$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1114356856265965585/0/3231382e39382e33322e302f32312d3231203d3e2034383337.roa File: 3231382e39382e33322e302f32312d3231203d3e2034383337.roa (raw, json) Hash identifier: MLuEerNf7EBACF71ZltJ1ZvulPsjU6qgXcsCS/WaeXU= Subject key identifier: 66:01:9B:20:67:9A:47:EF:CA:C0:E2:8F:84:91:79:4C:73:7A:94:F4 Certificate issuer: /CN=3722ACC8B2E55402121EEAE0194C9ED635B781DD Certificate serial: 326B960B3A37ADF31434C0FE4205C6EE9F0158BE Authority key identifier: 37:22:AC:C8:B2:E5:54:02:12:1E:EA:E0:19:4C:9E:D6:35:B7:81:DD Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3722ACC8B2E55402121EEAE0194C9ED635B781DD.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1114356856265965585/0/3231382e39382e33322e302f32312d3231203d3e2034383337.roa Signing time: Thu 04 Jun 2026 07:22:57 +0000 ROA not before: Thu 04 Jun 2026 07:17:57 +0000 ROA not after: Thu 03 Jun 2027 07:22:57 +0000 asID: 4837 IP address blocks: 218.98.32.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1114356856265965585/0/3722ACC8B2E55402121EEAE0194C9ED635B781DD.crl rsync://rpki-rps.cnnic.cn/repo/A1114356856265965585/0/3722ACC8B2E55402121EEAE0194C9ED635B781DD.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3722ACC8B2E55402121EEAE0194C9ED635B781DD.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 19:45:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:6b:96:0b:3a:37:ad:f3:14:34:c0:fe:42:05:c6:ee:9f:01:58:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3722ACC8B2E55402121EEAE0194C9ED635B781DD Validity Not Before: Jun 4 07:17:57 2026 GMT Not After : Jun 3 07:22:57 2027 GMT Subject: CN=66019B20679A47EFCAC0E28F8491794C737A94F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:8d:1e:eb:88:94:9e:a5:5c:10:70:78:e7:b5: 38:70:2e:82:59:33:9f:42:09:af:85:41:65:60:e1: 64:b5:19:1a:2a:0e:6a:5a:9f:27:bf:6a:d5:59:42: df:22:ca:dc:4e:62:7e:91:c7:cf:82:c7:f0:60:b0: fc:fb:fc:f8:66:e9:43:4b:ff:bf:bc:2a:bb:f4:be: 08:ff:e0:f3:b5:43:1d:40:5f:48:0c:a8:d9:3a:81: fe:0f:1d:1a:59:cc:be:14:b2:81:ce:e4:26:e4:f6: 30:e8:cf:ec:29:de:6b:c3:d1:48:96:95:e8:ed:a7: dd:26:6f:29:c0:9e:6a:d3:2a:6e:95:80:8b:0f:fe: e4:6c:ae:3d:31:c1:57:0e:89:dd:c4:ff:6c:28:40: 5a:24:32:23:41:8a:b9:55:b1:13:45:26:a2:e5:20: 40:82:3c:dc:4b:a9:fd:34:10:6b:ec:57:01:ee:12: 1f:73:d4:67:33:4a:33:32:dc:d2:20:3e:46:e2:c5: e0:52:12:f1:89:38:2f:5c:67:f0:08:d5:a9:26:a2: 24:5f:05:96:ea:c5:65:e9:e4:89:fa:04:27:08:0a: eb:44:59:54:a7:0d:ba:ea:a0:cd:22:c7:56:a2:f7: 8e:c5:80:ca:25:e3:28:10:bc:64:0e:af:cd:5e:b4: ab:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:01:9B:20:67:9A:47:EF:CA:C0:E2:8F:84:91:79:4C:73:7A:94:F4 X509v3 Authority Key Identifier: keyid:37:22:AC:C8:B2:E5:54:02:12:1E:EA:E0:19:4C:9E:D6:35:B7:81:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1114356856265965585/0/3722ACC8B2E55402121EEAE0194C9ED635B781DD.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3722ACC8B2E55402121EEAE0194C9ED635B781DD.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1114356856265965585/0/3231382e39382e33322e302f32312d3231203d3e2034383337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 218.98.32.0/21 Signature Algorithm: sha256WithRSAEncryption a0:cf:70:53:69:6e:4f:ff:55:f4:60:63:0b:13:af:65:a5:22: bc:7e:c4:37:fe:97:ce:3b:ac:a1:70:b8:85:71:b7:c4:b3:49: e3:b4:55:b1:fb:5b:a2:68:52:d6:60:8f:59:e8:04:96:5c:0c: c8:e6:bb:2c:95:6d:53:2a:82:26:ff:a6:08:de:03:9b:7b:4c: 1f:1d:98:b3:3f:7b:f0:c3:75:b0:de:2e:47:9e:00:66:b6:b0: 09:61:81:d9:e2:16:be:71:9f:0b:94:1b:8d:33:6e:7d:16:df: e1:f3:a5:34:90:58:10:2e:8e:99:02:b0:7f:ed:df:ae:a8:7b: 0e:ad:d0:4f:5e:0e:00:8a:d5:4d:5e:39:67:24:27:6c:f5:d0: b5:0d:03:55:9a:ff:07:ae:54:25:bf:c6:c7:9c:14:86:fb:60: 1b:b8:e8:9a:09:f5:ed:58:70:22:20:f7:bd:cc:34:2a:8e:99: a5:3e:92:04:85:01:6a:fa:8c:7a:51:dd:95:cd:da:b8:d1:e0: 4e:88:ac:b5:47:77:65:e5:88:27:b4:82:99:cf:82:5d:00:90: 7b:af:d2:2a:ea:f8:40:71:0e:60:9d:21:e8:0d:f7:50:7c:02: 44:36:0d:f3:b7:77:36:c3:6c:f6:fb:bb:c2:4d:51:fc:71:78: 7a:0f:65:eb -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUMmuWCzo3rfMUNMD+QgXG7p8BWL4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzcyMkFDQzhCMkU1NTQwMjEyMUVFQUUwMTk0QzlFRDYz NUI3ODFERDAeFw0yNjA2MDQwNzE3NTdaFw0yNzA2MDMwNzIyNTdaMDMxMTAvBgNV BAMTKDY2MDE5QjIwNjc5QTQ3RUZDQUMwRTI4Rjg0OTE3OTRDNzM3QTk0RjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgjR7riJSepVwQcHjntThwLoJZ M59CCa+FQWVg4WS1GRoqDmpanye/atVZQt8iytxOYn6Rx8+Cx/BgsPz7/Phm6UNL /7+8Krv0vgj/4PO1Qx1AX0gMqNk6gf4PHRpZzL4UsoHO5Cbk9jDoz+wp3mvD0UiW lejtp90mbynAnmrTKm6VgIsP/uRsrj0xwVcOid3E/2woQFokMiNBirlVsRNFJqLl IECCPNxLqf00EGvsVwHuEh9z1GczSjMy3NIgPkbixeBSEvGJOC9cZ/AI1akmoiRf BZbqxWXp5In6BCcICutEWVSnDbrqoM0ix1ai947FgMol4ygQvGQOr81etKsZAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUZgGbIGeaR+/KwOKPhJF5THN6lPQwHwYDVR0j BBgwFoAUNyKsyLLlVAISHurgGUye1jW3gd0wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEx NDM1Njg1NjI2NTk2NTU4NS8wLzM3MjJBQ0M4QjJFNTU0MDIxMjFFRUFFMDE5NEM5 RUQ2MzVCNzgxREQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMzcyMkFDQzhCMkU1NTQwMjEyMUVFQUUwMTk0QzlFRDYzNUI3ODFERC5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTE0MzU2ODU2MjY1OTY1NTg1LzAvMzIzMTM4MmUzOTM4 MmUzMzMyMmUzMDJmMzIzMTJkMzIzMTIwM2QzZTIwMzQzODMzMzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAPaYiAwDQYJKoZIhvcNAQELBQADggEBAKDPcFNpbk//VfRgYwsTr2WlIrx+xDf+ l847rKFwuIVxt8SzSeO0VbH7W6JoUtZgj1noBJZcDMjmuyyVbVMqgib/pgjeA5t7 TB8dmLM/e/DDdbDeLkeeAGa2sAlhgdniFr5xnwuUG40zbn0W3+HzpTSQWBAujpkC sH/t366oew6t0E9eDgCK1U1eOWckJ2z10LUNA1Wa/weuVCW/xsecFIb7YBu46JoJ 9e1YcCIg973MNCqOmaU+kgSFAWr6jHpR3ZXN2rjR4E6IrLVHd2XliCe0gpnPgl0A kHuv0irq+EBxDmCdIegN91B8AkQ2DfO3dzbDbPb7u8JNUfxxeHoPZes= -----END CERTIFICATE-----Generated at Fri Jun 12 06:44:31 2026 by rpki-client