$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3231382e3234372e302e302f31392d3139203d3e2034383038.roa File: 3231382e3234372e302e302f31392d3139203d3e2034383038.roa (raw, json) Hash identifier: 3Clc+IRXrl8iy7jcu9YHHl+UPNN8ZHlSqxq3+gmiPpE= Subject key identifier: D9:B8:DE:06:33:CE:D0:2C:6A:01:B0:1B:EE:5D:16:1A:4B:07:95:55 Certificate issuer: /CN=AE487B72C4F38EA548F6721BB60B773705BD9515 Certificate serial: 277C75B5ADD5ED0346B8DE1744D32E66C3A895CF Authority key identifier: AE:48:7B:72:C4:F3:8E:A5:48:F6:72:1B:B6:0B:77:37:05:BD:95:15 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3231382e3234372e302e302f31392d3139203d3e2034383038.roa Signing time: Wed 13 May 2026 02:37:52 +0000 ROA not before: Wed 13 May 2026 02:32:52 +0000 ROA not after: Wed 12 May 2027 02:37:52 +0000 asID: 4808 IP address blocks: 218.247.0.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:17:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:7c:75:b5:ad:d5:ed:03:46:b8:de:17:44:d3:2e:66:c3:a8:95:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AE487B72C4F38EA548F6721BB60B773705BD9515 Validity Not Before: May 13 02:32:52 2026 GMT Not After : May 12 02:37:52 2027 GMT Subject: CN=D9B8DE0633CED02C6A01B01BEE5D161A4B079555 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:95:83:df:72:bb:4f:19:bf:ff:4e:5c:b5:ef: ab:ae:13:1c:2a:0a:47:27:6d:f5:67:e8:88:8d:19: 6e:c4:b2:ff:3b:98:aa:56:17:8f:32:9e:2e:0d:87: 70:26:5a:70:20:e4:6c:de:49:5f:1c:a7:ca:7e:1b: e2:3d:68:1e:67:03:42:88:44:24:36:8c:0f:c1:62: ac:1e:91:dd:c9:8e:c2:31:21:0a:69:8e:4f:d6:49: a2:33:86:08:15:30:a7:14:d0:fd:93:26:d7:e6:43: 20:55:eb:50:0d:96:5e:a0:ca:f0:98:1f:53:66:8a: 6f:8d:96:e6:e2:30:7d:d2:83:c3:0b:00:c1:99:5c: f7:70:2d:bf:f2:7a:b8:e9:36:94:97:a4:03:6b:e1: b5:38:38:28:c9:5b:ea:51:28:76:7f:e7:d3:e5:c2: 2f:59:e2:d5:dc:83:f6:68:b4:1e:5b:88:e2:f1:9b: 22:d0:fa:0f:33:53:09:92:55:56:43:33:1f:b4:93: b1:01:26:71:57:a5:85:dc:db:09:25:61:66:12:ef: 60:f6:95:17:b3:3f:4b:d5:e0:3c:95:15:44:75:3a: e0:74:6d:78:ca:0a:c1:59:51:fe:ca:19:37:bb:51: b1:b5:bc:85:62:e3:88:f2:c0:b3:c4:ef:7c:d8:20: 89:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:B8:DE:06:33:CE:D0:2C:6A:01:B0:1B:EE:5D:16:1A:4B:07:95:55 X509v3 Authority Key Identifier: keyid:AE:48:7B:72:C4:F3:8E:A5:48:F6:72:1B:B6:0B:77:37:05:BD:95:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3231382e3234372e302e302f31392d3139203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 218.247.0.0/19 Signature Algorithm: sha256WithRSAEncryption 64:3c:b1:86:5a:86:3e:7b:af:ba:24:8f:88:78:65:4d:d4:16: b4:23:c0:23:a5:fd:6e:87:1c:0f:97:72:c6:03:df:e4:76:36: 28:e4:82:24:4f:39:a1:01:a0:59:3c:90:e2:1c:96:b6:54:27: 9f:00:b4:8f:0c:04:7b:ab:0e:cc:47:37:23:36:f7:74:20:a0: ad:9f:54:e1:04:01:37:ae:cc:1f:2f:30:7f:79:c4:83:a8:db: d4:db:67:25:97:3b:50:e7:ca:b6:a6:fb:a9:e4:ed:3a:ff:10: bb:ee:a8:1f:8e:b7:bb:a1:32:b8:18:c0:ec:83:94:c0:ff:b0: 22:67:bf:fa:f1:27:69:30:00:e2:3b:56:b0:20:4c:19:a3:8a: 69:2f:47:d5:f4:ab:68:8b:66:c3:68:f2:58:37:c8:e5:d0:7b: c3:7c:a4:86:d4:51:f1:dc:54:2b:91:8b:da:c7:20:36:b3:9e: b9:d7:8e:77:5f:b5:ec:3a:15:28:89:25:33:8a:55:8b:07:62: 54:08:70:1d:b3:07:d4:05:55:da:81:24:59:53:b4:fc:0c:b0: 55:a7:1b:0c:00:22:dd:2e:96:71:92:ca:46:60:9f:25:f6:50: 03:24:41:f5:89:10:87:2f:cb:2d:67:d0:b8:56:d4:f0:16:3c: 2b:b0:c4:44 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUJ3x1ta3V7QNGuN4XRNMuZsOolc8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUU0ODdCNzJDNEYzOEVBNTQ4RjY3MjFCQjYwQjc3Mzcw NUJEOTUxNTAeFw0yNjA1MTMwMjMyNTJaFw0yNzA1MTIwMjM3NTJaMDMxMTAvBgNV BAMTKEQ5QjhERTA2MzNDRUQwMkM2QTAxQjAxQkVFNUQxNjFBNEIwNzk1NTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGlYPfcrtPGb//Tly176uuExwq CkcnbfVn6IiNGW7Esv87mKpWF48yni4Nh3AmWnAg5GzeSV8cp8p+G+I9aB5nA0KI RCQ2jA/BYqwekd3JjsIxIQppjk/WSaIzhggVMKcU0P2TJtfmQyBV61ANll6gyvCY H1Nmim+NlubiMH3Sg8MLAMGZXPdwLb/yerjpNpSXpANr4bU4OCjJW+pRKHZ/59Pl wi9Z4tXcg/ZotB5biOLxmyLQ+g8zUwmSVVZDMx+0k7EBJnFXpYXc2wklYWYS72D2 lRezP0vV4DyVFUR1OuB0bXjKCsFZUf7KGTe7UbG1vIVi44jywLPE73zYIIlfAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQU2bjeBjPO0CxqAbAb7l0WGksHlVUwHwYDVR0j BBgwFoAUrkh7csTzjqVI9nIbtgt3NwW9lRUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0Nzk0MzkzOS8wL0FFNDg3QjcyQzRGMzhFQTU0OEY2NzIxQkI2MEI3 NzM3MDVCRDk1MTUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQUU0ODdCNzJDNEYzOEVBNTQ4RjY3MjFCQjYwQjc3MzcwNUJEOTUxNS5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc2MTk5OTQ3OTQzOTM5LzAvMzIzMTM4MmUzMjM0 MzcyZTMwMmUzMDJmMzEzOTJkMzEzOTIwM2QzZTIwMzQzODMwMzgucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAXa9wAwDQYJKoZIhvcNAQELBQADggEBAGQ8sYZahj57r7okj4h4ZU3UFrQjwCOl /W6HHA+XcsYD3+R2NijkgiRPOaEBoFk8kOIclrZUJ58AtI8MBHurDsxHNyM293Qg oK2fVOEEATeuzB8vMH95xIOo29TbZyWXO1Dnyram+6nk7Tr/ELvuqB+Ot7uhMrgY wOyDlMD/sCJnv/rxJ2kwAOI7VrAgTBmjimkvR9X0q2iLZsNo8lg3yOXQe8N8pIbU UfHcVCuRi9rHIDaznrnXjndftew6FSiJJTOKVYsHYlQIcB2zB9QFVdqBJFlTtPwM sFWnGwwAIt0ulnGSykZgnyX2UAMkQfWJEIcvyy1n0LhW1PAWPCuwxEQ= -----END CERTIFICATE-----Generated at Wed May 13 16:15:13 2026 by rpki-client