$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065577241947275265/0/3131392e3233352e3133302e302f32342d3234203d3e203234343237.roa File: 3131392e3233352e3133302e302f32342d3234203d3e203234343237.roa (raw, json) Hash identifier: HoRk+vOtUZtbIjrp6u/EWfXW2czPAr3G6Df5irzJNwk= Subject key identifier: 1B:3C:2C:A6:D3:A7:73:66:79:B8:A7:F2:A1:52:1A:54:74:98:9D:90 Certificate issuer: /CN=2339921363F7003C3DEB47ED8534AFE1F482D8D5 Certificate serial: 3E6F1616E7EEA9C21EF03EE75B5B2EB9EDD37DAC Authority key identifier: 23:39:92:13:63:F7:00:3C:3D:EB:47:ED:85:34:AF:E1:F4:82:D8:D5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2339921363F7003C3DEB47ED8534AFE1F482D8D5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065577241947275265/0/3131392e3233352e3133302e302f32342d3234203d3e203234343237.roa Signing time: Mon 20 Apr 2026 13:16:41 +0000 ROA not before: Mon 20 Apr 2026 13:11:41 +0000 ROA not after: Mon 19 Apr 2027 13:16:41 +0000 asID: 24427 IP address blocks: 119.235.130.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065577241947275265/0/2339921363F7003C3DEB47ED8534AFE1F482D8D5.crl rsync://rpki-rps.cnnic.cn/repo/A1065577241947275265/0/2339921363F7003C3DEB47ED8534AFE1F482D8D5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2339921363F7003C3DEB47ED8534AFE1F482D8D5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:6f:16:16:e7:ee:a9:c2:1e:f0:3e:e7:5b:5b:2e:b9:ed:d3:7d:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2339921363F7003C3DEB47ED8534AFE1F482D8D5 Validity Not Before: Apr 20 13:11:41 2026 GMT Not After : Apr 19 13:16:41 2027 GMT Subject: CN=1B3C2CA6D3A7736679B8A7F2A1521A5474989D90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:88:04:f6:6f:c8:8a:77:38:f2:4a:44:c7:a3: c4:26:f4:92:40:4d:60:5d:ed:37:99:a9:0a:cd:6f: 37:b9:1b:b3:5e:af:40:2f:c1:29:f7:34:61:8f:b8: b5:1a:78:70:cc:7c:d0:9a:67:36:a0:07:45:4c:c1: 46:73:ad:c4:6b:99:cf:03:45:9e:5a:08:8a:39:f2: 80:41:f1:f0:d6:c3:f7:9e:32:4e:92:6e:3f:4b:8a: 51:fb:07:dc:21:0b:48:97:23:e3:ab:c5:43:2c:27: d9:87:35:cd:3c:99:c3:52:2d:d8:27:4a:60:e5:47: b7:25:92:85:19:3a:cc:d7:3a:bb:5c:47:96:7c:69: f7:50:6c:a0:bc:9c:2b:8f:7e:c0:81:79:1c:20:25: 09:fd:d3:0c:b5:b7:6b:d8:93:22:3e:f9:66:ac:50: 38:45:b0:9a:7b:79:33:03:4b:37:09:fe:a9:3c:3e: d4:6a:a3:fb:d0:f9:ed:5b:bf:d8:be:ec:4e:f4:16: 25:43:9e:95:55:fb:bc:ed:20:ae:33:ca:42:55:aa: 19:17:f1:0b:92:16:f7:18:56:0a:bb:4f:18:00:c0: 25:12:e1:82:8e:c9:a9:00:0a:68:13:a0:c6:0f:0d: 11:f1:8d:1b:1a:f3:c8:8d:ce:1f:35:ba:d3:e0:5e: cd:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:3C:2C:A6:D3:A7:73:66:79:B8:A7:F2:A1:52:1A:54:74:98:9D:90 X509v3 Authority Key Identifier: keyid:23:39:92:13:63:F7:00:3C:3D:EB:47:ED:85:34:AF:E1:F4:82:D8:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947275265/0/2339921363F7003C3DEB47ED8534AFE1F482D8D5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2339921363F7003C3DEB47ED8534AFE1F482D8D5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947275265/0/3131392e3233352e3133302e302f32342d3234203d3e203234343237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.235.130.0/24 Signature Algorithm: sha256WithRSAEncryption 77:07:53:95:f9:b3:26:c6:32:a4:83:21:38:eb:0d:fa:92:ab: 34:86:68:02:8b:a2:50:46:14:ed:e2:49:cf:30:3c:9c:b9:d4: 86:17:d9:8a:cd:b8:57:08:b2:95:4a:5c:2f:2f:b7:74:f7:75: 28:92:cb:83:71:60:dd:5f:62:27:42:7a:10:42:9b:26:38:7f: 39:6f:38:98:26:9b:91:b5:f0:c1:f1:27:a3:5f:4f:bc:a4:ea: 6e:58:57:d1:bb:71:9e:89:f1:f4:22:c3:54:ff:1a:3e:a6:f4: ed:92:cf:94:d1:09:2b:e0:b5:91:9d:df:a7:d7:de:c8:87:3c: 37:bc:c4:c8:e3:bb:1d:d2:7a:f7:58:22:ba:16:c4:06:28:d3: 66:3b:e6:21:29:6e:57:48:73:4e:08:d6:58:1c:65:b7:17:0a: fc:ed:77:67:cf:b1:9a:b3:85:85:60:71:58:a0:96:78:21:c9: 3d:9f:10:79:ad:dc:a3:c5:aa:fb:07:75:7a:6f:40:64:8e:70: 98:89:ac:36:cf:ee:cb:13:99:8f:8c:44:26:d9:c1:6d:40:ce: 67:28:60:1e:af:b0:ad:a4:11:7c:ee:3a:db:35:23:99:ad:cf: 0c:66:48:ae:0c:38:f9:84:74:54:70:d9:bf:7c:c9:9c:8f:80: fd:02:35:9b -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUPm8WFufuqcIe8D7nW1suue3TfawwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjMzOTkyMTM2M0Y3MDAzQzNERUI0N0VEODUzNEFGRTFG NDgyRDhENTAeFw0yNjA0MjAxMzExNDFaFw0yNzA0MTkxMzE2NDFaMDMxMTAvBgNV BAMTKDFCM0MyQ0E2RDNBNzczNjY3OUI4QTdGMkExNTIxQTU0NzQ5ODlEOTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgiAT2b8iKdzjySkTHo8Qm9JJA TWBd7TeZqQrNbze5G7Ner0AvwSn3NGGPuLUaeHDMfNCaZzagB0VMwUZzrcRrmc8D RZ5aCIo58oBB8fDWw/eeMk6Sbj9LilH7B9whC0iXI+OrxUMsJ9mHNc08mcNSLdgn SmDlR7clkoUZOszXOrtcR5Z8afdQbKC8nCuPfsCBeRwgJQn90wy1t2vYkyI++Was UDhFsJp7eTMDSzcJ/qk8PtRqo/vQ+e1bv9i+7E70FiVDnpVV+7ztIK4zykJVqhkX 8QuSFvcYVgq7TxgAwCUS4YKOyakACmgToMYPDRHxjRsa88iNzh81utPgXs35AgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUGzwsptOnc2Z5uKfyoVIaVHSYnZAwHwYDVR0j BBgwFoAUIzmSE2P3ADw960fthTSv4fSC2NUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NzI0MTk0NzI3NTI2NS8wLzIzMzk5MjEzNjNGNzAwM0MzREVCNDdFRDg1MzRB RkUxRjQ4MkQ4RDUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjMzOTkyMTM2M0Y3MDAzQzNERUI0N0VEODUzNEFGRTFGNDgyRDhENS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzcyNDE5NDcyNzUyNjUvMC8zMTMxMzkyZTMy MzMzNTJlMzEzMzMwMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzNDM0MzIzNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAHfrgjANBgkqhkiG9w0BAQsFAAOCAQEAdwdTlfmzJsYypIMhOOsN +pKrNIZoAouiUEYU7eJJzzA8nLnUhhfZis24VwiylUpcLy+3dPd1KJLLg3Fg3V9i J0J6EEKbJjh/OW84mCabkbXwwfEno19PvKTqblhX0btxnonx9CLDVP8aPqb07ZLP lNEJK+C1kZ3fp9feyIc8N7zEyOO7HdJ691giuhbEBijTZjvmISluV0hzTgjWWBxl txcK/O13Z8+xmrOFhWBxWKCWeCHJPZ8Qea3co8Wq+wd1em9AZI5wmImsNs/uyxOZ j4xEJtnBbUDOZyhgHq+wraQRfO462zUjma3PDGZIrgw4+YR0VHDZv3zJnI+A/QI1 mw== -----END CERTIFICATE-----Generated at Wed May 13 20:20:31 2026 by rpki-client