$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1111909334314385427/0/3231312e39392e3130322e302f32342d3234203d3e20313334353433.roa File: 3231312e39392e3130322e302f32342d3234203d3e20313334353433.roa (raw, json) Hash identifier: RisX+CgKBULHLpBU3anXXBG6UKrReObMRsgwM1c9L38= Subject key identifier: 93:60:6A:15:32:D0:DC:01:7A:A5:73:28:C7:CD:CA:BF:2D:CB:81:DB Certificate issuer: /CN=53814E2CDF95CC9747D91E3B5A01478695BE00AA Certificate serial: 542A5E12702A57D7F99DED9BA621B6FAFCE91249 Authority key identifier: 53:81:4E:2C:DF:95:CC:97:47:D9:1E:3B:5A:01:47:86:95:BE:00:AA Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/53814E2CDF95CC9747D91E3B5A01478695BE00AA.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1111909334314385427/0/3231312e39392e3130322e302f32342d3234203d3e20313334353433.roa Signing time: Wed 27 May 2026 07:41:39 +0000 ROA not before: Wed 27 May 2026 07:36:39 +0000 ROA not after: Wed 26 May 2027 07:41:39 +0000 asID: 134543 IP address blocks: 211.99.102.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1111909334314385427/0/53814E2CDF95CC9747D91E3B5A01478695BE00AA.crl rsync://rpki-rps.cnnic.cn/repo/A1111909334314385427/0/53814E2CDF95CC9747D91E3B5A01478695BE00AA.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/53814E2CDF95CC9747D91E3B5A01478695BE00AA.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 15:14:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:2a:5e:12:70:2a:57:d7:f9:9d:ed:9b:a6:21:b6:fa:fc:e9:12:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53814E2CDF95CC9747D91E3B5A01478695BE00AA Validity Not Before: May 27 07:36:39 2026 GMT Not After : May 26 07:41:39 2027 GMT Subject: CN=93606A1532D0DC017AA57328C7CDCABF2DCB81DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:42:30:8c:98:69:30:79:1f:49:11:4b:4c:38: 83:50:fb:35:43:4d:31:51:f2:94:54:96:78:9c:c2: 7e:e2:6a:5e:81:4e:c4:62:0b:92:85:c5:49:88:95: 12:e6:72:e1:63:2d:98:b2:07:ee:b1:ed:63:4a:ec: 5b:46:88:f8:05:69:4b:6e:c9:64:44:9c:12:49:d2: e6:38:c6:b1:da:1d:df:0a:03:7b:ef:12:99:df:71: c9:9b:6e:da:b8:89:ff:97:1a:db:68:3c:67:81:21: ba:0a:11:d9:fa:73:3a:7a:db:e3:44:e2:30:42:b8: 15:80:82:68:f8:96:d0:0b:05:be:97:01:29:9e:ab: 21:71:84:2b:02:fe:da:aa:18:87:59:cb:32:ce:78: 91:93:b9:5c:a0:c8:76:a7:11:db:4e:c1:d6:3c:08: 93:0c:3e:b5:87:1b:5b:29:da:bc:0e:c7:85:9f:80: e5:6c:76:b7:c8:9b:55:6f:29:ca:4f:a0:04:41:7f: c5:4b:a6:14:20:9d:de:19:b2:f2:f4:cb:51:36:09: 3c:f5:7c:1f:fb:5f:39:27:ba:1f:40:e4:d0:13:fe: 08:17:37:11:1f:db:5c:bc:82:28:50:f7:23:e6:d8: 13:f9:7d:cb:4c:3b:ac:8b:30:ee:42:73:5a:d3:4f: f4:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:60:6A:15:32:D0:DC:01:7A:A5:73:28:C7:CD:CA:BF:2D:CB:81:DB X509v3 Authority Key Identifier: keyid:53:81:4E:2C:DF:95:CC:97:47:D9:1E:3B:5A:01:47:86:95:BE:00:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1111909334314385427/0/53814E2CDF95CC9747D91E3B5A01478695BE00AA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/53814E2CDF95CC9747D91E3B5A01478695BE00AA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1111909334314385427/0/3231312e39392e3130322e302f32342d3234203d3e20313334353433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 211.99.102.0/24 Signature Algorithm: sha256WithRSAEncryption 72:07:26:64:6c:1d:85:93:43:61:55:57:43:b3:d8:fa:4b:3e: 24:94:1c:7b:b2:85:b3:92:52:21:58:2a:df:6f:a8:89:12:eb: df:3a:82:b6:a5:bb:5b:38:01:bd:2a:7d:57:59:bc:9d:8d:55: ab:05:b5:ae:90:19:bd:e7:78:eb:90:dd:c5:b9:94:e4:73:46: 7e:ce:af:f8:13:4f:43:c8:48:69:d8:94:0e:b9:e9:1e:7a:20: f8:a7:db:d2:aa:63:3d:d2:7f:7f:06:f5:74:42:8b:e0:33:ab: 96:43:7a:b3:9c:3c:51:a3:39:66:a1:65:29:17:eb:c2:19:40: d0:fa:23:23:cb:00:2b:51:91:5d:e0:da:b6:38:00:cb:48:84: 8a:9d:77:c6:61:98:39:c3:dd:a8:a2:69:77:cd:04:eb:e8:d2: 43:7b:18:ae:07:59:2d:f1:19:83:dd:df:cb:1b:4c:67:89:18: ee:cf:6a:38:85:a3:61:d5:ca:39:c6:a4:e0:bc:8b:0c:d0:22: b3:f0:da:08:29:88:eb:11:4d:d5:ab:80:62:d0:66:02:d1:59: e4:3b:c1:45:44:31:ce:04:87:1a:4a:22:f1:10:31:91:05:e8: 75:db:2f:99:f1:3b:08:6f:f7:3c:f4:3b:3d:7f:39:cf:a1:cb: 5d:7e:53:a8 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUVCpeEnAqV9f5ne2bpiG2+vzpEkkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTM4MTRFMkNERjk1Q0M5NzQ3RDkxRTNCNUEwMTQ3ODY5 NUJFMDBBQTAeFw0yNjA1MjcwNzM2MzlaFw0yNzA1MjYwNzQxMzlaMDMxMTAvBgNV BAMTKDkzNjA2QTE1MzJEMERDMDE3QUE1NzMyOEM3Q0RDQUJGMkRDQjgxREIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuQjCMmGkweR9JEUtMOINQ+zVD TTFR8pRUlnicwn7ial6BTsRiC5KFxUmIlRLmcuFjLZiyB+6x7WNK7FtGiPgFaUtu yWREnBJJ0uY4xrHaHd8KA3vvEpnfccmbbtq4if+XGttoPGeBIboKEdn6czp62+NE 4jBCuBWAgmj4ltALBb6XASmeqyFxhCsC/tqqGIdZyzLOeJGTuVygyHanEdtOwdY8 CJMMPrWHG1sp2rwOx4WfgOVsdrfIm1VvKcpPoARBf8VLphQgnd4ZsvL0y1E2CTz1 fB/7Xzknuh9A5NAT/ggXNxEf21y8gihQ9yPm2BP5fctMO6yLMO5Cc1rTT/RfAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUk2BqFTLQ3AF6pXMox83Kvy3LgdswHwYDVR0j BBgwFoAUU4FOLN+VzJdH2R47WgFHhpW+AKowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEx MTkwOTMzNDMxNDM4NTQyNy8wLzUzODE0RTJDREY5NUNDOTc0N0Q5MUUzQjVBMDE0 Nzg2OTVCRTAwQUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTM4MTRFMkNERjk1Q0M5NzQ3RDkxRTNCNUEwMTQ3ODY5NUJFMDBBQS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTExMTE5MDkzMzQzMTQzODU0MjcvMC8zMjMxMzEyZTM5 MzkyZTMxMzAzMjJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzNDM1MzQzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEANNjZjANBgkqhkiG9w0BAQsFAAOCAQEAcgcmZGwdhZNDYVVXQ7PY +ks+JJQce7KFs5JSIVgq32+oiRLr3zqCtqW7WzgBvSp9V1m8nY1VqwW1rpAZved4 65DdxbmU5HNGfs6v+BNPQ8hIadiUDrnpHnog+Kfb0qpjPdJ/fwb1dEKL4DOrlkN6 s5w8UaM5ZqFlKRfrwhlA0PojI8sAK1GRXeDatjgAy0iEip13xmGYOcPdqKJpd80E 6+jSQ3sYrgdZLfEZg93fyxtMZ4kY7s9qOIWjYdXKOcak4LyLDNAis/DaCCmI6xFN 1auAYtBmAtFZ5DvBRUQxzgSHGkoi8RAxkQXoddsvmfE7CG/3PPQ7PX85z6HLXX5T qA== -----END CERTIFICATE-----Generated at Fri May 29 22:57:42 2026 by rpki-client