$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1111909334314385427/0/3231312e39392e3131332e302f32342d3234203d3e20313334353433.roa File: 3231312e39392e3131332e302f32342d3234203d3e20313334353433.roa (raw, json) Hash identifier: gjuWL4Ku708MNgRPf1PYsmGDyL8Oj7ZaJK5anGzD9X8= Subject key identifier: 1B:FE:91:7A:1E:75:68:DE:96:9E:28:13:21:1B:E2:8B:A9:B5:CB:E8 Certificate issuer: /CN=53814E2CDF95CC9747D91E3B5A01478695BE00AA Certificate serial: 1DAB551035DA39A4DD2D7ED1CD54D229915084B9 Authority key identifier: 53:81:4E:2C:DF:95:CC:97:47:D9:1E:3B:5A:01:47:86:95:BE:00:AA Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/53814E2CDF95CC9747D91E3B5A01478695BE00AA.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1111909334314385427/0/3231312e39392e3131332e302f32342d3234203d3e20313334353433.roa Signing time: Wed 27 May 2026 07:42:43 +0000 ROA not before: Wed 27 May 2026 07:37:43 +0000 ROA not after: Wed 26 May 2027 07:42:43 +0000 asID: 134543 IP address blocks: 211.99.113.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1111909334314385427/0/53814E2CDF95CC9747D91E3B5A01478695BE00AA.crl rsync://rpki-rps.cnnic.cn/repo/A1111909334314385427/0/53814E2CDF95CC9747D91E3B5A01478695BE00AA.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/53814E2CDF95CC9747D91E3B5A01478695BE00AA.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 15:14:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:ab:55:10:35:da:39:a4:dd:2d:7e:d1:cd:54:d2:29:91:50:84:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53814E2CDF95CC9747D91E3B5A01478695BE00AA Validity Not Before: May 27 07:37:43 2026 GMT Not After : May 26 07:42:43 2027 GMT Subject: CN=1BFE917A1E7568DE969E2813211BE28BA9B5CBE8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:13:9b:25:0c:ee:d0:4a:10:e9:6e:3e:38:0f: 7c:a8:81:c3:3d:3f:8c:77:48:d1:64:a2:83:4c:31: d9:29:ed:40:ef:c8:bf:56:03:9e:77:02:ab:65:73: 3d:5b:2e:3c:12:57:79:b0:f6:8c:68:ba:d4:a6:dd: cd:24:fc:7b:7e:6f:5b:78:5b:90:11:95:ee:e2:e2: d7:5d:8a:fb:61:83:48:37:ce:2a:3d:31:b5:9c:a6: aa:c6:ee:7a:ff:bc:f3:a0:0d:f6:07:de:c6:8f:12: a0:a7:b1:62:2a:31:ab:d7:cd:54:c8:8d:46:69:c1: 26:a6:03:7b:af:c9:51:2b:78:c7:e9:0e:64:74:d2: 5e:41:d2:68:9e:58:90:bf:5f:96:69:ed:22:9f:5d: ad:f6:26:af:ee:be:26:71:08:ac:ac:47:0c:85:4e: 21:70:74:74:da:2d:85:b7:8f:5d:72:5f:20:4d:50: 44:33:0c:41:3b:a7:9a:a5:81:4d:cf:83:bc:7e:08: 9b:32:39:1c:12:d9:67:c8:37:c8:59:a0:83:04:5b: ea:ef:0a:b4:e6:2d:a0:f6:2e:e1:46:20:9f:96:de: 37:bc:6c:3b:17:d6:3e:d4:82:55:f4:dd:c6:1f:bf: 9a:4b:cb:77:d2:9e:ce:06:18:a1:d8:e0:0f:3b:26: 0b:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:FE:91:7A:1E:75:68:DE:96:9E:28:13:21:1B:E2:8B:A9:B5:CB:E8 X509v3 Authority Key Identifier: keyid:53:81:4E:2C:DF:95:CC:97:47:D9:1E:3B:5A:01:47:86:95:BE:00:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1111909334314385427/0/53814E2CDF95CC9747D91E3B5A01478695BE00AA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/53814E2CDF95CC9747D91E3B5A01478695BE00AA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1111909334314385427/0/3231312e39392e3131332e302f32342d3234203d3e20313334353433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 211.99.113.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:fd:0a:63:76:34:fb:ac:37:56:98:36:0d:db:92:24:9d:05: 1c:37:6e:f7:e8:5e:a2:45:1b:f4:58:60:23:c3:34:d8:fd:83: 3b:4e:d2:1e:6a:f2:73:c5:ad:c0:2b:7a:a1:fa:cc:39:df:ac: f1:b9:78:1a:89:3d:1b:ab:a6:82:5b:60:79:c3:1b:35:23:e7: 21:92:e2:24:05:b7:26:c2:73:f8:ef:23:6c:7d:dc:ae:03:52: 8f:76:ba:74:80:b5:94:c0:07:b2:ae:98:90:48:2c:a3:9c:74: 12:26:87:96:0a:cf:8f:c3:e5:09:3e:ce:a8:cb:39:b7:79:cb: 1f:6e:10:39:2d:79:25:77:03:3c:fc:b3:e5:49:23:00:e7:5b: ce:29:7e:b5:dc:b8:f0:89:61:e0:90:c1:a4:8a:13:4d:ba:1a: 1b:11:42:f0:cc:f8:87:5b:c3:cc:e7:3b:14:55:a1:14:0b:dd: 1f:75:f2:51:b8:71:e4:da:92:b5:35:93:d6:c5:cf:0d:98:d0: 47:f4:77:a3:4b:be:da:9b:f1:f0:62:43:6c:f1:28:3c:37:82: b3:4c:e2:ab:ed:58:fd:0e:dd:db:3c:fb:af:bf:49:a6:c0:6a: 73:5d:c9:18:ef:a3:fb:f5:2f:03:ea:3a:85:fb:ec:e5:01:f1: 22:5b:94:2c -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUHatVEDXaOaTdLX7RzVTSKZFQhLkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTM4MTRFMkNERjk1Q0M5NzQ3RDkxRTNCNUEwMTQ3ODY5 NUJFMDBBQTAeFw0yNjA1MjcwNzM3NDNaFw0yNzA1MjYwNzQyNDNaMDMxMTAvBgNV BAMTKDFCRkU5MTdBMUU3NTY4REU5NjlFMjgxMzIxMUJFMjhCQTlCNUNCRTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOE5slDO7QShDpbj44D3yogcM9 P4x3SNFkooNMMdkp7UDvyL9WA553Aqtlcz1bLjwSV3mw9oxoutSm3c0k/Ht+b1t4 W5ARle7i4tddivthg0g3zio9MbWcpqrG7nr/vPOgDfYH3saPEqCnsWIqMavXzVTI jUZpwSamA3uvyVEreMfpDmR00l5B0mieWJC/X5Zp7SKfXa32Jq/uviZxCKysRwyF TiFwdHTaLYW3j11yXyBNUEQzDEE7p5qlgU3Pg7x+CJsyORwS2WfIN8hZoIMEW+rv CrTmLaD2LuFGIJ+W3je8bDsX1j7UglX03cYfv5pLy3fSns4GGKHY4A87JgvXAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUG/6Reh51aN6WnigTIRvii6m1y+gwHwYDVR0j BBgwFoAUU4FOLN+VzJdH2R47WgFHhpW+AKowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEx MTkwOTMzNDMxNDM4NTQyNy8wLzUzODE0RTJDREY5NUNDOTc0N0Q5MUUzQjVBMDE0 Nzg2OTVCRTAwQUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTM4MTRFMkNERjk1Q0M5NzQ3RDkxRTNCNUEwMTQ3ODY5NUJFMDBBQS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTExMTE5MDkzMzQzMTQzODU0MjcvMC8zMjMxMzEyZTM5 MzkyZTMxMzEzMzJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzNDM1MzQzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEANNjcTANBgkqhkiG9w0BAQsFAAOCAQEAHv0KY3Y0+6w3Vpg2DduS JJ0FHDdu9+heokUb9FhgI8M02P2DO07SHmryc8WtwCt6ofrMOd+s8bl4Gok9G6um gltgecMbNSPnIZLiJAW3JsJz+O8jbH3crgNSj3a6dIC1lMAHsq6YkEgso5x0EiaH lgrPj8PlCT7OqMs5t3nLH24QOS15JXcDPPyz5UkjAOdbzil+tdy48Ilh4JDBpIoT TboaGxFC8Mz4h1vDzOc7FFWhFAvdH3XyUbhx5NqStTWT1sXPDZjQR/R3o0u+2pvx 8GJDbPEoPDeCs0ziq+1Y/Q7d2zz7r79JpsBqc13JGO+j+/UvA+o6hfvs5QHxIluU LA== -----END CERTIFICATE-----Generated at Fri May 29 23:53:47 2026 by rpki-client