$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1114356856265965585/0/3231382e39382e32302e302f32322d3232203d3e20313430373136.roa File: 3231382e39382e32302e302f32322d3232203d3e20313430373136.roa (raw, json) Hash identifier: cfttuKS+leUYFSJMrtOWa7DdgxYJ9FaJefwFt/LOjlA= Subject key identifier: 53:21:82:A7:1A:BB:79:3B:46:0B:5A:C7:9C:36:D6:47:1D:09:5C:A4 Certificate issuer: /CN=3722ACC8B2E55402121EEAE0194C9ED635B781DD Certificate serial: 35ED0E9571FA0ED06018478C7538C58A477E0862 Authority key identifier: 37:22:AC:C8:B2:E5:54:02:12:1E:EA:E0:19:4C:9E:D6:35:B7:81:DD Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3722ACC8B2E55402121EEAE0194C9ED635B781DD.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1114356856265965585/0/3231382e39382e32302e302f32322d3232203d3e20313430373136.roa Signing time: Wed 03 Jun 2026 07:29:39 +0000 ROA not before: Wed 03 Jun 2026 07:24:39 +0000 ROA not after: Wed 02 Jun 2027 07:29:39 +0000 asID: 140716 IP address blocks: 218.98.20.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1114356856265965585/0/3722ACC8B2E55402121EEAE0194C9ED635B781DD.crl rsync://rpki-rps.cnnic.cn/repo/A1114356856265965585/0/3722ACC8B2E55402121EEAE0194C9ED635B781DD.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3722ACC8B2E55402121EEAE0194C9ED635B781DD.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 19:45:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:ed:0e:95:71:fa:0e:d0:60:18:47:8c:75:38:c5:8a:47:7e:08:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3722ACC8B2E55402121EEAE0194C9ED635B781DD Validity Not Before: Jun 3 07:24:39 2026 GMT Not After : Jun 2 07:29:39 2027 GMT Subject: CN=532182A71ABB793B460B5AC79C36D6471D095CA4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:17:bd:9a:2d:8c:33:a1:16:b6:50:66:90:a4: ca:01:26:e0:6e:10:e4:3c:bc:21:0f:36:27:d7:53: 6c:ba:c4:76:80:ff:5d:0f:4e:80:ff:d2:a6:c6:05: d9:b0:ed:26:a2:79:c1:de:c9:c4:28:e4:0b:fe:06: cd:be:84:14:15:75:cb:9b:5a:4c:57:9c:a3:e2:ca: 26:0e:83:30:a5:ee:cd:41:fe:73:72:1f:e1:25:79: 88:43:53:f7:77:cc:6d:13:97:e8:59:d7:cc:67:14: c2:98:d3:06:af:ea:f8:ae:36:04:e7:58:ac:64:db: cc:6a:34:6c:24:77:22:c2:31:a3:e5:9f:b7:aa:81: 7b:c1:a1:08:de:12:ca:5f:fc:a9:0d:f5:70:fd:81: ff:86:3b:d2:a3:32:20:85:6b:22:fe:5c:f2:8a:2b: df:5d:19:84:c9:90:14:69:f9:50:d9:af:72:7c:02: 4f:0c:3a:b6:35:65:7d:31:f4:1e:78:60:79:ce:79: f2:cb:57:bd:85:9a:f0:c7:3d:51:4b:93:6c:37:fd: 6f:cf:dc:f6:9a:82:23:92:97:f9:82:28:d1:6f:8a: 58:8e:a1:e1:91:c7:e1:62:1f:76:55:a9:11:b6:d7: d9:b7:83:d8:6e:71:dc:37:a9:28:ad:22:4c:16:05: 5b:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:21:82:A7:1A:BB:79:3B:46:0B:5A:C7:9C:36:D6:47:1D:09:5C:A4 X509v3 Authority Key Identifier: keyid:37:22:AC:C8:B2:E5:54:02:12:1E:EA:E0:19:4C:9E:D6:35:B7:81:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1114356856265965585/0/3722ACC8B2E55402121EEAE0194C9ED635B781DD.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3722ACC8B2E55402121EEAE0194C9ED635B781DD.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1114356856265965585/0/3231382e39382e32302e302f32322d3232203d3e20313430373136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 218.98.20.0/22 Signature Algorithm: sha256WithRSAEncryption 1b:86:cd:66:75:39:57:00:41:ac:3d:ca:29:aa:8a:b1:6c:6e: 27:39:41:14:51:6e:59:34:72:40:5f:92:eb:6d:09:4e:1c:b4: 15:b4:24:e1:ed:54:35:04:59:45:fa:e5:ec:f2:54:fd:15:1c: 44:13:a9:14:cd:22:8d:83:96:19:64:08:20:00:ce:1e:94:a9: 34:ef:0b:21:f6:9a:18:0a:c3:08:81:68:e2:c8:68:fe:b4:7f: 04:87:eb:1f:00:d2:cd:f2:09:25:31:7d:fc:e6:f1:59:cd:5e: 77:41:f5:06:f5:0d:cb:a1:12:e5:93:f1:e7:5b:cb:2c:da:e5: 65:f3:8c:15:c2:8d:3d:25:d6:74:85:5e:ad:c7:e6:fe:bc:4c: 35:68:26:be:f0:e5:61:43:98:28:0f:fc:6d:7e:ba:62:cf:c6: f5:13:53:fe:d9:72:d9:9f:14:0b:00:8e:61:df:65:79:f5:92: 4f:04:e5:6e:96:77:fd:b4:1c:49:03:96:5c:58:93:9e:b8:aa: d2:d6:d0:e7:d0:b8:1f:79:85:9c:39:c2:f0:fc:1b:8c:e1:6b: ab:9f:db:4a:ad:a8:fb:70:d4:bc:cb:93:95:68:46:94:3e:63: bf:51:76:3f:f5:b1:30:45:e7:fa:0f:0b:4e:bb:7f:a0:bf:3d: de:56:ad:f7 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUNe0OlXH6DtBgGEeMdTjFikd+CGIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzcyMkFDQzhCMkU1NTQwMjEyMUVFQUUwMTk0QzlFRDYz NUI3ODFERDAeFw0yNjA2MDMwNzI0MzlaFw0yNzA2MDIwNzI5MzlaMDMxMTAvBgNV BAMTKDUzMjE4MkE3MUFCQjc5M0I0NjBCNUFDNzlDMzZENjQ3MUQwOTVDQTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQF72aLYwzoRa2UGaQpMoBJuBu EOQ8vCEPNifXU2y6xHaA/10PToD/0qbGBdmw7SaiecHeycQo5Av+Bs2+hBQVdcub WkxXnKPiyiYOgzCl7s1B/nNyH+EleYhDU/d3zG0Tl+hZ18xnFMKY0wav6viuNgTn WKxk28xqNGwkdyLCMaPln7eqgXvBoQjeEspf/KkN9XD9gf+GO9KjMiCFayL+XPKK K99dGYTJkBRp+VDZr3J8Ak8MOrY1ZX0x9B54YHnOefLLV72FmvDHPVFLk2w3/W/P 3PaagiOSl/mCKNFviliOoeGRx+FiH3ZVqRG219m3g9hucdw3qSitIkwWBVvjAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUUyGCpxq7eTtGC1rHnDbWRx0JXKQwHwYDVR0j BBgwFoAUNyKsyLLlVAISHurgGUye1jW3gd0wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEx NDM1Njg1NjI2NTk2NTU4NS8wLzM3MjJBQ0M4QjJFNTU0MDIxMjFFRUFFMDE5NEM5 RUQ2MzVCNzgxREQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMzcyMkFDQzhCMkU1NTQwMjEyMUVFQUUwMTk0QzlFRDYzNUI3ODFERC5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTExNDM1Njg1NjI2NTk2NTU4NS8wLzMyMzEzODJlMzkz ODJlMzIzMDJlMzAyZjMyMzIyZDMyMzIyMDNkM2UyMDMxMzQzMDM3MzEzNi5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAtpiFDANBgkqhkiG9w0BAQsFAAOCAQEAG4bNZnU5VwBBrD3KKaqKsWxu JzlBFFFuWTRyQF+S620JThy0FbQk4e1UNQRZRfrl7PJU/RUcRBOpFM0ijYOWGWQI IADOHpSpNO8LIfaaGArDCIFo4sho/rR/BIfrHwDSzfIJJTF9/ObxWc1ed0H1BvUN y6ES5ZPx51vLLNrlZfOMFcKNPSXWdIVercfm/rxMNWgmvvDlYUOYKA/8bX66Ys/G 9RNT/tly2Z8UCwCOYd9lefWSTwTlbpZ3/bQcSQOWXFiTnriq0tbQ59C4H3mFnDnC 8PwbjOFrq5/bSq2o+3DUvMuTlWhGlD5jv1F2P/WxMEXn+g8LTrt/oL893lat9w== -----END CERTIFICATE-----Generated at Fri Jun 12 08:43:25 2026 by rpki-client