$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065577241947275265/0/3131392e3233352e3138352e302f32342d3234203d3e203234343237.roa File: 3131392e3233352e3138352e302f32342d3234203d3e203234343237.roa (raw, json) Hash identifier: y+0yz/Orh5jDhKBtMq/BWVyUvkwfKPK9TJ2TBjSxOBc= Subject key identifier: 22:E3:DC:4E:52:E7:9E:76:5B:66:8A:7D:6A:36:BD:D0:C5:FA:C5:34 Certificate issuer: /CN=2339921363F7003C3DEB47ED8534AFE1F482D8D5 Certificate serial: 36C649DA81D71CAAC01112671AEEB147284CBB05 Authority key identifier: 23:39:92:13:63:F7:00:3C:3D:EB:47:ED:85:34:AF:E1:F4:82:D8:D5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2339921363F7003C3DEB47ED8534AFE1F482D8D5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065577241947275265/0/3131392e3233352e3138352e302f32342d3234203d3e203234343237.roa Signing time: Mon 20 Apr 2026 13:16:41 +0000 ROA not before: Mon 20 Apr 2026 13:11:41 +0000 ROA not after: Mon 19 Apr 2027 13:16:41 +0000 asID: 24427 IP address blocks: 119.235.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065577241947275265/0/2339921363F7003C3DEB47ED8534AFE1F482D8D5.crl rsync://rpki-rps.cnnic.cn/repo/A1065577241947275265/0/2339921363F7003C3DEB47ED8534AFE1F482D8D5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2339921363F7003C3DEB47ED8534AFE1F482D8D5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:c6:49:da:81:d7:1c:aa:c0:11:12:67:1a:ee:b1:47:28:4c:bb:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2339921363F7003C3DEB47ED8534AFE1F482D8D5 Validity Not Before: Apr 20 13:11:41 2026 GMT Not After : Apr 19 13:16:41 2027 GMT Subject: CN=22E3DC4E52E79E765B668A7D6A36BDD0C5FAC534 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d3:23:f6:ef:a4:f0:8c:6d:57:bb:82:df:5d: cd:00:37:cc:99:3f:1c:67:ed:0c:df:9e:32:1f:c8: 65:b0:de:e5:d2:3d:cf:f0:cd:a2:89:42:4a:e0:3c: c0:de:89:7c:27:44:73:f4:ec:2f:ee:eb:3d:73:29: 99:7f:62:7a:57:31:a7:43:b8:eb:80:59:44:af:83: 86:d2:a9:27:cd:bd:de:1d:a4:9d:b7:b1:6f:18:97: b3:d7:40:91:b9:15:66:cb:ef:05:46:be:33:ea:6d: 83:67:76:4f:28:3e:29:76:95:ee:60:50:3f:dc:62: e4:1d:e7:0d:67:40:b4:4c:23:ae:5c:93:68:db:d7: e7:49:c8:71:0d:f0:e6:7c:38:72:e9:aa:05:44:0c: 39:33:cd:48:85:c0:38:4a:e3:51:e6:03:38:92:a5: a1:8d:49:ad:5c:52:0b:31:c7:11:cc:a9:69:79:b5: 5d:68:95:c3:10:05:f9:45:e2:f5:81:24:01:16:e1: 95:a4:59:94:03:be:19:4d:cd:7a:0f:fb:db:fc:cf: f0:76:32:1d:a0:73:c5:fb:b7:cc:2a:73:4d:e9:67: fe:7c:a6:5b:df:f3:ec:1f:14:f7:44:4f:d0:66:ea: 87:f5:ce:a6:40:37:47:5b:77:ab:3f:d2:90:92:48: d8:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:E3:DC:4E:52:E7:9E:76:5B:66:8A:7D:6A:36:BD:D0:C5:FA:C5:34 X509v3 Authority Key Identifier: keyid:23:39:92:13:63:F7:00:3C:3D:EB:47:ED:85:34:AF:E1:F4:82:D8:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947275265/0/2339921363F7003C3DEB47ED8534AFE1F482D8D5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2339921363F7003C3DEB47ED8534AFE1F482D8D5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947275265/0/3131392e3233352e3138352e302f32342d3234203d3e203234343237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.235.185.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:7b:aa:ee:f3:bf:22:de:73:66:35:14:32:c0:db:80:de:0d: 19:8f:02:01:2d:28:5a:7f:cc:51:d9:1b:2c:ed:61:73:1f:c2: 69:1c:23:7b:19:7a:92:b8:fa:85:51:9a:d7:6f:12:49:b3:e1: a8:3a:94:10:db:98:d7:9e:d4:9f:01:a5:2c:af:60:bc:4e:e3: 18:93:3a:f3:a1:2d:9f:fc:ed:33:0f:a7:60:ca:e5:e1:54:5d: 5f:56:fa:b8:77:dd:9c:a2:f9:eb:76:93:1a:36:30:cc:5b:0a: 1d:50:b2:41:0f:ea:3c:eb:0b:41:8d:86:95:e4:10:3a:2e:53: f5:47:d0:72:f3:f4:eb:24:3a:6f:7f:96:2f:5f:e4:c0:52:92: 71:f9:24:c1:3b:84:18:4f:bd:c1:a4:ad:9b:79:82:cc:42:77: f6:ad:87:e8:ce:82:77:0b:b8:24:eb:c3:69:a5:17:78:83:e5: 89:4a:84:b2:aa:28:88:e2:3f:5b:c7:bb:be:25:fd:a8:51:3b: 35:d3:de:77:f9:ea:43:87:a5:66:67:32:b8:e1:d6:a3:e7:e6: 72:2a:4c:fc:41:4c:e3:3d:1a:b5:3b:74:da:0d:0e:87:c8:44: 31:af:d0:2c:d4:a6:7a:54:eb:c7:9e:c1:1d:ef:d0:63:0b:d8: 95:a6:31:87 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUNsZJ2oHXHKrAERJnGu6xRyhMuwUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjMzOTkyMTM2M0Y3MDAzQzNERUI0N0VEODUzNEFGRTFG NDgyRDhENTAeFw0yNjA0MjAxMzExNDFaFw0yNzA0MTkxMzE2NDFaMDMxMTAvBgNV BAMTKDIyRTNEQzRFNTJFNzlFNzY1QjY2OEE3RDZBMzZCREQwQzVGQUM1MzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA0yP276TwjG1Xu4LfXc0AN8yZ Pxxn7QzfnjIfyGWw3uXSPc/wzaKJQkrgPMDeiXwnRHP07C/u6z1zKZl/YnpXMadD uOuAWUSvg4bSqSfNvd4dpJ23sW8Yl7PXQJG5FWbL7wVGvjPqbYNndk8oPil2le5g UD/cYuQd5w1nQLRMI65ck2jb1+dJyHEN8OZ8OHLpqgVEDDkzzUiFwDhK41HmAziS paGNSa1cUgsxxxHMqWl5tV1olcMQBflF4vWBJAEW4ZWkWZQDvhlNzXoP+9v8z/B2 Mh2gc8X7t8wqc03pZ/58plvf8+wfFPdET9Bm6of1zqZAN0dbd6s/0pCSSNjbAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUIuPcTlLnnnZbZop9aja90MX6xTQwHwYDVR0j BBgwFoAUIzmSE2P3ADw960fthTSv4fSC2NUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NzI0MTk0NzI3NTI2NS8wLzIzMzk5MjEzNjNGNzAwM0MzREVCNDdFRDg1MzRB RkUxRjQ4MkQ4RDUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjMzOTkyMTM2M0Y3MDAzQzNERUI0N0VEODUzNEFGRTFGNDgyRDhENS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzcyNDE5NDcyNzUyNjUvMC8zMTMxMzkyZTMy MzMzNTJlMzEzODM1MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzNDM0MzIzNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAHfruTANBgkqhkiG9w0BAQsFAAOCAQEATHuq7vO/It5zZjUUMsDb gN4NGY8CAS0oWn/MUdkbLO1hcx/CaRwjexl6krj6hVGa128SSbPhqDqUENuY157U nwGlLK9gvE7jGJM686Etn/ztMw+nYMrl4VRdX1b6uHfdnKL563aTGjYwzFsKHVCy QQ/qPOsLQY2GleQQOi5T9UfQcvP06yQ6b3+WL1/kwFKScfkkwTuEGE+9waStm3mC zEJ39q2H6M6Cdwu4JOvDaaUXeIPliUqEsqooiOI/W8e7viX9qFE7NdPed/nqQ4el ZmcyuOHWo+fmcipM/EFM4z0atTt02g0Oh8hEMa/QLNSmelTrx57BHe/QYwvYlaYx hw== -----END CERTIFICATE-----Generated at Wed May 13 20:20:31 2026 by rpki-client