$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1109746307418816533/0/3131312e3133322e302e302f31372d3137203d3e203234313338.roa File: 3131312e3133322e302e302f31372d3137203d3e203234313338.roa (raw, json) Hash identifier: q4w9LGSvj+OQHZYh4Gp4vAFQ/e9rJ0z4FUrYdaVIFzY= Subject key identifier: 3C:06:57:98:44:7D:31:52:DD:82:E8:EC:35:02:B0:FC:C5:4C:92:83 Certificate issuer: /CN=A9185BF00000/serialNumber=5F3D64DCF13194FB0D71F29FB37C2D93F8D48720 Certificate serial: 649DE61BAD111E26A6AF4448BE1F9B49D3F52E3A Authority key identifier: 5F:3D:64:DC:F1:31:94:FB:0D:71:F2:9F:B3:7C:2D:93:F8:D4:87:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xz1k3PExlPsNcfKfs3wtk_jUhyA.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1109746307418816533/0/3131312e3133322e302e302f31372d3137203d3e203234313338.roa Signing time: Thu 21 May 2026 08:33:21 +0000 ROA not before: Thu 21 May 2026 08:28:21 +0000 ROA not after: Thu 20 May 2027 08:33:21 +0000 asID: 24138 IP address blocks: 111.132.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1109746307418816533/0/5F3D64DCF13194FB0D71F29FB37C2D93F8D48720.crl rsync://rpki-rps.cnnic.cn/repo/A1109746307418816533/0/5F3D64DCF13194FB0D71F29FB37C2D93F8D48720.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xz1k3PExlPsNcfKfs3wtk_jUhyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 May 2026 22:56:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:9d:e6:1b:ad:11:1e:26:a6:af:44:48:be:1f:9b:49:d3:f5:2e:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185BF00000, serialNumber=5F3D64DCF13194FB0D71F29FB37C2D93F8D48720 Validity Not Before: May 21 08:28:21 2026 GMT Not After : May 20 08:33:21 2027 GMT Subject: CN=3C065798447D3152DD82E8EC3502B0FCC54C9283 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:8b:5f:91:be:5a:02:5f:3c:a5:a9:ad:b5:9d: 4c:4e:6a:df:95:4a:b9:aa:e1:03:24:78:31:86:c5: 96:89:cb:53:76:37:5a:ec:6d:9b:b9:de:2c:71:f5: 02:6b:19:43:31:2b:64:53:d8:40:ad:fc:09:30:49: ae:2a:7c:7e:5c:ec:04:d9:2b:70:88:00:f4:88:64: 2b:13:a5:29:1b:49:77:67:82:78:b1:b1:65:2e:16: 30:ca:c6:07:c4:f8:de:57:fb:72:d5:6c:d5:5e:1e: 3f:f5:3e:8c:f5:5d:b5:17:e0:0e:d2:1a:3a:cd:c8: 20:62:bd:57:17:89:02:af:aa:25:4f:8e:c0:c0:72: 00:fc:aa:73:35:b0:09:45:02:1e:da:56:a3:e8:6c: 1c:62:31:c8:cd:80:e0:06:74:db:22:1f:fc:ec:b6: de:fa:f0:21:75:a2:42:0d:38:1e:27:ba:1a:f8:19: bc:e5:62:ee:43:86:ca:d5:bd:f0:d8:c7:c1:98:64: d9:f1:c7:1b:96:ad:18:c0:1f:72:80:74:7a:0b:1d: bd:ae:ef:c2:2c:60:e5:32:61:45:7a:2d:60:0f:8c: 5a:24:d3:e8:39:9f:3f:41:ee:ff:5f:28:8b:ac:7c: 68:55:8c:cd:18:35:12:30:4b:93:f4:42:8e:b2:bf: 9e:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:06:57:98:44:7D:31:52:DD:82:E8:EC:35:02:B0:FC:C5:4C:92:83 X509v3 Authority Key Identifier: keyid:5F:3D:64:DC:F1:31:94:FB:0D:71:F2:9F:B3:7C:2D:93:F8:D4:87:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1109746307418816533/0/5F3D64DCF13194FB0D71F29FB37C2D93F8D48720.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xz1k3PExlPsNcfKfs3wtk_jUhyA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1109746307418816533/0/3131312e3133322e302e302f31372d3137203d3e203234313338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 111.132.0.0/17 Signature Algorithm: sha256WithRSAEncryption 30:fd:1d:ad:62:53:7f:63:15:2c:58:4e:54:6d:25:7f:4e:a2: a2:56:6e:d2:58:61:0a:7d:8b:41:3a:13:a1:2c:cd:79:7e:a4: a4:27:6c:dd:33:f3:9e:b8:a6:04:b9:e0:c4:6c:ad:cf:25:d0: 73:ad:9f:21:1b:dc:ba:f5:87:6f:71:e8:ab:be:ac:59:6d:9a: c1:97:b5:86:c3:6b:3d:7d:4b:6a:55:04:ec:35:50:83:a1:23: b3:78:58:9f:98:2f:ea:7f:a0:24:81:e8:8e:f3:81:01:e9:f8: f2:59:e0:ec:de:c2:d4:84:99:9e:a6:6e:0b:2b:e9:e7:af:35: cf:8a:f2:ae:12:12:55:41:fb:b3:93:5e:7f:c8:ac:2d:82:62: 43:ec:41:4c:65:29:d8:04:ae:a0:5f:35:49:ae:69:46:5d:ce: f7:f0:57:46:f0:28:1a:a1:0f:d0:72:f6:60:bb:ae:db:d3:70: 7d:cb:c0:e6:49:e9:5a:44:22:61:e9:52:82:7b:a1:71:9a:c4: c5:25:eb:1a:05:2f:43:fc:79:77:4f:c1:cd:75:bb:26:e4:e7: c5:cb:a3:21:8f:1f:64:d1:45:ac:f6:1e:bc:95:3e:e3:9b:0a: 4a:85:7c:55:3f:8d:4b:9d:5d:3b:f0:bb:db:93:ba:9e:af:bd: 1c:c2:5b:2f -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgIUZJ3mG60RHiamr0RIvh+bSdP1LjowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODVCRjAwMDAwMTEwLwYDVQQFEyg1RjNENjREQ0Yx MzE5NEZCMEQ3MUYyOUZCMzdDMkQ5M0Y4RDQ4NzIwMB4XDTI2MDUyMTA4MjgyMVoX DTI3MDUyMDA4MzMyMVowMzExMC8GA1UEAxMoM0MwNjU3OTg0NDdEMzE1MkREODJF OEVDMzUwMkIwRkNDNTRDOTI4MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANyLX5G+WgJfPKWprbWdTE5q35VKuarhAyR4MYbFlonLU3Y3Wuxtm7neLHH1 AmsZQzErZFPYQK38CTBJrip8flzsBNkrcIgA9IhkKxOlKRtJd2eCeLGxZS4WMMrG B8T43lf7ctVs1V4eP/U+jPVdtRfgDtIaOs3IIGK9VxeJAq+qJU+OwMByAPyqczWw CUUCHtpWo+hsHGIxyM2A4AZ02yIf/Oy23vrwIXWiQg04Hie6GvgZvOVi7kOGytW9 8NjHwZhk2fHHG5atGMAfcoB0egsdva7vwixg5TJhRXotYA+MWiTT6DmfP0Hu/18o i6x8aFWMzRg1EjBLk/RCjrK/nn0CAwEAAaOCAhEwggINMB0GA1UdDgQWBBQ8BleY RH0xUt2C6Ow1ArD8xUySgzAfBgNVHSMEGDAWgBRfPWTc8TGU+w1x8p+zfC2T+NSH IDAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMTA5NzQ2MzA3NDE4ODE2NTMzLzAvNUYzRDY0 RENGMTMxOTRGQjBENzFGMjlGQjM3QzJEOTNGOEQ0ODcyMC5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvWHoxazNQRXhs UHNOY2ZLZnMzd3RrX2pVaHlBLmNlcjCBigYIKwYBBQUHAQsEfjB8MHoGCCsGAQUF BzALhm5yc3luYzovL3Jwa2ktcnBzLmNubmljLmNuL3JlcG8vQTExMDk3NDYzMDc0 MTg4MTY1MzMvMC8zMTMxMzEyZTMxMzMzMjJlMzAyZTMwMmYzMTM3MmQzMTM3MjAz ZDNlMjAzMjM0MzEzMzM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQHb4QAMA0GCSqGSIb3DQEBCwUAA4IB AQAw/R2tYlN/YxUsWE5UbSV/TqKiVm7SWGEKfYtBOhOhLM15fqSkJ2zdM/OeuKYE ueDEbK3PJdBzrZ8hG9y69YdvceirvqxZbZrBl7WGw2s9fUtqVQTsNVCDoSOzeFif mC/qf6AkgeiO84EB6fjyWeDs3sLUhJmepm4LK+nnrzXPivKuEhJVQfuzk15/yKwt gmJD7EFMZSnYBK6gXzVJrmlGXc738FdG8CgaoQ/QcvZgu67b03B9y8DmSelaRCJh 6VKCe6FxmsTFJesaBS9D/Hl3T8HNdbsm5OfFy6Mhjx9k0UWs9h68lT7jmwpKhXxV P41LnV078Lvbk7qer70cwlsv -----END CERTIFICATE-----Generated at Sat May 23 06:24:40 2026 by rpki-client