$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1109004796452405267/0/312e322e342e302f32342d3234203d3e203234343039.roa File: 312e322e342e302f32342d3234203d3e203234343039.roa (raw, json) Hash identifier: nEQtgygHVMKG47GK6dkWFFlZukvt0PGUFnlFtUuFZLY= Subject key identifier: CB:2A:E5:F4:D8:04:09:5B:26:92:84:1A:D0:34:DB:BF:A7:EC:CD:03 Certificate issuer: /CN=CEACE67B8C6F2455BFEB95CA97F4EFCE0D10DAC4 Certificate serial: 11004EFE7C8332B49491317118B3883D02FCE64E Authority key identifier: CE:AC:E6:7B:8C:6F:24:55:BF:EB:95:CA:97:F4:EF:CE:0D:10:DA:C4 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CEACE67B8C6F2455BFEB95CA97F4EFCE0D10DAC4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1109004796452405267/0/312e322e342e302f32342d3234203d3e203234343039.roa Signing time: Tue 19 May 2026 06:33:16 +0000 ROA not before: Tue 19 May 2026 06:28:16 +0000 ROA not after: Tue 18 May 2027 06:33:16 +0000 asID: 24409 IP address blocks: 1.2.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1109004796452405267/0/CEACE67B8C6F2455BFEB95CA97F4EFCE0D10DAC4.crl rsync://rpki-rps.cnnic.cn/repo/A1109004796452405267/0/CEACE67B8C6F2455BFEB95CA97F4EFCE0D10DAC4.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CEACE67B8C6F2455BFEB95CA97F4EFCE0D10DAC4.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 15:28:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:00:4e:fe:7c:83:32:b4:94:91:31:71:18:b3:88:3d:02:fc:e6:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CEACE67B8C6F2455BFEB95CA97F4EFCE0D10DAC4 Validity Not Before: May 19 06:28:16 2026 GMT Not After : May 18 06:33:16 2027 GMT Subject: CN=CB2AE5F4D804095B2692841AD034DBBFA7ECCD03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:e0:dc:11:03:42:2e:6b:ca:33:1a:47:1e:6d: 8f:af:e0:e4:b3:dc:72:d2:54:d1:f3:00:4a:81:a9: 2e:db:d8:8c:5d:00:68:1f:ac:c4:ba:27:2e:02:7d: 26:98:2a:7c:cd:64:b7:8a:8b:e4:71:7f:5e:8e:47: f3:60:25:3c:03:eb:5a:6c:9c:e5:b2:39:2f:b1:25: f0:e5:c2:e0:5d:26:1b:0b:59:05:df:f7:ae:5a:c4: ff:0e:00:86:96:68:56:71:c6:da:38:0b:9b:fc:19: 15:e9:92:68:e4:5b:15:67:7c:c8:b6:65:9f:23:72: 2e:6e:b1:19:f8:b1:27:e0:a6:43:47:51:ab:c0:59: a9:c0:0a:af:d8:d2:61:cc:13:a5:58:72:d8:cf:84: 24:1f:bd:67:9d:21:64:07:8f:48:87:11:61:8f:dd: b3:10:9b:2c:37:a5:ce:93:5b:5a:5d:72:f7:13:7a: d9:41:41:31:74:00:f3:e6:a1:ef:dd:7a:4f:5c:fb: 7e:36:98:d9:00:fb:3b:73:29:39:e5:6e:5e:d5:2c: b7:38:5f:78:d6:42:51:f7:41:34:6e:9e:b0:1b:9c: 4f:29:65:0d:84:cb:b4:3a:cd:1c:2c:09:ae:81:ad: 25:fe:3e:65:28:7b:4f:37:83:89:d3:08:22:68:7a: b3:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:2A:E5:F4:D8:04:09:5B:26:92:84:1A:D0:34:DB:BF:A7:EC:CD:03 X509v3 Authority Key Identifier: keyid:CE:AC:E6:7B:8C:6F:24:55:BF:EB:95:CA:97:F4:EF:CE:0D:10:DA:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1109004796452405267/0/CEACE67B8C6F2455BFEB95CA97F4EFCE0D10DAC4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CEACE67B8C6F2455BFEB95CA97F4EFCE0D10DAC4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1109004796452405267/0/312e322e342e302f32342d3234203d3e203234343039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 1.2.4.0/24 Signature Algorithm: sha256WithRSAEncryption 84:07:01:64:9d:55:8a:0e:d8:e4:2e:98:35:8c:ad:34:f7:23: d7:db:71:99:8f:2a:86:0d:8f:97:af:43:b7:50:f3:d8:92:ad: f4:34:40:5f:57:3e:34:c0:dc:4a:ba:a3:a8:c7:a4:6a:d9:db: 36:3b:83:1d:02:8a:9d:c3:6b:1f:14:de:71:8b:7f:25:7a:4b: c5:3c:ad:a2:30:e2:31:62:7e:e7:1b:79:75:df:29:9f:28:ae: 29:20:b2:12:3c:bb:fa:94:68:db:26:53:4b:d9:e2:7c:a4:a7: 8a:f1:dd:42:dd:28:f8:32:60:ce:84:bc:1e:c2:04:c8:2f:13: 5b:78:a1:0c:66:31:c9:49:f4:5f:01:8c:2d:dc:bc:9b:c2:c8: 7e:40:66:d9:c1:45:89:90:ac:f0:53:0c:78:04:ea:f1:dc:cd: 4f:41:e6:d0:59:39:d0:d1:88:39:49:04:ac:bd:ae:bd:9e:88: 43:ae:bb:b4:5c:6c:3e:eb:a2:15:79:01:aa:20:63:8b:8e:22: f5:1a:e2:5e:04:f9:db:c8:62:38:86:78:3a:86:58:6d:4f:32: c7:2d:c8:b9:09:78:2b:6c:d3:af:cd:b0:23:bb:62:1f:30:e2: ce:fc:6b:9c:fb:2b:91:c7:11:8d:ee:17:1b:2c:8b:a6:6a:f9: 1f:2c:7d:f6 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgIUEQBO/nyDMrSUkTFxGLOIPQL85k4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0VBQ0U2N0I4QzZGMjQ1NUJGRUI5NUNBOTdGNEVGQ0Uw RDEwREFDNDAeFw0yNjA1MTkwNjI4MTZaFw0yNzA1MTgwNjMzMTZaMDMxMTAvBgNV BAMTKENCMkFFNUY0RDgwNDA5NUIyNjkyODQxQUQwMzREQkJGQTdFQ0NEMDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDV4NwRA0Iua8ozGkcebY+v4OSz 3HLSVNHzAEqBqS7b2IxdAGgfrMS6Jy4CfSaYKnzNZLeKi+Rxf16OR/NgJTwD61ps nOWyOS+xJfDlwuBdJhsLWQXf965axP8OAIaWaFZxxto4C5v8GRXpkmjkWxVnfMi2 ZZ8jci5usRn4sSfgpkNHUavAWanACq/Y0mHME6VYctjPhCQfvWedIWQHj0iHEWGP 3bMQmyw3pc6TW1pdcvcTetlBQTF0APPmoe/dek9c+342mNkA+ztzKTnlbl7VLLc4 X3jWQlH3QTRunrAbnE8pZQ2Ey7Q6zRwsCa6BrSX+PmUoe083g4nTCCJoerORAgMB AAGjggIJMIICBTAdBgNVHQ4EFgQUyyrl9NgECVsmkoQa0DTbv6fszQMwHwYDVR0j BBgwFoAUzqzme4xvJFW/65XKl/Tvzg0Q2sQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw OTAwNDc5NjQ1MjQwNTI2Ny8wL0NFQUNFNjdCOEM2RjI0NTVCRkVCOTVDQTk3RjRF RkNFMEQxMERBQzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0VBQ0U2N0I4QzZGMjQ1NUJGRUI5NUNBOTdGNEVGQ0UwRDEwREFDNC5jZXIw gYIGCCsGAQUFBwELBHYwdDByBggrBgEFBQcwC4ZmcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTA5MDA0Nzk2NDUyNDA1MjY3LzAvMzEyZTMyMmUzNDJl MzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMyMzQzNDMwMzkucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAABAgQw DQYJKoZIhvcNAQELBQADggEBAIQHAWSdVYoO2OQumDWMrTT3I9fbcZmPKoYNj5ev Q7dQ89iSrfQ0QF9XPjTA3Eq6o6jHpGrZ2zY7gx0Cip3Dax8U3nGLfyV6S8U8raIw 4jFifucbeXXfKZ8orikgshI8u/qUaNsmU0vZ4nykp4rx3ULdKPgyYM6EvB7CBMgv E1t4oQxmMclJ9F8BjC3cvJvCyH5AZtnBRYmQrPBTDHgE6vHczU9B5tBZOdDRiDlJ BKy9rr2eiEOuu7RcbD7rohV5AaogY4uOIvUa4l4E+dvIYjiGeDqGWG1PMsctyLkJ eCts06/NsCO7Yh8w4s78a5z7K5HHEY3uFxssi6Zq+R8sffY= -----END CERTIFICATE-----Generated at Fri May 29 23:52:16 2026 by rpki-client