$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199947812867/0/3132342e3137332e3230382e302f32342d3234203d3e2030.roa File: 3132342e3137332e3230382e302f32342d3234203d3e2030.roa (raw, json) Hash identifier: KzXk/u4D2ZbWKgVsSpoy9rFThbEoSL6aSldGFJ6E86E= Subject key identifier: 53:15:1B:AF:52:64:01:50:48:85:8E:EF:EE:59:EF:30:B9:09:54:76 Certificate issuer: /CN=F329F518724FAC695E33F5C78532CBF56BF4243D Certificate serial: 067C098FF6C3274B10057D871601F1BDEF4D7DD5 Authority key identifier: F3:29:F5:18:72:4F:AC:69:5E:33:F5:C7:85:32:CB:F5:6B:F4:24:3D Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/F329F518724FAC695E33F5C78532CBF56BF4243D.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199947812867/0/3132342e3137332e3230382e302f32342d3234203d3e2030.roa Signing time: Thu 23 Apr 2026 07:19:10 +0000 ROA not before: Thu 23 Apr 2026 07:14:10 +0000 ROA not after: Thu 22 Apr 2027 07:19:10 +0000 asID: 0 IP address blocks: 124.173.208.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199947812867/0/F329F518724FAC695E33F5C78532CBF56BF4243D.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199947812867/0/F329F518724FAC695E33F5C78532CBF56BF4243D.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/F329F518724FAC695E33F5C78532CBF56BF4243D.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 13:31:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:7c:09:8f:f6:c3:27:4b:10:05:7d:87:16:01:f1:bd:ef:4d:7d:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F329F518724FAC695E33F5C78532CBF56BF4243D Validity Not Before: Apr 23 07:14:10 2026 GMT Not After : Apr 22 07:19:10 2027 GMT Subject: CN=53151BAF5264015048858EEFEE59EF30B9095476 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:a3:ea:9f:06:75:ef:1c:05:87:63:8f:0f:a3: c4:37:7a:1e:fc:9e:84:38:31:4a:5c:c0:2a:24:11: a9:42:a6:1f:64:1f:d3:7a:d1:7a:65:a9:92:c3:1d: 61:15:7f:48:37:2d:cb:b9:92:9d:bc:0e:2b:a5:89: d3:1f:2f:68:53:00:ea:c5:c4:92:76:25:58:60:84: e1:e7:ab:8a:a8:4c:91:8a:34:67:7c:50:0f:09:b0: 49:b0:82:a5:02:21:85:c7:24:4c:60:4f:d4:7b:3b: b9:87:83:40:8b:2c:c9:eb:34:f5:41:dc:9a:1a:08: ed:45:8c:e0:c6:99:e6:5b:93:53:b6:87:9b:69:6c: 78:40:c5:b1:c0:da:8f:46:cd:62:c7:14:13:77:df: 2b:ef:f5:0d:d1:0c:b6:cb:c6:4b:c9:00:20:6d:8a: 45:e6:9a:78:41:7c:71:95:6c:7e:29:7a:fe:4d:aa: 94:54:58:df:88:d4:f9:7f:d5:fc:cc:e2:e1:b2:74: 5d:7b:1d:1c:7e:4b:af:4f:e1:a4:02:09:9e:be:fb: 0b:af:ba:48:c9:70:66:3e:28:2d:59:c8:ac:6d:9d: 53:47:d3:0e:13:5e:8e:7a:1c:69:35:ee:a2:d4:e1: b1:6b:2c:5d:e0:21:a4:35:c4:04:c5:cb:94:b1:ff: 81:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:15:1B:AF:52:64:01:50:48:85:8E:EF:EE:59:EF:30:B9:09:54:76 X509v3 Authority Key Identifier: keyid:F3:29:F5:18:72:4F:AC:69:5E:33:F5:C7:85:32:CB:F5:6B:F4:24:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947812867/0/F329F518724FAC695E33F5C78532CBF56BF4243D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/F329F518724FAC695E33F5C78532CBF56BF4243D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947812867/0/3132342e3137332e3230382e302f32342d3234203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 124.173.208.0/24 Signature Algorithm: sha256WithRSAEncryption 59:8e:92:1b:61:8b:34:43:0f:52:ab:11:85:f0:a0:2d:90:44: 36:df:cb:88:62:d6:16:27:2e:eb:b7:a1:17:ae:b2:d1:87:9a: 91:60:0f:c4:d9:5b:e1:80:67:96:08:2d:78:b9:65:8c:03:55: 94:f5:b2:ca:9b:10:71:7a:0a:1f:ff:5e:13:cc:3d:94:8e:0a: 85:ce:4f:bf:ce:53:52:8e:32:72:86:19:0d:42:af:dc:41:10: ec:39:04:38:67:bf:0e:8d:60:8a:da:94:17:b0:09:b0:86:4d: b5:18:e0:3d:fd:d1:14:5f:c2:67:d2:4b:13:08:4d:6d:ef:d3: 62:4a:fd:67:ec:e8:c6:d4:dd:d7:9c:0d:8d:7a:eb:72:89:6a: f0:01:85:d0:09:66:5a:ea:e4:75:56:a0:ff:94:77:d3:32:b2: 4e:21:30:30:01:73:0d:9a:17:82:0f:aa:17:c9:16:a2:26:bf: f0:c1:6f:37:3d:2b:8e:b2:d9:9d:1c:c7:5f:4f:cb:3e:fb:4e: 26:31:f0:b1:38:3d:eb:b7:3e:5e:ce:88:9f:43:69:2b:be:80: ea:d7:bc:4a:65:93:c8:1c:79:d1:12:f0:07:53:d8:78:c0:dd: 2a:1b:b5:0f:20:96:26:d3:96:ee:2e:f6:19:07:76:a4:3a:7a: 80:50:56:69 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgIUBnwJj/bDJ0sQBX2HFgHxve9NfdUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjMyOUY1MTg3MjRGQUM2OTVFMzNGNUM3ODUzMkNCRjU2 QkY0MjQzRDAeFw0yNjA0MjMwNzE0MTBaFw0yNzA0MjIwNzE5MTBaMDMxMTAvBgNV BAMTKDUzMTUxQkFGNTI2NDAxNTA0ODg1OEVFRkVFNTlFRjMwQjkwOTU0NzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVo+qfBnXvHAWHY48Po8Q3eh78 noQ4MUpcwCokEalCph9kH9N60XplqZLDHWEVf0g3Lcu5kp28DiulidMfL2hTAOrF xJJ2JVhghOHnq4qoTJGKNGd8UA8JsEmwgqUCIYXHJExgT9R7O7mHg0CLLMnrNPVB 3JoaCO1FjODGmeZbk1O2h5tpbHhAxbHA2o9GzWLHFBN33yvv9Q3RDLbLxkvJACBt ikXmmnhBfHGVbH4pev5NqpRUWN+I1Pl/1fzM4uGydF17HRx+S69P4aQCCZ6++wuv ukjJcGY+KC1ZyKxtnVNH0w4TXo56HGk17qLU4bFrLF3gIaQ1xATFy5Sx/4HxAgMB AAGjggINMIICCTAdBgNVHQ4EFgQUUxUbr1JkAVBIhY7v7lnvMLkJVHYwHwYDVR0j BBgwFoAU8yn1GHJPrGleM/XHhTLL9Wv0JD0wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0NzgxMjg2Ny8wL0YzMjlGNTE4NzI0RkFDNjk1RTMzRjVDNzg1MzJD QkY1NkJGNDI0M0QuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRjMyOUY1MTg3MjRGQUM2OTVFMzNGNUM3ODUzMkNCRjU2QkY0MjQzRC5jZXIw gYYGCCsGAQUFBwELBHoweDB2BggrBgEFBQcwC4ZqcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc2MTk5OTQ3ODEyODY3LzAvMzEzMjM0MmUzMTM3 MzMyZTMyMzAzODJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMwLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA fK3QMA0GCSqGSIb3DQEBCwUAA4IBAQBZjpIbYYs0Qw9SqxGF8KAtkEQ238uIYtYW Jy7rt6EXrrLRh5qRYA/E2VvhgGeWCC14uWWMA1WU9bLKmxBxegof/14TzD2UjgqF zk+/zlNSjjJyhhkNQq/cQRDsOQQ4Z78OjWCK2pQXsAmwhk21GOA9/dEUX8Jn0ksT CE1t79NiSv1n7OjG1N3XnA2NeutyiWrwAYXQCWZa6uR1VqD/lHfTMrJOITAwAXMN mheCD6oXyRaiJr/wwW83PSuOstmdHMdfT8s++04mMfCxOD3rtz5ezoifQ2krvoDq 17xKZZPIHHnREvAHU9h4wN0qG7UPIJYm05buLvYZB3akOnqAUFZp -----END CERTIFICATE-----Generated at Tue May 12 21:52:39 2026 by rpki-client