$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1111933397845934097/0/3231382e39382e3130342e302f32322d3232203d3e20313333373735.roa File: 3231382e39382e3130342e302f32322d3232203d3e20313333373735.roa (raw, json) Hash identifier: V3xF0PFYUq2QI/eD4ooY/fxQPnp74YlMvm4d878hPzg= Subject key identifier: 4E:87:FE:2B:FE:FE:A0:29:F3:C9:3B:1C:36:A3:64:3F:E5:1A:9A:36 Certificate issuer: /CN=E75349FBEA39CFED65BB280A32055EB716679089 Certificate serial: 5D44FC5EFE0E2F075EE7F6F90688FEE4DA603B83 Authority key identifier: E7:53:49:FB:EA:39:CF:ED:65:BB:28:0A:32:05:5E:B7:16:67:90:89 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E75349FBEA39CFED65BB280A32055EB716679089.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1111933397845934097/0/3231382e39382e3130342e302f32322d3232203d3e20313333373735.roa Signing time: Wed 27 May 2026 08:53:02 +0000 ROA not before: Wed 27 May 2026 08:48:02 +0000 ROA not after: Wed 26 May 2027 08:53:02 +0000 asID: 133775 IP address blocks: 218.98.104.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1111933397845934097/0/E75349FBEA39CFED65BB280A32055EB716679089.crl rsync://rpki-rps.cnnic.cn/repo/A1111933397845934097/0/E75349FBEA39CFED65BB280A32055EB716679089.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E75349FBEA39CFED65BB280A32055EB716679089.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 14:44:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:44:fc:5e:fe:0e:2f:07:5e:e7:f6:f9:06:88:fe:e4:da:60:3b:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E75349FBEA39CFED65BB280A32055EB716679089 Validity Not Before: May 27 08:48:02 2026 GMT Not After : May 26 08:53:02 2027 GMT Subject: CN=4E87FE2BFEFEA029F3C93B1C36A3643FE51A9A36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:8b:2a:59:00:bb:4b:0b:f3:45:f4:59:d2:88: a1:dd:2f:6a:fd:fa:24:6d:8e:fc:70:8a:e7:80:65: 45:2b:b1:6b:ea:b0:d0:22:d1:d2:b2:68:43:84:f9: 3a:d3:c3:19:2c:8a:df:4b:54:56:93:5c:77:ba:0b: a7:f7:59:ee:31:95:5a:10:7a:29:42:d7:9d:c1:3a: f8:28:b3:b6:45:fa:58:4c:e9:74:bd:05:8e:eb:e9: a9:48:8e:43:00:5d:45:99:97:b2:3f:6f:7c:e5:c0: df:80:62:25:b7:ea:88:d9:6d:cd:a7:ec:4d:c7:c6: c9:d1:a1:f3:b4:ed:b8:de:89:e3:ab:b5:3f:db:9a: 11:c7:e9:1c:ba:d1:9d:51:0b:6e:9d:d1:48:56:79: cb:af:55:af:26:11:79:75:25:c5:a5:b7:4b:d6:22: a3:97:69:e4:90:26:99:92:62:76:be:05:c6:e8:70: a0:91:51:c4:47:01:80:40:8c:05:05:93:b1:64:a6: 09:8b:69:82:ce:25:6e:1a:0c:99:af:ca:4e:85:9a: d4:cf:0e:d6:5b:0f:ed:1b:3c:5c:4e:f7:dd:1a:ac: e1:f1:8f:70:58:07:60:45:a8:e3:f4:97:d0:f1:f6: ce:c2:5b:6c:c0:57:7c:9f:78:2c:8f:5f:88:31:30: 9a:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:87:FE:2B:FE:FE:A0:29:F3:C9:3B:1C:36:A3:64:3F:E5:1A:9A:36 X509v3 Authority Key Identifier: keyid:E7:53:49:FB:EA:39:CF:ED:65:BB:28:0A:32:05:5E:B7:16:67:90:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1111933397845934097/0/E75349FBEA39CFED65BB280A32055EB716679089.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E75349FBEA39CFED65BB280A32055EB716679089.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1111933397845934097/0/3231382e39382e3130342e302f32322d3232203d3e20313333373735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 218.98.104.0/22 Signature Algorithm: sha256WithRSAEncryption 4b:58:a7:ec:d0:d9:5a:d6:2f:63:81:71:82:01:5f:78:a2:7b: 73:52:5f:22:1b:67:43:93:46:0a:f9:54:7a:f2:89:30:b2:6a: 31:5e:45:9d:83:58:1c:c3:82:8f:8d:63:1c:8f:a9:03:c6:28: 92:16:39:f0:f9:e8:59:4f:1f:d7:75:44:de:15:80:78:a6:aa: cf:f0:84:35:e7:e2:4a:dd:b4:2b:52:a5:bf:8e:e4:a0:86:00: 90:3d:5b:8e:8c:3c:33:4f:5f:9b:ff:2e:70:dc:10:6d:6e:0a: e6:cf:fe:5d:54:89:a2:94:59:2b:21:7a:c3:13:5e:4c:5a:b2: e4:63:28:a2:8d:5a:2f:c5:f9:3a:28:b6:8b:41:61:1a:fb:89: 35:02:95:b6:1f:ed:51:e8:fc:71:3c:ca:a5:8e:8e:36:9b:9f: ff:58:37:14:38:5b:4c:45:6c:d7:18:52:36:84:58:4c:cf:bd: 26:fd:dc:0d:bb:9b:96:9e:94:f4:da:53:26:ac:52:a0:39:d9: 52:90:93:0c:8c:89:e8:c7:92:de:01:85:af:7f:d5:90:42:09: f7:36:91:b8:43:7d:ad:e1:51:f4:ff:5b:71:48:68:c0:91:36: a0:d1:91:d8:9b:68:6f:b5:6e:bd:e3:b5:94:27:4a:1b:f5:95: 3d:5d:3e:fd -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUXUT8Xv4OLwde5/b5Boj+5NpgO4MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTc1MzQ5RkJFQTM5Q0ZFRDY1QkIyODBBMzIwNTVFQjcx NjY3OTA4OTAeFw0yNjA1MjcwODQ4MDJaFw0yNzA1MjYwODUzMDJaMDMxMTAvBgNV BAMTKDRFODdGRTJCRkVGRUEwMjlGM0M5M0IxQzM2QTM2NDNGRTUxQTlBMzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3iypZALtLC/NF9FnSiKHdL2r9 +iRtjvxwiueAZUUrsWvqsNAi0dKyaEOE+TrTwxksit9LVFaTXHe6C6f3We4xlVoQ eilC153BOvgos7ZF+lhM6XS9BY7r6alIjkMAXUWZl7I/b3zlwN+AYiW36ojZbc2n 7E3HxsnRofO07bjeieOrtT/bmhHH6Ry60Z1RC26d0UhWecuvVa8mEXl1JcWlt0vW IqOXaeSQJpmSYna+BcbocKCRUcRHAYBAjAUFk7FkpgmLaYLOJW4aDJmvyk6FmtTP DtZbD+0bPFxO990arOHxj3BYB2BFqOP0l9Dx9s7CW2zAV3yfeCyPX4gxMJrBAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUTof+K/7+oCnzyTscNqNkP+UamjYwHwYDVR0j BBgwFoAU51NJ++o5z+1luygKMgVetxZnkIkwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEx MTkzMzM5Nzg0NTkzNDA5Ny8wL0U3NTM0OUZCRUEzOUNGRUQ2NUJCMjgwQTMyMDU1 RUI3MTY2NzkwODkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRTc1MzQ5RkJFQTM5Q0ZFRDY1QkIyODBBMzIwNTVFQjcxNjY3OTA4OS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTExMTE5MzMzOTc4NDU5MzQwOTcvMC8zMjMxMzgyZTM5 MzgyZTMxMzAzNDJlMzAyZjMyMzIyZDMyMzIyMDNkM2UyMDMxMzMzMzM3MzczNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAtpiaDANBgkqhkiG9w0BAQsFAAOCAQEAS1in7NDZWtYvY4FxggFf eKJ7c1JfIhtnQ5NGCvlUevKJMLJqMV5FnYNYHMOCj41jHI+pA8YokhY58PnoWU8f 13VE3hWAeKaqz/CENefiSt20K1Klv47koIYAkD1bjow8M09fm/8ucNwQbW4K5s/+ XVSJopRZKyF6wxNeTFqy5GMooo1aL8X5Oii2i0FhGvuJNQKVth/tUej8cTzKpY6O Npuf/1g3FDhbTEVs1xhSNoRYTM+9Jv3cDbublp6U9NpTJqxSoDnZUpCTDIyJ6MeS 3gGFr3/VkEIJ9zaRuEN9reFR9P9bcUhowJE2oNGR2Jtob7VuveO1lCdKG/WVPV0+ /Q== -----END CERTIFICATE-----Generated at Fri May 29 23:53:31 2026 by rpki-client