$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1109746307418816533/0/3131312e3133322e34312e302f32342d3234203d3e203234313338.roa File: 3131312e3133322e34312e302f32342d3234203d3e203234313338.roa (raw, json) Hash identifier: c4ezn/euLSs2KDpc7ullF4xR0zBgsQ3liRWjXrIIJd8= Subject key identifier: 29:27:D5:70:FC:85:74:39:A1:D7:E7:2A:45:02:B0:F3:A9:AC:42:31 Certificate issuer: /CN=A9185BF00000/serialNumber=5F3D64DCF13194FB0D71F29FB37C2D93F8D48720 Certificate serial: 1951166DE37E4ECCDD6CA0ED517C092A91CBDA67 Authority key identifier: 5F:3D:64:DC:F1:31:94:FB:0D:71:F2:9F:B3:7C:2D:93:F8:D4:87:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xz1k3PExlPsNcfKfs3wtk_jUhyA.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1109746307418816533/0/3131312e3133322e34312e302f32342d3234203d3e203234313338.roa Signing time: Thu 21 May 2026 08:33:20 +0000 ROA not before: Thu 21 May 2026 08:28:20 +0000 ROA not after: Thu 20 May 2027 08:33:20 +0000 asID: 24138 IP address blocks: 111.132.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1109746307418816533/0/5F3D64DCF13194FB0D71F29FB37C2D93F8D48720.crl rsync://rpki-rps.cnnic.cn/repo/A1109746307418816533/0/5F3D64DCF13194FB0D71F29FB37C2D93F8D48720.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xz1k3PExlPsNcfKfs3wtk_jUhyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 May 2026 22:56:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:51:16:6d:e3:7e:4e:cc:dd:6c:a0:ed:51:7c:09:2a:91:cb:da:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185BF00000, serialNumber=5F3D64DCF13194FB0D71F29FB37C2D93F8D48720 Validity Not Before: May 21 08:28:20 2026 GMT Not After : May 20 08:33:20 2027 GMT Subject: CN=2927D570FC857439A1D7E72A4502B0F3A9AC4231 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:a4:d0:c1:e5:7f:28:3f:ae:6d:71:07:ac:7a: 8a:ed:71:c4:7d:f3:b6:40:57:40:d4:39:7d:6c:00: 85:a5:65:6e:73:2f:8a:20:98:af:2c:9d:9b:ab:8a: 1f:3a:01:a2:81:d8:c0:63:00:a7:2a:6a:85:57:6b: a4:92:97:11:e2:f6:7a:26:ca:f0:c9:bd:81:4b:16: bc:bc:10:e5:34:9f:e7:1a:3a:2d:34:50:06:31:51: 49:0b:98:c5:69:07:db:72:42:f7:e3:b4:4d:6c:7a: 94:ae:a9:93:13:31:a2:c1:00:66:56:44:3f:a2:16: 8d:72:5b:03:04:44:b8:fa:b5:dc:73:b7:50:61:08: bc:a2:17:b5:be:ad:ba:6c:c9:ff:a6:63:eb:e8:21: 5c:50:da:a4:c1:62:7d:1c:99:ac:89:9f:e3:f4:d1: 61:63:ce:2c:bc:d4:ac:a8:d7:e6:1d:ed:da:a9:21: 74:d2:41:27:a1:83:2b:81:d0:53:e7:ac:91:5c:8f: fb:9a:22:7d:3a:24:02:94:48:76:a1:83:02:d7:fa: 9d:9e:05:e5:e3:f6:db:d7:88:10:fa:28:65:b6:84: 31:4e:24:9e:8f:db:9f:78:a9:f1:c4:0a:f4:83:57: 63:1c:1e:1c:63:83:de:b4:6c:10:e4:c3:7f:cf:88: 90:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:27:D5:70:FC:85:74:39:A1:D7:E7:2A:45:02:B0:F3:A9:AC:42:31 X509v3 Authority Key Identifier: keyid:5F:3D:64:DC:F1:31:94:FB:0D:71:F2:9F:B3:7C:2D:93:F8:D4:87:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1109746307418816533/0/5F3D64DCF13194FB0D71F29FB37C2D93F8D48720.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xz1k3PExlPsNcfKfs3wtk_jUhyA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1109746307418816533/0/3131312e3133322e34312e302f32342d3234203d3e203234313338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 111.132.41.0/24 Signature Algorithm: sha256WithRSAEncryption 11:4f:93:a2:8e:9f:02:db:8a:ae:35:29:02:7e:b2:4f:7c:4c: 53:4d:c5:81:48:63:a1:6f:b3:58:ca:93:7c:f0:fc:be:db:07: b5:2d:8b:a5:2c:ec:0d:99:a3:c8:be:7d:8f:e2:5c:ab:d8:ba: 87:86:36:4c:09:1a:27:55:b3:eb:6d:b5:ed:42:d8:01:44:eb: 8a:e2:00:4b:c8:dc:3b:dd:94:40:c3:fa:a4:84:3e:8f:68:1c: ff:9a:be:82:ab:fc:7f:2f:85:c4:df:c9:bd:a3:44:dc:e0:db: 58:a3:8a:a2:6d:db:1b:01:37:68:65:23:8c:72:68:16:8c:55: 90:55:a1:78:f8:af:42:16:fc:b3:00:ea:a8:f3:d9:e9:58:2a: 88:61:9c:b5:28:30:6c:c6:bc:de:cb:9e:41:83:57:29:b0:4e: 74:50:6e:e4:1f:c5:c2:86:9e:01:ef:e8:43:05:ca:22:d5:eb: 00:d5:55:8e:35:78:cf:e6:49:55:76:36:ca:ad:89:d9:93:ca: ee:80:a9:25:91:02:ed:6a:11:51:78:1e:af:93:66:81:c8:fa: 35:de:c8:01:f7:06:3f:00:52:bc:dd:5b:d6:59:33:87:bf:3c: 17:33:43:b0:d2:57:bc:e3:fb:36:9c:a2:58:b3:4b:ba:5f:d9: e1:bd:c9:e5 -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgIUGVEWbeN+TszdbKDtUXwJKpHL2mcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODVCRjAwMDAwMTEwLwYDVQQFEyg1RjNENjREQ0Yx MzE5NEZCMEQ3MUYyOUZCMzdDMkQ5M0Y4RDQ4NzIwMB4XDTI2MDUyMTA4MjgyMFoX DTI3MDUyMDA4MzMyMFowMzExMC8GA1UEAxMoMjkyN0Q1NzBGQzg1NzQzOUExRDdF NzJBNDUwMkIwRjNBOUFDNDIzMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMCk0MHlfyg/rm1xB6x6iu1xxH3ztkBXQNQ5fWwAhaVlbnMviiCYryydm6uK HzoBooHYwGMApypqhVdrpJKXEeL2eibK8Mm9gUsWvLwQ5TSf5xo6LTRQBjFRSQuY xWkH23JC9+O0TWx6lK6pkxMxosEAZlZEP6IWjXJbAwREuPq13HO3UGEIvKIXtb6t umzJ/6Zj6+ghXFDapMFifRyZrImf4/TRYWPOLLzUrKjX5h3t2qkhdNJBJ6GDK4HQ U+eskVyP+5oifTokApRIdqGDAtf6nZ4F5eP229eIEPooZbaEMU4kno/bn3ip8cQK 9INXYxweHGOD3rRsEOTDf8+IkC8CAwEAAaOCAhQwggIQMB0GA1UdDgQWBBQpJ9Vw /IV0OaHX5ypFArDzqaxCMTAfBgNVHSMEGDAWgBRfPWTc8TGU+w1x8p+zfC2T+NSH IDAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMTA5NzQ2MzA3NDE4ODE2NTMzLzAvNUYzRDY0 RENGMTMxOTRGQjBENzFGMjlGQjM3QzJEOTNGOEQ0ODcyMC5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvWHoxazNQRXhs UHNOY2ZLZnMzd3RrX2pVaHlBLmNlcjCBjQYIKwYBBQUHAQsEgYAwfjB8BggrBgEF BQcwC4ZwcnN5bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMTA5NzQ2MzA3 NDE4ODE2NTMzLzAvMzEzMTMxMmUzMTMzMzIyZTM0MzEyZTMwMmYzMjM0MmQzMjM0 MjAzZDNlMjAzMjM0MzEzMzM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAb4QpMA0GCSqGSIb3DQEBCwUA A4IBAQART5Oijp8C24quNSkCfrJPfExTTcWBSGOhb7NYypN88Py+2we1LYulLOwN maPIvn2P4lyr2LqHhjZMCRonVbPrbbXtQtgBROuK4gBLyNw73ZRAw/qkhD6PaBz/ mr6Cq/x/L4XE38m9o0Tc4NtYo4qibdsbATdoZSOMcmgWjFWQVaF4+K9CFvyzAOqo 89npWCqIYZy1KDBsxrzey55Bg1cpsE50UG7kH8XChp4B7+hDBcoi1esA1VWONXjP 5klVdjbKrYnZk8rugKklkQLtahFReB6vk2aByPo13sgB9wY/AFK83VvWWTOHvzwX M0Ow0le84/s2nKJYs0u6X9nhvcnl -----END CERTIFICATE-----Generated at Sat May 23 06:24:37 2026 by rpki-client