$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1114852675259727895/0/312e3131392e3231362e302f32312d3231203d3e2030.roa File: 312e3131392e3231362e302f32312d3231203d3e2030.roa (raw, json) Hash identifier: d/Q0+w2Ahk9b0UcKv/1FydpOmWor6aLsadLAnHi6P1g= Subject key identifier: 1A:1C:87:13:19:47:4D:FF:39:5E:FC:C3:A9:D9:14:9C:90:9C:21:E1 Certificate issuer: /CN=D43DFC413BC84FA18BD1B8E07A23462C043ACB23 Certificate serial: 16A8EAB149B052F9A458DC39E2749F21980CC513 Authority key identifier: D4:3D:FC:41:3B:C8:4F:A1:8B:D1:B8:E0:7A:23:46:2C:04:3A:CB:23 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D43DFC413BC84FA18BD1B8E07A23462C043ACB23.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1114852675259727895/0/312e3131392e3231362e302f32312d3231203d3e2030.roa Signing time: Thu 04 Jun 2026 10:07:49 +0000 ROA not before: Thu 04 Jun 2026 10:02:49 +0000 ROA not after: Thu 03 Jun 2027 10:07:49 +0000 asID: 0 IP address blocks: 1.119.216.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1114852675259727895/0/D43DFC413BC84FA18BD1B8E07A23462C043ACB23.crl rsync://rpki-rps.cnnic.cn/repo/A1114852675259727895/0/D43DFC413BC84FA18BD1B8E07A23462C043ACB23.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D43DFC413BC84FA18BD1B8E07A23462C043ACB23.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 22:52:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:a8:ea:b1:49:b0:52:f9:a4:58:dc:39:e2:74:9f:21:98:0c:c5:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D43DFC413BC84FA18BD1B8E07A23462C043ACB23 Validity Not Before: Jun 4 10:02:49 2026 GMT Not After : Jun 3 10:07:49 2027 GMT Subject: CN=1A1C871319474DFF395EFCC3A9D9149C909C21E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:67:80:7f:f3:87:98:cf:a3:a4:0b:7d:22:de: 48:25:1c:eb:4f:1a:39:d6:1c:ef:89:f6:7d:b8:f6: eb:aa:4d:13:e0:ee:8e:d8:92:1a:91:d8:e0:bc:cc: 42:90:b2:5e:43:12:47:e5:6c:78:0f:1e:92:fc:50: 4f:2a:ed:3b:5c:b1:1f:10:38:47:1c:6c:8f:41:ef: 4d:3e:54:82:0f:13:f0:fc:a6:5b:8c:c7:d2:48:cd: 45:2d:88:d5:03:57:8a:0c:30:e2:79:5a:ab:b5:33: e3:21:94:5f:ce:e4:51:c1:a5:4c:41:92:75:b5:1a: d7:ba:22:c0:d6:06:2f:74:08:89:1f:c1:44:d0:f5: 6c:74:5c:6d:5f:42:e7:3b:fd:ed:ed:08:c5:80:b7: 0d:97:2d:20:e2:a9:d7:c6:0b:c2:0e:f4:30:54:2d: 42:45:e6:49:59:7e:51:09:b1:2c:c6:d4:e9:c4:b2: 7a:87:0b:39:df:bb:86:60:38:3f:85:97:f5:16:3f: 98:e7:5f:fa:a6:7b:f2:20:48:f8:cb:8c:42:ab:ec: ed:5f:a3:30:eb:9d:62:9f:41:e2:cb:b1:af:97:8e: df:cf:5c:1f:aa:fc:94:03:36:b4:7d:d7:b5:6b:b2: 64:bb:08:da:2b:01:64:28:42:3c:26:6e:39:7f:34: 75:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:1C:87:13:19:47:4D:FF:39:5E:FC:C3:A9:D9:14:9C:90:9C:21:E1 X509v3 Authority Key Identifier: keyid:D4:3D:FC:41:3B:C8:4F:A1:8B:D1:B8:E0:7A:23:46:2C:04:3A:CB:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1114852675259727895/0/D43DFC413BC84FA18BD1B8E07A23462C043ACB23.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D43DFC413BC84FA18BD1B8E07A23462C043ACB23.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1114852675259727895/0/312e3131392e3231362e302f32312d3231203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 1.119.216.0/21 Signature Algorithm: sha256WithRSAEncryption 02:f4:49:a6:9f:1b:c4:c1:c8:1f:4a:32:aa:04:df:40:6a:42: 66:48:f1:a6:e9:36:0c:54:43:27:5c:3a:5f:66:e5:82:1f:33: ef:2d:86:fe:ee:44:a4:56:76:16:2e:97:c0:43:bb:7f:40:27: 6f:8b:58:42:f9:fa:d4:c6:5e:98:ec:cc:ef:5d:ff:eb:2f:42: 3a:9c:e4:cd:17:f8:6e:4a:3d:61:91:8f:b7:a2:09:5e:02:57: ee:08:5d:c7:61:66:5c:4e:6d:ea:76:36:51:32:29:5a:24:da: b7:24:7d:4c:de:2c:6f:19:85:7a:71:5b:ec:1a:85:5a:84:74: 30:55:94:94:09:df:e1:66:85:2b:a3:bb:4e:ef:66:aa:8e:90: 4e:d0:80:23:fc:19:29:b2:3f:a9:61:d5:19:5e:10:5b:23:2a: f6:51:db:67:36:fe:8c:d7:0c:d4:5e:42:92:7d:cc:cb:86:ca: 34:09:f1:c3:de:42:99:89:f0:69:41:c3:c4:e0:81:69:c6:4b: d4:36:9b:41:fe:5b:b2:a1:45:3e:40:21:02:8a:96:62:15:82: 25:be:9d:87:4d:1e:c2:bd:60:1e:36:e2:93:58:11:9c:d7:cf: 09:f6:d3:67:4f:72:69:82:9b:33:b9:38:cf:8f:03:75:92:1d: 00:58:fd:b5 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgIUFqjqsUmwUvmkWNw54nSfIZgMxRMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDQzREZDNDEzQkM4NEZBMThCRDFCOEUwN0EyMzQ2MkMw NDNBQ0IyMzAeFw0yNjA2MDQxMDAyNDlaFw0yNzA2MDMxMDA3NDlaMDMxMTAvBgNV BAMTKDFBMUM4NzEzMTk0NzRERkYzOTVFRkNDM0E5RDkxNDlDOTA5QzIxRTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjZ4B/84eYz6OkC30i3kglHOtP GjnWHO+J9n249uuqTRPg7o7YkhqR2OC8zEKQsl5DEkflbHgPHpL8UE8q7TtcsR8Q OEccbI9B700+VIIPE/D8pluMx9JIzUUtiNUDV4oMMOJ5Wqu1M+MhlF/O5FHBpUxB knW1Gte6IsDWBi90CIkfwUTQ9Wx0XG1fQuc7/e3tCMWAtw2XLSDiqdfGC8IO9DBU LUJF5klZflEJsSzG1OnEsnqHCznfu4ZgOD+Fl/UWP5jnX/qme/IgSPjLjEKr7O1f ozDrnWKfQeLLsa+Xjt/PXB+q/JQDNrR917VrsmS7CNorAWQoQjwmbjl/NHUfAgMB AAGjggIJMIICBTAdBgNVHQ4EFgQUGhyHExlHTf85XvzDqdkUnJCcIeEwHwYDVR0j BBgwFoAU1D38QTvIT6GL0bjgeiNGLAQ6yyMwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEx NDg1MjY3NTI1OTcyNzg5NS8wL0Q0M0RGQzQxM0JDODRGQTE4QkQxQjhFMDdBMjM0 NjJDMDQzQUNCMjMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRDQzREZDNDEzQkM4NEZBMThCRDFCOEUwN0EyMzQ2MkMwNDNBQ0IyMy5jZXIw gYIGCCsGAQUFBwELBHYwdDByBggrBgEFBQcwC4ZmcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTE0ODUyNjc1MjU5NzI3ODk1LzAvMzEyZTMxMzEzOTJl MzIzMTM2MmUzMDJmMzIzMTJkMzIzMTIwM2QzZTIwMzAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMBd9gw DQYJKoZIhvcNAQELBQADggEBAAL0SaafG8TByB9KMqoE30BqQmZI8abpNgxUQydc Ol9m5YIfM+8thv7uRKRWdhYul8BDu39AJ2+LWEL5+tTGXpjszO9d/+svQjqc5M0X +G5KPWGRj7eiCV4CV+4IXcdhZlxObep2NlEyKVok2rckfUzeLG8ZhXpxW+wahVqE dDBVlJQJ3+FmhSuju07vZqqOkE7QgCP8GSmyP6lh1RleEFsjKvZR22c2/ozXDNRe QpJ9zMuGyjQJ8cPeQpmJ8GlBw8TggWnGS9Q2m0H+W7KhRT5AIQKKlmIVgiW+nYdN HsK9YB424pNYEZzXzwn202dPcmmCmzO5OM+PA3WSHQBY/bU= -----END CERTIFICATE-----Generated at Fri Jun 12 04:32:53 2026 by rpki-client