$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065577241947275265/0/3131392e3233352e3133382e302f32342d3234203d3e203234343237.roa File: 3131392e3233352e3133382e302f32342d3234203d3e203234343237.roa (raw, json) Hash identifier: 7lq4F+kN4dfPPhClDRlyHjLRkbdsAPEeIZnDaZUPfho= Subject key identifier: FA:D2:48:B3:7D:60:13:3E:5C:15:42:45:56:F1:8F:EF:48:6C:7B:74 Certificate issuer: /CN=2339921363F7003C3DEB47ED8534AFE1F482D8D5 Certificate serial: 4FAB716F8320DDC421A960A29DAEE0313064B4CB Authority key identifier: 23:39:92:13:63:F7:00:3C:3D:EB:47:ED:85:34:AF:E1:F4:82:D8:D5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2339921363F7003C3DEB47ED8534AFE1F482D8D5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065577241947275265/0/3131392e3233352e3133382e302f32342d3234203d3e203234343237.roa Signing time: Mon 20 Apr 2026 13:16:41 +0000 ROA not before: Mon 20 Apr 2026 13:11:41 +0000 ROA not after: Mon 19 Apr 2027 13:16:41 +0000 asID: 24427 IP address blocks: 119.235.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065577241947275265/0/2339921363F7003C3DEB47ED8534AFE1F482D8D5.crl rsync://rpki-rps.cnnic.cn/repo/A1065577241947275265/0/2339921363F7003C3DEB47ED8534AFE1F482D8D5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2339921363F7003C3DEB47ED8534AFE1F482D8D5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:ab:71:6f:83:20:dd:c4:21:a9:60:a2:9d:ae:e0:31:30:64:b4:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2339921363F7003C3DEB47ED8534AFE1F482D8D5 Validity Not Before: Apr 20 13:11:41 2026 GMT Not After : Apr 19 13:16:41 2027 GMT Subject: CN=FAD248B37D60133E5C15424556F18FEF486C7B74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:5e:97:fe:5d:4f:3c:b0:fd:cb:a2:3a:66:07: a5:e1:58:8f:81:9b:77:78:e9:97:ec:a5:57:3c:22: 09:5f:87:a0:f4:a3:ef:c9:aa:b2:5e:0c:4b:04:16: dc:0e:b3:fc:29:c0:e4:42:f8:bc:98:ea:28:30:89: b8:59:2b:0a:e0:81:8c:d4:ec:87:45:56:8c:2e:f4: 6f:78:45:92:87:4d:35:55:bd:7f:bb:1e:1d:18:47: aa:bf:69:9b:ef:1e:54:10:85:7a:84:40:fe:e5:75: a5:f8:03:f6:40:f4:3d:cc:48:d1:f3:65:11:c2:48: 25:ab:cf:5f:07:42:65:9f:f8:e4:67:47:3b:72:05: 76:1d:8d:22:7f:76:98:a8:43:37:85:4c:12:17:cd: 4a:81:d7:0d:bc:f6:b0:6f:22:24:8e:37:d4:2f:60: 40:bb:de:d5:59:25:2a:56:04:8a:d3:1b:28:ab:4d: b5:46:a1:84:2c:20:e1:79:91:2e:e6:81:2d:c0:98: 67:a7:b5:4e:d7:fa:5b:8a:df:04:0f:8c:e0:74:31: 75:f8:1e:89:58:a8:e2:e0:7e:bb:31:4b:60:fd:88: 29:75:5b:1d:fc:57:dc:1a:b3:da:6b:8c:71:12:eb: b3:d2:f5:57:80:ca:86:b0:5e:bf:77:7c:73:63:08: f7:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:D2:48:B3:7D:60:13:3E:5C:15:42:45:56:F1:8F:EF:48:6C:7B:74 X509v3 Authority Key Identifier: keyid:23:39:92:13:63:F7:00:3C:3D:EB:47:ED:85:34:AF:E1:F4:82:D8:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947275265/0/2339921363F7003C3DEB47ED8534AFE1F482D8D5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2339921363F7003C3DEB47ED8534AFE1F482D8D5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947275265/0/3131392e3233352e3133382e302f32342d3234203d3e203234343237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.235.138.0/24 Signature Algorithm: sha256WithRSAEncryption 34:33:2f:29:db:9c:2e:b0:b4:9d:5d:72:44:55:63:e9:8b:84: d6:38:c6:56:1b:b2:73:93:5d:89:c5:62:5d:b0:7b:c5:54:93: 43:b1:5d:7c:d2:d8:00:30:18:6c:61:7a:e8:51:4c:d7:a9:a7: 1b:7a:2e:ca:d2:70:71:80:af:45:b3:00:d5:a0:9e:e0:50:28: ed:b4:1b:6d:59:a6:7c:03:e5:06:71:d1:c7:69:ec:a3:6b:e5: 03:cc:77:fc:30:d0:b2:7a:7c:a9:dd:30:8f:db:88:07:e7:41: 53:5e:d7:b0:c1:5e:4c:07:b4:b2:94:d3:ff:04:03:13:90:43: a4:19:16:22:92:15:c8:ff:7d:a6:31:5c:63:70:a5:23:6b:69: dd:06:b9:5d:ff:74:f6:19:df:3a:14:97:cd:8b:b0:d1:e0:f5: 5c:c4:bd:ed:92:67:be:8a:1b:cf:86:c8:84:11:3d:e1:f8:d0: 91:40:c2:f3:07:d6:11:b0:2c:55:10:a3:a7:fc:4d:b8:2b:2e: 7e:c3:b7:bc:02:c9:3e:3a:4e:0a:16:3d:c6:30:dd:ca:04:57: e7:f4:fd:8f:9a:63:53:19:c2:ac:51:68:58:15:f4:3d:e9:71: 36:ad:b0:f8:48:06:04:d0:9b:4a:33:31:5f:df:af:c7:8e:3f: fc:3d:39:3c -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUT6txb4Mg3cQhqWCina7gMTBktMswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjMzOTkyMTM2M0Y3MDAzQzNERUI0N0VEODUzNEFGRTFG NDgyRDhENTAeFw0yNjA0MjAxMzExNDFaFw0yNzA0MTkxMzE2NDFaMDMxMTAvBgNV BAMTKEZBRDI0OEIzN0Q2MDEzM0U1QzE1NDI0NTU2RjE4RkVGNDg2QzdCNzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRXpf+XU88sP3LojpmB6XhWI+B m3d46ZfspVc8Iglfh6D0o+/JqrJeDEsEFtwOs/wpwORC+LyY6igwibhZKwrggYzU 7IdFVowu9G94RZKHTTVVvX+7Hh0YR6q/aZvvHlQQhXqEQP7ldaX4A/ZA9D3MSNHz ZRHCSCWrz18HQmWf+ORnRztyBXYdjSJ/dpioQzeFTBIXzUqB1w289rBvIiSON9Qv YEC73tVZJSpWBIrTGyirTbVGoYQsIOF5kS7mgS3AmGentU7X+luK3wQPjOB0MXX4 HolYqOLgfrsxS2D9iCl1Wx38V9was9prjHES67PS9VeAyoawXr93fHNjCPfHAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQU+tJIs31gEz5cFUJFVvGP70hse3QwHwYDVR0j BBgwFoAUIzmSE2P3ADw960fthTSv4fSC2NUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NzI0MTk0NzI3NTI2NS8wLzIzMzk5MjEzNjNGNzAwM0MzREVCNDdFRDg1MzRB RkUxRjQ4MkQ4RDUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjMzOTkyMTM2M0Y3MDAzQzNERUI0N0VEODUzNEFGRTFGNDgyRDhENS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzcyNDE5NDcyNzUyNjUvMC8zMTMxMzkyZTMy MzMzNTJlMzEzMzM4MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzNDM0MzIzNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAHfrijANBgkqhkiG9w0BAQsFAAOCAQEANDMvKducLrC0nV1yRFVj 6YuE1jjGVhuyc5NdicViXbB7xVSTQ7FdfNLYADAYbGF66FFM16mnG3ouytJwcYCv RbMA1aCe4FAo7bQbbVmmfAPlBnHRx2nso2vlA8x3/DDQsnp8qd0wj9uIB+dBU17X sMFeTAe0spTT/wQDE5BDpBkWIpIVyP99pjFcY3ClI2tp3Qa5Xf909hnfOhSXzYuw 0eD1XMS97ZJnvoobz4bIhBE94fjQkUDC8wfWEbAsVRCjp/xNuCsufsO3vALJPjpO ChY9xjDdygRX5/T9j5pjUxnCrFFoWBX0PelxNq2w+EgGBNCbSjMxX9+vx44//D05 PA== -----END CERTIFICATE-----Generated at Wed May 13 20:20:33 2026 by rpki-client