$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1111933397845934097/0/3231382e39382e39362e302f32312d3231203d3e20313333373735.roa File: 3231382e39382e39362e302f32312d3231203d3e20313333373735.roa (raw, json) Hash identifier: DZIO/s2+u3g7RnTCUcoIvmO9m4lLnsWhFTMtVHJHQus= Subject key identifier: 32:94:DC:80:4A:E5:97:F0:E4:00:B9:D9:1C:71:A8:6B:52:42:02:29 Certificate issuer: /CN=E75349FBEA39CFED65BB280A32055EB716679089 Certificate serial: 7C3B18A99039E09258E98BE15F2D2A34007A4650 Authority key identifier: E7:53:49:FB:EA:39:CF:ED:65:BB:28:0A:32:05:5E:B7:16:67:90:89 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E75349FBEA39CFED65BB280A32055EB716679089.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1111933397845934097/0/3231382e39382e39362e302f32312d3231203d3e20313333373735.roa Signing time: Wed 27 May 2026 08:29:36 +0000 ROA not before: Wed 27 May 2026 08:24:36 +0000 ROA not after: Wed 26 May 2027 08:29:36 +0000 asID: 133775 IP address blocks: 218.98.96.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1111933397845934097/0/E75349FBEA39CFED65BB280A32055EB716679089.crl rsync://rpki-rps.cnnic.cn/repo/A1111933397845934097/0/E75349FBEA39CFED65BB280A32055EB716679089.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E75349FBEA39CFED65BB280A32055EB716679089.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 14:44:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:3b:18:a9:90:39:e0:92:58:e9:8b:e1:5f:2d:2a:34:00:7a:46:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E75349FBEA39CFED65BB280A32055EB716679089 Validity Not Before: May 27 08:24:36 2026 GMT Not After : May 26 08:29:36 2027 GMT Subject: CN=3294DC804AE597F0E400B9D91C71A86B52420229 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:09:6a:72:66:e8:69:d0:71:fa:db:5c:91:53: ec:c0:5e:fa:db:29:7c:61:8a:a0:37:a8:ce:cb:e0: 76:29:be:08:4f:f8:8b:65:3b:53:82:ac:84:68:5a: c8:37:4d:8a:b9:3a:8f:aa:1d:ad:cf:05:08:ce:5b: f1:b4:ec:ba:7f:7f:ec:83:bd:76:84:12:81:f0:21: 18:cf:da:c6:18:6d:e5:63:2c:86:9c:ac:da:af:3f: 13:06:54:72:7d:52:34:b1:e8:81:fd:45:99:25:36: 6c:8d:e0:8d:ad:11:12:6b:05:0e:66:f2:af:8e:59: 46:2c:5f:cd:42:e3:91:07:5e:40:3b:78:a3:96:6a: 34:d5:fd:a0:0d:05:1b:5e:10:9a:b5:71:73:4a:a9: 21:2b:57:e2:63:5c:86:10:e6:e7:ff:85:ec:81:15: d0:4e:b7:89:4b:17:78:e9:f7:54:f5:0b:9e:af:3b: 5e:06:56:4c:9c:a9:b3:87:8b:4d:c4:42:c2:66:33: 79:10:7f:03:75:a4:d7:a6:c8:62:dd:59:a4:37:79: 31:91:25:53:16:85:76:fc:3e:ca:5a:ae:df:10:b3: db:0d:96:91:db:10:8a:ad:83:32:47:0d:3e:78:4d: a4:01:9a:0c:aa:b1:4e:90:14:3b:51:d3:3e:95:ca: f1:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:94:DC:80:4A:E5:97:F0:E4:00:B9:D9:1C:71:A8:6B:52:42:02:29 X509v3 Authority Key Identifier: keyid:E7:53:49:FB:EA:39:CF:ED:65:BB:28:0A:32:05:5E:B7:16:67:90:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1111933397845934097/0/E75349FBEA39CFED65BB280A32055EB716679089.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E75349FBEA39CFED65BB280A32055EB716679089.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1111933397845934097/0/3231382e39382e39362e302f32312d3231203d3e20313333373735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 218.98.96.0/21 Signature Algorithm: sha256WithRSAEncryption 13:66:7d:a5:5c:8c:41:e9:07:9c:1c:ef:5b:bd:a4:9f:34:0f: dd:b7:5a:77:6b:27:68:c9:35:1a:59:d4:ea:d4:e4:76:e4:07: a3:79:0f:92:3d:ab:d7:bf:bf:34:e1:c4:52:e0:fe:4e:c7:29: fc:bb:e5:af:e8:d3:3f:d8:71:7b:6b:0f:43:e4:ae:94:95:18: 45:d5:c0:e5:b0:eb:3f:09:4f:d0:69:5c:96:53:8f:5f:e0:b2: 5b:c1:65:74:47:6e:14:c8:59:da:41:00:a1:84:99:41:66:85: df:7e:b5:25:ff:2d:65:c1:5c:df:a4:a1:b7:e5:fb:bc:e0:ac: 0b:f2:a2:61:c7:75:0b:77:7c:e7:1c:8b:0a:e3:70:ef:17:4e: 16:96:b0:b6:2a:06:eb:71:a4:b5:6d:2e:da:0a:c8:8e:0c:4b: ac:f2:b3:eb:a4:54:c5:1c:6e:8a:55:ca:ab:08:a2:b5:99:af: 71:82:ab:17:9b:d5:6c:20:4f:6e:3b:1f:5e:95:ef:1e:5d:6b: 80:58:2e:26:9c:c5:a5:59:72:3d:29:23:a5:53:df:7b:b0:e9: f5:44:cf:7e:58:30:a9:d1:25:d3:33:2c:13:53:1e:e7:fa:46: a0:13:12:8b:9b:70:5a:ec:20:be:b6:79:21:b6:06:0e:81:d4: cd:68:55:1e -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUfDsYqZA54JJY6YvhXy0qNAB6RlAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTc1MzQ5RkJFQTM5Q0ZFRDY1QkIyODBBMzIwNTVFQjcx NjY3OTA4OTAeFw0yNjA1MjcwODI0MzZaFw0yNzA1MjYwODI5MzZaMDMxMTAvBgNV BAMTKDMyOTREQzgwNEFFNTk3RjBFNDAwQjlEOTFDNzFBODZCNTI0MjAyMjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHCWpyZuhp0HH621yRU+zAXvrb KXxhiqA3qM7L4HYpvghP+ItlO1OCrIRoWsg3TYq5Oo+qHa3PBQjOW/G07Lp/f+yD vXaEEoHwIRjP2sYYbeVjLIacrNqvPxMGVHJ9UjSx6IH9RZklNmyN4I2tERJrBQ5m 8q+OWUYsX81C45EHXkA7eKOWajTV/aANBRteEJq1cXNKqSErV+JjXIYQ5uf/heyB FdBOt4lLF3jp91T1C56vO14GVkycqbOHi03EQsJmM3kQfwN1pNemyGLdWaQ3eTGR JVMWhXb8Pspart8Qs9sNlpHbEIqtgzJHDT54TaQBmgyqsU6QFDtR0z6VyvGzAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUMpTcgErll/DkALnZHHGoa1JCAikwHwYDVR0j BBgwFoAU51NJ++o5z+1luygKMgVetxZnkIkwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEx MTkzMzM5Nzg0NTkzNDA5Ny8wL0U3NTM0OUZCRUEzOUNGRUQ2NUJCMjgwQTMyMDU1 RUI3MTY2NzkwODkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRTc1MzQ5RkJFQTM5Q0ZFRDY1QkIyODBBMzIwNTVFQjcxNjY3OTA4OS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTExMTkzMzM5Nzg0NTkzNDA5Ny8wLzMyMzEzODJlMzkz ODJlMzkzNjJlMzAyZjMyMzEyZDMyMzEyMDNkM2UyMDMxMzMzMzM3MzczNS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEA9piYDANBgkqhkiG9w0BAQsFAAOCAQEAE2Z9pVyMQekHnBzvW72knzQP 3bdad2snaMk1GlnU6tTkduQHo3kPkj2r17+/NOHEUuD+Tscp/Lvlr+jTP9hxe2sP Q+SulJUYRdXA5bDrPwlP0GlcllOPX+CyW8FldEduFMhZ2kEAoYSZQWaF3361Jf8t ZcFc36Sht+X7vOCsC/KiYcd1C3d85xyLCuNw7xdOFpawtioG63GktW0u2grIjgxL rPKz66RUxRxuilXKqwiitZmvcYKrF5vVbCBPbjsfXpXvHl1rgFguJpzFpVlyPSkj pVPfe7Dp9UTPflgwqdEl0zMsE1Me5/pGoBMSi5twWuwgvrZ5IbYGDoHUzWhVHg== -----END CERTIFICATE-----Generated at Fri May 29 23:53:10 2026 by rpki-client