$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1108677435395670037/1/AS4808.roa File: AS4808.roa (raw, json) Hash identifier: zrnyfTGaceFvRsRNBf1L4VJmv/kF/kkf/DS1RaoLOQM= Subject key identifier: 1D:38:53:4C:29:8A:82:57:15:A7:ED:17:AA:37:67:61:0F:59:E7:C5 Certificate issuer: /CN=9FF679A48BDAB5820137C251333CE831F275BD8C Certificate serial: 42085975660F1FE2966534AF13EB396EBE1EE2F3 Authority key identifier: 9F:F6:79:A4:8B:DA:B5:82:01:37:C2:51:33:3C:E8:31:F2:75:BD:8C Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9FF679A48BDAB5820137C251333CE831F275BD8C.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1108677435395670037/1/AS4808.roa Signing time: Wed 27 May 2026 08:42:45 +0000 ROA not before: Wed 27 May 2026 08:37:45 +0000 ROA not after: Wed 26 May 2027 08:42:45 +0000 asID: 4808 IP address blocks: 119.253.32.0/20 maxlen: 20 119.253.48.0/21 maxlen: 21 119.253.56.0/21 maxlen: 21 119.253.64.0/20 maxlen: 20 119.253.80.0/20 maxlen: 20 119.254.0.0/20 maxlen: 20 119.254.224.0/20 maxlen: 20 124.42.64.0/19 maxlen: 19 124.42.96.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1108677435395670037/1/9FF679A48BDAB5820137C251333CE831F275BD8C.crl rsync://rpki-rps.cnnic.cn/repo/A1108677435395670037/1/9FF679A48BDAB5820137C251333CE831F275BD8C.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9FF679A48BDAB5820137C251333CE831F275BD8C.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 15:28:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:08:59:75:66:0f:1f:e2:96:65:34:af:13:eb:39:6e:be:1e:e2:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9FF679A48BDAB5820137C251333CE831F275BD8C Validity Not Before: May 27 08:37:45 2026 GMT Not After : May 26 08:42:45 2027 GMT Subject: CN=1D38534C298A825715A7ED17AA3767610F59E7C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:20:db:5a:f6:73:4f:c6:c4:f4:f6:25:e1:b2: 15:63:f4:44:a4:8a:29:3c:14:89:6d:fc:80:fd:2d: d7:ed:c2:41:32:98:58:0f:7c:5d:2a:fb:d9:60:a5: e6:44:06:f7:6d:a2:8c:44:2c:ce:b0:9c:cc:77:3a: fd:55:f7:11:15:ff:a8:54:0a:ef:23:28:d5:75:d3: d8:a7:2a:b0:fe:e0:d2:f4:10:5a:0c:9b:a2:5a:76: 2a:5a:e0:c3:78:d4:72:9e:09:e2:a0:ea:d8:d0:44: e8:7d:66:1f:be:bb:cb:e3:46:b6:4d:28:c2:8a:3a: 28:3c:92:f2:51:de:19:e9:a0:47:7a:ed:f3:77:73: 8f:2c:61:69:a9:1b:09:de:bc:14:41:bb:00:83:ee: 50:bf:b0:3c:ad:08:d0:c2:46:62:a5:44:41:fd:27: c7:f3:0b:ac:26:b1:cf:10:d6:99:31:c0:ed:4b:82: b8:a5:8e:a2:44:ff:85:23:76:3c:83:5e:2a:41:e0: 86:61:29:97:eb:d9:8b:ae:29:76:aa:d8:06:ed:50: 3f:ad:4b:a3:2a:b0:74:13:b9:db:9e:49:50:f6:5b: e1:17:28:17:64:dd:2b:ea:51:e6:62:a5:e2:37:1d: be:51:25:18:3c:ed:f6:0d:43:ab:54:d5:61:39:e8: d3:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:38:53:4C:29:8A:82:57:15:A7:ED:17:AA:37:67:61:0F:59:E7:C5 X509v3 Authority Key Identifier: keyid:9F:F6:79:A4:8B:DA:B5:82:01:37:C2:51:33:3C:E8:31:F2:75:BD:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1108677435395670037/1/9FF679A48BDAB5820137C251333CE831F275BD8C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9FF679A48BDAB5820137C251333CE831F275BD8C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1108677435395670037/1/AS4808.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.253.32.0-119.253.95.255 119.254.0.0/20 119.254.224.0/20 124.42.64.0/18 Signature Algorithm: sha256WithRSAEncryption 33:2d:06:80:0e:b4:45:82:7f:28:03:e4:47:b6:4e:13:a1:86: b4:6e:3c:ed:e0:77:72:5e:8b:82:52:b7:e7:83:ab:d3:c1:8f: a5:f1:ac:8e:f4:c3:c5:1b:f5:bc:e2:7a:9f:6a:c3:f1:c5:9c: 66:7e:8e:8c:9f:fb:4f:a2:a6:9e:4a:80:e6:39:42:60:cf:fe: 88:30:42:6a:c2:e3:fe:0a:b2:a7:b6:5f:cc:bf:34:72:ca:07: cd:30:3a:01:dd:9c:be:1c:73:86:24:0a:ac:df:3b:68:ce:9a: e5:ec:e7:ba:30:3e:0e:9a:41:ae:f6:36:90:35:34:fb:04:9d: 5c:c1:6b:8f:04:cc:77:d3:73:c9:04:30:7a:c3:04:61:9d:0d: ac:91:e6:c2:d4:36:05:2c:2c:87:48:eb:c2:b3:89:3b:a5:f0: 76:a8:59:f6:cd:89:c4:98:1f:c5:57:4b:00:d3:4b:5b:58:fa: 2a:de:f3:80:d3:52:15:33:28:89:17:fc:76:20:43:19:38:a7: 0f:80:84:5a:54:72:55:74:bc:54:35:64:21:5a:1f:0f:fd:ea: e9:6d:05:79:12:26:44:8b:f6:a4:06:27:bb:ca:ff:e7:e6:29: 3d:e3:44:ff:2b:71:1b:70:3c:51:59:78:68:fc:55:28:58:9b: c5:40:f9:f2 -----BEGIN CERTIFICATE----- MIIE8jCCA9qgAwIBAgIUQghZdWYPH+KWZTSvE+s5br4e4vMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUZGNjc5QTQ4QkRBQjU4MjAxMzdDMjUxMzMzQ0U4MzFG Mjc1QkQ4QzAeFw0yNjA1MjcwODM3NDVaFw0yNzA1MjYwODQyNDVaMDMxMTAvBgNV BAMTKDFEMzg1MzRDMjk4QTgyNTcxNUE3RUQxN0FBMzc2NzYxMEY1OUU3QzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/INta9nNPxsT09iXhshVj9ESk iik8FIlt/ID9LdftwkEymFgPfF0q+9lgpeZEBvdtooxELM6wnMx3Ov1V9xEV/6hU Cu8jKNV109inKrD+4NL0EFoMm6Jadipa4MN41HKeCeKg6tjQROh9Zh++u8vjRrZN KMKKOig8kvJR3hnpoEd67fN3c48sYWmpGwnevBRBuwCD7lC/sDytCNDCRmKlREH9 J8fzC6wmsc8Q1pkxwO1LgriljqJE/4UjdjyDXipB4IZhKZfr2YuuKXaq2AbtUD+t S6MqsHQTudueSVD2W+EXKBdk3SvqUeZipeI3Hb5RJRg87fYNQ6tU1WE56NOBAgMB AAGjggH8MIIB+DAdBgNVHQ4EFgQUHThTTCmKglcVp+0XqjdnYQ9Z58UwHwYDVR0j BBgwFoAUn/Z5pIvatYIBN8JRMzzoMfJ1vYwwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw ODY3NzQzNTM5NTY3MDAzNy8xLzlGRjY3OUE0OEJEQUI1ODIwMTM3QzI1MTMzM0NF ODMxRjI3NUJEOEMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOUZGNjc5QTQ4QkRBQjU4MjAxMzdDMjUxMzMzQ0U4MzFGMjc1QkQ4Qy5jZXIw XAYIKwYBBQUHAQsEUDBOMEwGCCsGAQUFBzALhkByc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTExMDg2Nzc0MzUzOTU2NzAwMzcvMS9BUzQ4MDgucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwOQYIKwYBBQUHAQcBAf8EKjAoMCYEAgAB MCAwDAMEBXf9IAMEBXf9QAMEBHf+AAMEBHf+4AMEBnwqQDANBgkqhkiG9w0BAQsF AAOCAQEAMy0GgA60RYJ/KAPkR7ZOE6GGtG487eB3cl6LglK354Or08GPpfGsjvTD xRv1vOJ6n2rD8cWcZn6OjJ/7T6KmnkqA5jlCYM/+iDBCasLj/gqyp7ZfzL80csoH zTA6Ad2cvhxzhiQKrN87aM6a5eznujA+DppBrvY2kDU0+wSdXMFrjwTMd9NzyQQw esMEYZ0NrJHmwtQ2BSwsh0jrwrOJO6XwdqhZ9s2JxJgfxVdLANNLW1j6Kt7zgNNS FTMoiRf8diBDGTinD4CEWlRyVXS8VDVkIVofD/3q6W0FeRImRIv2pAYnu8r/5+Yp PeNE/ytxG3A8UVl4aPxVKFibxUD58g== -----END CERTIFICATE-----Generated at Fri May 29 23:48:42 2026 by rpki-client