$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1109746307418816533/0/3131312e3133322e3139322e302f31382d3138203d3e203234313338.roa File: 3131312e3133322e3139322e302f31382d3138203d3e203234313338.roa (raw, json) Hash identifier: tUSzsIcvUTFmQRnY+gkGd+xKAaGfBZelCtAN8lVrWtQ= Subject key identifier: 31:DA:6D:F6:B2:97:68:9F:CA:58:7C:22:B5:5C:01:6F:6B:1B:8A:2B Certificate issuer: /CN=A9185BF00000/serialNumber=5F3D64DCF13194FB0D71F29FB37C2D93F8D48720 Certificate serial: 42D0F605FA41BA3A7A52BC39AA6E3F9A03A1D268 Authority key identifier: 5F:3D:64:DC:F1:31:94:FB:0D:71:F2:9F:B3:7C:2D:93:F8:D4:87:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xz1k3PExlPsNcfKfs3wtk_jUhyA.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1109746307418816533/0/3131312e3133322e3139322e302f31382d3138203d3e203234313338.roa Signing time: Thu 21 May 2026 08:33:20 +0000 ROA not before: Thu 21 May 2026 08:28:20 +0000 ROA not after: Thu 20 May 2027 08:33:20 +0000 asID: 24138 IP address blocks: 111.132.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1109746307418816533/0/5F3D64DCF13194FB0D71F29FB37C2D93F8D48720.crl rsync://rpki-rps.cnnic.cn/repo/A1109746307418816533/0/5F3D64DCF13194FB0D71F29FB37C2D93F8D48720.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xz1k3PExlPsNcfKfs3wtk_jUhyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 May 2026 22:56:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:d0:f6:05:fa:41:ba:3a:7a:52:bc:39:aa:6e:3f:9a:03:a1:d2:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185BF00000, serialNumber=5F3D64DCF13194FB0D71F29FB37C2D93F8D48720 Validity Not Before: May 21 08:28:20 2026 GMT Not After : May 20 08:33:20 2027 GMT Subject: CN=31DA6DF6B297689FCA587C22B55C016F6B1B8A2B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:73:8e:7f:29:1c:5a:ae:b9:63:de:57:09:e1: e0:02:a2:ba:a6:b3:59:86:60:af:74:6d:72:ed:24: ee:26:c7:4c:79:23:3a:04:7b:30:d4:04:45:ae:2f: 12:d1:4f:f7:3e:c8:5d:f7:98:2b:67:a7:99:2c:46: 45:6b:c7:36:51:6f:45:97:8c:c7:3c:2a:c6:44:43: 5e:e6:d5:14:87:fd:01:d8:bd:48:33:1f:0b:70:62: 41:85:70:78:b6:a2:0e:c2:e6:dd:95:5b:24:13:46: 61:64:fe:29:c5:8c:4b:40:66:ee:90:77:77:c0:08: 71:eb:63:6e:4c:aa:e4:f7:d6:8d:64:1b:8e:f4:57: b1:6d:93:d5:db:d6:f5:42:28:01:0b:cb:e7:a8:69: 23:27:bf:f0:00:78:d5:fe:2b:d9:2a:a3:50:8f:f0: 10:e6:db:4f:c2:5a:3f:d7:62:18:b8:7f:6b:86:bb: 63:74:6c:e3:12:93:18:10:d2:db:ff:39:fb:7b:fa: 58:3c:19:76:18:e9:a7:74:08:b8:e1:53:7a:e8:70: 49:bc:41:65:8d:7f:1e:1e:9f:44:d7:34:4a:a9:00: 45:aa:74:d2:df:d6:e9:05:e7:96:9d:0a:ec:91:d3: 9e:10:60:73:fa:6a:1b:24:ad:14:19:d7:84:35:d3: 46:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:DA:6D:F6:B2:97:68:9F:CA:58:7C:22:B5:5C:01:6F:6B:1B:8A:2B X509v3 Authority Key Identifier: keyid:5F:3D:64:DC:F1:31:94:FB:0D:71:F2:9F:B3:7C:2D:93:F8:D4:87:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1109746307418816533/0/5F3D64DCF13194FB0D71F29FB37C2D93F8D48720.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xz1k3PExlPsNcfKfs3wtk_jUhyA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1109746307418816533/0/3131312e3133322e3139322e302f31382d3138203d3e203234313338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 111.132.192.0/18 Signature Algorithm: sha256WithRSAEncryption 17:62:71:13:38:cf:b5:1b:47:b6:4f:24:ac:61:93:f9:c6:c4: 9c:28:46:0b:0c:e4:ba:ce:61:01:fe:3d:dd:82:95:0a:29:f2: 42:14:86:46:91:3e:23:db:8c:87:1b:54:81:2e:e1:ba:fb:e2: b3:84:1f:5d:53:2a:b8:bb:6b:ea:e2:4a:49:8b:5b:4b:be:46: e4:67:f2:0c:86:be:2b:4e:41:ab:42:56:73:fd:bc:d6:cc:53: 2a:8c:d8:6f:9e:16:15:d9:d8:88:51:0b:8a:0f:f7:19:ec:62: 68:93:3b:6e:38:cd:56:21:17:f1:27:7b:0a:3d:80:36:47:04: ef:27:eb:58:3e:c2:30:77:62:60:4e:56:bc:cd:45:c4:a6:b5: 9d:5c:6d:e0:d4:a9:e5:2b:45:fc:87:f2:eb:31:c1:9e:0e:6c: d0:dd:71:f2:9b:54:48:e4:de:7f:83:ef:d5:48:59:c5:88:f8: 07:e4:7a:f4:be:f9:27:4a:09:a5:b9:b3:5b:84:17:26:05:ab: 12:29:c0:f6:5e:5d:88:29:55:76:eb:20:66:d8:0a:dd:0d:fb: 79:1f:15:59:38:31:ec:27:75:4e:92:ce:77:e5:f4:f9:56:56: 67:47:0d:ec:ba:80:80:e8:a2:09:f5:ae:a4:c9:53:7b:45:f1: d7:79:d1:ca -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUQtD2BfpBujp6Urw5qm4/mgOh0mgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODVCRjAwMDAwMTEwLwYDVQQFEyg1RjNENjREQ0Yx MzE5NEZCMEQ3MUYyOUZCMzdDMkQ5M0Y4RDQ4NzIwMB4XDTI2MDUyMTA4MjgyMFoX DTI3MDUyMDA4MzMyMFowMzExMC8GA1UEAxMoMzFEQTZERjZCMjk3Njg5RkNBNTg3 QzIyQjU1QzAxNkY2QjFCOEEyQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKJzjn8pHFquuWPeVwnh4AKiuqazWYZgr3Rtcu0k7ibHTHkjOgR7MNQERa4v EtFP9z7IXfeYK2enmSxGRWvHNlFvRZeMxzwqxkRDXubVFIf9Adi9SDMfC3BiQYVw eLaiDsLm3ZVbJBNGYWT+KcWMS0Bm7pB3d8AIcetjbkyq5PfWjWQbjvRXsW2T1dvW 9UIoAQvL56hpIye/8AB41f4r2SqjUI/wEObbT8JaP9diGLh/a4a7Y3Rs4xKTGBDS 2/85+3v6WDwZdhjpp3QIuOFTeuhwSbxBZY1/Hh6fRNc0SqkARap00t/W6QXnlp0K 7JHTnhBgc/pqGyStFBnXhDXTRnsCAwEAAaOCAhcwggITMB0GA1UdDgQWBBQx2m32 spdon8pYfCK1XAFvaxuKKzAfBgNVHSMEGDAWgBRfPWTc8TGU+w1x8p+zfC2T+NSH IDAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMTA5NzQ2MzA3NDE4ODE2NTMzLzAvNUYzRDY0 RENGMTMxOTRGQjBENzFGMjlGQjM3QzJEOTNGOEQ0ODcyMC5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvWHoxazNQRXhs UHNOY2ZLZnMzd3RrX2pVaHlBLmNlcjCBkAYIKwYBBQUHAQsEgYMwgYAwfgYIKwYB BQUHMAuGcnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEwOTc0NjMw NzQxODgxNjUzMy8wLzMxMzEzMTJlMzEzMzMyMmUzMTM5MzIyZTMwMmYzMTM4MmQz MTM4MjAzZDNlMjAzMjM0MzEzMzM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQGb4TAMA0GCSqGSIb3DQEB CwUAA4IBAQAXYnETOM+1G0e2TySsYZP5xsScKEYLDOS6zmEB/j3dgpUKKfJCFIZG kT4j24yHG1SBLuG6++KzhB9dUyq4u2vq4kpJi1tLvkbkZ/IMhr4rTkGrQlZz/bzW zFMqjNhvnhYV2diIUQuKD/cZ7GJokztuOM1WIRfxJ3sKPYA2RwTvJ+tYPsIwd2Jg Tla8zUXEprWdXG3g1KnlK0X8h/LrMcGeDmzQ3XHym1RI5N5/g+/VSFnFiPgH5Hr0 vvknSgmlubNbhBcmBasSKcD2Xl2IKVV26yBm2ArdDft5HxVZODHsJ3VOks535fT5 VlZnRw3suoCA6KIJ9a6kyVN7RfHXedHK -----END CERTIFICATE-----Generated at Sat May 23 06:24:36 2026 by rpki-client