$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065577241947275265/0/3131392e3233352e3134332e302f32342d3234203d3e203234343237.roa File: 3131392e3233352e3134332e302f32342d3234203d3e203234343237.roa (raw, json) Hash identifier: Ol89eMrUaCaAzxFLMX+QHnOCMpZp0gTaHt7lzoiplTc= Subject key identifier: CE:FA:F9:65:5E:CD:13:28:E4:AD:05:99:76:E4:93:E7:83:6C:BA:6B Certificate issuer: /CN=2339921363F7003C3DEB47ED8534AFE1F482D8D5 Certificate serial: 509455A8580E290B7CE9D453AA1D4B8A07A2FA95 Authority key identifier: 23:39:92:13:63:F7:00:3C:3D:EB:47:ED:85:34:AF:E1:F4:82:D8:D5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2339921363F7003C3DEB47ED8534AFE1F482D8D5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065577241947275265/0/3131392e3233352e3134332e302f32342d3234203d3e203234343237.roa Signing time: Mon 20 Apr 2026 13:16:41 +0000 ROA not before: Mon 20 Apr 2026 13:11:41 +0000 ROA not after: Mon 19 Apr 2027 13:16:41 +0000 asID: 24427 IP address blocks: 119.235.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065577241947275265/0/2339921363F7003C3DEB47ED8534AFE1F482D8D5.crl rsync://rpki-rps.cnnic.cn/repo/A1065577241947275265/0/2339921363F7003C3DEB47ED8534AFE1F482D8D5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2339921363F7003C3DEB47ED8534AFE1F482D8D5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:94:55:a8:58:0e:29:0b:7c:e9:d4:53:aa:1d:4b:8a:07:a2:fa:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2339921363F7003C3DEB47ED8534AFE1F482D8D5 Validity Not Before: Apr 20 13:11:41 2026 GMT Not After : Apr 19 13:16:41 2027 GMT Subject: CN=CEFAF9655ECD1328E4AD059976E493E7836CBA6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:2f:33:bc:e9:74:4b:bb:2b:34:fb:bd:ee:dc: 77:b2:3d:26:37:2c:33:ae:1f:cb:56:c7:d1:31:df: 49:f4:ec:e5:24:74:04:18:2a:00:7e:42:16:49:10: be:a9:b7:f3:72:55:67:f2:9e:2a:c3:9a:3a:52:a7: b6:06:3f:c1:ab:87:c4:4d:f1:50:9d:0e:40:2f:f1: 98:f2:9a:e3:ae:a0:b0:d9:2a:7c:48:95:ff:a1:ba: 37:cb:34:4f:f6:a7:13:8f:b1:be:ff:84:29:5a:13: 62:09:4a:61:2e:c3:b1:4e:60:ed:18:e0:09:0c:2a: 62:d3:02:b8:a7:38:71:d4:9b:8f:7e:65:40:5c:4f: 2a:08:0e:d6:92:79:35:7f:df:d1:a9:5d:03:1c:9f: 1a:65:39:20:56:76:c0:e5:1b:4b:f6:e6:f8:b2:46: 67:44:cb:bf:75:d2:21:96:ae:fc:82:e6:d0:73:14: 5d:4a:27:fd:83:36:9c:fa:48:14:25:52:e3:df:30: 78:07:e7:0a:a0:e5:1e:67:3b:1f:01:9b:14:55:73: 87:71:47:c9:ed:1b:eb:ee:ce:5a:2a:db:66:dc:e7: 0a:5b:98:b4:77:bc:8e:40:99:3f:5e:4f:55:56:43: e3:65:77:d6:63:0d:72:02:23:38:b6:9d:4b:e2:66: 60:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:FA:F9:65:5E:CD:13:28:E4:AD:05:99:76:E4:93:E7:83:6C:BA:6B X509v3 Authority Key Identifier: keyid:23:39:92:13:63:F7:00:3C:3D:EB:47:ED:85:34:AF:E1:F4:82:D8:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947275265/0/2339921363F7003C3DEB47ED8534AFE1F482D8D5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2339921363F7003C3DEB47ED8534AFE1F482D8D5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947275265/0/3131392e3233352e3134332e302f32342d3234203d3e203234343237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.235.143.0/24 Signature Algorithm: sha256WithRSAEncryption 14:88:ff:e2:dd:2f:27:96:74:88:67:be:f5:ff:37:bb:96:b5: d7:ad:46:ae:12:fb:06:06:65:22:80:09:a7:1f:37:5c:11:87: cb:9a:1c:1d:e3:41:42:d9:e8:29:15:de:53:6e:a9:64:db:8e: ab:28:a9:1d:97:61:95:15:79:b5:9c:3f:9b:3a:fb:2a:9c:48: ca:4c:b7:6b:89:b2:cc:9d:6e:ad:ed:6b:ca:02:99:02:b9:b2: f7:e3:36:13:b9:4f:17:b4:d9:54:93:97:a9:97:a7:19:2a:a4: e7:b2:4a:c5:3b:65:1b:88:11:93:04:28:dc:66:c2:a8:44:3d: 9a:47:1f:3c:be:0a:ea:ed:72:9b:c1:b6:68:56:d3:83:2f:5d: a6:2b:f2:32:d3:b4:c3:dd:61:47:5d:4d:6f:43:e5:44:88:a4: 4f:c5:62:aa:f4:0c:35:de:3e:07:34:60:24:ad:38:fc:34:e1: b5:c5:b3:1e:5c:9d:25:cb:30:e5:b2:cf:51:87:8f:fd:51:58: 4f:7f:79:96:be:32:29:4d:ea:05:56:4a:6f:8a:eb:97:fd:ed: 97:4d:15:a2:26:1d:f4:65:77:dd:f1:de:c7:f0:c8:90:2f:98: 58:a4:50:e0:85:13:78:09:c0:a2:89:11:58:15:21:54:56:25: 44:56:c6:14 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUUJRVqFgOKQt86dRTqh1Ligei+pUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjMzOTkyMTM2M0Y3MDAzQzNERUI0N0VEODUzNEFGRTFG NDgyRDhENTAeFw0yNjA0MjAxMzExNDFaFw0yNzA0MTkxMzE2NDFaMDMxMTAvBgNV BAMTKENFRkFGOTY1NUVDRDEzMjhFNEFEMDU5OTc2RTQ5M0U3ODM2Q0JBNkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8LzO86XRLuys0+73u3HeyPSY3 LDOuH8tWx9Ex30n07OUkdAQYKgB+QhZJEL6pt/NyVWfynirDmjpSp7YGP8Grh8RN 8VCdDkAv8ZjymuOuoLDZKnxIlf+hujfLNE/2pxOPsb7/hClaE2IJSmEuw7FOYO0Y 4AkMKmLTArinOHHUm49+ZUBcTyoIDtaSeTV/39GpXQMcnxplOSBWdsDlG0v25viy RmdEy7910iGWrvyC5tBzFF1KJ/2DNpz6SBQlUuPfMHgH5wqg5R5nOx8BmxRVc4dx R8ntG+vuzloq22bc5wpbmLR3vI5AmT9eT1VWQ+Nld9ZjDXICIzi2nUviZmBJAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUzvr5ZV7NEyjkrQWZduST54NsumswHwYDVR0j BBgwFoAUIzmSE2P3ADw960fthTSv4fSC2NUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NzI0MTk0NzI3NTI2NS8wLzIzMzk5MjEzNjNGNzAwM0MzREVCNDdFRDg1MzRB RkUxRjQ4MkQ4RDUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjMzOTkyMTM2M0Y3MDAzQzNERUI0N0VEODUzNEFGRTFGNDgyRDhENS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzcyNDE5NDcyNzUyNjUvMC8zMTMxMzkyZTMy MzMzNTJlMzEzNDMzMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzNDM0MzIzNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAHfrjzANBgkqhkiG9w0BAQsFAAOCAQEAFIj/4t0vJ5Z0iGe+9f83 u5a1161GrhL7BgZlIoAJpx83XBGHy5ocHeNBQtnoKRXeU26pZNuOqyipHZdhlRV5 tZw/mzr7KpxIyky3a4myzJ1ure1rygKZArmy9+M2E7lPF7TZVJOXqZenGSqk57JK xTtlG4gRkwQo3GbCqEQ9mkcfPL4K6u1ym8G2aFbTgy9dpivyMtO0w91hR11Nb0Pl RIikT8ViqvQMNd4+BzRgJK04/DThtcWzHlydJcsw5bLPUYeP/VFYT395lr4yKU3q BVZKb4rrl/3tl00VoiYd9GV33fHex/DIkC+YWKRQ4IUTeAnAookRWBUhVFYlRFbG FA== -----END CERTIFICATE-----Generated at Wed May 13 20:20:32 2026 by rpki-client