$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065577241947275265/0/3131392e3233352e3136372e302f32342d3234203d3e203234343237.roa File: 3131392e3233352e3136372e302f32342d3234203d3e203234343237.roa (raw, json) Hash identifier: EcBAZ9E6nz/Jb75uEjGHvAGmLGTaXjfuFeKbWfc4enE= Subject key identifier: 5F:74:E6:C5:3C:20:81:C2:C8:C6:48:E7:64:1E:06:67:02:02:77:4F Certificate issuer: /CN=2339921363F7003C3DEB47ED8534AFE1F482D8D5 Certificate serial: 47CF3DCF5437A90D25D0A709C6A0C558A13282E0 Authority key identifier: 23:39:92:13:63:F7:00:3C:3D:EB:47:ED:85:34:AF:E1:F4:82:D8:D5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2339921363F7003C3DEB47ED8534AFE1F482D8D5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065577241947275265/0/3131392e3233352e3136372e302f32342d3234203d3e203234343237.roa Signing time: Mon 20 Apr 2026 13:16:41 +0000 ROA not before: Mon 20 Apr 2026 13:11:41 +0000 ROA not after: Mon 19 Apr 2027 13:16:41 +0000 asID: 24427 IP address blocks: 119.235.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065577241947275265/0/2339921363F7003C3DEB47ED8534AFE1F482D8D5.crl rsync://rpki-rps.cnnic.cn/repo/A1065577241947275265/0/2339921363F7003C3DEB47ED8534AFE1F482D8D5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2339921363F7003C3DEB47ED8534AFE1F482D8D5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:cf:3d:cf:54:37:a9:0d:25:d0:a7:09:c6:a0:c5:58:a1:32:82:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2339921363F7003C3DEB47ED8534AFE1F482D8D5 Validity Not Before: Apr 20 13:11:41 2026 GMT Not After : Apr 19 13:16:41 2027 GMT Subject: CN=5F74E6C53C2081C2C8C648E7641E06670202774F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:80:a3:c3:a7:f5:20:f4:23:d2:42:6c:8f:12: 4b:41:43:47:7f:ae:5c:2d:28:d0:ec:a5:74:0e:20: bb:00:87:7e:15:b0:1f:d4:ff:b8:65:17:ed:cd:9f: 91:84:ef:b3:a9:19:cf:9e:43:e9:21:69:71:35:f8: a0:26:45:af:b5:94:a3:88:f4:8f:a3:67:70:5f:61: 21:9b:39:a0:85:54:5a:8c:2d:10:0d:37:87:30:a8: 71:45:a7:0b:8e:a1:fc:f7:ad:41:0a:04:1f:70:d1: 6f:ca:d8:00:1a:fd:bd:c9:10:c5:29:b2:82:be:b2: 26:d5:e8:a9:53:01:70:01:d0:f1:73:9b:50:3d:09: af:c3:92:5a:00:00:af:9d:9c:26:fb:82:93:c6:de: 44:f3:8d:40:b1:f3:64:8a:7a:fd:3b:bb:d3:f2:c6: 6a:e0:4a:d6:26:5f:3c:c7:15:b1:91:c3:ef:46:e7: 70:c5:b9:5a:e5:d1:9b:fe:84:dd:9d:ef:09:f6:62: c0:5a:0b:49:16:ca:38:66:ca:c8:e3:e4:da:5c:de: 2e:c1:54:54:6f:c4:fa:0e:67:ac:57:6d:b3:cb:58: 73:89:ce:03:e8:ff:bc:7d:9b:83:07:c7:d5:65:b6: d6:c5:7d:3a:16:74:39:87:0a:fc:31:2c:56:73:c7: c7:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:74:E6:C5:3C:20:81:C2:C8:C6:48:E7:64:1E:06:67:02:02:77:4F X509v3 Authority Key Identifier: keyid:23:39:92:13:63:F7:00:3C:3D:EB:47:ED:85:34:AF:E1:F4:82:D8:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947275265/0/2339921363F7003C3DEB47ED8534AFE1F482D8D5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2339921363F7003C3DEB47ED8534AFE1F482D8D5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947275265/0/3131392e3233352e3136372e302f32342d3234203d3e203234343237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.235.167.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:40:6c:91:d3:d3:2e:9c:73:be:ce:91:6b:be:c6:89:af:f0: 34:21:ea:54:1d:c3:6c:b7:26:08:36:02:5b:ef:18:92:eb:a7: 7f:12:ed:de:e4:e1:ba:0f:ee:82:15:cf:51:d6:7c:63:8f:f5: c3:e7:da:47:26:94:9f:0d:91:a2:c7:3c:ea:e2:93:cd:10:37: c4:a7:17:06:69:1d:d4:bf:89:45:9c:6f:84:30:0e:15:eb:13: 37:c8:1c:57:3c:10:55:6b:1e:33:16:2d:50:94:e9:13:99:ce: 79:70:0c:d0:f1:0c:fa:84:5f:06:0b:71:db:3e:99:52:35:51: 60:2f:5f:c7:18:e9:3b:e5:8b:85:d1:f2:53:ff:23:af:9c:9d: 38:b6:8f:26:54:4c:db:57:0f:90:b3:d5:ba:f2:1c:4c:59:f5: 8a:f6:b1:d1:c6:99:07:8f:98:21:35:ad:ad:b1:04:c5:5e:51: 54:70:09:cd:4a:15:9c:d2:3e:d1:9e:5d:57:1e:c9:ad:55:d6: c2:b3:f1:f2:20:36:db:08:43:e0:3d:20:21:98:d9:5b:e2:d2: ce:dc:7d:38:d5:88:71:88:a7:be:8e:7f:97:d2:36:cb:31:d5: d3:50:75:43:d2:bd:d9:dc:ba:00:55:16:5a:52:6a:d2:b4:de: 67:07:30:68 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUR889z1Q3qQ0l0KcJxqDFWKEyguAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjMzOTkyMTM2M0Y3MDAzQzNERUI0N0VEODUzNEFGRTFG NDgyRDhENTAeFw0yNjA0MjAxMzExNDFaFw0yNzA0MTkxMzE2NDFaMDMxMTAvBgNV BAMTKDVGNzRFNkM1M0MyMDgxQzJDOEM2NDhFNzY0MUUwNjY3MDIwMjc3NEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCOgKPDp/Ug9CPSQmyPEktBQ0d/ rlwtKNDspXQOILsAh34VsB/U/7hlF+3Nn5GE77OpGc+eQ+khaXE1+KAmRa+1lKOI 9I+jZ3BfYSGbOaCFVFqMLRANN4cwqHFFpwuOofz3rUEKBB9w0W/K2AAa/b3JEMUp soK+sibV6KlTAXAB0PFzm1A9Ca/DkloAAK+dnCb7gpPG3kTzjUCx82SKev07u9Py xmrgStYmXzzHFbGRw+9G53DFuVrl0Zv+hN2d7wn2YsBaC0kWyjhmysjj5Npc3i7B VFRvxPoOZ6xXbbPLWHOJzgPo/7x9m4MHx9VlttbFfToWdDmHCvwxLFZzx8d3AgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUX3TmxTwggcLIxkjnZB4GZwICd08wHwYDVR0j BBgwFoAUIzmSE2P3ADw960fthTSv4fSC2NUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NzI0MTk0NzI3NTI2NS8wLzIzMzk5MjEzNjNGNzAwM0MzREVCNDdFRDg1MzRB RkUxRjQ4MkQ4RDUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjMzOTkyMTM2M0Y3MDAzQzNERUI0N0VEODUzNEFGRTFGNDgyRDhENS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzcyNDE5NDcyNzUyNjUvMC8zMTMxMzkyZTMy MzMzNTJlMzEzNjM3MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzNDM0MzIzNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAHfrpzANBgkqhkiG9w0BAQsFAAOCAQEAbkBskdPTLpxzvs6Ra77G ia/wNCHqVB3DbLcmCDYCW+8YkuunfxLt3uThug/ughXPUdZ8Y4/1w+faRyaUnw2R osc86uKTzRA3xKcXBmkd1L+JRZxvhDAOFesTN8gcVzwQVWseMxYtUJTpE5nOeXAM 0PEM+oRfBgtx2z6ZUjVRYC9fxxjpO+WLhdHyU/8jr5ydOLaPJlRM21cPkLPVuvIc TFn1ivax0caZB4+YITWtrbEExV5RVHAJzUoVnNI+0Z5dVx7JrVXWwrPx8iA22whD 4D0gIZjZW+LSztx9ONWIcYinvo5/l9I2yzHV01B1Q9K92dy6AFUWWlJq0rTeZwcw aA== -----END CERTIFICATE-----Generated at Wed May 13 20:20:32 2026 by rpki-client