$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1114852675259727895/0/312e3131392e3139322e302f32312d3231203d3e2034383038.roa File: 312e3131392e3139322e302f32312d3231203d3e2034383038.roa (raw, json) Hash identifier: Ga6IokCcRDj3nBYCTXoXV6+8A0MVTAWFIPsVjF2HhLQ= Subject key identifier: EB:D8:78:D0:0D:32:5E:56:29:95:7F:6B:74:BA:F8:9E:6F:7E:5C:76 Certificate issuer: /CN=D43DFC413BC84FA18BD1B8E07A23462C043ACB23 Certificate serial: 5DEBE7F8947A38C4BD78E2F6AFDA30CD988C2896 Authority key identifier: D4:3D:FC:41:3B:C8:4F:A1:8B:D1:B8:E0:7A:23:46:2C:04:3A:CB:23 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D43DFC413BC84FA18BD1B8E07A23462C043ACB23.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1114852675259727895/0/312e3131392e3139322e302f32312d3231203d3e2034383038.roa Signing time: Thu 04 Jun 2026 10:03:11 +0000 ROA not before: Thu 04 Jun 2026 09:58:11 +0000 ROA not after: Thu 03 Jun 2027 10:03:11 +0000 asID: 4808 IP address blocks: 1.119.192.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1114852675259727895/0/D43DFC413BC84FA18BD1B8E07A23462C043ACB23.crl rsync://rpki-rps.cnnic.cn/repo/A1114852675259727895/0/D43DFC413BC84FA18BD1B8E07A23462C043ACB23.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D43DFC413BC84FA18BD1B8E07A23462C043ACB23.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 19:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:eb:e7:f8:94:7a:38:c4:bd:78:e2:f6:af:da:30:cd:98:8c:28:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D43DFC413BC84FA18BD1B8E07A23462C043ACB23 Validity Not Before: Jun 4 09:58:11 2026 GMT Not After : Jun 3 10:03:11 2027 GMT Subject: CN=EBD878D00D325E5629957F6B74BAF89E6F7E5C76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:42:91:59:a3:88:e9:f2:50:de:57:35:eb:46: b8:fb:d5:29:d6:8c:ae:e7:74:36:5e:bf:e0:f0:ca: 04:16:a8:c7:e6:b0:9f:d5:18:61:a8:e3:07:54:42: 08:6c:3e:a9:1d:65:8e:cd:b6:c3:1c:f9:c8:11:c8: 27:f4:54:e3:1b:e0:4a:45:a9:18:cc:87:e1:85:3f: 9c:17:4d:6e:be:75:65:cc:4b:e6:8a:03:79:52:b6: fa:c1:8d:36:df:51:db:46:bd:3a:3a:45:66:d8:d0: 7c:f3:a0:61:24:8f:31:c9:ce:b8:df:d7:1d:bb:1d: 06:d8:d9:1d:3c:2b:80:01:25:25:5e:f2:ef:60:e8: af:fe:15:3c:74:5e:2e:91:ee:eb:15:d9:e5:d7:70: 46:f9:59:d3:14:bd:1b:5d:ce:10:65:f8:da:c9:5c: de:c5:50:63:b6:86:6a:d2:63:1c:1b:14:fc:f4:38: 50:41:7e:e0:58:d7:d0:23:c7:e4:75:f4:59:e2:4e: 4e:20:1b:16:bf:07:54:2c:80:1e:a9:50:6c:bf:c5: 3b:bf:51:63:30:65:97:ce:16:be:88:da:0a:87:02: 63:00:6b:78:52:dd:88:88:95:aa:29:ba:4f:b4:0f: 5c:18:1c:0e:c3:4a:3b:b7:e2:ec:36:ec:e7:36:ac: 4f:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:D8:78:D0:0D:32:5E:56:29:95:7F:6B:74:BA:F8:9E:6F:7E:5C:76 X509v3 Authority Key Identifier: keyid:D4:3D:FC:41:3B:C8:4F:A1:8B:D1:B8:E0:7A:23:46:2C:04:3A:CB:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1114852675259727895/0/D43DFC413BC84FA18BD1B8E07A23462C043ACB23.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D43DFC413BC84FA18BD1B8E07A23462C043ACB23.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1114852675259727895/0/312e3131392e3139322e302f32312d3231203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 1.119.192.0/21 Signature Algorithm: sha256WithRSAEncryption 6b:56:ae:30:43:30:c5:96:7b:36:41:13:34:0a:8c:c7:95:91: 5e:bc:05:52:c1:63:71:41:ce:95:3f:e7:17:53:34:15:4d:02: 3e:67:5e:3e:1e:03:bb:cd:eb:2c:68:20:e5:09:48:1f:64:84: 96:83:eb:f7:3d:63:c7:34:94:da:1c:6f:1f:bd:43:47:1a:72: ac:65:aa:54:78:56:77:81:15:17:35:33:bd:c5:df:d7:09:b4: 0e:71:2c:da:86:dc:c0:43:9e:ff:7f:c8:1a:34:f7:33:04:4f: c0:8a:1f:e6:d6:d2:4a:76:23:34:33:40:6c:e8:f9:2c:83:9a: 48:f3:45:4a:83:ad:a3:82:0c:31:73:25:d2:d6:25:d5:df:4d: 74:b8:fd:5e:30:72:38:54:bb:b8:48:ac:6c:e2:89:17:a7:fe: 53:83:a5:46:e1:1c:ae:77:5a:99:63:c7:7a:bd:49:01:94:e3: b9:45:96:ec:4c:6f:10:e0:94:89:b3:a6:c4:83:9f:0f:76:24: b5:8e:80:df:cc:49:15:cc:cf:67:fa:1a:fd:fd:c2:e1:7d:78: 7b:cf:97:8a:4d:f4:77:dd:31:4f:80:a4:c2:d1:39:df:0f:8c: c8:e3:ed:dd:16:f4:03:3f:cd:94:d5:c8:39:41:57:aa:99:a3: 35:9f:0d:7a -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUXevn+JR6OMS9eOL2r9owzZiMKJYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDQzREZDNDEzQkM4NEZBMThCRDFCOEUwN0EyMzQ2MkMw NDNBQ0IyMzAeFw0yNjA2MDQwOTU4MTFaFw0yNzA2MDMxMDAzMTFaMDMxMTAvBgNV BAMTKEVCRDg3OEQwMEQzMjVFNTYyOTk1N0Y2Qjc0QkFGODlFNkY3RTVDNzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvQpFZo4jp8lDeVzXrRrj71SnW jK7ndDZev+DwygQWqMfmsJ/VGGGo4wdUQghsPqkdZY7NtsMc+cgRyCf0VOMb4EpF qRjMh+GFP5wXTW6+dWXMS+aKA3lStvrBjTbfUdtGvTo6RWbY0HzzoGEkjzHJzrjf 1x27HQbY2R08K4ABJSVe8u9g6K/+FTx0Xi6R7usV2eXXcEb5WdMUvRtdzhBl+NrJ XN7FUGO2hmrSYxwbFPz0OFBBfuBY19Ajx+R19FniTk4gGxa/B1QsgB6pUGy/xTu/ UWMwZZfOFr6I2gqHAmMAa3hS3YiIlaopuk+0D1wYHA7DSju34uw27Oc2rE+JAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQU69h40A0yXlYplX9rdLr4nm9+XHYwHwYDVR0j BBgwFoAU1D38QTvIT6GL0bjgeiNGLAQ6yyMwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEx NDg1MjY3NTI1OTcyNzg5NS8wL0Q0M0RGQzQxM0JDODRGQTE4QkQxQjhFMDdBMjM0 NjJDMDQzQUNCMjMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRDQzREZDNDEzQkM4NEZBMThCRDFCOEUwN0EyMzQ2MkMwNDNBQ0IyMy5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTE0ODUyNjc1MjU5NzI3ODk1LzAvMzEyZTMxMzEzOTJl MzEzOTMyMmUzMDJmMzIzMTJkMzIzMTIwM2QzZTIwMzQzODMwMzgucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAMBd8AwDQYJKoZIhvcNAQELBQADggEBAGtWrjBDMMWWezZBEzQKjMeVkV68BVLB Y3FBzpU/5xdTNBVNAj5nXj4eA7vN6yxoIOUJSB9khJaD6/c9Y8c0lNocbx+9Q0ca cqxlqlR4VneBFRc1M73F39cJtA5xLNqG3MBDnv9/yBo09zMET8CKH+bW0kp2IzQz QGzo+SyDmkjzRUqDraOCDDFzJdLWJdXfTXS4/V4wcjhUu7hIrGziiRen/lODpUbh HK53Wpljx3q9SQGU47lFluxMbxDglImzpsSDnw92JLWOgN/MSRXMz2f6Gv39wuF9 eHvPl4pN9HfdMU+ApMLROd8PjMjj7d0W9AM/zZTVyDlBV6qZozWfDXo= -----END CERTIFICATE-----Generated at Fri Jun 12 02:24:11 2026 by rpki-client