$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1114846589689528347/0/3231382e3234302e3138342e302f32342d3234203d3e2034383038.roa File: 3231382e3234302e3138342e302f32342d3234203d3e2034383038.roa (raw, json) Hash identifier: 8W97xzHc9MQctO7ZNjByi6LZvr1KI8kDZ7yXZdszjxI= Subject key identifier: 00:68:9B:F6:BF:C7:CF:F9:FD:C4:7A:40:83:97:6D:00:F4:DE:26:3A Certificate issuer: /CN=FCDC522C2977A42C0E1A992040F5840C8C83FF6A Certificate serial: 6D3D775C335CEBBAD077BFF57118871BAA570C4B Authority key identifier: FC:DC:52:2C:29:77:A4:2C:0E:1A:99:20:40:F5:84:0C:8C:83:FF:6A Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/FCDC522C2977A42C0E1A992040F5840C8C83FF6A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1114846589689528347/0/3231382e3234302e3138342e302f32342d3234203d3e2034383038.roa Signing time: Thu 04 Jun 2026 09:38:24 +0000 ROA not before: Thu 04 Jun 2026 09:33:24 +0000 ROA not after: Thu 03 Jun 2027 09:38:24 +0000 asID: 4808 IP address blocks: 218.240.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1114846589689528347/0/FCDC522C2977A42C0E1A992040F5840C8C83FF6A.crl rsync://rpki-rps.cnnic.cn/repo/A1114846589689528347/0/FCDC522C2977A42C0E1A992040F5840C8C83FF6A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/FCDC522C2977A42C0E1A992040F5840C8C83FF6A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 09:03:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:3d:77:5c:33:5c:eb:ba:d0:77:bf:f5:71:18:87:1b:aa:57:0c:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FCDC522C2977A42C0E1A992040F5840C8C83FF6A Validity Not Before: Jun 4 09:33:24 2026 GMT Not After : Jun 3 09:38:24 2027 GMT Subject: CN=00689BF6BFC7CFF9FDC47A4083976D00F4DE263A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:f9:47:9b:90:b2:b7:05:5b:a6:2a:6d:0c:54: 92:40:34:4d:7b:0e:4c:32:7c:b6:d6:5b:e9:e2:34: 49:bc:a8:a3:da:df:21:f1:45:33:db:79:ef:21:0b: 54:b4:13:bf:b0:db:e4:af:fd:15:04:0f:c2:50:35: bf:99:55:33:ff:2a:75:c1:49:c2:b6:a4:ff:e1:c1: 70:6b:f1:f0:6b:54:81:e6:e0:98:e7:e8:45:ec:ae: fa:98:df:44:d4:20:65:76:b4:fd:95:b6:c4:3b:2c: 72:3c:32:9f:fb:09:49:b6:21:f9:d5:77:e9:a4:7f: 74:64:21:66:54:e0:0d:86:28:58:63:84:6b:77:75: e9:a9:84:39:87:fa:e4:71:7d:5f:b6:a7:33:e9:82: 68:30:4a:94:25:17:a5:d8:5f:28:2c:9a:ac:3e:bf: c7:c7:05:3f:0f:75:1a:c4:3d:b5:d9:a1:45:0a:d5: 46:f0:c2:84:c5:d8:64:f3:81:fb:c8:9f:6c:8a:79: 61:e2:0d:48:27:78:3e:d4:85:00:f5:3d:fa:5f:7c: f2:d4:2e:d0:5c:bf:b5:33:fc:75:58:00:bf:75:b1: dc:94:82:a4:64:75:5f:fe:d0:e9:04:73:ca:cb:71: b6:5c:9e:38:20:94:99:18:f7:e5:5b:3a:a7:3d:e1: a4:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:68:9B:F6:BF:C7:CF:F9:FD:C4:7A:40:83:97:6D:00:F4:DE:26:3A X509v3 Authority Key Identifier: keyid:FC:DC:52:2C:29:77:A4:2C:0E:1A:99:20:40:F5:84:0C:8C:83:FF:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1114846589689528347/0/FCDC522C2977A42C0E1A992040F5840C8C83FF6A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/FCDC522C2977A42C0E1A992040F5840C8C83FF6A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1114846589689528347/0/3231382e3234302e3138342e302f32342d3234203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 218.240.184.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:f3:68:55:13:0f:4a:b5:76:8f:e7:84:2f:9b:b5:05:b7:89: c2:7b:3c:db:47:a2:68:21:46:f2:5f:1b:18:13:5d:be:e9:d1: de:08:2a:ae:ca:88:e1:c5:d5:f0:1a:12:bd:5d:0c:ea:0e:9d: f2:f6:d6:6a:ed:e6:19:44:80:1b:62:23:f2:f3:63:2d:2b:4c: 39:de:43:ac:54:9b:d7:fe:3f:bd:85:e4:17:83:91:85:d2:6f: 11:83:f2:13:38:0c:c7:fc:0c:19:e8:fc:ff:5e:b7:0e:9b:20: 9d:22:b2:0f:f2:da:51:14:b7:5a:69:a6:11:71:52:cb:16:c0: 59:2c:55:e6:3a:ac:2f:85:5e:6a:7e:bc:cf:1c:82:d2:fd:3d: bf:c6:d9:a9:45:d1:5e:02:2b:9a:5f:e0:46:bc:10:25:79:23: 3f:b2:70:70:72:7d:33:e2:6b:40:10:6c:35:b4:f9:cb:c0:6e: 23:07:ab:3c:02:11:6d:9c:a3:7b:79:ef:75:e5:fa:f2:03:60: 70:fa:bb:cb:68:e4:b4:a5:7d:a7:6b:a3:40:b7:1a:10:7a:aa: 3f:35:92:db:bb:7b:4a:2a:f2:dc:37:4c:41:1c:46:e8:c7:50: 64:40:56:ff:c2:a7:0c:b8:d3:1c:2e:e8:13:01:7f:b8:b5:a3: 3e:0e:ef:a8 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUbT13XDNc67rQd7/1cRiHG6pXDEswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkNEQzUyMkMyOTc3QTQyQzBFMUE5OTIwNDBGNTg0MEM4 QzgzRkY2QTAeFw0yNjA2MDQwOTMzMjRaFw0yNzA2MDMwOTM4MjRaMDMxMTAvBgNV BAMTKDAwNjg5QkY2QkZDN0NGRjlGREM0N0E0MDgzOTc2RDAwRjRERTI2M0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCp+UebkLK3BVumKm0MVJJANE17 DkwyfLbWW+niNEm8qKPa3yHxRTPbee8hC1S0E7+w2+Sv/RUED8JQNb+ZVTP/KnXB ScK2pP/hwXBr8fBrVIHm4Jjn6EXsrvqY30TUIGV2tP2VtsQ7LHI8Mp/7CUm2IfnV d+mkf3RkIWZU4A2GKFhjhGt3demphDmH+uRxfV+2pzPpgmgwSpQlF6XYXygsmqw+ v8fHBT8PdRrEPbXZoUUK1UbwwoTF2GTzgfvIn2yKeWHiDUgneD7UhQD1PfpffPLU LtBcv7Uz/HVYAL91sdyUgqRkdV/+0OkEc8rLcbZcnjgglJkY9+VbOqc94aQJAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUAGib9r/Hz/n9xHpAg5dtAPTeJjowHwYDVR0j BBgwFoAU/NxSLCl3pCwOGpkgQPWEDIyD/2owDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEx NDg0NjU4OTY4OTUyODM0Ny8wL0ZDREM1MjJDMjk3N0E0MkMwRTFBOTkyMDQwRjU4 NDBDOEM4M0ZGNkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRkNEQzUyMkMyOTc3QTQyQzBFMUE5OTIwNDBGNTg0MEM4QzgzRkY2QS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTExNDg0NjU4OTY4OTUyODM0Ny8wLzMyMzEzODJlMzIz NDMwMmUzMTM4MzQyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNDM4MzAzOC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEANrwuDANBgkqhkiG9w0BAQsFAAOCAQEAj/NoVRMPSrV2j+eEL5u1BbeJ wns820eiaCFG8l8bGBNdvunR3ggqrsqI4cXV8BoSvV0M6g6d8vbWau3mGUSAG2Ij 8vNjLStMOd5DrFSb1/4/vYXkF4ORhdJvEYPyEzgMx/wMGej8/163DpsgnSKyD/La URS3WmmmEXFSyxbAWSxV5jqsL4Vean68zxyC0v09v8bZqUXRXgIrml/gRrwQJXkj P7JwcHJ9M+JrQBBsNbT5y8BuIwerPAIRbZyje3nvdeX68gNgcPq7y2jktKV9p2uj QLcaEHqqPzWS27t7Siry3DdMQRxG6MdQZEBW/8KnDLjTHC7oEwF/uLWjPg7vqA== -----END CERTIFICATE-----Generated at Fri Jun 12 02:24:48 2026 by rpki-client