$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3132342e3230302e302e302f31382d3138203d3e2034383038.roa File: 3132342e3230302e302e302f31382d3138203d3e2034383038.roa (raw, json) Hash identifier: Olih28FAgREG/VaUTAjqn7Lwk2QZdMaQtuUJMo0fACU= Subject key identifier: 0A:00:EB:8F:CA:E2:C1:99:80:CD:05:75:B2:2A:D0:A2:A1:46:B7:8C Certificate issuer: /CN=AE487B72C4F38EA548F6721BB60B773705BD9515 Certificate serial: 676AE1B7797D4D79F6BCFE12FED15D90489D5287 Authority key identifier: AE:48:7B:72:C4:F3:8E:A5:48:F6:72:1B:B6:0B:77:37:05:BD:95:15 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3132342e3230302e302e302f31382d3138203d3e2034383038.roa Signing time: Wed 13 May 2026 03:46:14 +0000 ROA not before: Wed 13 May 2026 03:41:14 +0000 ROA not after: Wed 12 May 2027 03:46:14 +0000 asID: 4808 IP address blocks: 124.200.0.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:17:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:6a:e1:b7:79:7d:4d:79:f6:bc:fe:12:fe:d1:5d:90:48:9d:52:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AE487B72C4F38EA548F6721BB60B773705BD9515 Validity Not Before: May 13 03:41:14 2026 GMT Not After : May 12 03:46:14 2027 GMT Subject: CN=0A00EB8FCAE2C19980CD0575B22AD0A2A146B78C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:41:e4:0a:ce:e0:f5:bf:2e:49:c0:e8:7b:fe: 5b:88:ab:e9:1f:62:fd:e0:1a:36:29:96:30:8e:2d: a8:eb:7e:82:e3:e0:5f:5d:96:2e:53:bf:7e:b1:e8: 53:b8:a0:b5:b1:c6:74:e8:87:2b:0a:5c:49:e3:5f: cd:bf:08:32:46:e8:bb:fb:ef:60:fa:3a:08:6a:0f: 4f:ba:67:e4:9f:d0:b0:4b:94:83:b1:2d:4f:d0:c8: d3:84:b1:36:7c:d7:15:84:8b:c7:5e:79:d8:7b:0d: 2b:2e:8d:4c:5c:b1:50:93:17:bb:7d:4e:ce:8a:b1: 6f:b3:fc:49:fa:6f:c8:1f:79:d5:4c:34:b3:56:97: 1e:45:50:42:12:97:4f:01:fe:16:88:6f:e9:0e:27: e2:33:7e:b1:0e:bb:7d:17:ba:09:65:60:65:a1:48: 9c:18:1c:e6:7d:db:66:1b:bf:c1:03:b8:91:da:b2: c1:02:84:f7:c7:f3:f3:93:fb:ef:2a:ca:01:65:0f: 63:b4:25:90:9b:1f:15:00:e7:a8:28:42:7c:e5:a7: c4:7b:e7:ed:92:de:51:b3:37:8d:95:15:66:8a:40: 2a:16:3e:4e:f6:75:50:c3:56:4f:44:0a:fd:7f:90: d3:7e:a2:8e:33:07:69:45:ff:17:6f:27:97:a3:84: d3:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:00:EB:8F:CA:E2:C1:99:80:CD:05:75:B2:2A:D0:A2:A1:46:B7:8C X509v3 Authority Key Identifier: keyid:AE:48:7B:72:C4:F3:8E:A5:48:F6:72:1B:B6:0B:77:37:05:BD:95:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3132342e3230302e302e302f31382d3138203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 124.200.0.0/18 Signature Algorithm: sha256WithRSAEncryption 70:50:68:f4:8b:38:45:b0:21:9f:98:df:cc:56:bb:f3:96:e1: f6:0e:bb:9f:a5:7e:6b:cb:bf:9b:9f:87:a5:89:45:d2:16:01: fa:ff:72:e8:12:3d:21:b0:be:47:f6:c7:0c:f9:73:04:e5:ae: 7a:ae:03:09:c1:1f:0d:ee:fa:1a:7c:1a:6f:cb:23:25:ff:5f: 0b:c4:bb:b1:d2:9b:0e:cc:e5:04:4c:e3:fe:b5:07:e8:ea:66: 9c:af:61:b4:2c:fc:76:93:4f:44:15:c1:89:7f:d3:dd:3a:04: c3:bc:0b:87:90:62:f2:6f:5a:68:3b:af:2d:a3:36:b3:45:a6: c7:fe:91:fa:c4:d2:73:37:e3:cd:7b:94:3e:b7:e6:a9:df:60: cf:0b:ee:0f:21:90:b8:cc:94:f9:ce:be:fc:20:f9:b5:6b:2f: 17:13:8f:ee:a5:7d:e4:23:dc:f3:dc:72:40:20:f0:4a:00:a4: a1:78:5a:74:96:65:f2:45:36:0c:3f:ca:9a:b4:40:52:32:08: 33:66:85:12:91:62:ac:68:83:fb:a7:4b:b3:95:b6:0f:33:ab: da:ae:5c:ba:b5:38:aa:85:da:ed:b5:f1:e4:e4:23:cd:32:60: 69:31:93:27:5a:b6:80:eb:3d:29:57:e3:67:bd:aa:b3:48:c2: 79:6b:e1:51 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUZ2rht3l9TXn2vP4S/tFdkEidUocwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUU0ODdCNzJDNEYzOEVBNTQ4RjY3MjFCQjYwQjc3Mzcw NUJEOTUxNTAeFw0yNjA1MTMwMzQxMTRaFw0yNzA1MTIwMzQ2MTRaMDMxMTAvBgNV BAMTKDBBMDBFQjhGQ0FFMkMxOTk4MENEMDU3NUIyMkFEMEEyQTE0NkI3OEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChQeQKzuD1vy5JwOh7/luIq+kf Yv3gGjYpljCOLajrfoLj4F9dli5Tv36x6FO4oLWxxnTohysKXEnjX82/CDJG6Lv7 72D6OghqD0+6Z+Sf0LBLlIOxLU/QyNOEsTZ81xWEi8deedh7DSsujUxcsVCTF7t9 Ts6KsW+z/En6b8gfedVMNLNWlx5FUEISl08B/haIb+kOJ+IzfrEOu30XugllYGWh SJwYHOZ922Ybv8EDuJHassEChPfH8/OT++8qygFlD2O0JZCbHxUA56goQnzlp8R7 5+2S3lGzN42VFWaKQCoWPk72dVDDVk9ECv1/kNN+oo4zB2lF/xdvJ5ejhNMNAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUCgDrj8riwZmAzQV1sirQoqFGt4wwHwYDVR0j BBgwFoAUrkh7csTzjqVI9nIbtgt3NwW9lRUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0Nzk0MzkzOS8wL0FFNDg3QjcyQzRGMzhFQTU0OEY2NzIxQkI2MEI3 NzM3MDVCRDk1MTUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQUU0ODdCNzJDNEYzOEVBNTQ4RjY3MjFCQjYwQjc3MzcwNUJEOTUxNS5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc2MTk5OTQ3OTQzOTM5LzAvMzEzMjM0MmUzMjMw MzAyZTMwMmUzMDJmMzEzODJkMzEzODIwM2QzZTIwMzQzODMwMzgucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAZ8yAAwDQYJKoZIhvcNAQELBQADggEBAHBQaPSLOEWwIZ+Y38xWu/OW4fYOu5+l fmvLv5ufh6WJRdIWAfr/cugSPSGwvkf2xwz5cwTlrnquAwnBHw3u+hp8Gm/LIyX/ XwvEu7HSmw7M5QRM4/61B+jqZpyvYbQs/HaTT0QVwYl/0906BMO8C4eQYvJvWmg7 ry2jNrNFpsf+kfrE0nM34817lD635qnfYM8L7g8hkLjMlPnOvvwg+bVrLxcTj+6l feQj3PPcckAg8EoApKF4WnSWZfJFNgw/ypq0QFIyCDNmhRKRYqxog/unS7OVtg8z q9quXLq1OKqF2u218eTkI80yYGkxkydatoDrPSlX42e9qrNIwnlr4VE= -----END CERTIFICATE-----Generated at Wed May 13 17:09:33 2026 by rpki-client