$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3231382e3234372e3132382e302f31372d3138203d3e2034383038.roa File: 3231382e3234372e3132382e302f31372d3138203d3e2034383038.roa (raw, json) Hash identifier: ojtWMsOB7wT/isvsgDYWuE4pJP8zOAxRVyhwlOBQsbc= Subject key identifier: 5E:64:A3:37:8F:4B:E7:92:98:52:E8:EF:06:EC:C6:8F:11:46:E7:CF Certificate issuer: /CN=AE487B72C4F38EA548F6721BB60B773705BD9515 Certificate serial: 4AB2F129C27660A290F911FEA7202AD863D48653 Authority key identifier: AE:48:7B:72:C4:F3:8E:A5:48:F6:72:1B:B6:0B:77:37:05:BD:95:15 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3231382e3234372e3132382e302f31372d3138203d3e2034383038.roa Signing time: Wed 13 May 2026 02:37:52 +0000 ROA not before: Wed 13 May 2026 02:32:52 +0000 ROA not after: Wed 12 May 2027 02:37:52 +0000 asID: 4808 IP address blocks: 218.247.128.0/17 maxlen: 18 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:17:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:b2:f1:29:c2:76:60:a2:90:f9:11:fe:a7:20:2a:d8:63:d4:86:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AE487B72C4F38EA548F6721BB60B773705BD9515 Validity Not Before: May 13 02:32:52 2026 GMT Not After : May 12 02:37:52 2027 GMT Subject: CN=5E64A3378F4BE7929852E8EF06ECC68F1146E7CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:12:4a:19:de:84:d3:6b:c0:0b:e1:6a:0a:72: 0d:22:58:d1:1d:5e:22:83:2a:c8:32:ec:30:6a:b2: f0:03:9f:5f:ae:f1:bc:9c:47:29:f4:f5:72:6e:29: 17:bf:61:24:21:43:49:66:31:ad:de:77:8e:bc:b0: b9:c2:a1:ec:0d:8e:57:46:af:60:4b:25:a6:42:e7: 62:8a:a5:7e:86:04:8e:4d:4f:0f:2a:71:c1:66:b3: 33:16:01:11:3e:e9:46:85:a0:14:a4:12:60:43:96: 60:cf:f6:4b:b2:d3:cb:c3:0f:17:ab:67:51:83:35: c4:e7:d9:0f:e3:77:f3:59:b8:0e:0a:f9:cb:b8:ba: cc:93:35:f3:cb:7d:84:db:f3:b9:97:ea:1f:f3:4a: b1:36:e2:4b:30:c8:73:58:b8:c5:80:2e:aa:25:7b: ab:de:45:97:43:6a:90:c9:8b:3e:03:04:64:b7:ec: 9e:ae:6a:88:16:f7:b7:9d:3b:c7:66:61:3f:d8:7c: 70:bd:9f:60:7e:e6:39:03:24:0a:96:d0:56:b4:bf: 31:14:af:09:36:ad:9c:98:c5:92:1b:60:a1:d8:7f: 0f:c1:c9:12:34:29:3e:71:71:c7:1f:fa:4a:94:73: 4b:b1:f9:f5:97:0a:b4:39:16:c5:f2:f2:a4:fc:b0: d4:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:64:A3:37:8F:4B:E7:92:98:52:E8:EF:06:EC:C6:8F:11:46:E7:CF X509v3 Authority Key Identifier: keyid:AE:48:7B:72:C4:F3:8E:A5:48:F6:72:1B:B6:0B:77:37:05:BD:95:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3231382e3234372e3132382e302f31372d3138203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 218.247.128.0/17 Signature Algorithm: sha256WithRSAEncryption 53:b6:9d:36:12:e2:9e:58:f4:ff:c4:7e:b0:a2:6b:94:1d:2a: 51:67:d4:b2:37:29:37:cb:46:89:5a:b9:c5:f6:c4:8d:9d:be: 10:a2:4f:e4:99:88:41:d2:44:dc:0c:c5:d0:ca:62:88:65:20: 7f:37:8b:06:fc:50:c8:a9:3d:b6:b6:f2:bd:82:a0:57:be:85: 43:f3:71:cb:ea:69:da:8d:74:ea:c0:08:bf:fc:07:3d:67:a1: 68:e7:2c:17:e0:75:fd:86:60:f1:62:99:bf:a9:6c:6e:2a:a2: 3b:e9:94:4e:2f:16:63:6c:3a:a2:0b:06:f1:c6:51:fa:ea:2b: 9d:5e:2c:40:53:94:40:cd:80:3b:78:71:3e:39:7b:33:ba:b6: 60:9f:7a:f6:ad:b4:0b:2a:ea:c5:da:6a:42:22:66:26:2a:47: a4:73:72:2e:e8:1d:f4:f8:86:99:93:26:62:a9:cd:9c:17:9a: 71:54:1d:b9:e3:fe:ad:5b:44:ef:51:b1:f4:ec:5b:23:fc:53: 20:34:d2:a0:bd:78:b0:87:27:5a:8c:25:25:9a:bd:77:f3:f1: 8b:81:0f:28:0a:29:86:1e:7d:90:b4:8c:e5:2a:89:b4:3d:7d: 7f:9e:29:3d:4f:81:15:d9:37:09:cf:9e:7f:34:95:d4:c8:20: 2f:9a:98:5f -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUSrLxKcJ2YKKQ+RH+pyAq2GPUhlMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUU0ODdCNzJDNEYzOEVBNTQ4RjY3MjFCQjYwQjc3Mzcw NUJEOTUxNTAeFw0yNjA1MTMwMjMyNTJaFw0yNzA1MTIwMjM3NTJaMDMxMTAvBgNV BAMTKDVFNjRBMzM3OEY0QkU3OTI5ODUyRThFRjA2RUNDNjhGMTE0NkU3Q0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0EkoZ3oTTa8AL4WoKcg0iWNEd XiKDKsgy7DBqsvADn1+u8bycRyn09XJuKRe/YSQhQ0lmMa3ed468sLnCoewNjldG r2BLJaZC52KKpX6GBI5NTw8qccFmszMWARE+6UaFoBSkEmBDlmDP9kuy08vDDxer Z1GDNcTn2Q/jd/NZuA4K+cu4usyTNfPLfYTb87mX6h/zSrE24kswyHNYuMWALqol e6veRZdDapDJiz4DBGS37J6uaogW97edO8dmYT/YfHC9n2B+5jkDJAqW0Fa0vzEU rwk2rZyYxZIbYKHYfw/ByRI0KT5xcccf+kqUc0ux+fWXCrQ5FsXy8qT8sNQhAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUXmSjN49L55KYUujvBuzGjxFG588wHwYDVR0j BBgwFoAUrkh7csTzjqVI9nIbtgt3NwW9lRUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0Nzk0MzkzOS8wL0FFNDg3QjcyQzRGMzhFQTU0OEY2NzIxQkI2MEI3 NzM3MDVCRDk1MTUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQUU0ODdCNzJDNEYzOEVBNTQ4RjY3MjFCQjYwQjc3MzcwNUJEOTUxNS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3NjE5OTk0Nzk0MzkzOS8wLzMyMzEzODJlMzIz NDM3MmUzMTMyMzgyZTMwMmYzMTM3MmQzMTM4MjAzZDNlMjAzNDM4MzAzOC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEB9r3gDANBgkqhkiG9w0BAQsFAAOCAQEAU7adNhLinlj0/8R+sKJrlB0q UWfUsjcpN8tGiVq5xfbEjZ2+EKJP5JmIQdJE3AzF0MpiiGUgfzeLBvxQyKk9trby vYKgV76FQ/Nxy+pp2o106sAIv/wHPWehaOcsF+B1/YZg8WKZv6lsbiqiO+mUTi8W Y2w6ogsG8cZR+uornV4sQFOUQM2AO3hxPjl7M7q2YJ969q20CyrqxdpqQiJmJipH pHNyLugd9PiGmZMmYqnNnBeacVQdueP+rVtE71Gx9OxbI/xTIDTSoL14sIcnWowl JZq9d/Pxi4EPKAophh59kLSM5SqJtD19f54pPU+BFdk3Cc+efzSV1MggL5qYXw== -----END CERTIFICATE-----Generated at Wed May 13 17:32:29 2026 by rpki-client