$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1114356856265965585/0/3231382e39382e35362e302f32312d3231203d3e2034383337.roa File: 3231382e39382e35362e302f32312d3231203d3e2034383337.roa (raw, json) Hash identifier: qntVrRkJTzyy9qn6PSdTiPyhx5bP/UEH2VxKmdivdTA= Subject key identifier: 3E:CA:4E:0B:BD:89:5E:03:83:A4:BB:7B:0F:7B:0E:2D:CA:07:B7:FE Certificate issuer: /CN=3722ACC8B2E55402121EEAE0194C9ED635B781DD Certificate serial: 30AE9865CA64831A59CA28DF93D4E4D961C5D2A6 Authority key identifier: 37:22:AC:C8:B2:E5:54:02:12:1E:EA:E0:19:4C:9E:D6:35:B7:81:DD Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3722ACC8B2E55402121EEAE0194C9ED635B781DD.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1114356856265965585/0/3231382e39382e35362e302f32312d3231203d3e2034383337.roa Signing time: Thu 04 Jun 2026 07:22:58 +0000 ROA not before: Thu 04 Jun 2026 07:17:58 +0000 ROA not after: Thu 03 Jun 2027 07:22:58 +0000 asID: 4837 IP address blocks: 218.98.56.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1114356856265965585/0/3722ACC8B2E55402121EEAE0194C9ED635B781DD.crl rsync://rpki-rps.cnnic.cn/repo/A1114356856265965585/0/3722ACC8B2E55402121EEAE0194C9ED635B781DD.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3722ACC8B2E55402121EEAE0194C9ED635B781DD.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 19:45:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:ae:98:65:ca:64:83:1a:59:ca:28:df:93:d4:e4:d9:61:c5:d2:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3722ACC8B2E55402121EEAE0194C9ED635B781DD Validity Not Before: Jun 4 07:17:58 2026 GMT Not After : Jun 3 07:22:58 2027 GMT Subject: CN=3ECA4E0BBD895E0383A4BB7B0F7B0E2DCA07B7FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:43:c0:11:d8:94:fa:f6:f5:d3:d7:51:f0:a8: 2e:8e:8c:cd:35:92:83:44:8c:35:f5:5c:8d:fe:b6: 25:1d:5e:08:b1:5d:d9:76:d4:fb:11:37:e7:e8:69: bf:1a:af:7b:74:a0:c5:9b:ea:08:73:e1:27:2b:c0: 71:b9:5d:69:64:03:b0:5d:84:a1:2d:78:71:01:25: 2e:64:47:c0:29:87:5c:f8:0c:69:41:69:1d:03:71: 7a:c1:65:72:08:da:2c:4a:4e:c8:5e:f9:9e:af:ed: f1:79:31:07:56:c3:ff:1a:97:a7:93:39:b0:a0:8f: 62:ae:d9:be:99:10:f1:32:56:49:5b:fa:9f:37:c2: 07:f6:f3:8f:dc:14:2f:0d:1a:98:2c:b3:c2:d3:b6: f8:be:cc:a6:41:93:2c:20:ad:ce:b5:22:f2:18:3e: 95:d3:4a:72:cb:d9:86:30:6c:c6:88:cd:64:e5:40: d7:c2:6d:3f:7d:a1:dc:e6:dd:9e:a9:0e:0b:06:ba: 8d:e9:44:d2:6c:93:26:ec:83:12:10:f7:fe:94:2b: 8e:de:c0:6c:a5:b2:b0:97:68:8b:08:77:4e:89:61: b3:fc:64:3f:e4:06:18:dd:83:4d:76:8c:8c:60:d6: f9:be:06:ca:c6:11:f4:cc:1c:27:3c:72:33:da:43: 94:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:CA:4E:0B:BD:89:5E:03:83:A4:BB:7B:0F:7B:0E:2D:CA:07:B7:FE X509v3 Authority Key Identifier: keyid:37:22:AC:C8:B2:E5:54:02:12:1E:EA:E0:19:4C:9E:D6:35:B7:81:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1114356856265965585/0/3722ACC8B2E55402121EEAE0194C9ED635B781DD.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3722ACC8B2E55402121EEAE0194C9ED635B781DD.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1114356856265965585/0/3231382e39382e35362e302f32312d3231203d3e2034383337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 218.98.56.0/21 Signature Algorithm: sha256WithRSAEncryption 04:4a:a3:65:9d:67:f8:ac:ab:38:b6:ca:5d:07:f2:dc:ab:03: dd:85:0b:a5:33:16:ae:b8:02:73:64:b0:37:2f:3b:73:d8:c2: d5:7a:7e:6a:9f:c1:c0:b5:79:12:63:25:a3:ae:75:13:2c:92: 6c:42:7c:8f:b1:33:e9:fe:76:34:ac:58:a1:ae:a8:2c:89:ff: 84:e1:fa:fb:e3:54:4e:31:c1:6e:44:2c:43:50:96:48:50:52: 8a:a2:f1:93:3d:b3:6e:a4:27:00:91:66:8f:59:ba:5c:46:96: 8e:fd:a4:7c:64:ca:65:6a:5a:73:09:44:59:00:d5:14:ca:c1: 33:02:7b:aa:ed:78:a4:1f:57:be:2b:07:09:c7:46:bf:f1:c1: d8:c0:4c:42:49:78:f8:e5:5b:e9:11:5c:a2:3a:7e:f7:76:92: fc:44:a0:18:96:e7:16:a5:ce:90:a4:ef:51:95:4c:33:d3:d9: be:27:e4:17:54:e3:33:3e:f9:70:b3:7e:af:c9:70:7c:6c:5a: 52:fe:76:95:2f:be:38:ed:ec:05:43:75:96:15:e9:f9:89:9f: 28:2e:85:6d:ba:ab:26:68:be:21:1b:6d:5c:a8:71:27:58:c9: a5:db:08:ba:19:65:f4:d3:77:66:39:a4:ec:8f:d0:3d:d2:16: 26:96:da:19 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUMK6YZcpkgxpZyijfk9Tk2WHF0qYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzcyMkFDQzhCMkU1NTQwMjEyMUVFQUUwMTk0QzlFRDYz NUI3ODFERDAeFw0yNjA2MDQwNzE3NThaFw0yNzA2MDMwNzIyNThaMDMxMTAvBgNV BAMTKDNFQ0E0RTBCQkQ4OTVFMDM4M0E0QkI3QjBGN0IwRTJEQ0EwN0I3RkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsQ8AR2JT69vXT11HwqC6OjM01 koNEjDX1XI3+tiUdXgixXdl21PsRN+foab8ar3t0oMWb6ghz4ScrwHG5XWlkA7Bd hKEteHEBJS5kR8Aph1z4DGlBaR0DcXrBZXII2ixKTshe+Z6v7fF5MQdWw/8al6eT ObCgj2Ku2b6ZEPEyVklb+p83wgf284/cFC8NGpgss8LTtvi+zKZBkywgrc61IvIY PpXTSnLL2YYwbMaIzWTlQNfCbT99odzm3Z6pDgsGuo3pRNJskybsgxIQ9/6UK47e wGylsrCXaIsId06JYbP8ZD/kBhjdg012jIxg1vm+BsrGEfTMHCc8cjPaQ5RzAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUPspOC72JXgODpLt7D3sOLcoHt/4wHwYDVR0j BBgwFoAUNyKsyLLlVAISHurgGUye1jW3gd0wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEx NDM1Njg1NjI2NTk2NTU4NS8wLzM3MjJBQ0M4QjJFNTU0MDIxMjFFRUFFMDE5NEM5 RUQ2MzVCNzgxREQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMzcyMkFDQzhCMkU1NTQwMjEyMUVFQUUwMTk0QzlFRDYzNUI3ODFERC5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTE0MzU2ODU2MjY1OTY1NTg1LzAvMzIzMTM4MmUzOTM4 MmUzNTM2MmUzMDJmMzIzMTJkMzIzMTIwM2QzZTIwMzQzODMzMzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAPaYjgwDQYJKoZIhvcNAQELBQADggEBAARKo2WdZ/isqzi2yl0H8tyrA92FC6Uz Fq64AnNksDcvO3PYwtV6fmqfwcC1eRJjJaOudRMskmxCfI+xM+n+djSsWKGuqCyJ /4Th+vvjVE4xwW5ELENQlkhQUoqi8ZM9s26kJwCRZo9ZulxGlo79pHxkymVqWnMJ RFkA1RTKwTMCe6rteKQfV74rBwnHRr/xwdjATEJJePjlW+kRXKI6fvd2kvxEoBiW 5xalzpCk71GVTDPT2b4n5BdU4zM++XCzfq/JcHxsWlL+dpUvvjjt7AVDdZYV6fmJ nyguhW26qyZoviEbbVyocSdYyaXbCLoZZfTTd2Y5pOyP0D3SFiaW2hk= -----END CERTIFICATE-----Generated at Fri Jun 12 06:44:24 2026 by rpki-client