB0BggrBgEFBQcwC4ZocnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTA0OTY4MDk1MTc4NDI0MzI1LzAvMzEzMDMxMmUzOTM2 MmUzMTMyMzgyZTMwMmYzMjMwMmQzMjMwMjAzZDNlMjAzMC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBGVg gDANBgkqhkiG9w0BAQsFAAOCAQEAeKVq69rVXYxUqIzjOWKKmxXGtyBpf0AeKXjY fdMadltAgfEiVwMPvvAkQTj3HeRDwkCNHBm9359e+L7h6QP41Q6mrWfwBmcrUHEf MRNwxsO9DeXNzf89y2lm1GNEZ6qP83H98NvcKCsioPrcwalI9eYJoXZzysJniTqK 41AXQJk3zH6XIaK2H/vPGktZnQaST8T+RtA501eXzmElwaeMZQkCiBPaJWIVRSua SxKlVitYlcWO55DenhS93beJirOJ39RtlC5Kv6hF7W28hiiGmTCx2DxAL4edDCHH uVYxT/zbek7u75hUDwqszbqgFt1uscTmIAq7l6KMqdF5R8Q3zw== -----END CERTIFICATE-----Generated at Sat May 23 03:03:26 2026 by rpki-client