$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1114852675259727895/0/312e3131392e3230302e302f32322d3232203d3e2034383437.roa File: 312e3131392e3230302e302f32322d3232203d3e2034383437.roa (raw, json) Hash identifier: qRM/rUEf2jUT1lNqFq/3JzZa+DiqzhCpFL+qfMX/rIo= Subject key identifier: D6:09:5F:E4:80:1F:12:45:A3:92:E1:02:BF:A2:49:82:B4:56:7E:4D Certificate issuer: /CN=D43DFC413BC84FA18BD1B8E07A23462C043ACB23 Certificate serial: 1D278019F8A3CA1A7F33C48D5CD0530A270978EA Authority key identifier: D4:3D:FC:41:3B:C8:4F:A1:8B:D1:B8:E0:7A:23:46:2C:04:3A:CB:23 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D43DFC413BC84FA18BD1B8E07A23462C043ACB23.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1114852675259727895/0/312e3131392e3230302e302f32322d3232203d3e2034383437.roa Signing time: Thu 04 Jun 2026 10:03:43 +0000 ROA not before: Thu 04 Jun 2026 09:58:43 +0000 ROA not after: Thu 03 Jun 2027 10:03:43 +0000 asID: 4847 IP address blocks: 1.119.200.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1114852675259727895/0/D43DFC413BC84FA18BD1B8E07A23462C043ACB23.crl rsync://rpki-rps.cnnic.cn/repo/A1114852675259727895/0/D43DFC413BC84FA18BD1B8E07A23462C043ACB23.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D43DFC413BC84FA18BD1B8E07A23462C043ACB23.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 19:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:27:80:19:f8:a3:ca:1a:7f:33:c4:8d:5c:d0:53:0a:27:09:78:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D43DFC413BC84FA18BD1B8E07A23462C043ACB23 Validity Not Before: Jun 4 09:58:43 2026 GMT Not After : Jun 3 10:03:43 2027 GMT Subject: CN=D6095FE4801F1245A392E102BFA24982B4567E4D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:66:eb:38:f1:e9:87:db:e5:63:13:b9:80:78: 0c:eb:7e:98:37:87:ec:f4:d1:97:ff:3c:6d:c0:49: b1:c7:80:5f:c4:b2:e0:c0:b1:db:14:52:95:13:df: 71:04:8c:7b:8a:d8:40:be:c5:2f:f1:c4:59:50:28: af:26:11:8d:13:51:90:fb:ec:a9:fe:b0:31:dd:40: 6f:dc:ca:17:78:c9:18:38:a3:1d:ec:e9:3b:62:50: 38:82:91:41:19:61:16:3f:87:85:48:38:23:49:79: 08:d8:21:3f:d6:51:23:9c:e9:11:c6:50:d4:f4:35: b3:4a:df:63:1c:a6:17:bd:64:95:cf:01:e9:1d:66: 96:b8:30:98:d4:43:54:24:12:60:4a:83:3c:6c:5a: 13:7e:cb:b1:07:f2:d1:9b:35:dc:20:62:22:76:4c: 3d:68:36:d7:55:3a:a2:14:24:dd:e4:ce:39:22:45: 27:3b:1e:e4:02:02:11:96:37:91:cb:9b:ab:16:02: 91:7a:bd:55:78:a2:1b:b3:d4:1f:d7:cc:11:8e:8f: b9:75:6f:56:33:8d:16:64:88:78:b0:6b:de:67:63: db:6a:7e:2c:b4:ed:b7:e0:1b:aa:e8:a7:1a:ef:55: 23:61:0f:a5:92:6f:13:0c:0d:2e:5a:fd:48:bc:45: f5:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:09:5F:E4:80:1F:12:45:A3:92:E1:02:BF:A2:49:82:B4:56:7E:4D X509v3 Authority Key Identifier: keyid:D4:3D:FC:41:3B:C8:4F:A1:8B:D1:B8:E0:7A:23:46:2C:04:3A:CB:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1114852675259727895/0/D43DFC413BC84FA18BD1B8E07A23462C043ACB23.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D43DFC413BC84FA18BD1B8E07A23462C043ACB23.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1114852675259727895/0/312e3131392e3230302e302f32322d3232203d3e2034383437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 1.119.200.0/22 Signature Algorithm: sha256WithRSAEncryption 8f:ef:62:7e:1a:f8:96:fc:27:f2:37:5d:b3:33:33:68:0f:57: b4:0e:e8:c7:12:95:3a:be:82:63:d6:f8:5c:70:95:b6:3e:ee: c7:72:cb:9a:92:69:a1:5c:46:90:27:4c:33:fb:c1:d6:14:c9: ca:69:99:94:42:93:d7:72:7d:55:fd:f4:61:e9:f5:c8:65:f5: b8:c4:6a:0a:b2:94:a8:26:f1:d9:f1:f9:8d:d0:31:5f:34:6c: 90:f5:1c:e8:63:4a:aa:ce:c4:f5:bb:37:79:24:f1:98:76:6b: e5:64:c7:e8:34:8f:bc:ee:3a:e5:db:fb:98:70:c4:21:6a:a4: b9:a9:58:44:c7:e0:a0:b6:87:e7:bb:35:62:f9:f5:3c:72:74: 82:2c:22:de:31:4b:5b:74:b8:9b:79:d3:4b:10:0c:71:9a:d7: 26:aa:b0:31:30:d9:0d:59:c1:bb:12:eb:4e:a0:a8:0e:30:09: f6:cf:e5:70:99:23:39:44:65:df:6e:c7:ef:ac:60:e6:13:b2: f7:b5:5f:93:95:e3:37:44:2e:c7:35:1a:06:d9:02:f7:60:df: 91:ab:46:35:39:f0:d8:4b:9c:b2:90:5a:92:78:cb:80:08:1a: 17:1d:bd:01:e1:2d:ee:ec:4f:82:c1:3d:88:38:cd:1b:8f:91: c3:ba:60:76 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUHSeAGfijyhp/M8SNXNBTCicJeOowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDQzREZDNDEzQkM4NEZBMThCRDFCOEUwN0EyMzQ2MkMw NDNBQ0IyMzAeFw0yNjA2MDQwOTU4NDNaFw0yNzA2MDMxMDAzNDNaMDMxMTAvBgNV BAMTKEQ2MDk1RkU0ODAxRjEyNDVBMzkyRTEwMkJGQTI0OTgyQjQ1NjdFNEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0Zus48emH2+VjE7mAeAzrfpg3 h+z00Zf/PG3ASbHHgF/EsuDAsdsUUpUT33EEjHuK2EC+xS/xxFlQKK8mEY0TUZD7 7Kn+sDHdQG/cyhd4yRg4ox3s6TtiUDiCkUEZYRY/h4VIOCNJeQjYIT/WUSOc6RHG UNT0NbNK32Mcphe9ZJXPAekdZpa4MJjUQ1QkEmBKgzxsWhN+y7EH8tGbNdwgYiJ2 TD1oNtdVOqIUJN3kzjkiRSc7HuQCAhGWN5HLm6sWApF6vVV4ohuz1B/XzBGOj7l1 b1YzjRZkiHiwa95nY9tqfiy07bfgG6ropxrvVSNhD6WSbxMMDS5a/Ui8RfUnAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQU1glf5IAfEkWjkuECv6JJgrRWfk0wHwYDVR0j BBgwFoAU1D38QTvIT6GL0bjgeiNGLAQ6yyMwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEx NDg1MjY3NTI1OTcyNzg5NS8wL0Q0M0RGQzQxM0JDODRGQTE4QkQxQjhFMDdBMjM0 NjJDMDQzQUNCMjMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRDQzREZDNDEzQkM4NEZBMThCRDFCOEUwN0EyMzQ2MkMwNDNBQ0IyMy5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTE0ODUyNjc1MjU5NzI3ODk1LzAvMzEyZTMxMzEzOTJl MzIzMDMwMmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzQzODM0Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAIBd8gwDQYJKoZIhvcNAQELBQADggEBAI/vYn4a+Jb8J/I3XbMzM2gPV7QO6McS lTq+gmPW+FxwlbY+7sdyy5qSaaFcRpAnTDP7wdYUycppmZRCk9dyfVX99GHp9chl 9bjEagqylKgm8dnx+Y3QMV80bJD1HOhjSqrOxPW7N3kk8Zh2a+Vkx+g0j7zuOuXb +5hwxCFqpLmpWETH4KC2h+e7NWL59TxydIIsIt4xS1t0uJt500sQDHGa1yaqsDEw 2Q1ZwbsS606gqA4wCfbP5XCZIzlEZd9ux++sYOYTsve1X5OV4zdELsc1GgbZAvdg 35GrRjU58NhLnLKQWpJ4y4AIGhcdvQHhLe7sT4LBPYg4zRuPkcO6YHY= -----END CERTIFICATE-----Generated at Fri Jun 12 02:23:48 2026 by rpki-client