$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1114852675259727895/0/312e3131392e3137382e302f32332d3233203d3e2034383038.roa File: 312e3131392e3137382e302f32332d3233203d3e2034383038.roa (raw, json) Hash identifier: 9uICLXjLL9j8/OlDDXwfnK1gqfcoptnJdxpfe0b2r04= Subject key identifier: 1E:FD:26:D6:60:09:5A:C3:C8:90:7E:50:C0:99:BE:34:25:66:CE:45 Certificate issuer: /CN=D43DFC413BC84FA18BD1B8E07A23462C043ACB23 Certificate serial: 02D13634C3D23583C1AFE9F4CE330D9B91FF7727 Authority key identifier: D4:3D:FC:41:3B:C8:4F:A1:8B:D1:B8:E0:7A:23:46:2C:04:3A:CB:23 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D43DFC413BC84FA18BD1B8E07A23462C043ACB23.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1114852675259727895/0/312e3131392e3137382e302f32332d3233203d3e2034383038.roa Signing time: Thu 04 Jun 2026 10:00:54 +0000 ROA not before: Thu 04 Jun 2026 09:55:54 +0000 ROA not after: Thu 03 Jun 2027 10:00:54 +0000 asID: 4808 IP address blocks: 1.119.178.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1114852675259727895/0/D43DFC413BC84FA18BD1B8E07A23462C043ACB23.crl rsync://rpki-rps.cnnic.cn/repo/A1114852675259727895/0/D43DFC413BC84FA18BD1B8E07A23462C043ACB23.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D43DFC413BC84FA18BD1B8E07A23462C043ACB23.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 19:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:d1:36:34:c3:d2:35:83:c1:af:e9:f4:ce:33:0d:9b:91:ff:77:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D43DFC413BC84FA18BD1B8E07A23462C043ACB23 Validity Not Before: Jun 4 09:55:54 2026 GMT Not After : Jun 3 10:00:54 2027 GMT Subject: CN=1EFD26D660095AC3C8907E50C099BE342566CE45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:e2:2c:94:57:66:de:44:01:25:5b:ab:77:f5: 82:65:5f:80:32:95:0c:a3:e9:99:b6:5a:6b:1b:58: 75:5b:db:26:71:dd:2f:82:13:28:a7:67:87:53:3d: d5:a7:11:b7:97:cd:32:b2:88:d9:cf:dc:2f:bd:b0: d8:9f:5e:48:16:af:f7:9e:50:a8:b3:64:47:b2:04: 34:b6:29:f2:43:6a:95:a1:97:4a:19:3a:3b:9b:d5: fd:c6:b3:07:fe:ef:1a:b9:39:fe:a6:f2:d4:7b:96: ed:86:48:63:15:48:98:ba:91:5d:a1:a0:2d:96:9c: b7:c8:95:1b:db:a5:9c:87:e4:21:36:64:a0:b6:38: ad:52:dc:35:ee:75:02:f8:3c:54:96:09:7e:16:91: df:e4:66:8d:60:39:40:b8:64:6d:8b:12:c0:5d:42: 48:4c:68:d5:7a:80:c5:d9:15:88:4f:93:37:47:79: c7:32:64:c7:6c:4f:df:1d:f9:3e:64:b8:e3:40:fd: eb:ff:09:db:00:6e:cf:d7:b3:b5:48:a8:89:f9:bd: f8:ed:63:33:6d:cd:a5:f6:49:ec:a6:46:b4:2d:7f: af:66:d4:47:65:98:64:ec:b7:48:c2:de:ac:02:18: d5:df:93:10:47:5d:ef:41:6b:28:17:bb:ba:89:e5: 63:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:FD:26:D6:60:09:5A:C3:C8:90:7E:50:C0:99:BE:34:25:66:CE:45 X509v3 Authority Key Identifier: keyid:D4:3D:FC:41:3B:C8:4F:A1:8B:D1:B8:E0:7A:23:46:2C:04:3A:CB:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1114852675259727895/0/D43DFC413BC84FA18BD1B8E07A23462C043ACB23.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D43DFC413BC84FA18BD1B8E07A23462C043ACB23.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1114852675259727895/0/312e3131392e3137382e302f32332d3233203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 1.119.178.0/23 Signature Algorithm: sha256WithRSAEncryption 4f:6c:66:f5:8a:4e:f3:77:f0:6a:fc:fc:32:e0:43:2d:5f:78: 06:1f:9a:a9:79:54:47:75:a5:dd:7c:78:35:b5:23:33:19:14: c4:81:7d:03:a7:03:77:cc:36:27:bc:a4:15:d9:73:9b:a7:f0: 0a:15:4a:9d:3f:37:20:65:4c:6e:4a:42:36:a0:f2:eb:a3:05: 1e:cb:56:4f:f9:e7:51:cd:ea:a4:09:fe:b2:26:9a:7d:2a:e1: 04:9e:99:9c:36:ae:2f:d2:7f:07:53:80:90:f9:9f:98:90:7f: 82:ab:54:7a:b0:2f:5f:26:d5:e8:e2:a7:f5:a2:6c:b9:10:58: 77:32:4d:f7:64:cd:ad:48:c3:70:ad:6d:db:fb:26:64:99:e7: 3e:c3:e6:c0:59:f0:98:a5:1e:5b:39:3a:bd:6b:4e:bd:97:40: 10:99:1c:8b:35:ab:aa:ac:2f:56:f5:a1:d1:d1:9c:cc:61:45: 16:13:eb:5d:72:5f:40:81:09:b3:79:68:00:d4:52:89:7d:18: bf:8f:25:94:a5:28:6c:65:83:bf:b7:41:4e:af:d0:33:9d:4c: 52:3e:c7:ec:94:55:87:1a:ae:3f:17:ad:c4:1e:0f:58:ff:6f: 5c:d9:14:7d:c0:4e:64:e7:bf:52:f9:2e:de:e8:6b:37:d4:c1: cd:56:dc:7b -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUAtE2NMPSNYPBr+n0zjMNm5H/dycwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDQzREZDNDEzQkM4NEZBMThCRDFCOEUwN0EyMzQ2MkMw NDNBQ0IyMzAeFw0yNjA2MDQwOTU1NTRaFw0yNzA2MDMxMDAwNTRaMDMxMTAvBgNV BAMTKDFFRkQyNkQ2NjAwOTVBQzNDODkwN0U1MEMwOTlCRTM0MjU2NkNFNDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCJ4iyUV2beRAElW6t39YJlX4Ay lQyj6Zm2WmsbWHVb2yZx3S+CEyinZ4dTPdWnEbeXzTKyiNnP3C+9sNifXkgWr/ee UKizZEeyBDS2KfJDapWhl0oZOjub1f3Gswf+7xq5Of6m8tR7lu2GSGMVSJi6kV2h oC2WnLfIlRvbpZyH5CE2ZKC2OK1S3DXudQL4PFSWCX4Wkd/kZo1gOUC4ZG2LEsBd QkhMaNV6gMXZFYhPkzdHeccyZMdsT98d+T5kuONA/ev/CdsAbs/Xs7VIqIn5vfjt YzNtzaX2SeymRrQtf69m1EdlmGTst0jC3qwCGNXfkxBHXe9BaygXu7qJ5WNTAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUHv0m1mAJWsPIkH5QwJm+NCVmzkUwHwYDVR0j BBgwFoAU1D38QTvIT6GL0bjgeiNGLAQ6yyMwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEx NDg1MjY3NTI1OTcyNzg5NS8wL0Q0M0RGQzQxM0JDODRGQTE4QkQxQjhFMDdBMjM0 NjJDMDQzQUNCMjMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRDQzREZDNDEzQkM4NEZBMThCRDFCOEUwN0EyMzQ2MkMwNDNBQ0IyMy5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTE0ODUyNjc1MjU5NzI3ODk1LzAvMzEyZTMxMzEzOTJl MzEzNzM4MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzQzODMwMzgucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAEBd7IwDQYJKoZIhvcNAQELBQADggEBAE9sZvWKTvN38Gr8/DLgQy1feAYfmql5 VEd1pd18eDW1IzMZFMSBfQOnA3fMNie8pBXZc5un8AoVSp0/NyBlTG5KQjag8uuj BR7LVk/551HN6qQJ/rImmn0q4QSemZw2ri/SfwdTgJD5n5iQf4KrVHqwL18m1eji p/WibLkQWHcyTfdkza1Iw3Ctbdv7JmSZ5z7D5sBZ8JilHls5Or1rTr2XQBCZHIs1 q6qsL1b1odHRnMxhRRYT611yX0CBCbN5aADUUol9GL+PJZSlKGxlg7+3QU6v0DOd TFI+x+yUVYcarj8XrcQeD1j/b1zZFH3ATmTnv1L5Lt7oazfUwc1W3Hs= -----END CERTIFICATE-----Generated at Fri Jun 12 02:24:13 2026 by rpki-client