$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1117472653142196251/0/3130312e3233362e302e302f32312d3231203d3e2034383038.roa File: 3130312e3233362e302e302f32312d3231203d3e2034383038.roa (raw, json) Hash identifier: MqpfVlcAo4oVQqLCzMoxYGm8P1PyqA4Tfc7SljWlWbY= Subject key identifier: 29:D7:B6:C9:19:C6:4A:68:A2:BA:34:53:53:CD:4D:F7:C7:07:66:C9 Certificate issuer: /CN=9CDD899429A14223F030EC28602F57FC4CAC8F60 Certificate serial: 74BFBA20C9E36E91126C72D7682A8F03A3324C61 Authority key identifier: 9C:DD:89:94:29:A1:42:23:F0:30:EC:28:60:2F:57:FC:4C:AC:8F:60 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9CDD899429A14223F030EC28602F57FC4CAC8F60.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1117472653142196251/0/3130312e3233362e302e302f32312d3231203d3e2034383038.roa Signing time: Thu 11 Jun 2026 15:20:59 +0000 ROA not before: Thu 11 Jun 2026 15:15:59 +0000 ROA not after: Thu 10 Jun 2027 15:20:59 +0000 asID: 4808 IP address blocks: 101.236.0.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1117472653142196251/0/9CDD899429A14223F030EC28602F57FC4CAC8F60.crl rsync://rpki-rps.cnnic.cn/repo/A1117472653142196251/0/9CDD899429A14223F030EC28602F57FC4CAC8F60.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9CDD899429A14223F030EC28602F57FC4CAC8F60.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 18:07:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:bf:ba:20:c9:e3:6e:91:12:6c:72:d7:68:2a:8f:03:a3:32:4c:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9CDD899429A14223F030EC28602F57FC4CAC8F60 Validity Not Before: Jun 11 15:15:59 2026 GMT Not After : Jun 10 15:20:59 2027 GMT Subject: CN=29D7B6C919C64A68A2BA345353CD4DF7C70766C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:4b:cf:ca:24:fb:e7:c9:bf:4c:d5:17:ea:85: 32:83:ec:08:47:e0:52:ae:c8:9a:76:e9:83:b7:73: 97:a3:27:12:ca:55:2e:1f:b1:0e:9f:7a:4e:83:dd: ab:a6:13:b9:b0:68:b0:e9:15:52:18:24:24:43:2c: 32:91:85:d8:bc:10:2e:4d:5f:0a:48:a6:3c:1a:b7: 8f:42:d9:83:d6:47:d5:72:03:e4:04:1e:06:af:ec: e3:d3:d7:ef:62:93:de:43:f1:6b:b4:e2:e4:0f:a2: 83:39:a9:de:9c:e4:dd:20:f2:7a:29:c7:8c:e3:a8: e6:5d:0a:93:8a:00:d6:e0:41:f5:9f:6e:ab:61:ee: 30:1c:68:7d:e9:fb:81:0c:40:cc:2f:31:3c:65:66: 55:a1:93:ba:12:1c:a1:97:27:37:9b:38:cf:46:55: b8:33:16:5f:65:be:5b:6e:bb:83:dd:4e:06:10:b5: b3:75:d4:1c:5b:96:01:f7:9b:39:ce:4a:fe:7a:5c: f1:66:d8:50:ef:53:57:92:1b:eb:f3:f5:72:eb:33: ff:0d:62:91:a0:55:fe:78:02:43:59:ab:b3:51:de: cc:a6:41:51:41:90:fb:c8:9b:9e:a1:26:13:09:33: 35:dc:80:a6:b1:85:63:99:2d:ec:7f:38:fa:b3:3d: 90:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:D7:B6:C9:19:C6:4A:68:A2:BA:34:53:53:CD:4D:F7:C7:07:66:C9 X509v3 Authority Key Identifier: keyid:9C:DD:89:94:29:A1:42:23:F0:30:EC:28:60:2F:57:FC:4C:AC:8F:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1117472653142196251/0/9CDD899429A14223F030EC28602F57FC4CAC8F60.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9CDD899429A14223F030EC28602F57FC4CAC8F60.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1117472653142196251/0/3130312e3233362e302e302f32312d3231203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.236.0.0/21 Signature Algorithm: sha256WithRSAEncryption 3a:b7:9b:47:31:9d:fc:c1:68:e9:5a:83:8c:fb:28:94:4a:18: d7:40:81:a9:38:11:16:e2:5f:29:29:b3:97:eb:f3:55:6f:3b: df:ac:ed:0e:4e:db:93:88:13:e2:c9:79:be:94:a8:94:a9:c9: 25:bd:c6:19:15:0e:a2:ce:9b:56:be:17:a0:f1:2d:a6:ce:0a: 4d:00:f9:17:53:27:88:83:d2:2d:ae:85:57:a9:45:87:b4:e3: ba:4e:dd:fe:50:c9:53:88:0e:6b:2d:58:38:8c:98:e0:78:df: 22:87:78:3b:ab:e9:52:10:2e:5a:7a:c2:1d:17:f4:c8:fa:0b: 64:a5:53:dd:e1:20:86:1e:df:e5:28:d4:4a:b8:f7:16:bf:2b: f6:11:ad:dc:0d:b1:9e:3f:70:65:67:aa:84:fd:81:1c:e1:67: c6:6c:7f:fb:57:9d:b0:ee:cc:d9:e6:9c:c2:33:08:57:9f:c2: e3:12:8d:bf:34:6e:b4:36:50:28:e9:7f:92:96:62:2a:01:98: b3:be:48:96:82:db:aa:31:ad:a3:e9:90:5d:28:48:8e:2d:c4: f7:68:63:58:c2:4f:a8:20:d5:74:4a:bc:89:e9:f5:a3:7a:e0: 81:98:cd:99:2c:48:c4:d7:84:28:e3:81:74:4f:8b:0a:38:79: 0c:2b:a7:d0 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUdL+6IMnjbpESbHLXaCqPA6MyTGEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUNERDg5OTQyOUExNDIyM0YwMzBFQzI4NjAyRjU3RkM0 Q0FDOEY2MDAeFw0yNjA2MTExNTE1NTlaFw0yNzA2MTAxNTIwNTlaMDMxMTAvBgNV BAMTKDI5RDdCNkM5MTlDNjRBNjhBMkJBMzQ1MzUzQ0Q0REY3QzcwNzY2QzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzS8/KJPvnyb9M1RfqhTKD7AhH 4FKuyJp26YO3c5ejJxLKVS4fsQ6fek6D3aumE7mwaLDpFVIYJCRDLDKRhdi8EC5N XwpIpjwat49C2YPWR9VyA+QEHgav7OPT1+9ik95D8Wu04uQPooM5qd6c5N0g8nop x4zjqOZdCpOKANbgQfWfbqth7jAcaH3p+4EMQMwvMTxlZlWhk7oSHKGXJzebOM9G VbgzFl9lvltuu4PdTgYQtbN11BxblgH3mznOSv56XPFm2FDvU1eSG+vz9XLrM/8N YpGgVf54AkNZq7NR3symQVFBkPvIm56hJhMJMzXcgKaxhWOZLex/OPqzPZDHAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUKde2yRnGSmiiujRTU81N98cHZskwHwYDVR0j BBgwFoAUnN2JlCmhQiPwMOwoYC9X/Eysj2AwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEx NzQ3MjY1MzE0MjE5NjI1MS8wLzlDREQ4OTk0MjlBMTQyMjNGMDMwRUMyODYwMkY1 N0ZDNENBQzhGNjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOUNERDg5OTQyOUExNDIyM0YwMzBFQzI4NjAyRjU3RkM0Q0FDOEY2MC5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTE3NDcyNjUzMTQyMTk2MjUxLzAvMzEzMDMxMmUzMjMz MzYyZTMwMmUzMDJmMzIzMTJkMzIzMTIwM2QzZTIwMzQzODMwMzgucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BANl7AAwDQYJKoZIhvcNAQELBQADggEBADq3m0cxnfzBaOlag4z7KJRKGNdAgak4 ERbiXykps5fr81VvO9+s7Q5O25OIE+LJeb6UqJSpySW9xhkVDqLOm1a+F6DxLabO Ck0A+RdTJ4iD0i2uhVepRYe047pO3f5QyVOIDmstWDiMmOB43yKHeDur6VIQLlp6 wh0X9Mj6C2SlU93hIIYe3+Uo1Eq49xa/K/YRrdwNsZ4/cGVnqoT9gRzhZ8Zsf/tX nbDuzNnmnMIzCFefwuMSjb80brQ2UCjpf5KWYioBmLO+SJaC26oxraPpkF0oSI4t xPdoY1jCT6gg1XRKvInp9aN64IGYzZksSMTXhCjjgXRPiwo4eQwrp9A= -----END CERTIFICATE-----Generated at Fri Jun 12 02:24:09 2026 by rpki-client