$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1117472653142196251/0/3130312e3233362e34302e302f32312d3231203d3e2034383038.roa File: 3130312e3233362e34302e302f32312d3231203d3e2034383038.roa (raw, json) Hash identifier: 8vI5GhaLGxlCOrBdMPXIOnk5Pe+WRa5V8TCJ/q1dUQ4= Subject key identifier: AE:DB:F0:8B:31:FA:17:F4:27:4F:E2:DE:07:57:36:79:B1:35:EA:8F Certificate issuer: /CN=9CDD899429A14223F030EC28602F57FC4CAC8F60 Certificate serial: 3C7EDACCBB061FA0E2A04EB1EB4E920DEAFBF824 Authority key identifier: 9C:DD:89:94:29:A1:42:23:F0:30:EC:28:60:2F:57:FC:4C:AC:8F:60 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9CDD899429A14223F030EC28602F57FC4CAC8F60.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1117472653142196251/0/3130312e3233362e34302e302f32312d3231203d3e2034383038.roa Signing time: Thu 11 Jun 2026 15:43:16 +0000 ROA not before: Thu 11 Jun 2026 15:38:16 +0000 ROA not after: Thu 10 Jun 2027 15:43:16 +0000 asID: 4808 IP address blocks: 101.236.40.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1117472653142196251/0/9CDD899429A14223F030EC28602F57FC4CAC8F60.crl rsync://rpki-rps.cnnic.cn/repo/A1117472653142196251/0/9CDD899429A14223F030EC28602F57FC4CAC8F60.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9CDD899429A14223F030EC28602F57FC4CAC8F60.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 18:07:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:7e:da:cc:bb:06:1f:a0:e2:a0:4e:b1:eb:4e:92:0d:ea:fb:f8:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9CDD899429A14223F030EC28602F57FC4CAC8F60 Validity Not Before: Jun 11 15:38:16 2026 GMT Not After : Jun 10 15:43:16 2027 GMT Subject: CN=AEDBF08B31FA17F4274FE2DE07573679B135EA8F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:65:ea:7a:0c:b9:cf:89:23:b4:c0:fa:a4:fe: 04:85:e4:6f:4b:79:c1:99:d9:2a:31:15:6f:9b:9c: b1:b6:a3:c8:b8:65:36:d3:37:94:a5:7b:14:b9:e9: a1:67:de:84:18:74:8c:c2:a7:4a:35:69:52:8a:4a: 8a:23:72:50:56:f6:0d:c2:f2:af:60:b3:00:d1:09: 0d:e0:bc:4d:77:a1:99:a1:5b:2a:c1:d9:f3:16:92: 16:9f:6d:70:50:28:58:3c:8c:48:80:2c:cf:9a:fb: 88:91:62:50:64:c4:5e:ea:fb:d2:03:87:76:40:bd: 64:59:5a:e9:b2:d1:5f:5d:89:a2:c7:98:6a:a7:0a: 47:0a:51:22:eb:67:97:40:cf:ba:b4:2e:ce:63:2b: ec:28:59:73:89:75:71:51:d3:ad:89:61:73:f4:a5: 5e:9b:48:45:ef:4b:30:dd:05:25:f8:53:34:6e:83: 37:46:f8:d9:d9:d5:a4:0e:ab:29:bb:23:05:2d:1b: f3:21:11:4a:35:a5:1b:bb:b5:8a:83:36:4d:1f:e6: 65:33:66:cb:11:38:e8:a2:02:f0:c1:f3:97:57:d9: ac:1d:6b:35:c2:b7:5b:f3:51:04:8a:fb:b9:f4:e0: 74:f7:de:f1:38:4e:3c:5f:36:85:40:40:3d:a2:05: a3:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:DB:F0:8B:31:FA:17:F4:27:4F:E2:DE:07:57:36:79:B1:35:EA:8F X509v3 Authority Key Identifier: keyid:9C:DD:89:94:29:A1:42:23:F0:30:EC:28:60:2F:57:FC:4C:AC:8F:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1117472653142196251/0/9CDD899429A14223F030EC28602F57FC4CAC8F60.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9CDD899429A14223F030EC28602F57FC4CAC8F60.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1117472653142196251/0/3130312e3233362e34302e302f32312d3231203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.236.40.0/21 Signature Algorithm: sha256WithRSAEncryption ac:2d:e8:0d:e8:9b:00:56:b1:34:74:fc:04:2d:21:7e:58:8a: 06:12:39:65:36:d9:68:5c:21:e6:41:b1:4e:14:0b:21:cd:63: 5f:07:44:37:0c:2b:8d:00:4b:19:97:9a:a4:5b:d7:51:fd:33: 33:1d:c5:d7:aa:69:41:45:06:83:d7:28:e8:f2:8d:09:29:81: ca:d6:78:0b:64:2a:db:ff:c8:18:75:f7:e1:68:fd:84:d5:bf: e0:31:10:3f:0d:41:b4:91:06:c1:14:98:e4:8a:89:5e:03:5a: f5:36:40:d3:81:ee:da:c3:18:51:0c:b9:e6:76:3e:f0:b6:08: a9:1d:dc:c8:cf:26:24:20:77:69:7c:7f:3f:2e:37:b9:45:5a: 2b:45:5a:d0:15:e4:a4:14:a0:fe:44:a1:7c:a0:43:5c:55:d6: 44:81:af:8d:12:06:63:f9:de:d9:f6:1f:47:6b:12:79:b5:e7: 7d:89:ab:79:46:cc:bd:c8:74:74:aa:b3:c9:14:30:82:f0:a3: 58:c8:da:2e:bf:0f:0e:3c:3e:be:e9:39:05:86:ff:8b:4e:db: d5:16:72:8f:3e:fe:f5:59:cc:79:04:9c:b4:00:d4:e8:14:7d: 87:e1:0f:18:d5:31:1f:ff:32:17:e8:80:21:c0:93:2f:b8:58: f1:a0:93:91 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUPH7azLsGH6DioE6x606SDer7+CQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUNERDg5OTQyOUExNDIyM0YwMzBFQzI4NjAyRjU3RkM0 Q0FDOEY2MDAeFw0yNjA2MTExNTM4MTZaFw0yNzA2MTAxNTQzMTZaMDMxMTAvBgNV BAMTKEFFREJGMDhCMzFGQTE3RjQyNzRGRTJERTA3NTczNjc5QjEzNUVBOEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYZep6DLnPiSO0wPqk/gSF5G9L ecGZ2SoxFW+bnLG2o8i4ZTbTN5SlexS56aFn3oQYdIzCp0o1aVKKSoojclBW9g3C 8q9gswDRCQ3gvE13oZmhWyrB2fMWkhafbXBQKFg8jEiALM+a+4iRYlBkxF7q+9ID h3ZAvWRZWumy0V9diaLHmGqnCkcKUSLrZ5dAz7q0Ls5jK+woWXOJdXFR062JYXP0 pV6bSEXvSzDdBSX4UzRugzdG+NnZ1aQOqym7IwUtG/MhEUo1pRu7tYqDNk0f5mUz ZssROOiiAvDB85dX2awdazXCt1vzUQSK+7n04HT33vE4TjxfNoVAQD2iBaNXAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUrtvwizH6F/QnT+LeB1c2ebE16o8wHwYDVR0j BBgwFoAUnN2JlCmhQiPwMOwoYC9X/Eysj2AwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEx NzQ3MjY1MzE0MjE5NjI1MS8wLzlDREQ4OTk0MjlBMTQyMjNGMDMwRUMyODYwMkY1 N0ZDNENBQzhGNjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOUNERDg5OTQyOUExNDIyM0YwMzBFQzI4NjAyRjU3RkM0Q0FDOEY2MC5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTE3NDcyNjUzMTQyMTk2MjUxLzAvMzEzMDMxMmUzMjMz MzYyZTM0MzAyZTMwMmYzMjMxMmQzMjMxMjAzZDNlMjAzNDM4MzAzOC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEA2XsKDANBgkqhkiG9w0BAQsFAAOCAQEArC3oDeibAFaxNHT8BC0hfliKBhI5 ZTbZaFwh5kGxThQLIc1jXwdENwwrjQBLGZeapFvXUf0zMx3F16ppQUUGg9co6PKN CSmBytZ4C2Qq2//IGHX34Wj9hNW/4DEQPw1BtJEGwRSY5IqJXgNa9TZA04Hu2sMY UQy55nY+8LYIqR3cyM8mJCB3aXx/Py43uUVaK0Va0BXkpBSg/kShfKBDXFXWRIGv jRIGY/ne2fYfR2sSebXnfYmreUbMvch0dKqzyRQwgvCjWMjaLr8PDjw+vuk5BYb/ i07b1RZyjz7+9VnMeQSctADU6BR9h+EPGNUxH/8yF+iAIcCTL7hY8aCTkQ== -----END CERTIFICATE-----Generated at Fri Jun 12 02:24:52 2026 by rpki-client