$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1117472653142196251/0/3130312e3233362e34382e302f32312d3231203d3e203539303235.roa File: 3130312e3233362e34382e302f32312d3231203d3e203539303235.roa (raw, json) Hash identifier: N4qIfafW+PlxIHhe6Oo/F9UtwfUHxLKpEQk/HFI6doM= Subject key identifier: CA:31:7A:21:93:6C:3F:48:D5:A4:2B:14:96:69:E8:7A:40:C9:AE:DC Certificate issuer: /CN=9CDD899429A14223F030EC28602F57FC4CAC8F60 Certificate serial: 0A1F22624D2110C1B43E984B5F4A3B071A4C72D7 Authority key identifier: 9C:DD:89:94:29:A1:42:23:F0:30:EC:28:60:2F:57:FC:4C:AC:8F:60 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9CDD899429A14223F030EC28602F57FC4CAC8F60.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1117472653142196251/0/3130312e3233362e34382e302f32312d3231203d3e203539303235.roa Signing time: Thu 11 Jun 2026 15:43:54 +0000 ROA not before: Thu 11 Jun 2026 15:38:54 +0000 ROA not after: Thu 10 Jun 2027 15:43:54 +0000 asID: 59025 IP address blocks: 101.236.48.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1117472653142196251/0/9CDD899429A14223F030EC28602F57FC4CAC8F60.crl rsync://rpki-rps.cnnic.cn/repo/A1117472653142196251/0/9CDD899429A14223F030EC28602F57FC4CAC8F60.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9CDD899429A14223F030EC28602F57FC4CAC8F60.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 18:07:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:1f:22:62:4d:21:10:c1:b4:3e:98:4b:5f:4a:3b:07:1a:4c:72:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9CDD899429A14223F030EC28602F57FC4CAC8F60 Validity Not Before: Jun 11 15:38:54 2026 GMT Not After : Jun 10 15:43:54 2027 GMT Subject: CN=CA317A21936C3F48D5A42B149669E87A40C9AEDC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:61:5f:ff:7f:85:ad:0e:f9:54:7e:44:04:4e: 5f:b7:6e:d9:e5:29:dc:98:b6:ba:31:52:47:fc:b2: ca:5d:99:bc:f5:3b:ae:2e:9d:1c:67:23:64:62:5b: dc:b7:11:49:87:b2:a3:3c:27:3e:aa:bb:9c:e5:28: 22:1a:9c:66:cc:9a:86:2c:47:c8:59:0a:45:0d:04: f4:8d:a6:5c:4c:86:0f:ec:1a:f7:e0:05:6b:49:e3: 91:8d:3e:04:64:3c:3e:d5:53:95:c2:eb:b4:e5:bf: 17:43:f8:b1:bb:0e:c4:f7:d7:df:ad:9e:42:ce:42: 38:2f:e5:39:9b:8a:f6:72:2a:7c:5f:f2:2b:78:55: 1c:7d:d8:f4:d5:aa:31:30:8e:7d:3a:1f:6c:f8:91: 74:85:41:fa:51:ae:d5:ac:93:b5:4e:b5:f8:6b:fd: ff:1d:45:42:43:56:cd:fc:0a:ff:b0:ab:17:3a:74: 24:ee:01:1a:ba:0e:32:72:85:43:de:ba:fe:c8:c7: 0d:7a:eb:6f:e2:b3:6e:9d:79:f3:9e:dd:29:91:ee: a5:59:74:23:7b:11:5c:73:61:ba:d4:bc:79:76:1c: 71:ba:9f:cf:ca:ad:91:06:09:dd:6f:d0:4a:77:d3: 6b:55:ad:3c:48:e1:88:77:dc:bd:5f:63:02:39:b4: 0e:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:31:7A:21:93:6C:3F:48:D5:A4:2B:14:96:69:E8:7A:40:C9:AE:DC X509v3 Authority Key Identifier: keyid:9C:DD:89:94:29:A1:42:23:F0:30:EC:28:60:2F:57:FC:4C:AC:8F:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1117472653142196251/0/9CDD899429A14223F030EC28602F57FC4CAC8F60.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9CDD899429A14223F030EC28602F57FC4CAC8F60.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1117472653142196251/0/3130312e3233362e34382e302f32312d3231203d3e203539303235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.236.48.0/21 Signature Algorithm: sha256WithRSAEncryption 9d:0d:fd:f7:d8:36:a1:ae:07:58:f6:a4:62:7b:20:ed:88:30: d8:20:dc:2d:7e:7c:82:f8:25:44:26:c2:0b:cd:bf:bd:fa:a9: 29:ab:5a:68:06:ee:c8:ad:3b:36:7c:05:a6:02:95:3f:ad:9e: 07:f4:67:bc:bc:2e:e1:42:ee:4e:3d:35:02:db:b5:30:22:45: f8:b4:25:3a:44:02:eb:49:96:db:e0:b5:ed:f3:dd:9a:3b:0a: 58:da:bb:ed:ae:05:15:c9:7d:60:18:55:6f:aa:3d:b5:59:71: a1:fc:9e:c9:bb:8d:8e:c5:8b:8f:e5:ff:db:0b:79:f5:90:09: a4:4c:80:f4:4f:9e:5e:e0:ab:c5:a2:5f:26:5a:d8:b4:af:b1: 5d:69:b1:1f:da:41:69:a1:fe:86:33:80:58:16:6f:9e:17:87: 9f:ca:35:79:f5:3e:23:74:50:b0:56:21:a5:0b:2b:7c:71:77: fe:14:09:5f:c2:1e:de:6a:73:08:96:a5:c5:ca:7a:ef:7b:5c: dd:e8:d9:d0:ec:74:2b:e3:fb:8f:48:d8:54:8b:5a:a1:a1:e0: c3:72:50:d0:d4:9b:a5:99:22:37:ad:fd:63:48:37:83:c3:a7: f8:b1:d3:50:a7:e1:18:8c:2a:0c:c2:50:48:28:26:5e:6a:bc: 1b:c1:65:ee -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUCh8iYk0hEMG0PphLX0o7BxpMctcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUNERDg5OTQyOUExNDIyM0YwMzBFQzI4NjAyRjU3RkM0 Q0FDOEY2MDAeFw0yNjA2MTExNTM4NTRaFw0yNzA2MTAxNTQzNTRaMDMxMTAvBgNV BAMTKENBMzE3QTIxOTM2QzNGNDhENUE0MkIxNDk2NjlFODdBNDBDOUFFREMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRYV//f4WtDvlUfkQETl+3btnl KdyYtroxUkf8sspdmbz1O64unRxnI2RiW9y3EUmHsqM8Jz6qu5zlKCIanGbMmoYs R8hZCkUNBPSNplxMhg/sGvfgBWtJ45GNPgRkPD7VU5XC67TlvxdD+LG7DsT319+t nkLOQjgv5TmbivZyKnxf8it4VRx92PTVqjEwjn06H2z4kXSFQfpRrtWsk7VOtfhr /f8dRUJDVs38Cv+wqxc6dCTuARq6DjJyhUPeuv7Ixw1662/is26defOe3SmR7qVZ dCN7EVxzYbrUvHl2HHG6n8/KrZEGCd1v0Ep302tVrTxI4Yh33L1fYwI5tA6VAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUyjF6IZNsP0jVpCsUlmnoekDJrtwwHwYDVR0j BBgwFoAUnN2JlCmhQiPwMOwoYC9X/Eysj2AwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEx NzQ3MjY1MzE0MjE5NjI1MS8wLzlDREQ4OTk0MjlBMTQyMjNGMDMwRUMyODYwMkY1 N0ZDNENBQzhGNjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOUNERDg5OTQyOUExNDIyM0YwMzBFQzI4NjAyRjU3RkM0Q0FDOEY2MC5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTExNzQ3MjY1MzE0MjE5NjI1MS8wLzMxMzAzMTJlMzIz MzM2MmUzNDM4MmUzMDJmMzIzMTJkMzIzMTIwM2QzZTIwMzUzOTMwMzIzNS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEA2XsMDANBgkqhkiG9w0BAQsFAAOCAQEAnQ3999g2oa4HWPakYnsg7Ygw 2CDcLX58gvglRCbCC82/vfqpKataaAbuyK07NnwFpgKVP62eB/RnvLwu4ULuTj01 Atu1MCJF+LQlOkQC60mW2+C17fPdmjsKWNq77a4FFcl9YBhVb6o9tVlxofyeybuN jsWLj+X/2wt59ZAJpEyA9E+eXuCrxaJfJlrYtK+xXWmxH9pBaaH+hjOAWBZvnheH n8o1efU+I3RQsFYhpQsrfHF3/hQJX8Ie3mpzCJalxcp673tc3ejZ0Ox0K+P7j0jY VItaoaHgw3JQ0NSbpZkiN639Y0g3g8On+LHTUKfhGIwqDMJQSCgmXmq8G8Fl7g== -----END CERTIFICATE-----Generated at Fri Jun 12 04:32:56 2026 by rpki-client