$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1111909334314385427/0/3231312e39392e3130302e302f32342d3234203d3e20313334353433.roa File: 3231312e39392e3130302e302f32342d3234203d3e20313334353433.roa (raw, json) Hash identifier: bbLPhv7qm44WGkjf+8yOKAqrffp8ucWBx8H1aKTgkcc= Subject key identifier: E4:7F:F9:3F:56:C8:D4:F9:18:44:19:DC:2A:74:44:03:78:B5:FB:6E Certificate issuer: /CN=53814E2CDF95CC9747D91E3B5A01478695BE00AA Certificate serial: 21B8540AA6128F0BA355924CC7356FB1B549C635 Authority key identifier: 53:81:4E:2C:DF:95:CC:97:47:D9:1E:3B:5A:01:47:86:95:BE:00:AA Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/53814E2CDF95CC9747D91E3B5A01478695BE00AA.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1111909334314385427/0/3231312e39392e3130302e302f32342d3234203d3e20313334353433.roa Signing time: Wed 27 May 2026 07:41:39 +0000 ROA not before: Wed 27 May 2026 07:36:39 +0000 ROA not after: Wed 26 May 2027 07:41:39 +0000 asID: 134543 IP address blocks: 211.99.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1111909334314385427/0/53814E2CDF95CC9747D91E3B5A01478695BE00AA.crl rsync://rpki-rps.cnnic.cn/repo/A1111909334314385427/0/53814E2CDF95CC9747D91E3B5A01478695BE00AA.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/53814E2CDF95CC9747D91E3B5A01478695BE00AA.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 15:14:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:b8:54:0a:a6:12:8f:0b:a3:55:92:4c:c7:35:6f:b1:b5:49:c6:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53814E2CDF95CC9747D91E3B5A01478695BE00AA Validity Not Before: May 27 07:36:39 2026 GMT Not After : May 26 07:41:39 2027 GMT Subject: CN=E47FF93F56C8D4F9184419DC2A74440378B5FB6E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:a3:6b:af:ba:e2:ee:65:77:da:63:36:00:e9: 3e:a4:ce:aa:05:0f:65:f9:2b:81:9b:0d:2e:1e:1b: ce:b3:91:be:62:01:02:25:0b:b5:55:80:b9:6c:17: 43:08:36:59:50:43:20:c6:1b:ef:5a:01:56:98:d8: 56:7d:d3:66:bf:f5:a1:8b:c6:00:37:dd:bb:3f:c6: 55:3a:2a:d4:6b:89:73:56:16:a6:58:96:71:cc:2c: 10:98:8a:ba:1f:1b:ae:6c:63:39:3f:f2:8c:b4:bf: bf:42:87:e1:98:92:ea:1d:0f:a4:eb:c0:42:69:92: b0:d2:96:54:28:3f:eb:81:40:0e:e7:c9:a4:c8:3f: 3c:31:5a:a1:0c:df:27:9c:3c:35:51:11:50:2b:2f: 0f:f7:35:d3:14:29:04:d5:a4:78:76:57:55:b9:32: a9:7e:bf:f7:f5:9e:4c:6a:08:88:3b:f3:ca:fb:86: b2:1c:ee:08:45:38:32:09:26:e0:37:8a:97:84:fa: 70:e8:99:81:ae:59:8e:d0:26:b8:bf:e1:17:8d:c0: 9f:a6:d7:46:bd:30:48:a7:2b:72:65:1b:93:bd:f7: 17:e3:be:0d:fc:e8:8c:08:38:e5:f4:a6:53:fc:e7: 49:a1:84:6f:89:95:7f:28:13:27:c6:69:4f:e4:b2: d6:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:7F:F9:3F:56:C8:D4:F9:18:44:19:DC:2A:74:44:03:78:B5:FB:6E X509v3 Authority Key Identifier: keyid:53:81:4E:2C:DF:95:CC:97:47:D9:1E:3B:5A:01:47:86:95:BE:00:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1111909334314385427/0/53814E2CDF95CC9747D91E3B5A01478695BE00AA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/53814E2CDF95CC9747D91E3B5A01478695BE00AA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1111909334314385427/0/3231312e39392e3130302e302f32342d3234203d3e20313334353433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 211.99.100.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:2f:a1:36:f5:16:cb:af:ed:41:3d:de:b7:80:33:d3:eb:f6: 86:d5:ec:07:8f:e2:55:d3:07:ef:57:a4:63:07:9d:62:59:4c: be:e1:cf:39:0f:fb:82:2a:5d:9b:12:ab:da:02:ed:e0:21:b0: 73:2d:df:7f:6d:c9:29:ea:e6:5e:e6:2b:e2:5d:e5:83:75:3d: e7:03:79:ab:4f:9c:ea:1c:b8:33:c6:d6:fa:69:96:75:d3:b3: 0d:d4:83:2c:46:11:64:6f:81:ae:62:8f:e2:ca:55:7f:f5:71: 87:42:18:bd:d3:18:e4:ac:0c:9c:63:b1:08:01:78:3f:69:e4: 1d:08:12:1e:05:24:5c:fe:5c:39:aa:be:2c:56:5f:3b:50:6a: 61:1a:23:96:8e:40:46:8d:16:06:d4:97:7d:82:36:d5:e8:e1: 4d:ff:5c:02:6c:c1:8a:f3:82:99:48:29:c5:20:8d:dc:12:72: d1:ba:de:17:2c:14:f3:c3:f4:38:6c:94:6d:70:b3:aa:ae:6f: 0f:51:51:e1:33:a7:77:5b:d5:3f:53:33:0c:50:f6:a1:83:97: 21:6b:ea:ad:d4:34:43:2e:b5:a5:a1:42:7e:2f:60:13:32:dd: cd:c1:9c:ba:54:8f:a6:be:9e:a3:0d:37:d4:37:b4:9f:f0:76: 88:28:5d:24 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUIbhUCqYSjwujVZJMxzVvsbVJxjUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTM4MTRFMkNERjk1Q0M5NzQ3RDkxRTNCNUEwMTQ3ODY5 NUJFMDBBQTAeFw0yNjA1MjcwNzM2MzlaFw0yNzA1MjYwNzQxMzlaMDMxMTAvBgNV BAMTKEU0N0ZGOTNGNTZDOEQ0RjkxODQ0MTlEQzJBNzQ0NDAzNzhCNUZCNkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD0o2uvuuLuZXfaYzYA6T6kzqoF D2X5K4GbDS4eG86zkb5iAQIlC7VVgLlsF0MINllQQyDGG+9aAVaY2FZ902a/9aGL xgA33bs/xlU6KtRriXNWFqZYlnHMLBCYirofG65sYzk/8oy0v79Ch+GYkuodD6Tr wEJpkrDSllQoP+uBQA7nyaTIPzwxWqEM3yecPDVREVArLw/3NdMUKQTVpHh2V1W5 Mql+v/f1nkxqCIg788r7hrIc7ghFODIJJuA3ipeE+nDomYGuWY7QJri/4ReNwJ+m 10a9MEinK3JlG5O99xfjvg386IwIOOX0plP850mhhG+JlX8oEyfGaU/kstbZAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQU5H/5P1bI1PkYRBncKnREA3i1+24wHwYDVR0j BBgwFoAUU4FOLN+VzJdH2R47WgFHhpW+AKowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEx MTkwOTMzNDMxNDM4NTQyNy8wLzUzODE0RTJDREY5NUNDOTc0N0Q5MUUzQjVBMDE0 Nzg2OTVCRTAwQUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTM4MTRFMkNERjk1Q0M5NzQ3RDkxRTNCNUEwMTQ3ODY5NUJFMDBBQS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTExMTE5MDkzMzQzMTQzODU0MjcvMC8zMjMxMzEyZTM5 MzkyZTMxMzAzMDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzNDM1MzQzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEANNjZDANBgkqhkiG9w0BAQsFAAOCAQEADi+hNvUWy6/tQT3et4Az 0+v2htXsB4/iVdMH71ekYwedYllMvuHPOQ/7gipdmxKr2gLt4CGwcy3ff23JKerm XuYr4l3lg3U95wN5q0+c6hy4M8bW+mmWddOzDdSDLEYRZG+BrmKP4spVf/Vxh0IY vdMY5KwMnGOxCAF4P2nkHQgSHgUkXP5cOaq+LFZfO1BqYRojlo5ARo0WBtSXfYI2 1ejhTf9cAmzBivOCmUgpxSCN3BJy0breFywU88P0OGyUbXCzqq5vD1FR4TOnd1vV P1MzDFD2oYOXIWvqrdQ0Qy61paFCfi9gEzLdzcGculSPpr6eow031De0n/B2iChd JA== -----END CERTIFICATE-----Generated at Fri May 29 23:53:20 2026 by rpki-client