$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1114852675259727895/0/312e3131392e3230382e302f32332d3233203d3e2034383038.roa File: 312e3131392e3230382e302f32332d3233203d3e2034383038.roa (raw, json) Hash identifier: 4UpCjNnzbejh26AeDnjuO8fstcEOgtGPyAagMXPv8M8= Subject key identifier: A3:BA:E8:8B:AA:61:D1:0F:E9:EA:21:23:A5:35:7A:37:F9:F9:D0:40 Certificate issuer: /CN=D43DFC413BC84FA18BD1B8E07A23462C043ACB23 Certificate serial: 1C7D14481E573E59FD81C8E69434ECF0EC525C8D Authority key identifier: D4:3D:FC:41:3B:C8:4F:A1:8B:D1:B8:E0:7A:23:46:2C:04:3A:CB:23 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D43DFC413BC84FA18BD1B8E07A23462C043ACB23.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1114852675259727895/0/312e3131392e3230382e302f32332d3233203d3e2034383038.roa Signing time: Thu 04 Jun 2026 10:05:01 +0000 ROA not before: Thu 04 Jun 2026 10:00:01 +0000 ROA not after: Thu 03 Jun 2027 10:05:01 +0000 asID: 4808 IP address blocks: 1.119.208.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1114852675259727895/0/D43DFC413BC84FA18BD1B8E07A23462C043ACB23.crl rsync://rpki-rps.cnnic.cn/repo/A1114852675259727895/0/D43DFC413BC84FA18BD1B8E07A23462C043ACB23.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D43DFC413BC84FA18BD1B8E07A23462C043ACB23.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 19:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:7d:14:48:1e:57:3e:59:fd:81:c8:e6:94:34:ec:f0:ec:52:5c:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D43DFC413BC84FA18BD1B8E07A23462C043ACB23 Validity Not Before: Jun 4 10:00:01 2026 GMT Not After : Jun 3 10:05:01 2027 GMT Subject: CN=A3BAE88BAA61D10FE9EA2123A5357A37F9F9D040 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:27:02:58:71:79:bb:76:5c:d1:96:ca:f6:17: 74:61:34:79:1e:bd:d5:35:0f:49:ff:e1:58:b1:46: d9:f9:7e:fb:03:5a:79:76:21:32:8a:56:3e:af:c8: 24:96:77:3f:4d:ad:46:18:1a:62:8d:0b:7c:cb:77: 1d:81:63:74:89:1c:db:b6:f0:29:62:13:7e:f1:98: 00:24:bb:3f:b3:99:5d:22:07:f3:b2:3f:d4:4d:ac: 82:4c:59:89:fa:b5:c7:bd:fc:fa:e0:e3:f5:cf:c7: d0:93:16:0c:90:a8:f0:69:f8:af:43:34:24:f8:c8: c1:6f:8f:7f:fb:91:68:45:08:f4:59:6c:65:b6:d3: 1c:e7:d8:47:90:9f:3c:c3:57:70:85:85:2a:70:ba: a2:0e:96:a6:a4:3a:14:97:6f:78:c8:22:03:db:34: e6:c7:a9:84:db:56:00:55:af:99:f8:13:2f:f5:08: b2:90:97:ae:2a:e7:05:c3:97:c0:54:12:61:ec:1b: 10:47:6b:b8:ad:56:fa:29:67:bf:3d:d9:d9:44:1c: 11:d3:75:34:8f:a0:1d:72:0a:77:ed:08:57:59:47: 2a:0c:53:bd:42:ab:f1:5d:47:12:f1:22:41:42:ab: 26:4b:8f:36:dc:2c:1c:97:39:da:d4:4f:c0:5e:e0: 99:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:BA:E8:8B:AA:61:D1:0F:E9:EA:21:23:A5:35:7A:37:F9:F9:D0:40 X509v3 Authority Key Identifier: keyid:D4:3D:FC:41:3B:C8:4F:A1:8B:D1:B8:E0:7A:23:46:2C:04:3A:CB:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1114852675259727895/0/D43DFC413BC84FA18BD1B8E07A23462C043ACB23.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D43DFC413BC84FA18BD1B8E07A23462C043ACB23.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1114852675259727895/0/312e3131392e3230382e302f32332d3233203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 1.119.208.0/23 Signature Algorithm: sha256WithRSAEncryption 52:30:e1:93:2d:10:d8:e6:01:d1:46:d5:a4:d1:ef:92:dc:fe: 65:f6:2d:3a:dc:be:37:42:f3:93:e6:6c:26:70:df:cf:64:50: f6:09:05:d9:f4:39:05:21:c1:32:90:2e:d9:fd:6e:4b:8c:b7: 61:f8:33:91:b9:e0:f7:22:7b:7b:cf:f0:aa:35:c2:e2:37:b3: d7:1c:7d:12:8e:29:c6:ee:df:84:cb:49:5d:8b:1c:69:5e:84: 0c:d3:d9:da:6c:0b:dc:55:2b:b9:c0:ad:fd:cb:4c:8d:24:c8: 9d:94:5e:2b:f6:c3:d3:94:a0:fa:d8:38:7d:30:ed:9a:0b:19: e8:59:63:4c:e5:59:f0:75:a9:58:38:ce:1d:4c:6d:63:64:e3: c9:01:00:58:fd:15:ef:13:c2:5a:55:a4:00:1b:7c:0c:65:c2: 67:13:83:6e:b7:3c:a8:ac:af:f5:b5:10:64:45:8d:12:c9:fe: 90:ee:8f:60:96:e7:c3:65:ed:57:d3:74:32:b4:ec:b2:50:c6: 1d:44:19:fe:83:f9:64:f9:9c:09:fd:3e:e5:cb:00:c3:44:ef: 9e:66:4f:ab:43:a4:05:94:d3:cf:4c:d0:fd:c0:63:aa:a2:3e: 75:38:2e:c1:c9:22:c7:00:da:6d:ca:d9:7e:98:f7:81:e8:da: 09:f3:de:fb -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUHH0USB5XPln9gcjmlDTs8OxSXI0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDQzREZDNDEzQkM4NEZBMThCRDFCOEUwN0EyMzQ2MkMw NDNBQ0IyMzAeFw0yNjA2MDQxMDAwMDFaFw0yNzA2MDMxMDA1MDFaMDMxMTAvBgNV BAMTKEEzQkFFODhCQUE2MUQxMEZFOUVBMjEyM0E1MzU3QTM3RjlGOUQwNDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCTJwJYcXm7dlzRlsr2F3RhNHke vdU1D0n/4VixRtn5fvsDWnl2ITKKVj6vyCSWdz9NrUYYGmKNC3zLdx2BY3SJHNu2 8CliE37xmAAkuz+zmV0iB/OyP9RNrIJMWYn6tce9/Prg4/XPx9CTFgyQqPBp+K9D NCT4yMFvj3/7kWhFCPRZbGW20xzn2EeQnzzDV3CFhSpwuqIOlqakOhSXb3jIIgPb NObHqYTbVgBVr5n4Ey/1CLKQl64q5wXDl8BUEmHsGxBHa7itVvopZ7892dlEHBHT dTSPoB1yCnftCFdZRyoMU71Cq/FdRxLxIkFCqyZLjzbcLByXOdrUT8Be4JnLAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUo7roi6ph0Q/p6iEjpTV6N/n50EAwHwYDVR0j BBgwFoAU1D38QTvIT6GL0bjgeiNGLAQ6yyMwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEx NDg1MjY3NTI1OTcyNzg5NS8wL0Q0M0RGQzQxM0JDODRGQTE4QkQxQjhFMDdBMjM0 NjJDMDQzQUNCMjMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRDQzREZDNDEzQkM4NEZBMThCRDFCOEUwN0EyMzQ2MkMwNDNBQ0IyMy5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTE0ODUyNjc1MjU5NzI3ODk1LzAvMzEyZTMxMzEzOTJl MzIzMDM4MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzQzODMwMzgucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAEBd9AwDQYJKoZIhvcNAQELBQADggEBAFIw4ZMtENjmAdFG1aTR75Lc/mX2LTrc vjdC85PmbCZw389kUPYJBdn0OQUhwTKQLtn9bkuMt2H4M5G54Pcie3vP8Ko1wuI3 s9ccfRKOKcbu34TLSV2LHGlehAzT2dpsC9xVK7nArf3LTI0kyJ2UXiv2w9OUoPrY OH0w7ZoLGehZY0zlWfB1qVg4zh1MbWNk48kBAFj9Fe8TwlpVpAAbfAxlwmcTg263 PKisr/W1EGRFjRLJ/pDuj2CW58Nl7VfTdDK07LJQxh1EGf6D+WT5nAn9PuXLAMNE 755mT6tDpAWU089M0P3AY6qiPnU4LsHJIscA2m3K2X6Y94Ho2gnz3vs= -----END CERTIFICATE-----Generated at Fri Jun 12 02:23:50 2026 by rpki-client