$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1114852675259727895/0/312e3131392e3230382e302f32332d3233203d3e2034383437.roa File: 312e3131392e3230382e302f32332d3233203d3e2034383437.roa (raw, json) Hash identifier: cPjBBV7B+42pHSYNp4q2pDOt3/fb3nX6CBhaGrDUBeE= Subject key identifier: CB:3B:3E:DE:23:61:0C:FA:57:F1:0C:57:87:70:A6:BA:5B:24:94:27 Certificate issuer: /CN=D43DFC413BC84FA18BD1B8E07A23462C043ACB23 Certificate serial: 72757B637E89FBA0FEB076CD132FB835D82A645E Authority key identifier: D4:3D:FC:41:3B:C8:4F:A1:8B:D1:B8:E0:7A:23:46:2C:04:3A:CB:23 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D43DFC413BC84FA18BD1B8E07A23462C043ACB23.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1114852675259727895/0/312e3131392e3230382e302f32332d3233203d3e2034383437.roa Signing time: Thu 04 Jun 2026 10:05:00 +0000 ROA not before: Thu 04 Jun 2026 10:00:00 +0000 ROA not after: Thu 03 Jun 2027 10:05:00 +0000 asID: 4847 IP address blocks: 1.119.208.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1114852675259727895/0/D43DFC413BC84FA18BD1B8E07A23462C043ACB23.crl rsync://rpki-rps.cnnic.cn/repo/A1114852675259727895/0/D43DFC413BC84FA18BD1B8E07A23462C043ACB23.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D43DFC413BC84FA18BD1B8E07A23462C043ACB23.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 19:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:75:7b:63:7e:89:fb:a0:fe:b0:76:cd:13:2f:b8:35:d8:2a:64:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D43DFC413BC84FA18BD1B8E07A23462C043ACB23 Validity Not Before: Jun 4 10:00:00 2026 GMT Not After : Jun 3 10:05:00 2027 GMT Subject: CN=CB3B3EDE23610CFA57F10C578770A6BA5B249427 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:65:87:f3:05:81:98:ea:88:19:2a:68:ee:ef: ac:41:50:dc:ff:c6:87:62:2c:4f:ca:31:1b:a3:21: 26:ec:d1:ee:d0:3f:7b:c2:61:6b:a8:da:68:03:df: 5f:e7:7a:3c:9f:37:b7:34:4e:f0:de:7f:98:3c:eb: 09:ed:cd:30:fe:d9:9b:14:27:3c:a6:3d:49:90:15: a9:80:9e:ee:37:66:57:b7:d6:18:d1:eb:86:0f:b4: 1a:79:90:dd:28:6e:20:11:be:8a:bf:48:f6:0a:c5: 30:96:dc:d0:eb:59:9d:d1:8b:7b:aa:ca:35:02:ed: 2b:e5:18:15:3f:29:c6:6d:b4:8d:a2:6c:8c:fb:5c: 94:8c:7d:92:4b:0d:d2:d2:8c:7d:46:7f:d4:da:96: d5:45:bd:0a:a6:6c:fa:5f:44:2c:3a:ce:28:49:60: 3a:d2:b8:4e:b7:71:c0:59:3b:36:7e:5a:b5:37:85: dd:05:d5:1e:1b:81:72:11:46:02:32:a1:3d:73:fa: 44:8e:e6:82:fd:93:08:06:ea:42:0a:83:a6:19:2e: 24:cf:c0:6d:50:b2:1f:cb:ba:56:bb:5f:be:91:bd: fe:82:fc:43:7c:70:55:8b:d8:25:b9:48:54:b6:11: a4:a1:dd:46:b8:96:0c:e8:97:69:1c:37:70:59:c9: 12:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:3B:3E:DE:23:61:0C:FA:57:F1:0C:57:87:70:A6:BA:5B:24:94:27 X509v3 Authority Key Identifier: keyid:D4:3D:FC:41:3B:C8:4F:A1:8B:D1:B8:E0:7A:23:46:2C:04:3A:CB:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1114852675259727895/0/D43DFC413BC84FA18BD1B8E07A23462C043ACB23.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D43DFC413BC84FA18BD1B8E07A23462C043ACB23.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1114852675259727895/0/312e3131392e3230382e302f32332d3233203d3e2034383437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 1.119.208.0/23 Signature Algorithm: sha256WithRSAEncryption 1e:35:7c:15:2b:18:0c:86:f5:00:98:3b:9b:83:6a:80:bf:b4: 5e:85:41:37:62:98:eb:53:97:60:a8:07:6b:b6:50:5c:e6:a1: f9:22:01:90:35:e6:b1:12:51:c6:7a:19:7a:48:5f:9c:53:d7: 4e:40:4b:81:42:a5:d5:69:af:e3:87:b9:e8:22:17:0c:6c:75: 6c:c0:93:f7:ca:1f:2e:f2:12:3f:2e:24:79:db:fe:6b:85:94: 8d:7b:61:57:e6:18:5e:10:58:21:cc:0b:6b:72:9e:c2:90:09: 0c:41:72:fd:61:b6:21:57:0b:c3:34:87:63:20:34:8f:91:c2: 47:b4:35:28:5e:33:cd:e1:52:b8:59:a1:6b:f6:87:8b:fb:6d: 3e:31:a2:8a:90:a2:12:4f:bf:19:32:60:3b:2a:89:25:a4:5d: 90:68:fb:59:b2:2b:e6:bc:65:ce:25:3f:ce:dc:ed:7f:2a:54: 98:2e:ec:14:d8:25:e8:11:8f:3d:cb:5b:54:02:5e:bd:1a:01: 2d:57:5b:8e:19:84:a2:45:c5:c5:ac:8a:3e:4f:b1:99:fe:1d: fe:2d:91:76:24:12:9a:3b:a7:0b:33:38:6a:be:c6:5b:89:59: dd:24:19:f5:66:6f:d5:a1:5c:7c:b7:ee:0d:a2:75:5f:f7:79: 76:d7:72:f1 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUcnV7Y36J+6D+sHbNEy+4NdgqZF4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDQzREZDNDEzQkM4NEZBMThCRDFCOEUwN0EyMzQ2MkMw NDNBQ0IyMzAeFw0yNjA2MDQxMDAwMDBaFw0yNzA2MDMxMDA1MDBaMDMxMTAvBgNV BAMTKENCM0IzRURFMjM2MTBDRkE1N0YxMEM1Nzg3NzBBNkJBNUIyNDk0MjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3ZYfzBYGY6ogZKmju76xBUNz/ xodiLE/KMRujISbs0e7QP3vCYWuo2mgD31/nejyfN7c0TvDef5g86wntzTD+2ZsU JzymPUmQFamAnu43Zle31hjR64YPtBp5kN0obiARvoq/SPYKxTCW3NDrWZ3Ri3uq yjUC7SvlGBU/KcZttI2ibIz7XJSMfZJLDdLSjH1Gf9TaltVFvQqmbPpfRCw6zihJ YDrSuE63ccBZOzZ+WrU3hd0F1R4bgXIRRgIyoT1z+kSO5oL9kwgG6kIKg6YZLiTP wG1Qsh/Lula7X76Rvf6C/EN8cFWL2CW5SFS2EaSh3Ua4lgzol2kcN3BZyRI/AgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUyzs+3iNhDPpX8QxXh3CmulsklCcwHwYDVR0j BBgwFoAU1D38QTvIT6GL0bjgeiNGLAQ6yyMwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEx NDg1MjY3NTI1OTcyNzg5NS8wL0Q0M0RGQzQxM0JDODRGQTE4QkQxQjhFMDdBMjM0 NjJDMDQzQUNCMjMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRDQzREZDNDEzQkM4NEZBMThCRDFCOEUwN0EyMzQ2MkMwNDNBQ0IyMy5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTE0ODUyNjc1MjU5NzI3ODk1LzAvMzEyZTMxMzEzOTJl MzIzMDM4MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzQzODM0Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAEBd9AwDQYJKoZIhvcNAQELBQADggEBAB41fBUrGAyG9QCYO5uDaoC/tF6FQTdi mOtTl2CoB2u2UFzmofkiAZA15rESUcZ6GXpIX5xT105AS4FCpdVpr+OHuegiFwxs dWzAk/fKHy7yEj8uJHnb/muFlI17YVfmGF4QWCHMC2tynsKQCQxBcv1htiFXC8M0 h2MgNI+Rwke0NSheM83hUrhZoWv2h4v7bT4xooqQohJPvxkyYDsqiSWkXZBo+1my K+a8Zc4lP87c7X8qVJgu7BTYJegRjz3LW1QCXr0aAS1XW44ZhKJFxcWsij5PsZn+ Hf4tkXYkEpo7pwszOGq+xluJWd0kGfVmb9WhXHy37g2idV/3eXbXcvE= -----END CERTIFICATE-----Generated at Fri Jun 12 02:23:50 2026 by rpki-client