$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065577241947275265/0/3131392e3233352e3133362e302f32342d3234203d3e203234343237.roa File: 3131392e3233352e3133362e302f32342d3234203d3e203234343237.roa (raw, json) Hash identifier: P3jXS0lLFc4DM3hVmFyaQ5NRZvxXxC81SrFQZS9hz8Y= Subject key identifier: A0:5F:5C:7C:29:19:FA:1C:1D:76:9C:B7:1F:10:48:DD:45:7E:7A:79 Certificate issuer: /CN=2339921363F7003C3DEB47ED8534AFE1F482D8D5 Certificate serial: 2DF88B4567DABD8B5C9EB72ADDA54B484AB05666 Authority key identifier: 23:39:92:13:63:F7:00:3C:3D:EB:47:ED:85:34:AF:E1:F4:82:D8:D5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2339921363F7003C3DEB47ED8534AFE1F482D8D5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065577241947275265/0/3131392e3233352e3133362e302f32342d3234203d3e203234343237.roa Signing time: Mon 20 Apr 2026 13:16:42 +0000 ROA not before: Mon 20 Apr 2026 13:11:42 +0000 ROA not after: Mon 19 Apr 2027 13:16:42 +0000 asID: 24427 IP address blocks: 119.235.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065577241947275265/0/2339921363F7003C3DEB47ED8534AFE1F482D8D5.crl rsync://rpki-rps.cnnic.cn/repo/A1065577241947275265/0/2339921363F7003C3DEB47ED8534AFE1F482D8D5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2339921363F7003C3DEB47ED8534AFE1F482D8D5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:f8:8b:45:67:da:bd:8b:5c:9e:b7:2a:dd:a5:4b:48:4a:b0:56:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2339921363F7003C3DEB47ED8534AFE1F482D8D5 Validity Not Before: Apr 20 13:11:42 2026 GMT Not After : Apr 19 13:16:42 2027 GMT Subject: CN=A05F5C7C2919FA1C1D769CB71F1048DD457E7A79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d6:d3:85:83:cf:a7:d4:50:26:7b:2f:92:7a: ee:0f:1d:d1:4b:37:1d:6d:9c:60:54:7a:8c:94:69: da:53:47:3a:c1:1b:f6:18:64:dc:66:55:80:56:14: a7:45:25:cc:a6:f7:e6:5b:ff:eb:ed:af:b7:1c:03: a0:18:73:28:82:05:3a:07:1d:48:e3:46:47:d6:75: ba:67:37:5f:1e:ec:68:29:50:cf:83:40:b4:2d:63: 1e:ad:7d:b2:02:76:d0:63:31:4d:35:2c:b2:07:fc: 54:84:00:de:3a:68:1f:89:91:b5:d9:d1:fd:ab:84: a5:74:95:e5:ff:b4:bd:0e:65:bd:2a:2e:60:6d:f3: 50:8c:f6:90:99:34:55:fc:6a:c1:44:6f:ad:fa:48: 89:38:3d:d9:ac:f8:0a:85:99:5e:46:00:c1:1c:54: 5b:18:c6:de:ec:6c:77:d7:e8:88:66:6a:a0:74:f7: e9:59:0d:6c:fa:e6:77:44:14:54:56:26:cd:12:6e: a0:07:3e:3f:42:75:4b:0a:1c:61:f1:c5:7d:22:3a: a1:11:1a:e5:81:c4:04:ef:29:61:62:92:b0:ec:1b: 44:fa:48:6c:a9:3b:76:ae:90:25:14:0a:a7:93:a7: 81:5b:88:4f:28:c7:b7:66:f6:55:10:71:49:f9:24: 91:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:5F:5C:7C:29:19:FA:1C:1D:76:9C:B7:1F:10:48:DD:45:7E:7A:79 X509v3 Authority Key Identifier: keyid:23:39:92:13:63:F7:00:3C:3D:EB:47:ED:85:34:AF:E1:F4:82:D8:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947275265/0/2339921363F7003C3DEB47ED8534AFE1F482D8D5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2339921363F7003C3DEB47ED8534AFE1F482D8D5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947275265/0/3131392e3233352e3133362e302f32342d3234203d3e203234343237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.235.136.0/24 Signature Algorithm: sha256WithRSAEncryption 73:bd:e7:20:d8:b4:ce:90:a7:cc:f4:1d:1a:67:6a:3b:20:db: eb:47:1e:7d:47:ce:8a:56:c2:cf:4f:38:4c:da:3d:f7:4e:b6: 80:de:ad:8a:cb:9b:ed:b8:6b:01:d4:00:42:6e:36:a0:e2:f0: a2:9a:59:07:7d:05:d3:a3:b9:55:b3:91:fb:c8:6b:f4:f1:15: 65:87:da:2c:95:f2:16:bb:24:56:63:32:27:98:52:45:40:77: 5b:59:89:8e:17:46:70:21:ec:f9:23:a0:ec:92:63:d3:77:cd: 95:5c:c4:65:85:9a:15:65:1d:4b:aa:b4:4b:64:e8:b7:f6:10: 45:76:9c:83:a1:70:c2:03:b7:62:42:3a:b1:3f:80:42:ff:4a: c8:b6:3b:45:ab:cd:bc:63:02:63:60:be:fc:ce:ca:f9:58:1f: 0c:a3:e3:e8:5a:c2:55:c0:2e:03:af:fd:21:78:13:57:43:21: 7b:2f:81:74:21:55:a5:d8:5a:38:ea:d2:94:e5:d0:ed:b0:41: 2c:d2:1e:9f:06:86:05:01:33:7a:65:2e:a6:e8:1f:3b:db:06: 4b:1c:c9:9d:6c:93:ef:99:8c:ad:55:52:ad:19:bb:00:a8:0a: 33:09:70:7c:37:d4:ed:37:36:95:9c:ea:92:98:62:ac:33:8f: 22:5f:95:69 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIULfiLRWfavYtcnrcq3aVLSEqwVmYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjMzOTkyMTM2M0Y3MDAzQzNERUI0N0VEODUzNEFGRTFG NDgyRDhENTAeFw0yNjA0MjAxMzExNDJaFw0yNzA0MTkxMzE2NDJaMDMxMTAvBgNV BAMTKEEwNUY1QzdDMjkxOUZBMUMxRDc2OUNCNzFGMTA0OERENDU3RTdBNzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCp1tOFg8+n1FAmey+Seu4PHdFL Nx1tnGBUeoyUadpTRzrBG/YYZNxmVYBWFKdFJcym9+Zb/+vtr7ccA6AYcyiCBToH HUjjRkfWdbpnN18e7GgpUM+DQLQtYx6tfbICdtBjMU01LLIH/FSEAN46aB+JkbXZ 0f2rhKV0leX/tL0OZb0qLmBt81CM9pCZNFX8asFEb636SIk4Pdms+AqFmV5GAMEc VFsYxt7sbHfX6IhmaqB09+lZDWz65ndEFFRWJs0SbqAHPj9CdUsKHGHxxX0iOqER GuWBxATvKWFikrDsG0T6SGypO3aukCUUCqeTp4FbiE8ox7dm9lUQcUn5JJETAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUoF9cfCkZ+hwddpy3HxBI3UV+enkwHwYDVR0j BBgwFoAUIzmSE2P3ADw960fthTSv4fSC2NUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NzI0MTk0NzI3NTI2NS8wLzIzMzk5MjEzNjNGNzAwM0MzREVCNDdFRDg1MzRB RkUxRjQ4MkQ4RDUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjMzOTkyMTM2M0Y3MDAzQzNERUI0N0VEODUzNEFGRTFGNDgyRDhENS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzcyNDE5NDcyNzUyNjUvMC8zMTMxMzkyZTMy MzMzNTJlMzEzMzM2MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzNDM0MzIzNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAHfriDANBgkqhkiG9w0BAQsFAAOCAQEAc73nINi0zpCnzPQdGmdq OyDb60cefUfOilbCz084TNo99062gN6tisub7bhrAdQAQm42oOLwoppZB30F06O5 VbOR+8hr9PEVZYfaLJXyFrskVmMyJ5hSRUB3W1mJjhdGcCHs+SOg7JJj03fNlVzE ZYWaFWUdS6q0S2Tot/YQRXacg6FwwgO3YkI6sT+AQv9KyLY7RavNvGMCY2C+/M7K +VgfDKPj6FrCVcAuA6/9IXgTV0Mhey+BdCFVpdhaOOrSlOXQ7bBBLNIenwaGBQEz emUupugfO9sGSxzJnWyT75mMrVVSrRm7AKgKMwlwfDfU7Tc2lZzqkphirDOPIl+V aQ== -----END CERTIFICATE-----Generated at Wed May 13 20:20:33 2026 by rpki-client