$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1114356856265965585/0/3231382e39382e302e302f32312d3231203d3e2034383337.roa File: 3231382e39382e302e302f32312d3231203d3e2034383337.roa (raw, json) Hash identifier: C8GRFcxiU/GNLMq8vUg1i2f4ngkX4KUS/fYvD6vUthg= Subject key identifier: 3A:92:3D:52:41:F5:EF:40:5F:CE:62:65:AA:D0:05:DC:B2:DB:CF:22 Certificate issuer: /CN=3722ACC8B2E55402121EEAE0194C9ED635B781DD Certificate serial: 34655E42E7C06287D255846FCB4262ACE82AC54A Authority key identifier: 37:22:AC:C8:B2:E5:54:02:12:1E:EA:E0:19:4C:9E:D6:35:B7:81:DD Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3722ACC8B2E55402121EEAE0194C9ED635B781DD.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1114356856265965585/0/3231382e39382e302e302f32312d3231203d3e2034383337.roa Signing time: Thu 04 Jun 2026 07:21:46 +0000 ROA not before: Thu 04 Jun 2026 07:16:46 +0000 ROA not after: Thu 03 Jun 2027 07:21:46 +0000 asID: 4837 IP address blocks: 218.98.0.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1114356856265965585/0/3722ACC8B2E55402121EEAE0194C9ED635B781DD.crl rsync://rpki-rps.cnnic.cn/repo/A1114356856265965585/0/3722ACC8B2E55402121EEAE0194C9ED635B781DD.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3722ACC8B2E55402121EEAE0194C9ED635B781DD.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 19:45:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:65:5e:42:e7:c0:62:87:d2:55:84:6f:cb:42:62:ac:e8:2a:c5:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3722ACC8B2E55402121EEAE0194C9ED635B781DD Validity Not Before: Jun 4 07:16:46 2026 GMT Not After : Jun 3 07:21:46 2027 GMT Subject: CN=3A923D5241F5EF405FCE6265AAD005DCB2DBCF22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:61:a1:8d:1f:ad:95:6b:bf:7b:de:bf:3a:5e: 49:44:26:8d:97:2a:67:2c:14:68:ba:3a:21:47:5e: 3d:5a:76:18:0b:c5:98:1d:1a:4b:13:4b:af:3c:62: cd:65:3e:0d:e5:50:d3:74:3d:6f:60:58:1c:41:d4: 7f:d1:2b:52:61:11:b6:76:1e:ee:29:e3:65:f7:35: ab:e5:32:b6:a1:bd:59:96:2a:a0:48:a1:72:c2:86: 10:4c:bb:2b:9e:7b:f0:39:0b:66:28:74:31:b3:fb: 16:7e:a3:d5:e4:52:e3:67:30:5b:82:35:11:9f:72: 6d:78:a0:b9:a0:2b:32:3b:ad:ae:63:ae:8b:32:e0: 36:b5:ab:89:14:e4:a2:77:7d:2d:79:94:d3:50:a7: e9:dc:85:8f:d2:f6:60:e0:11:23:73:0b:bb:8f:bb: b6:5d:53:24:ff:a0:de:7f:91:84:8c:43:f8:7f:67: 74:0c:c4:78:e1:5b:2e:0b:17:ba:cd:d2:d9:49:ff: 0e:00:60:20:78:af:49:4b:7f:2b:00:2b:25:5e:aa: ce:47:b9:45:06:63:3c:13:71:93:a9:77:91:f3:94: f9:9c:7c:c9:f7:4d:ff:aa:c1:34:f5:eb:3e:ad:ef: 46:25:af:20:d7:ea:ac:3b:bb:3f:e5:77:77:f5:47: 75:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:92:3D:52:41:F5:EF:40:5F:CE:62:65:AA:D0:05:DC:B2:DB:CF:22 X509v3 Authority Key Identifier: keyid:37:22:AC:C8:B2:E5:54:02:12:1E:EA:E0:19:4C:9E:D6:35:B7:81:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1114356856265965585/0/3722ACC8B2E55402121EEAE0194C9ED635B781DD.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3722ACC8B2E55402121EEAE0194C9ED635B781DD.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1114356856265965585/0/3231382e39382e302e302f32312d3231203d3e2034383337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 218.98.0.0/21 Signature Algorithm: sha256WithRSAEncryption 83:d3:1b:f7:d9:37:d7:2c:4a:1a:cb:9d:0b:98:77:6f:31:9c: e5:2c:f9:76:bb:f3:80:f2:5f:da:f6:58:95:ef:c8:c7:ce:80: 38:3d:c0:08:25:e1:db:55:0c:27:b4:c2:79:81:f4:d6:1f:42: bf:08:09:b0:3b:d8:57:97:dd:e3:a7:3c:75:6c:f4:ac:68:41: 83:31:ff:19:4b:b5:44:9b:52:8d:c7:d5:80:9b:3a:59:67:57: e9:0d:fc:c8:3d:3f:58:27:e0:05:90:3e:fb:be:92:79:69:a0: d0:d6:9f:a9:3d:8e:29:19:eb:96:96:bc:e6:7c:8c:43:ac:90: 84:7c:39:7e:cf:b6:21:c3:4f:d7:0b:a7:f3:ea:41:5c:29:ba: a6:09:4c:74:85:9c:af:1d:4f:4a:94:82:ae:6b:62:da:d1:a1: d1:f7:4b:b8:73:fd:99:e7:06:ac:44:c9:bf:e5:5c:f2:f2:54: 53:ab:0a:e5:dc:30:5a:96:98:3b:f4:40:47:cb:cb:d0:a6:cf: ac:4f:34:dc:68:d7:c1:dd:82:5d:dd:48:e9:cb:02:9e:d0:21: 7d:41:91:ec:d4:23:78:21:bc:c8:39:4e:2f:af:5d:ea:dd:bf: a4:84:d7:bc:dc:a0:74:2d:eb:f1:77:6d:68:4b:46:31:83:f7: 84:e4:50:b8 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgIUNGVeQufAYofSVYRvy0JirOgqxUowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzcyMkFDQzhCMkU1NTQwMjEyMUVFQUUwMTk0QzlFRDYz NUI3ODFERDAeFw0yNjA2MDQwNzE2NDZaFw0yNzA2MDMwNzIxNDZaMDMxMTAvBgNV BAMTKDNBOTIzRDUyNDFGNUVGNDA1RkNFNjI2NUFBRDAwNURDQjJEQkNGMjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/YaGNH62Va7973r86XklEJo2X KmcsFGi6OiFHXj1adhgLxZgdGksTS688Ys1lPg3lUNN0PW9gWBxB1H/RK1JhEbZ2 Hu4p42X3NavlMrahvVmWKqBIoXLChhBMuyuee/A5C2YodDGz+xZ+o9XkUuNnMFuC NRGfcm14oLmgKzI7ra5jrosy4Da1q4kU5KJ3fS15lNNQp+nchY/S9mDgESNzC7uP u7ZdUyT/oN5/kYSMQ/h/Z3QMxHjhWy4LF7rN0tlJ/w4AYCB4r0lLfysAKyVeqs5H uUUGYzwTcZOpd5HzlPmcfMn3Tf+qwTT16z6t70YlryDX6qw7uz/ld3f1R3XVAgMB AAGjggINMIICCTAdBgNVHQ4EFgQUOpI9UkH170BfzmJlqtAF3LLbzyIwHwYDVR0j BBgwFoAUNyKsyLLlVAISHurgGUye1jW3gd0wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEx NDM1Njg1NjI2NTk2NTU4NS8wLzM3MjJBQ0M4QjJFNTU0MDIxMjFFRUFFMDE5NEM5 RUQ2MzVCNzgxREQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMzcyMkFDQzhCMkU1NTQwMjEyMUVFQUUwMTk0QzlFRDYzNUI3ODFERC5jZXIw gYYGCCsGAQUFBwELBHoweDB2BggrBgEFBQcwC4ZqcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTE0MzU2ODU2MjY1OTY1NTg1LzAvMzIzMTM4MmUzOTM4 MmUzMDJlMzAyZjMyMzEyZDMyMzEyMDNkM2UyMDM0MzgzMzM3LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQD 2mIAMA0GCSqGSIb3DQEBCwUAA4IBAQCD0xv32TfXLEoay50LmHdvMZzlLPl2u/OA 8l/a9liV78jHzoA4PcAIJeHbVQwntMJ5gfTWH0K/CAmwO9hXl93jpzx1bPSsaEGD Mf8ZS7VEm1KNx9WAmzpZZ1fpDfzIPT9YJ+AFkD77vpJ5aaDQ1p+pPY4pGeuWlrzm fIxDrJCEfDl+z7Yhw0/XC6fz6kFcKbqmCUx0hZyvHU9KlIKua2La0aHR90u4c/2Z 5wasRMm/5Vzy8lRTqwrl3DBalpg79EBHy8vQps+sTzTcaNfB3YJd3UjpywKe0CF9 QZHs1CN4IbzIOU4vr13q3b+khNe83KB0Levxd21oS0Yxg/eE5FC4 -----END CERTIFICATE-----Generated at Fri Jun 12 06:42:39 2026 by rpki-client