$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1114852675259727895/0/312e3131392e3231302e302f32332d3233203d3e2034383038.roa File: 312e3131392e3231302e302f32332d3233203d3e2034383038.roa (raw, json) Hash identifier: 1L3U0/60sLZS+Z/pNTWWOqpvnPhUaI1f6HMrDfzGSv0= Subject key identifier: 79:25:CA:CE:C8:2B:8E:62:0A:1D:71:3B:5D:C9:C8:EF:C9:C8:AF:D2 Certificate issuer: /CN=D43DFC413BC84FA18BD1B8E07A23462C043ACB23 Certificate serial: 0A4E5FE0C20C7251AB4C7654644F7B14A6F14115 Authority key identifier: D4:3D:FC:41:3B:C8:4F:A1:8B:D1:B8:E0:7A:23:46:2C:04:3A:CB:23 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D43DFC413BC84FA18BD1B8E07A23462C043ACB23.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1114852675259727895/0/312e3131392e3231302e302f32332d3233203d3e2034383038.roa Signing time: Thu 04 Jun 2026 10:05:27 +0000 ROA not before: Thu 04 Jun 2026 10:00:27 +0000 ROA not after: Thu 03 Jun 2027 10:05:27 +0000 asID: 4808 IP address blocks: 1.119.210.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1114852675259727895/0/D43DFC413BC84FA18BD1B8E07A23462C043ACB23.crl rsync://rpki-rps.cnnic.cn/repo/A1114852675259727895/0/D43DFC413BC84FA18BD1B8E07A23462C043ACB23.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D43DFC413BC84FA18BD1B8E07A23462C043ACB23.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 19:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:4e:5f:e0:c2:0c:72:51:ab:4c:76:54:64:4f:7b:14:a6:f1:41:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D43DFC413BC84FA18BD1B8E07A23462C043ACB23 Validity Not Before: Jun 4 10:00:27 2026 GMT Not After : Jun 3 10:05:27 2027 GMT Subject: CN=7925CACEC82B8E620A1D713B5DC9C8EFC9C8AFD2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:ce:0d:2b:bf:96:75:d0:2a:b5:3f:ac:df:9d: bf:47:6c:cb:6e:ec:3c:81:95:4b:6b:73:47:73:ce: 28:b8:e9:49:69:6a:a7:4b:b1:a8:92:d0:ea:09:ca: 89:dd:6f:bd:2b:9b:10:4b:83:46:f1:b1:d3:9c:07: a1:c8:f2:a9:cf:28:9a:95:da:a8:e2:49:5d:50:1f: 41:c8:0e:c0:c8:9d:d8:56:06:04:89:8d:dc:13:8e: 0c:fc:97:e8:8c:58:fc:73:41:22:cf:cf:91:b5:a2: 7c:34:31:de:6e:18:46:bb:40:bf:14:00:a0:80:7b: 7d:33:d2:0f:03:61:f6:ea:59:0f:c0:10:dd:89:b1: 53:62:d7:52:c8:65:bc:7b:c6:62:cc:68:82:29:70: ec:c8:91:c9:af:70:23:83:a5:fa:a2:e3:b8:6a:6a: 95:1d:6f:88:c9:cf:66:40:9c:a5:d7:40:31:6b:47: ee:56:d1:7b:55:40:c1:02:86:6c:03:bd:0c:70:10: a6:12:f9:7c:1b:15:82:6a:61:82:d4:e3:5a:77:a2: a2:1d:69:52:a0:38:d1:a4:fc:94:db:c2:bc:da:ae: 1b:2a:d8:31:4c:1f:3f:40:5c:13:35:83:a2:cd:97: b1:ea:17:e2:86:9a:ea:ac:46:a3:1b:f9:8c:b1:88: b7:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:25:CA:CE:C8:2B:8E:62:0A:1D:71:3B:5D:C9:C8:EF:C9:C8:AF:D2 X509v3 Authority Key Identifier: keyid:D4:3D:FC:41:3B:C8:4F:A1:8B:D1:B8:E0:7A:23:46:2C:04:3A:CB:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1114852675259727895/0/D43DFC413BC84FA18BD1B8E07A23462C043ACB23.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D43DFC413BC84FA18BD1B8E07A23462C043ACB23.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1114852675259727895/0/312e3131392e3231302e302f32332d3233203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 1.119.210.0/23 Signature Algorithm: sha256WithRSAEncryption 12:6f:73:db:0e:c6:76:9c:73:9d:2d:76:1b:44:00:df:0e:db: 1d:a5:68:0f:f1:73:16:19:d5:a0:a1:e2:f4:cf:f6:2e:9d:1f: 6f:d3:e8:de:7a:2e:d7:dc:d1:16:fb:0f:e4:d6:1d:7b:84:36: 44:59:1b:e0:1b:32:13:c1:df:ca:1a:8b:23:a1:b3:c7:e2:55: 44:d7:0e:97:1d:c1:0e:e1:4f:aa:e8:cc:a2:49:3a:3f:b6:7a: d8:9f:eb:1a:5f:d7:1a:f3:3e:a3:5d:a1:12:8a:25:b2:bb:64: 59:7c:9c:02:ce:1f:0f:eb:b9:91:39:1f:b2:cb:5d:32:7b:1e: e9:1d:5b:47:e3:22:e5:41:75:33:b4:c0:7c:6d:0c:6c:2a:f3: b5:42:5c:7c:c5:44:ea:61:0a:1b:23:89:6e:48:4b:25:0e:84: eb:69:55:6f:5a:7a:52:b1:b8:da:a0:5a:5f:ec:45:9d:1b:26: 3c:a9:65:5f:36:df:15:89:23:08:f2:35:e4:fd:2a:c6:9b:da: eb:c6:8d:a9:7f:4a:b3:6e:49:f0:03:05:98:01:32:34:1f:8d: 86:4a:e9:4b:a1:fc:c8:d1:f1:44:e9:03:86:3d:21:df:92:f4: 0a:f5:0a:f1:84:d2:68:b8:1a:44:7d:05:5b:27:c6:8d:da:11: 51:4c:5b:bb -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUCk5f4MIMclGrTHZUZE97FKbxQRUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDQzREZDNDEzQkM4NEZBMThCRDFCOEUwN0EyMzQ2MkMw NDNBQ0IyMzAeFw0yNjA2MDQxMDAwMjdaFw0yNzA2MDMxMDA1MjdaMDMxMTAvBgNV BAMTKDc5MjVDQUNFQzgyQjhFNjIwQTFENzEzQjVEQzlDOEVGQzlDOEFGRDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtzg0rv5Z10Cq1P6zfnb9HbMtu 7DyBlUtrc0dzzii46UlpaqdLsaiS0OoJyondb70rmxBLg0bxsdOcB6HI8qnPKJqV 2qjiSV1QH0HIDsDIndhWBgSJjdwTjgz8l+iMWPxzQSLPz5G1onw0Md5uGEa7QL8U AKCAe30z0g8DYfbqWQ/AEN2JsVNi11LIZbx7xmLMaIIpcOzIkcmvcCODpfqi47hq apUdb4jJz2ZAnKXXQDFrR+5W0XtVQMEChmwDvQxwEKYS+XwbFYJqYYLU41p3oqId aVKgONGk/JTbwrzarhsq2DFMHz9AXBM1g6LNl7HqF+KGmuqsRqMb+YyxiLdvAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUeSXKzsgrjmIKHXE7XcnI78nIr9IwHwYDVR0j BBgwFoAU1D38QTvIT6GL0bjgeiNGLAQ6yyMwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEx NDg1MjY3NTI1OTcyNzg5NS8wL0Q0M0RGQzQxM0JDODRGQTE4QkQxQjhFMDdBMjM0 NjJDMDQzQUNCMjMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRDQzREZDNDEzQkM4NEZBMThCRDFCOEUwN0EyMzQ2MkMwNDNBQ0IyMy5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTE0ODUyNjc1MjU5NzI3ODk1LzAvMzEyZTMxMzEzOTJl MzIzMTMwMmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzQzODMwMzgucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAEBd9IwDQYJKoZIhvcNAQELBQADggEBABJvc9sOxnacc50tdhtEAN8O2x2laA/x cxYZ1aCh4vTP9i6dH2/T6N56Ltfc0Rb7D+TWHXuENkRZG+AbMhPB38oaiyOhs8fi VUTXDpcdwQ7hT6rozKJJOj+2etif6xpf1xrzPqNdoRKKJbK7ZFl8nALOHw/ruZE5 H7LLXTJ7HukdW0fjIuVBdTO0wHxtDGwq87VCXHzFROphChsjiW5ISyUOhOtpVW9a elKxuNqgWl/sRZ0bJjypZV823xWJIwjyNeT9Ksab2uvGjal/SrNuSfADBZgBMjQf jYZK6Uuh/MjR8UTpA4Y9Id+S9Ar1CvGE0mi4GkR9BVsnxo3aEVFMW7s= -----END CERTIFICATE-----Generated at Fri Jun 12 02:23:50 2026 by rpki-client