$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3231312e3130312e302e302f31382d3139203d3e2034383038.roa File: 3231312e3130312e302e302f31382d3139203d3e2034383038.roa (raw, json) Hash identifier: +GqHg0MSYFV1trCOQyVttKU61r41gqFWfa6RejSd1Rw= Subject key identifier: 4A:4A:91:3A:76:AF:AF:F8:43:9E:2D:5D:1F:A5:6E:0F:F7:6F:D3:15 Certificate issuer: /CN=AE487B72C4F38EA548F6721BB60B773705BD9515 Certificate serial: 4FC70C61B38D0128DA5F34836C0BB4D53D5BEB6B Authority key identifier: AE:48:7B:72:C4:F3:8E:A5:48:F6:72:1B:B6:0B:77:37:05:BD:95:15 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3231312e3130312e302e302f31382d3139203d3e2034383038.roa Signing time: Tue 12 May 2026 07:12:48 +0000 ROA not before: Tue 12 May 2026 07:07:48 +0000 ROA not after: Tue 11 May 2027 07:12:48 +0000 asID: 4808 IP address blocks: 211.101.0.0/18 maxlen: 19 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:17:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:c7:0c:61:b3:8d:01:28:da:5f:34:83:6c:0b:b4:d5:3d:5b:eb:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AE487B72C4F38EA548F6721BB60B773705BD9515 Validity Not Before: May 12 07:07:48 2026 GMT Not After : May 11 07:12:48 2027 GMT Subject: CN=4A4A913A76AFAFF8439E2D5D1FA56E0FF76FD315 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:29:bc:ac:a5:51:66:c1:04:83:8a:47:b7:79: fd:8c:0b:1c:50:37:31:a6:72:78:74:2d:4f:08:ee: fe:1c:f2:33:67:62:30:df:23:b3:d4:08:ef:0e:d0: 56:9e:59:0f:86:93:79:5d:15:d1:b9:3b:87:f9:5c: ef:f1:a3:eb:5c:3c:ac:6e:cf:03:c4:86:d6:83:19: 04:3b:bc:67:0a:b6:22:fb:34:e2:84:30:97:17:c3: 68:7c:76:15:ce:b7:30:8c:38:0c:3e:6c:9c:3e:a3: c6:e4:4f:d9:d6:f7:1e:c4:67:43:e8:69:40:94:c5: 68:fd:09:c0:5d:b7:f8:32:18:8e:2b:96:d4:e0:44: 2d:e7:7d:0f:0f:e8:e3:c8:bc:24:55:14:78:68:28: 8b:96:d4:5e:c1:22:3d:d7:ae:4c:21:0f:81:d2:be: ac:33:f0:e7:04:8e:21:58:c8:92:3b:1b:14:b3:10: 5c:71:c8:93:e6:dd:42:2b:0d:b4:9b:27:ef:a7:fd: 90:ae:32:49:ec:4e:1d:b7:15:2f:45:c5:59:81:13: ba:0d:96:23:7a:b1:fa:7b:c3:25:40:5a:dc:32:dd: a8:34:32:61:81:19:f8:a4:20:85:35:ff:cf:70:e6: 8a:2f:e8:83:f6:2a:3d:2e:65:c4:4a:e6:3a:27:ec: e9:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:4A:91:3A:76:AF:AF:F8:43:9E:2D:5D:1F:A5:6E:0F:F7:6F:D3:15 X509v3 Authority Key Identifier: keyid:AE:48:7B:72:C4:F3:8E:A5:48:F6:72:1B:B6:0B:77:37:05:BD:95:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3231312e3130312e302e302f31382d3139203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 211.101.0.0/18 Signature Algorithm: sha256WithRSAEncryption 66:d8:e0:7e:c4:69:61:10:d9:bc:37:b4:e0:d1:bd:48:21:de: 0f:fb:d9:f3:e9:15:52:56:53:93:63:80:12:4e:c1:e5:2f:88: 33:ec:4c:c4:72:0c:8f:ba:ca:28:07:3c:a6:cb:71:15:de:8e: ed:77:0f:4a:1c:c4:1c:be:18:f0:56:6f:60:a0:18:44:9f:55: 1e:ba:c1:b7:c5:13:7b:cf:75:97:60:90:f8:8f:41:74:2b:d0: 3c:10:8f:78:f7:fc:8b:0f:ea:ed:b0:08:73:5f:03:d8:14:ec: 20:fb:8a:7a:a1:12:35:ce:01:f2:da:e9:49:8a:d2:f6:78:a6: f9:5b:87:86:7a:fb:79:e9:ed:f1:bd:64:27:b4:60:c0:77:ec: ad:27:04:4b:49:53:51:8f:1e:17:e0:d6:72:39:49:f2:9d:06: 35:4f:23:72:68:2a:22:3c:c1:11:21:9a:b0:18:cf:7a:4b:11: da:5c:88:4c:93:74:fa:a5:23:09:71:69:ef:1a:a1:a6:57:8f: e9:f8:ab:94:2d:b5:84:b3:9d:4d:bd:c2:18:b2:cd:9a:91:e1: 0b:42:57:c9:23:2e:43:ea:2a:da:fa:f0:82:94:06:15:08:0a: 7f:84:61:8c:ad:03:c1:c2:69:e2:8b:c0:a3:06:4c:09:71:a2: 1a:9d:c8:21 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUT8cMYbONASjaXzSDbAu01T1b62swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUU0ODdCNzJDNEYzOEVBNTQ4RjY3MjFCQjYwQjc3Mzcw NUJEOTUxNTAeFw0yNjA1MTIwNzA3NDhaFw0yNzA1MTEwNzEyNDhaMDMxMTAvBgNV BAMTKDRBNEE5MTNBNzZBRkFGRjg0MzlFMkQ1RDFGQTU2RTBGRjc2RkQzMTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/KbyspVFmwQSDike3ef2MCxxQ NzGmcnh0LU8I7v4c8jNnYjDfI7PUCO8O0FaeWQ+Gk3ldFdG5O4f5XO/xo+tcPKxu zwPEhtaDGQQ7vGcKtiL7NOKEMJcXw2h8dhXOtzCMOAw+bJw+o8bkT9nW9x7EZ0Po aUCUxWj9CcBdt/gyGI4rltTgRC3nfQ8P6OPIvCRVFHhoKIuW1F7BIj3XrkwhD4HS vqwz8OcEjiFYyJI7GxSzEFxxyJPm3UIrDbSbJ++n/ZCuMknsTh23FS9FxVmBE7oN liN6sfp7wyVAWtwy3ag0MmGBGfikIIU1/89w5oov6IP2Kj0uZcRK5jon7OmhAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUSkqROnavr/hDni1dH6VuD/dv0xUwHwYDVR0j BBgwFoAUrkh7csTzjqVI9nIbtgt3NwW9lRUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0Nzk0MzkzOS8wL0FFNDg3QjcyQzRGMzhFQTU0OEY2NzIxQkI2MEI3 NzM3MDVCRDk1MTUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQUU0ODdCNzJDNEYzOEVBNTQ4RjY3MjFCQjYwQjc3MzcwNUJEOTUxNS5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc2MTk5OTQ3OTQzOTM5LzAvMzIzMTMxMmUzMTMw MzEyZTMwMmUzMDJmMzEzODJkMzEzOTIwM2QzZTIwMzQzODMwMzgucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAbTZQAwDQYJKoZIhvcNAQELBQADggEBAGbY4H7EaWEQ2bw3tODRvUgh3g/72fPp FVJWU5NjgBJOweUviDPsTMRyDI+6yigHPKbLcRXeju13D0ocxBy+GPBWb2CgGESf VR66wbfFE3vPdZdgkPiPQXQr0DwQj3j3/IsP6u2wCHNfA9gU7CD7inqhEjXOAfLa 6UmK0vZ4pvlbh4Z6+3np7fG9ZCe0YMB37K0nBEtJU1GPHhfg1nI5SfKdBjVPI3Jo KiI8wREhmrAYz3pLEdpciEyTdPqlIwlxae8aoaZXj+n4q5QttYSznU29whiyzZqR 4QtCV8kjLkPqKtr68IKUBhUICn+EYYytA8HCaeKLwKMGTAlxohqdyCE= -----END CERTIFICATE-----Generated at Wed May 13 12:39:32 2026 by rpki-client