$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1117472653142196251/0/3130312e3233362e34382e302f32312d3231203d3e203233373234.roa File: 3130312e3233362e34382e302f32312d3231203d3e203233373234.roa (raw, json) Hash identifier: /UlTDjUUqCIb9MRSSI6OMHTTkK+abhyVqthCdTiRMcQ= Subject key identifier: 40:B4:A4:4A:61:9B:C4:62:9A:11:FC:EE:67:CE:51:61:0F:85:9E:FA Certificate issuer: /CN=9CDD899429A14223F030EC28602F57FC4CAC8F60 Certificate serial: 4D437EDE943CEF87FBC37D375BB22AD28FF4C7DA Authority key identifier: 9C:DD:89:94:29:A1:42:23:F0:30:EC:28:60:2F:57:FC:4C:AC:8F:60 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9CDD899429A14223F030EC28602F57FC4CAC8F60.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1117472653142196251/0/3130312e3233362e34382e302f32312d3231203d3e203233373234.roa Signing time: Thu 11 Jun 2026 15:43:54 +0000 ROA not before: Thu 11 Jun 2026 15:38:54 +0000 ROA not after: Thu 10 Jun 2027 15:43:54 +0000 asID: 23724 IP address blocks: 101.236.48.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1117472653142196251/0/9CDD899429A14223F030EC28602F57FC4CAC8F60.crl rsync://rpki-rps.cnnic.cn/repo/A1117472653142196251/0/9CDD899429A14223F030EC28602F57FC4CAC8F60.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9CDD899429A14223F030EC28602F57FC4CAC8F60.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 18:07:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:43:7e:de:94:3c:ef:87:fb:c3:7d:37:5b:b2:2a:d2:8f:f4:c7:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9CDD899429A14223F030EC28602F57FC4CAC8F60 Validity Not Before: Jun 11 15:38:54 2026 GMT Not After : Jun 10 15:43:54 2027 GMT Subject: CN=40B4A44A619BC4629A11FCEE67CE51610F859EFA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:7d:73:7f:dd:32:89:03:9d:83:ba:68:48:4b: 57:1e:2d:55:58:bb:d9:73:01:35:b3:13:05:13:00: 72:5e:a4:c4:6f:2a:d0:88:a0:d1:37:7d:9a:6c:32: 5e:a9:da:1e:2b:74:bd:62:8d:b6:0f:e3:5f:f8:8c: 84:df:d9:fc:1b:06:45:2d:01:22:8b:d5:b8:11:b4: f6:5d:62:ae:0e:c4:24:41:34:f4:9c:10:3d:50:93: ff:fd:44:8f:42:3a:17:5f:f6:ba:b1:e4:9a:7a:63: 99:db:8e:59:c2:52:35:6f:2e:16:4e:0f:94:fc:4a: 95:6e:70:c4:63:b2:60:a8:e8:5f:77:95:a7:a8:a8: 96:9e:01:b8:c2:e8:aa:a6:81:6e:d6:86:92:75:a3: 0a:83:49:20:fe:fd:ff:67:05:18:8b:db:8b:fd:4b: 15:68:55:3b:2b:e0:9b:11:df:0a:8b:66:60:97:ab: 4b:1c:84:2f:23:c5:58:2d:15:52:76:fc:c5:b8:92: b8:fb:0d:e3:05:66:86:ac:bf:1a:f1:88:ac:f8:43: 17:ca:68:83:f9:9e:d6:39:d1:06:f6:cf:2d:90:e4: e8:20:12:bd:ca:78:82:03:53:c2:ef:93:de:55:70: 8b:da:dd:9b:65:44:b4:58:96:91:19:d9:a1:92:d1: 91:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:B4:A4:4A:61:9B:C4:62:9A:11:FC:EE:67:CE:51:61:0F:85:9E:FA X509v3 Authority Key Identifier: keyid:9C:DD:89:94:29:A1:42:23:F0:30:EC:28:60:2F:57:FC:4C:AC:8F:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1117472653142196251/0/9CDD899429A14223F030EC28602F57FC4CAC8F60.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9CDD899429A14223F030EC28602F57FC4CAC8F60.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1117472653142196251/0/3130312e3233362e34382e302f32312d3231203d3e203233373234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.236.48.0/21 Signature Algorithm: sha256WithRSAEncryption 4b:b3:0f:0c:85:95:21:d7:89:22:3d:d5:26:66:51:a5:40:83: 12:14:f4:ce:26:ca:1f:8d:60:68:a2:cd:d2:a9:c0:06:0e:75: 23:cd:38:88:95:53:5e:42:76:e4:17:71:84:1c:c0:21:57:0e: b2:4f:b3:e6:9e:82:3d:fe:dc:44:d9:38:2f:1b:52:cf:9f:b8: 73:ce:34:32:db:69:3a:7f:f0:5a:a1:b5:c0:f2:eb:3f:59:81: 2d:1e:ab:a0:72:5f:b0:44:ee:a2:80:f7:5b:9a:1c:1a:3e:02: c8:40:77:01:d2:79:df:96:4f:2e:62:05:cf:1b:ae:6d:c1:3d: df:1a:c1:91:e5:35:5b:a2:56:a6:77:90:de:c4:05:39:cc:55: d8:e4:ed:da:5a:51:69:d0:a3:35:e4:42:81:22:23:d0:72:29: b4:db:9d:cb:66:42:8d:ca:87:68:f6:b0:25:c2:be:44:1f:18: 93:04:b2:89:2d:d3:dc:a9:d4:d8:ae:68:90:34:8c:e0:c0:3f: 96:78:ca:dc:1a:31:9c:27:f8:4b:1b:cf:81:b2:ba:73:8b:cf: 58:20:6e:4a:d9:c0:4d:44:d7:c8:e5:00:6a:8f:d9:7f:98:23: 7f:c7:30:47:0e:96:36:f8:ad:ab:97:f2:77:b6:83:91:a7:50: 71:b2:48:b8 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUTUN+3pQ874f7w303W7Iq0o/0x9owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUNERDg5OTQyOUExNDIyM0YwMzBFQzI4NjAyRjU3RkM0 Q0FDOEY2MDAeFw0yNjA2MTExNTM4NTRaFw0yNzA2MTAxNTQzNTRaMDMxMTAvBgNV BAMTKDQwQjRBNDRBNjE5QkM0NjI5QTExRkNFRTY3Q0U1MTYxMEY4NTlFRkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzfXN/3TKJA52DumhIS1ceLVVY u9lzATWzEwUTAHJepMRvKtCIoNE3fZpsMl6p2h4rdL1ijbYP41/4jITf2fwbBkUt ASKL1bgRtPZdYq4OxCRBNPScED1Qk//9RI9COhdf9rqx5Jp6Y5nbjlnCUjVvLhZO D5T8SpVucMRjsmCo6F93laeoqJaeAbjC6KqmgW7WhpJ1owqDSSD+/f9nBRiL24v9 SxVoVTsr4JsR3wqLZmCXq0schC8jxVgtFVJ2/MW4krj7DeMFZoasvxrxiKz4QxfK aIP5ntY50Qb2zy2Q5OggEr3KeIIDU8Lvk95VcIva3ZtlRLRYlpEZ2aGS0ZGBAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUQLSkSmGbxGKaEfzuZ85RYQ+FnvowHwYDVR0j BBgwFoAUnN2JlCmhQiPwMOwoYC9X/Eysj2AwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEx NzQ3MjY1MzE0MjE5NjI1MS8wLzlDREQ4OTk0MjlBMTQyMjNGMDMwRUMyODYwMkY1 N0ZDNENBQzhGNjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOUNERDg5OTQyOUExNDIyM0YwMzBFQzI4NjAyRjU3RkM0Q0FDOEY2MC5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTExNzQ3MjY1MzE0MjE5NjI1MS8wLzMxMzAzMTJlMzIz MzM2MmUzNDM4MmUzMDJmMzIzMTJkMzIzMTIwM2QzZTIwMzIzMzM3MzIzNC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEA2XsMDANBgkqhkiG9w0BAQsFAAOCAQEAS7MPDIWVIdeJIj3VJmZRpUCD EhT0zibKH41gaKLN0qnABg51I804iJVTXkJ25BdxhBzAIVcOsk+z5p6CPf7cRNk4 LxtSz5+4c840MttpOn/wWqG1wPLrP1mBLR6roHJfsETuooD3W5ocGj4CyEB3AdJ5 35ZPLmIFzxuubcE93xrBkeU1W6JWpneQ3sQFOcxV2OTt2lpRadCjNeRCgSIj0HIp tNudy2ZCjcqHaPawJcK+RB8YkwSyiS3T3KnU2K5okDSM4MA/lnjK3BoxnCf4SxvP gbK6c4vPWCBuStnATUTXyOUAao/Zf5gjf8cwRw6WNvitq5fyd7aDkadQcbJIuA== -----END CERTIFICATE-----Generated at Fri Jun 12 04:32:58 2026 by rpki-client