$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065577241947275265/0/3131392e3233352e3134342e302f32342d3234203d3e203234343237.roa File: 3131392e3233352e3134342e302f32342d3234203d3e203234343237.roa (raw, json) Hash identifier: ZIpXfUCxWXx/Yh12y5PNrm1YJbqJK3Qj4q0RnCjYmRk= Subject key identifier: C7:90:6B:EB:D9:32:88:B4:A2:01:13:B2:24:AD:EF:EB:AB:90:5A:EA Certificate issuer: /CN=2339921363F7003C3DEB47ED8534AFE1F482D8D5 Certificate serial: 04DACB11A51F898AC7DA003635EE60D3DACC5084 Authority key identifier: 23:39:92:13:63:F7:00:3C:3D:EB:47:ED:85:34:AF:E1:F4:82:D8:D5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2339921363F7003C3DEB47ED8534AFE1F482D8D5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065577241947275265/0/3131392e3233352e3134342e302f32342d3234203d3e203234343237.roa Signing time: Mon 20 Apr 2026 13:16:42 +0000 ROA not before: Mon 20 Apr 2026 13:11:42 +0000 ROA not after: Mon 19 Apr 2027 13:16:42 +0000 asID: 24427 IP address blocks: 119.235.144.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065577241947275265/0/2339921363F7003C3DEB47ED8534AFE1F482D8D5.crl rsync://rpki-rps.cnnic.cn/repo/A1065577241947275265/0/2339921363F7003C3DEB47ED8534AFE1F482D8D5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2339921363F7003C3DEB47ED8534AFE1F482D8D5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:da:cb:11:a5:1f:89:8a:c7:da:00:36:35:ee:60:d3:da:cc:50:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2339921363F7003C3DEB47ED8534AFE1F482D8D5 Validity Not Before: Apr 20 13:11:42 2026 GMT Not After : Apr 19 13:16:42 2027 GMT Subject: CN=C7906BEBD93288B4A20113B224ADEFEBAB905AEA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:f2:52:62:d7:14:5d:6f:bc:b1:e2:e8:8e:89: 7f:8d:67:d1:5e:89:2d:bc:94:a1:fd:8b:1a:3e:52: 98:f3:98:f9:47:b3:5d:0f:e6:5c:04:1f:71:cc:94: 0f:57:a2:2e:08:6a:93:0b:b6:6f:01:6b:66:04:c3: 94:38:31:08:3e:94:e8:77:33:9f:22:4d:29:76:7b: da:97:fa:78:d1:0f:c6:80:fc:f9:17:f9:6f:82:65: b8:49:d9:f8:b4:07:6d:97:25:32:40:8b:e8:19:0a: 6c:95:ec:ec:6b:47:d5:25:64:78:f6:32:78:56:86: a8:3b:1e:b8:87:10:c3:6f:58:f8:2d:c6:29:9e:87: 2b:a0:e3:1d:5e:e8:1d:40:cc:13:ca:dc:1e:6f:79: 37:bc:81:99:97:08:1a:a6:e8:ed:d5:65:2b:01:a4: a0:2c:bf:f4:e8:53:eb:4d:62:74:38:bf:5d:7b:b3: a5:87:99:13:cc:b9:82:69:49:af:21:bf:c2:80:5c: 1d:d9:7c:11:da:74:b2:fa:b1:66:34:34:df:88:c5: 31:76:30:80:05:0e:76:75:2c:29:91:42:ac:bc:a5: 2d:64:8e:8a:9c:bf:28:c9:90:5c:8d:d2:88:a0:3a: c3:96:04:89:42:ff:6f:dc:99:d3:6c:60:98:f4:ea: 49:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:90:6B:EB:D9:32:88:B4:A2:01:13:B2:24:AD:EF:EB:AB:90:5A:EA X509v3 Authority Key Identifier: keyid:23:39:92:13:63:F7:00:3C:3D:EB:47:ED:85:34:AF:E1:F4:82:D8:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947275265/0/2339921363F7003C3DEB47ED8534AFE1F482D8D5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2339921363F7003C3DEB47ED8534AFE1F482D8D5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947275265/0/3131392e3233352e3134342e302f32342d3234203d3e203234343237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.235.144.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:54:da:a7:8e:f3:40:5f:9f:67:2e:e7:04:10:87:3d:ac:85: 0e:66:9a:0c:fe:55:ee:4c:62:da:60:06:ab:fc:d0:4e:ad:14: 43:fb:14:70:96:14:27:8d:c8:d4:2e:82:fb:6f:a9:98:eb:d0: 16:03:41:66:06:b0:87:69:19:a6:ad:0a:17:1f:85:77:0c:cb: 9b:16:cf:4a:75:b0:df:23:73:bf:bb:ed:0f:15:40:41:8b:f7: 6c:81:53:0e:60:56:92:a9:be:0d:28:63:28:65:a5:48:03:ca: 10:9f:59:0e:ce:8d:8f:0c:ce:e5:b9:f3:1d:81:36:b3:c2:ce: 98:fc:c8:70:1c:c4:48:6d:cf:80:9b:ac:41:6f:ed:45:ae:04: ee:03:a9:f5:b4:10:d4:4c:24:60:b6:66:98:40:8e:f0:aa:8e: 3e:1e:6e:a6:1e:a4:9b:be:f8:cb:4d:2d:b8:c7:7d:97:76:9c: 44:2e:56:f2:9d:32:1f:81:fe:18:77:51:71:61:02:35:70:c6: 31:0c:d0:59:c4:a0:29:3d:2d:36:17:f3:c3:48:81:c0:4c:cc: 1c:66:a0:e8:0a:3b:eb:19:d5:2c:3b:cd:f3:bf:31:30:69:6e: 58:18:f2:38:f8:6c:43:03:28:a5:34:28:63:c1:a5:77:7e:9e: 17:17:65:32 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUBNrLEaUfiYrH2gA2Ne5g09rMUIQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjMzOTkyMTM2M0Y3MDAzQzNERUI0N0VEODUzNEFGRTFG NDgyRDhENTAeFw0yNjA0MjAxMzExNDJaFw0yNzA0MTkxMzE2NDJaMDMxMTAvBgNV BAMTKEM3OTA2QkVCRDkzMjg4QjRBMjAxMTNCMjI0QURFRkVCQUI5MDVBRUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCw8lJi1xRdb7yx4uiOiX+NZ9Fe iS28lKH9ixo+UpjzmPlHs10P5lwEH3HMlA9Xoi4IapMLtm8Ba2YEw5Q4MQg+lOh3 M58iTSl2e9qX+njRD8aA/PkX+W+CZbhJ2fi0B22XJTJAi+gZCmyV7OxrR9UlZHj2 MnhWhqg7HriHEMNvWPgtximehyug4x1e6B1AzBPK3B5veTe8gZmXCBqm6O3VZSsB pKAsv/ToU+tNYnQ4v117s6WHmRPMuYJpSa8hv8KAXB3ZfBHadLL6sWY0NN+IxTF2 MIAFDnZ1LCmRQqy8pS1kjoqcvyjJkFyN0oigOsOWBIlC/2/cmdNsYJj06kkjAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUx5Br69kyiLSiAROyJK3v66uQWuowHwYDVR0j BBgwFoAUIzmSE2P3ADw960fthTSv4fSC2NUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NzI0MTk0NzI3NTI2NS8wLzIzMzk5MjEzNjNGNzAwM0MzREVCNDdFRDg1MzRB RkUxRjQ4MkQ4RDUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjMzOTkyMTM2M0Y3MDAzQzNERUI0N0VEODUzNEFGRTFGNDgyRDhENS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzcyNDE5NDcyNzUyNjUvMC8zMTMxMzkyZTMy MzMzNTJlMzEzNDM0MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzNDM0MzIzNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAHfrkDANBgkqhkiG9w0BAQsFAAOCAQEAnFTap47zQF+fZy7nBBCH PayFDmaaDP5V7kxi2mAGq/zQTq0UQ/sUcJYUJ43I1C6C+2+pmOvQFgNBZgawh2kZ pq0KFx+FdwzLmxbPSnWw3yNzv7vtDxVAQYv3bIFTDmBWkqm+DShjKGWlSAPKEJ9Z Ds6NjwzO5bnzHYE2s8LOmPzIcBzESG3PgJusQW/tRa4E7gOp9bQQ1EwkYLZmmECO 8KqOPh5uph6km774y00tuMd9l3acRC5W8p0yH4H+GHdRcWECNXDGMQzQWcSgKT0t Nhfzw0iBwEzMHGag6Ao76xnVLDvN878xMGluWBjyOPhsQwMopTQoY8Gld36eFxdl Mg== -----END CERTIFICATE-----Generated at Wed May 13 20:20:32 2026 by rpki-client