$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3132342e3230302e3132382e302f31382d3138203d3e2034383038.roa File: 3132342e3230302e3132382e302f31382d3138203d3e2034383038.roa (raw, json) Hash identifier: raXmRyZhwmfgFMu8gEbDCiAzvh9IpBgIJK4IsspKj/4= Subject key identifier: 75:A2:03:32:C2:D3:C3:53:4E:CE:3A:46:EF:DA:72:4B:6A:17:A0:D7 Certificate issuer: /CN=AE487B72C4F38EA548F6721BB60B773705BD9515 Certificate serial: 20C9DC8BD9A13294050635A6F278307A72CAD606 Authority key identifier: AE:48:7B:72:C4:F3:8E:A5:48:F6:72:1B:B6:0B:77:37:05:BD:95:15 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3132342e3230302e3132382e302f31382d3138203d3e2034383038.roa Signing time: Wed 13 May 2026 03:46:14 +0000 ROA not before: Wed 13 May 2026 03:41:14 +0000 ROA not after: Wed 12 May 2027 03:46:14 +0000 asID: 4808 IP address blocks: 124.200.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:17:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:c9:dc:8b:d9:a1:32:94:05:06:35:a6:f2:78:30:7a:72:ca:d6:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AE487B72C4F38EA548F6721BB60B773705BD9515 Validity Not Before: May 13 03:41:14 2026 GMT Not After : May 12 03:46:14 2027 GMT Subject: CN=75A20332C2D3C3534ECE3A46EFDA724B6A17A0D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:44:c6:ef:5d:f7:64:f4:04:c0:00:c5:13:e8: bd:12:f3:ad:e5:f0:85:c9:1e:6d:5c:66:d4:28:b3: 84:bf:64:8b:75:27:4c:f6:79:67:5c:13:eb:36:a1: 8a:8a:4a:7d:de:fd:09:3d:d9:a8:b1:a1:7f:af:f8: 97:45:39:f0:23:87:59:d7:25:57:57:f2:7d:3c:3e: 61:f8:17:d5:3c:76:93:e4:71:25:f1:01:16:db:b3: ce:42:97:ae:89:f6:2a:9f:10:08:9f:fd:a7:c4:0b: 3f:cd:3b:40:df:63:48:9b:2b:06:21:ee:d0:93:aa: 60:51:e7:9b:6c:38:3d:80:61:f3:cb:09:ce:75:d2: b7:ff:24:e5:87:17:6c:ff:2c:91:ee:b2:5c:93:f6: b0:b6:7b:37:df:b3:d0:18:61:f7:7a:53:4f:25:03: 10:67:77:83:cf:02:af:f3:a2:41:5a:18:2f:c7:94: 01:ca:67:bc:42:38:0d:bb:f5:ec:85:48:ca:f1:3a: b2:52:1c:33:d3:4d:4d:d3:bf:28:8d:7a:62:3b:bc: 42:50:dd:3d:f4:4a:a9:9e:0f:01:8f:b0:8d:ef:f4: 4d:cd:79:39:dc:68:f7:0a:32:94:f0:e6:b3:25:98: 94:6f:41:ce:a2:72:72:ed:bc:a2:18:43:98:3a:76: 12:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:A2:03:32:C2:D3:C3:53:4E:CE:3A:46:EF:DA:72:4B:6A:17:A0:D7 X509v3 Authority Key Identifier: keyid:AE:48:7B:72:C4:F3:8E:A5:48:F6:72:1B:B6:0B:77:37:05:BD:95:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3132342e3230302e3132382e302f31382d3138203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 124.200.128.0/18 Signature Algorithm: sha256WithRSAEncryption 04:db:d4:b5:8c:3f:59:97:63:28:c2:31:14:81:e6:2d:e9:0e: d9:7d:3b:50:07:b6:7b:27:05:1d:f2:8e:7b:84:e7:b8:92:90: 96:83:2e:4d:17:75:9a:71:70:86:83:eb:18:ae:aa:b3:29:25: d6:15:1f:83:74:fe:74:c8:fe:e5:9b:27:b3:6a:02:0f:33:ba: f4:b5:46:dc:83:b8:a6:71:85:f6:39:0f:98:7d:bc:09:9e:cb: 37:31:ce:f4:82:62:ae:cc:19:a3:fa:b8:42:b1:c7:2c:bc:fa: 97:de:be:1c:e9:54:ec:cd:02:fc:ee:12:6e:e6:a8:72:f6:87: be:5e:2b:46:43:37:7c:a4:8e:32:d9:52:72:02:65:d3:b2:03: 32:32:77:66:82:ea:3b:57:8f:5b:5c:dc:54:14:87:9e:b4:39: 6b:53:a1:e6:9f:03:e6:0d:45:8d:6b:cd:3a:40:17:bf:c7:68: a8:58:29:06:ac:54:d3:4c:96:00:24:02:8d:7c:9b:d1:98:36: 3c:79:62:7f:2a:ad:68:ee:13:58:2d:a1:dc:02:43:e9:b2:70: 1f:05:81:1f:d3:94:d1:c5:04:bc:b4:cd:fe:4c:ef:a5:15:bd: e5:14:1e:6c:93:b2:d5:ed:7e:82:cb:50:a8:2f:57:8c:ce:d6: 1c:a6:96:e1 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUIMnci9mhMpQFBjWm8ngwenLK1gYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUU0ODdCNzJDNEYzOEVBNTQ4RjY3MjFCQjYwQjc3Mzcw NUJEOTUxNTAeFw0yNjA1MTMwMzQxMTRaFw0yNzA1MTIwMzQ2MTRaMDMxMTAvBgNV BAMTKDc1QTIwMzMyQzJEM0MzNTM0RUNFM0E0NkVGREE3MjRCNkExN0EwRDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDrRMbvXfdk9ATAAMUT6L0S863l 8IXJHm1cZtQos4S/ZIt1J0z2eWdcE+s2oYqKSn3e/Qk92aixoX+v+JdFOfAjh1nX JVdX8n08PmH4F9U8dpPkcSXxARbbs85Cl66J9iqfEAif/afECz/NO0DfY0ibKwYh 7tCTqmBR55tsOD2AYfPLCc510rf/JOWHF2z/LJHuslyT9rC2ezffs9AYYfd6U08l AxBnd4PPAq/zokFaGC/HlAHKZ7xCOA279eyFSMrxOrJSHDPTTU3TvyiNemI7vEJQ 3T30SqmeDwGPsI3v9E3NeTncaPcKMpTw5rMlmJRvQc6icnLtvKIYQ5g6dhLBAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUdaIDMsLTw1NOzjpG79pyS2oXoNcwHwYDVR0j BBgwFoAUrkh7csTzjqVI9nIbtgt3NwW9lRUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0Nzk0MzkzOS8wL0FFNDg3QjcyQzRGMzhFQTU0OEY2NzIxQkI2MEI3 NzM3MDVCRDk1MTUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQUU0ODdCNzJDNEYzOEVBNTQ4RjY3MjFCQjYwQjc3MzcwNUJEOTUxNS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3NjE5OTk0Nzk0MzkzOS8wLzMxMzIzNDJlMzIz MDMwMmUzMTMyMzgyZTMwMmYzMTM4MmQzMTM4MjAzZDNlMjAzNDM4MzAzOC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEBnzIgDANBgkqhkiG9w0BAQsFAAOCAQEABNvUtYw/WZdjKMIxFIHmLekO 2X07UAe2eycFHfKOe4TnuJKQloMuTRd1mnFwhoPrGK6qsykl1hUfg3T+dMj+5Zsn s2oCDzO69LVG3IO4pnGF9jkPmH28CZ7LNzHO9IJirswZo/q4QrHHLLz6l96+HOlU 7M0C/O4SbuaocvaHvl4rRkM3fKSOMtlScgJl07IDMjJ3ZoLqO1ePW1zcVBSHnrQ5 a1Oh5p8D5g1FjWvNOkAXv8doqFgpBqxU00yWACQCjXyb0Zg2PHlifyqtaO4TWC2h 3AJD6bJwHwWBH9OU0cUEvLTN/kzvpRW95RQebJOy1e1+gstQqC9XjM7WHKaW4Q== -----END CERTIFICATE-----Generated at Wed May 13 17:09:29 2026 by rpki-client