$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1104968095178424325/0/3130312e39362e3132382e302f32332d3233203d3e2034383437.roa File: 3130312e39362e3132382e302f32332d3233203d3e2034383437.roa (raw, json) Hash identifier: BD4EXLsTPjgLNF/fO8rF/VtqmsIw5b2waeO1LupTlYg= Subject key identifier: 37:5D:6C:C7:B3:E9:3A:8C:1A:FE:74:0D:0D:6A:D2:06:60:AE:86:96 Certificate issuer: /CN=921E7CCEFADC9A05BFBE8A8B9EED4C95D4BA75EB Certificate serial: 28AE0D8BCCD33587B44A576B34D32AA0AB5DF2F1 Authority key identifier: 92:1E:7C:CE:FA:DC:9A:05:BF:BE:8A:8B:9E:ED:4C:95:D4:BA:75:EB Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/921E7CCEFADC9A05BFBE8A8B9EED4C95D4BA75EB.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1104968095178424325/0/3130312e39362e3132382e302f32332d3233203d3e2034383437.roa Signing time: Wed 20 May 2026 03:53:22 +0000 ROA not before: Wed 20 May 2026 03:48:22 +0000 ROA not after: Wed 19 May 2027 03:53:22 +0000 asID: 4847 IP address blocks: 101.96.128.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1104968095178424325/0/921E7CCEFADC9A05BFBE8A8B9EED4C95D4BA75EB.crl rsync://rpki-rps.cnnic.cn/repo/A1104968095178424325/0/921E7CCEFADC9A05BFBE8A8B9EED4C95D4BA75EB.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/921E7CCEFADC9A05BFBE8A8B9EED4C95D4BA75EB.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 May 2026 02:27:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:ae:0d:8b:cc:d3:35:87:b4:4a:57:6b:34:d3:2a:a0:ab:5d:f2:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=921E7CCEFADC9A05BFBE8A8B9EED4C95D4BA75EB Validity Not Before: May 20 03:48:22 2026 GMT Not After : May 19 03:53:22 2027 GMT Subject: CN=375D6CC7B3E93A8C1AFE740D0D6AD20660AE8696 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:6b:c1:88:da:fa:dc:1a:3f:f0:9c:95:94:1b: 3b:3e:ab:5b:d8:90:01:b3:57:7b:4f:b3:53:b1:ce: dd:a3:fb:ad:58:cb:c1:6d:46:c0:8e:e8:ee:74:9e: de:47:48:e7:0a:0b:00:5c:96:91:a4:3b:9b:8d:9e: 87:74:41:46:c7:0b:1e:fa:0c:97:0c:f4:f8:57:01: 35:9b:9f:9c:8d:48:e8:7d:2e:98:65:ab:90:1e:1f: 4f:21:d6:13:bd:77:88:5b:ee:04:d1:79:19:e8:82: df:86:2d:92:d6:72:dc:41:1c:e0:cc:a7:59:11:f8: fd:9a:d2:63:f4:d3:9c:10:97:df:88:a5:df:c4:69: 73:65:90:df:cb:31:c4:f1:06:84:e0:e6:04:03:74: e2:e0:38:f1:99:25:ab:49:f9:f1:56:20:64:06:d5: 73:d3:fc:30:83:c6:d9:f3:76:7c:63:3d:1b:e1:6e: c9:49:e3:ae:93:f3:7d:1c:56:95:96:cc:3e:20:8c: 6f:37:bc:39:38:a1:a3:4d:4a:ae:11:aa:2e:8a:a1: 18:4f:80:64:4b:e8:e9:62:e7:58:b6:f3:4b:0c:53: 7a:96:e7:4d:45:ad:8f:91:fd:2e:dd:c2:82:80:27: 35:d1:19:ec:20:9f:cb:d8:f3:44:28:19:c5:77:2c: 54:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:5D:6C:C7:B3:E9:3A:8C:1A:FE:74:0D:0D:6A:D2:06:60:AE:86:96 X509v3 Authority Key Identifier: keyid:92:1E:7C:CE:FA:DC:9A:05:BF:BE:8A:8B:9E:ED:4C:95:D4:BA:75:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1104968095178424325/0/921E7CCEFADC9A05BFBE8A8B9EED4C95D4BA75EB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/921E7CCEFADC9A05BFBE8A8B9EED4C95D4BA75EB.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1104968095178424325/0/3130312e39362e3132382e302f32332d3233203d3e2034383437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.96.128.0/23 Signature Algorithm: sha256WithRSAEncryption 2f:94:da:30:e5:5a:53:39:f2:4e:86:b2:ad:31:09:ee:76:da: e8:c3:69:15:98:bd:c6:8f:77:bc:d8:35:c6:5c:b8:3d:20:e5: be:c6:aa:a7:ed:aa:b9:78:fe:90:aa:34:b5:c6:de:a7:ce:38: 81:1d:68:54:77:6c:81:75:07:6e:04:12:b9:1d:83:d3:e4:14: f6:ee:ba:06:ef:45:c2:e6:72:95:e8:3d:df:bc:65:12:a4:30: 27:14:83:cb:b7:cb:84:84:ec:99:f1:07:d6:8b:91:fc:f7:bb: b0:23:5d:09:f8:b5:0f:3e:c6:26:a2:c2:81:b2:11:66:5e:8b: fd:1c:f2:bf:8a:6a:78:53:4c:eb:8d:26:b8:46:09:37:22:cb: c5:b0:b2:8e:e7:c5:17:47:39:5f:41:99:d6:84:d4:93:78:de: 92:98:e9:d5:bb:4a:d4:5c:b8:de:6a:c0:89:31:64:2c:4e:76: 2d:f1:04:7b:09:b7:a1:83:bc:23:bb:48:d7:3e:0b:77:ad:0a: 2f:97:6b:07:21:61:5e:1d:e4:14:1a:be:74:c7:6f:cf:d4:a8: 3b:cb:4a:23:ff:0c:07:0d:e9:c5:56:c5:67:da:c0:d7:60:04: 80:f3:fe:74:b3:00:6b:d6:9d:d8:94:cb:e0:e2:88:57:55:63: b1:79:00:42 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUKK4Ni8zTNYe0SldrNNMqoKtd8vEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIxRTdDQ0VGQURDOUEwNUJGQkU4QThCOUVFRDRDOTVE NEJBNzVFQjAeFw0yNjA1MjAwMzQ4MjJaFw0yNzA1MTkwMzUzMjJaMDMxMTAvBgNV BAMTKDM3NUQ2Q0M3QjNFOTNBOEMxQUZFNzQwRDBENkFEMjA2NjBBRTg2OTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCia8GI2vrcGj/wnJWUGzs+q1vY kAGzV3tPs1Oxzt2j+61Yy8FtRsCO6O50nt5HSOcKCwBclpGkO5uNnod0QUbHCx76 DJcM9PhXATWbn5yNSOh9Lphlq5AeH08h1hO9d4hb7gTReRnogt+GLZLWctxBHODM p1kR+P2a0mP005wQl9+Ipd/EaXNlkN/LMcTxBoTg5gQDdOLgOPGZJatJ+fFWIGQG 1XPT/DCDxtnzdnxjPRvhbslJ466T830cVpWWzD4gjG83vDk4oaNNSq4Rqi6KoRhP gGRL6Oli51i280sMU3qW501FrY+R/S7dwoKAJzXRGewgn8vY80QoGcV3LFQrAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUN11sx7PpOowa/nQNDWrSBmCuhpYwHwYDVR0j BBgwFoAUkh58zvrcmgW/voqLnu1MldS6deswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw NDk2ODA5NTE3ODQyNDMyNS8wLzkyMUU3Q0NFRkFEQzlBMDVCRkJFOEE4QjlFRUQ0 Qzk1RDRCQTc1RUIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTIxRTdDQ0VGQURDOUEwNUJGQkU4QThCOUVFRDRDOTVENEJBNzVFQi5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTA0OTY4MDk1MTc4NDI0MzI1LzAvMzEzMDMxMmUzOTM2 MmUzMTMyMzgyZTMwMmYzMjMzMmQzMjMzMjAzZDNlMjAzNDM4MzQzNy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAWVggDANBgkqhkiG9w0BAQsFAAOCAQEAL5TaMOVaUznyToayrTEJ7nba6MNp FZi9xo93vNg1xly4PSDlvsaqp+2quXj+kKo0tcbep844gR1oVHdsgXUHbgQSuR2D 0+QU9u66Bu9FwuZyleg937xlEqQwJxSDy7fLhITsmfEH1ouR/Pe7sCNdCfi1Dz7G JqLCgbIRZl6L/Rzyv4pqeFNM640muEYJNyLLxbCyjufFF0c5X0GZ1oTUk3jekpjp 1btK1Fy43mrAiTFkLE52LfEEewm3oYO8I7tI1z4Ld60KL5drByFhXh3kFBq+dMdv z9SoO8tKI/8MBw3pxVbFZ9rA12AEgPP+dLMAa9ad2JTL4OKIV1VjsXkAQg== -----END CERTIFICATE-----Generated at Sat May 23 04:26:05 2026 by rpki-client