$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1109746307418816533/0/3131312e3133322e302e302f32312d3231203d3e203234313338.roa File: 3131312e3133322e302e302f32312d3231203d3e203234313338.roa (raw, json) Hash identifier: L/cbX48r0n0urdDsGV7xJD+dqhOiJ41neGwiM8FDvaM= Subject key identifier: 02:D4:CC:9F:06:0E:A1:2D:50:77:EB:6C:6F:6F:A2:39:EC:4D:5A:11 Certificate issuer: /CN=A9185BF00000/serialNumber=5F3D64DCF13194FB0D71F29FB37C2D93F8D48720 Certificate serial: 54F6837B87742C7FA6E8118DB31355626224E461 Authority key identifier: 5F:3D:64:DC:F1:31:94:FB:0D:71:F2:9F:B3:7C:2D:93:F8:D4:87:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xz1k3PExlPsNcfKfs3wtk_jUhyA.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1109746307418816533/0/3131312e3133322e302e302f32312d3231203d3e203234313338.roa Signing time: Thu 21 May 2026 08:33:21 +0000 ROA not before: Thu 21 May 2026 08:28:21 +0000 ROA not after: Thu 20 May 2027 08:33:21 +0000 asID: 24138 IP address blocks: 111.132.0.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1109746307418816533/0/5F3D64DCF13194FB0D71F29FB37C2D93F8D48720.crl rsync://rpki-rps.cnnic.cn/repo/A1109746307418816533/0/5F3D64DCF13194FB0D71F29FB37C2D93F8D48720.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xz1k3PExlPsNcfKfs3wtk_jUhyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 May 2026 22:56:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:f6:83:7b:87:74:2c:7f:a6:e8:11:8d:b3:13:55:62:62:24:e4:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185BF00000, serialNumber=5F3D64DCF13194FB0D71F29FB37C2D93F8D48720 Validity Not Before: May 21 08:28:21 2026 GMT Not After : May 20 08:33:21 2027 GMT Subject: CN=02D4CC9F060EA12D5077EB6C6F6FA239EC4D5A11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c2:32:2f:80:82:59:e5:2e:af:a5:58:62:8b: 86:40:be:42:eb:64:99:3d:81:25:7f:bc:41:0c:db: e5:5e:87:87:95:50:be:da:53:b4:97:94:b5:fc:6b: fd:39:31:a1:6b:4c:c0:43:aa:4b:95:86:a3:82:10: 8a:c0:75:5a:4c:aa:33:ac:43:fd:ae:59:16:f0:ca: 20:78:5e:8b:7b:3e:24:15:4a:6f:c9:98:38:b7:66: 59:f8:a1:9c:59:0f:57:bd:26:99:a4:bf:85:e5:4d: 45:74:b8:93:31:c5:3d:50:27:4e:9e:f6:cd:f2:20: ec:e5:1c:9c:e7:e7:ae:c6:b2:18:93:f0:28:7d:ec: 2d:48:2a:f9:08:e7:3c:b2:68:08:ba:14:14:05:03: 9b:36:43:d0:45:0f:f8:2a:e9:aa:8f:69:97:15:41: cb:cc:0f:c8:a0:af:08:77:cb:ac:6e:8f:43:5f:eb: 7b:6c:c3:8f:33:a4:3c:41:87:54:56:ed:c5:0b:85: 93:13:a3:bd:0b:df:83:de:ee:cc:0b:21:20:8e:cf: f0:b5:ea:39:31:a4:c5:b3:dd:e6:b5:98:cd:93:7f: 38:9b:43:cc:2b:8c:98:5b:48:8c:73:e8:37:25:78: 9d:f4:71:ae:58:92:c8:7b:bc:f1:a1:9c:ae:13:9c: 7b:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:D4:CC:9F:06:0E:A1:2D:50:77:EB:6C:6F:6F:A2:39:EC:4D:5A:11 X509v3 Authority Key Identifier: keyid:5F:3D:64:DC:F1:31:94:FB:0D:71:F2:9F:B3:7C:2D:93:F8:D4:87:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1109746307418816533/0/5F3D64DCF13194FB0D71F29FB37C2D93F8D48720.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xz1k3PExlPsNcfKfs3wtk_jUhyA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1109746307418816533/0/3131312e3133322e302e302f32312d3231203d3e203234313338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 111.132.0.0/21 Signature Algorithm: sha256WithRSAEncryption 93:ec:45:0e:6c:da:af:62:8e:77:88:2d:80:23:1c:cd:2d:61: 34:c9:08:56:ec:86:99:4d:a0:c8:8a:1b:eb:fd:75:07:ba:01: 7b:be:53:8f:be:13:d1:cf:74:be:9a:24:03:ed:fe:00:02:18: 26:0a:a9:c7:46:f0:f1:81:43:92:01:4f:0b:cb:05:dd:0c:1d: 10:ff:8d:11:16:ec:4b:30:67:cd:54:59:ef:43:67:20:50:3a: 02:3a:9e:d7:87:98:47:c0:75:72:d5:e5:13:df:b9:76:4c:b4: 44:75:df:a1:ea:32:8d:a6:a4:9c:85:56:d6:f3:31:ed:d3:42: f5:ed:bc:f7:e5:d0:8b:aa:5c:b8:c1:c2:6e:44:b9:cd:b0:0c: 2b:b0:4b:05:2e:29:50:5d:46:4a:9d:43:14:0d:9c:de:3a:8e: 2b:e9:48:f8:b0:8b:42:c4:8c:35:0f:e1:50:1a:d0:14:df:18: 97:14:a4:35:72:7a:d3:fb:4e:13:1d:75:2c:37:bc:68:13:71: fe:7a:02:0d:6f:9b:d8:dc:b7:7f:32:c6:1b:60:63:ae:c4:93: 0f:80:cb:c1:7b:c6:df:d3:c2:a3:17:c7:61:8a:6d:4f:bb:88: 7e:5b:15:47:3a:01:3a:9b:b7:96:3f:ab:c0:f9:8d:20:60:4a: 37:74:53:53 -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgIUVPaDe4d0LH+m6BGNsxNVYmIk5GEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODVCRjAwMDAwMTEwLwYDVQQFEyg1RjNENjREQ0Yx MzE5NEZCMEQ3MUYyOUZCMzdDMkQ5M0Y4RDQ4NzIwMB4XDTI2MDUyMTA4MjgyMVoX DTI3MDUyMDA4MzMyMVowMzExMC8GA1UEAxMoMDJENENDOUYwNjBFQTEyRDUwNzdF QjZDNkY2RkEyMzlFQzRENUExMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALPCMi+AglnlLq+lWGKLhkC+QutkmT2BJX+8QQzb5V6Hh5VQvtpTtJeUtfxr /TkxoWtMwEOqS5WGo4IQisB1WkyqM6xD/a5ZFvDKIHhei3s+JBVKb8mYOLdmWfih nFkPV70mmaS/heVNRXS4kzHFPVAnTp72zfIg7OUcnOfnrsayGJPwKH3sLUgq+Qjn PLJoCLoUFAUDmzZD0EUP+Crpqo9plxVBy8wPyKCvCHfLrG6PQ1/re2zDjzOkPEGH VFbtxQuFkxOjvQvfg97uzAshII7P8LXqOTGkxbPd5rWYzZN/OJtDzCuMmFtIjHPo NyV4nfRxrliSyHu88aGcrhOcez8CAwEAAaOCAhEwggINMB0GA1UdDgQWBBQC1Myf Bg6hLVB362xvb6I57E1aETAfBgNVHSMEGDAWgBRfPWTc8TGU+w1x8p+zfC2T+NSH IDAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMTA5NzQ2MzA3NDE4ODE2NTMzLzAvNUYzRDY0 RENGMTMxOTRGQjBENzFGMjlGQjM3QzJEOTNGOEQ0ODcyMC5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvWHoxazNQRXhs UHNOY2ZLZnMzd3RrX2pVaHlBLmNlcjCBigYIKwYBBQUHAQsEfjB8MHoGCCsGAQUF BzALhm5yc3luYzovL3Jwa2ktcnBzLmNubmljLmNuL3JlcG8vQTExMDk3NDYzMDc0 MTg4MTY1MzMvMC8zMTMxMzEyZTMxMzMzMjJlMzAyZTMwMmYzMjMxMmQzMjMxMjAz ZDNlMjAzMjM0MzEzMzM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDb4QAMA0GCSqGSIb3DQEBCwUAA4IB AQCT7EUObNqvYo53iC2AIxzNLWE0yQhW7IaZTaDIihvr/XUHugF7vlOPvhPRz3S+ miQD7f4AAhgmCqnHRvDxgUOSAU8LywXdDB0Q/40RFuxLMGfNVFnvQ2cgUDoCOp7X h5hHwHVy1eUT37l2TLREdd+h6jKNpqSchVbW8zHt00L17bz35dCLqly4wcJuRLnN sAwrsEsFLilQXUZKnUMUDZzeOo4r6Uj4sItCxIw1D+FQGtAU3xiXFKQ1cnrT+04T HXUsN7xoE3H+egINb5vY3Ld/MsYbYGOuxJMPgMvBe8bf08KjF8dhim1Pu4h+WxVH OgE6m7eWP6vA+Y0gYEo3dFNT -----END CERTIFICATE-----Generated at Sat May 23 06:24:40 2026 by rpki-client