$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065577241947275265/0/3131392e3233352e3135312e302f32342d3234203d3e203234343237.roa File: 3131392e3233352e3135312e302f32342d3234203d3e203234343237.roa (raw, json) Hash identifier: hYt2A/jghiSr+S1LZEbd4lSZNEEFRojqYjsnEer5F04= Subject key identifier: 47:D9:48:2D:10:0E:C1:68:B9:FE:24:6F:2D:F6:F1:BD:86:9A:A4:8C Certificate issuer: /CN=2339921363F7003C3DEB47ED8534AFE1F482D8D5 Certificate serial: 58FEA90D77741218DCD1A46294819743777DA8A4 Authority key identifier: 23:39:92:13:63:F7:00:3C:3D:EB:47:ED:85:34:AF:E1:F4:82:D8:D5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2339921363F7003C3DEB47ED8534AFE1F482D8D5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065577241947275265/0/3131392e3233352e3135312e302f32342d3234203d3e203234343237.roa Signing time: Mon 20 Apr 2026 13:16:41 +0000 ROA not before: Mon 20 Apr 2026 13:11:41 +0000 ROA not after: Mon 19 Apr 2027 13:16:41 +0000 asID: 24427 IP address blocks: 119.235.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065577241947275265/0/2339921363F7003C3DEB47ED8534AFE1F482D8D5.crl rsync://rpki-rps.cnnic.cn/repo/A1065577241947275265/0/2339921363F7003C3DEB47ED8534AFE1F482D8D5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2339921363F7003C3DEB47ED8534AFE1F482D8D5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:fe:a9:0d:77:74:12:18:dc:d1:a4:62:94:81:97:43:77:7d:a8:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2339921363F7003C3DEB47ED8534AFE1F482D8D5 Validity Not Before: Apr 20 13:11:41 2026 GMT Not After : Apr 19 13:16:41 2027 GMT Subject: CN=47D9482D100EC168B9FE246F2DF6F1BD869AA48C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:a2:d9:41:61:64:fa:3d:45:16:f5:27:31:d9: fd:f4:13:1c:fd:19:71:16:6c:b7:64:dd:ba:7a:0e: 9e:64:db:8e:6b:6f:e3:1f:69:29:0b:67:c1:22:3d: 1c:92:52:6f:09:00:73:d5:15:d0:da:3f:04:f0:a3: c2:7e:a8:8e:15:0a:65:b4:eb:f8:9d:e0:7a:aa:a8: d4:ea:d3:01:a4:de:43:82:ad:57:1d:56:f1:a2:1c: 0a:e3:cc:3a:0f:e9:2b:4e:da:eb:4c:68:4b:e8:cd: 90:c3:39:b2:3e:c9:e8:a4:2c:35:74:f7:65:1f:c0: 5f:32:6a:7c:d6:f5:81:14:5c:a0:9f:03:7b:4b:cd: 7a:3b:a0:45:5d:74:49:fb:9b:d5:94:c5:7e:4d:26: b5:98:04:5e:13:2b:0f:2e:f5:ed:2a:d6:c6:72:82: c2:da:ec:c0:e5:4f:79:ad:8c:87:13:7d:b4:a6:40: b2:cc:a7:cd:8a:23:45:fb:ca:77:2b:43:e5:7d:60: 3b:f8:23:62:90:8b:98:c8:a8:bb:70:1c:a6:69:44: cb:cf:4d:88:77:19:e8:c0:06:1a:5d:79:a5:68:58: 9d:30:cf:67:20:98:2b:a5:3b:bc:d8:9f:c1:5d:e0: e2:6f:05:b0:29:2e:49:8e:70:e0:d8:a0:da:7b:86: c7:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:D9:48:2D:10:0E:C1:68:B9:FE:24:6F:2D:F6:F1:BD:86:9A:A4:8C X509v3 Authority Key Identifier: keyid:23:39:92:13:63:F7:00:3C:3D:EB:47:ED:85:34:AF:E1:F4:82:D8:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947275265/0/2339921363F7003C3DEB47ED8534AFE1F482D8D5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2339921363F7003C3DEB47ED8534AFE1F482D8D5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947275265/0/3131392e3233352e3135312e302f32342d3234203d3e203234343237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.235.151.0/24 Signature Algorithm: sha256WithRSAEncryption 02:dc:58:10:4f:11:0b:f3:37:b2:85:ee:4b:32:8e:a2:92:b5: 43:95:33:84:19:c4:70:6d:65:1b:6b:03:3e:1e:44:16:c9:05: ef:bc:2d:1b:76:ab:66:c8:8e:06:3b:9d:a6:a5:4f:30:11:37: 04:63:96:8f:12:a2:60:5d:f8:00:7a:2e:c0:17:e9:50:3e:36: 37:50:a2:eb:3a:2a:98:53:b7:60:9e:34:be:fc:b6:4b:d9:f9: 45:c0:34:94:0b:db:8d:46:26:58:54:3c:3b:91:4c:d0:d1:bd: 33:52:7e:56:65:4a:1b:a5:29:c1:34:bd:98:16:81:4a:7a:02: 98:0d:15:8c:79:bb:ef:59:c5:96:b4:34:e0:5d:6e:23:30:97: 6e:cd:7a:50:d1:66:dc:08:73:b6:6d:e7:0e:e6:96:c3:da:43: 66:4a:90:a2:29:07:42:ef:d7:b4:48:5b:5e:81:f1:f1:dc:f7: 7b:ad:b1:0a:a5:e1:8d:ae:c3:4a:62:a1:a3:23:ca:b3:47:e0: f1:18:92:e6:51:cc:ae:ec:53:cd:d0:88:0a:b7:4c:2a:32:f2: 75:fd:81:91:38:6e:a9:e5:50:f8:4e:cd:d1:29:64:a8:a1:84: d9:de:34:2d:80:ee:87:ae:01:c1:f1:6e:1a:74:df:82:e6:a7: a8:0f:cd:e7 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUWP6pDXd0Ehjc0aRilIGXQ3d9qKQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjMzOTkyMTM2M0Y3MDAzQzNERUI0N0VEODUzNEFGRTFG NDgyRDhENTAeFw0yNjA0MjAxMzExNDFaFw0yNzA0MTkxMzE2NDFaMDMxMTAvBgNV BAMTKDQ3RDk0ODJEMTAwRUMxNjhCOUZFMjQ2RjJERjZGMUJEODY5QUE0OEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuotlBYWT6PUUW9Scx2f30Exz9 GXEWbLdk3bp6Dp5k245rb+MfaSkLZ8EiPRySUm8JAHPVFdDaPwTwo8J+qI4VCmW0 6/id4HqqqNTq0wGk3kOCrVcdVvGiHArjzDoP6StO2utMaEvozZDDObI+yeikLDV0 92UfwF8yanzW9YEUXKCfA3tLzXo7oEVddEn7m9WUxX5NJrWYBF4TKw8u9e0q1sZy gsLa7MDlT3mtjIcTfbSmQLLMp82KI0X7yncrQ+V9YDv4I2KQi5jIqLtwHKZpRMvP TYh3GejABhpdeaVoWJ0wz2cgmCulO7zYn8Fd4OJvBbApLkmOcODYoNp7hsfxAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUR9lILRAOwWi5/iRvLfbxvYaapIwwHwYDVR0j BBgwFoAUIzmSE2P3ADw960fthTSv4fSC2NUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NzI0MTk0NzI3NTI2NS8wLzIzMzk5MjEzNjNGNzAwM0MzREVCNDdFRDg1MzRB RkUxRjQ4MkQ4RDUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjMzOTkyMTM2M0Y3MDAzQzNERUI0N0VEODUzNEFGRTFGNDgyRDhENS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzcyNDE5NDcyNzUyNjUvMC8zMTMxMzkyZTMy MzMzNTJlMzEzNTMxMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzNDM0MzIzNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAHfrlzANBgkqhkiG9w0BAQsFAAOCAQEAAtxYEE8RC/M3soXuSzKO opK1Q5UzhBnEcG1lG2sDPh5EFskF77wtG3arZsiOBjudpqVPMBE3BGOWjxKiYF34 AHouwBfpUD42N1Ci6zoqmFO3YJ40vvy2S9n5RcA0lAvbjUYmWFQ8O5FM0NG9M1J+ VmVKG6UpwTS9mBaBSnoCmA0VjHm771nFlrQ04F1uIzCXbs16UNFm3Ahztm3nDuaW w9pDZkqQoikHQu/XtEhbXoHx8dz3e62xCqXhja7DSmKhoyPKs0fg8RiS5lHMruxT zdCICrdMKjLydf2BkThuqeVQ+E7N0SlkqKGE2d40LYDuh64BwfFuGnTfguanqA/N 5w== -----END CERTIFICATE-----Generated at Wed May 13 20:20:33 2026 by rpki-client