$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065577241947471873/0/3131342e32382e3133342e302f32342d3234203d3e2034383337.roa File: 3131342e32382e3133342e302f32342d3234203d3e2034383337.roa (raw, json) Hash identifier: UYKWkrVdhnWPxrHTELoGMnyGsAs4tF9fFKf83dqOGqw= Subject key identifier: 46:62:39:A1:CB:F3:ED:2E:B6:F9:BE:F5:65:15:88:B5:89:85:31:44 Certificate issuer: /CN=8421F0680EB1B3756485D0F7681F78067E9C172E Certificate serial: 308AE9E45D3FCD5FE131741FCB14724386951588 Authority key identifier: 84:21:F0:68:0E:B1:B3:75:64:85:D0:F7:68:1F:78:06:7E:9C:17:2E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8421F0680EB1B3756485D0F7681F78067E9C172E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065577241947471873/0/3131342e32382e3133342e302f32342d3234203d3e2034383337.roa Signing time: Sat 09 May 2026 11:55:55 +0000 ROA not before: Sat 09 May 2026 11:50:55 +0000 ROA not after: Sat 08 May 2027 11:55:55 +0000 asID: 4837 IP address blocks: 114.28.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065577241947471873/0/8421F0680EB1B3756485D0F7681F78067E9C172E.crl rsync://rpki-rps.cnnic.cn/repo/A1065577241947471873/0/8421F0680EB1B3756485D0F7681F78067E9C172E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8421F0680EB1B3756485D0F7681F78067E9C172E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 13:31:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:8a:e9:e4:5d:3f:cd:5f:e1:31:74:1f:cb:14:72:43:86:95:15:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8421F0680EB1B3756485D0F7681F78067E9C172E Validity Not Before: May 9 11:50:55 2026 GMT Not After : May 8 11:55:55 2027 GMT Subject: CN=466239A1CBF3ED2EB6F9BEF5651588B589853144 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:96:34:e2:43:82:e5:cf:bc:04:c1:09:e2:e6: 13:44:9a:6c:a7:9f:e5:c6:08:f9:8e:78:5d:ad:df: b1:63:3b:1f:d1:94:38:c0:e9:b5:23:2c:96:c2:98: 4e:5a:22:e9:51:7d:e4:49:9c:e9:a9:d7:5e:a8:e9: 26:e2:73:58:75:ad:6d:ab:f5:3e:fa:c1:ae:e2:ed: c9:64:ef:56:40:2b:06:de:e1:36:96:7f:77:42:f7: a3:c3:48:70:20:77:04:e5:63:cb:80:7c:0f:89:3c: dd:39:07:fc:5f:5a:f2:57:2b:77:d4:ee:c0:e6:b9: 8c:33:82:2c:0b:d9:90:b1:f3:4b:6b:a4:43:64:81: 45:ab:95:24:34:e6:ce:c5:57:58:13:9e:57:e7:17: 34:ce:83:f8:0f:9b:88:07:3e:7e:7e:57:a5:2a:3d: a2:49:ea:82:6a:9e:8e:7c:65:b6:2e:8f:1e:e0:94: 0c:59:13:56:73:60:b6:3b:41:94:ae:12:5b:de:a2: 06:d8:0d:80:4c:65:ac:a2:9c:3b:21:e8:e5:cb:8b: 7a:fe:50:b4:f5:62:43:cf:1a:ef:e0:95:f9:12:b2: e0:73:9e:85:b2:28:fb:e6:9e:11:51:fd:08:a4:52: 54:9a:41:66:ac:10:24:c7:c1:08:45:bf:d5:7e:d5: ea:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:62:39:A1:CB:F3:ED:2E:B6:F9:BE:F5:65:15:88:B5:89:85:31:44 X509v3 Authority Key Identifier: keyid:84:21:F0:68:0E:B1:B3:75:64:85:D0:F7:68:1F:78:06:7E:9C:17:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947471873/0/8421F0680EB1B3756485D0F7681F78067E9C172E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8421F0680EB1B3756485D0F7681F78067E9C172E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947471873/0/3131342e32382e3133342e302f32342d3234203d3e2034383337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.28.134.0/24 Signature Algorithm: sha256WithRSAEncryption 04:9f:41:da:e0:c8:5d:61:77:f3:b3:26:65:db:0d:f6:3a:4d: fe:b3:51:f4:aa:3d:62:2d:ec:30:12:85:60:5e:b8:4a:80:14: 9c:37:33:f5:d1:55:1d:72:74:57:55:e5:53:53:45:3c:7c:f2: 4b:60:70:d4:41:6c:1c:9e:92:1d:cb:90:f9:8d:38:ad:82:b0: b7:29:36:7c:d9:d8:28:36:d5:88:0c:cb:b4:42:89:f6:01:c9: 84:75:e6:37:de:67:05:6b:b9:4b:3e:04:8b:ee:72:49:23:dd: 5d:99:b2:90:3b:84:1b:53:57:60:58:97:3d:ca:a1:03:63:26: fc:fe:c9:a0:c2:95:51:b2:46:6e:7c:5f:09:2c:4c:f8:c4:7f: b4:4f:10:04:49:1b:66:4d:a8:2b:fa:3e:09:13:9a:3a:82:7e: 8e:ec:2b:08:3b:41:0d:a4:58:7d:4c:53:6c:e2:54:a1:6a:91: 0d:78:ad:24:0e:ab:34:4f:25:c1:6e:ab:4b:40:bf:8a:22:e0: b2:58:ef:16:50:10:66:3d:87:ed:bc:6c:c0:e9:54:2c:3e:2a: 76:c5:ba:95:a6:c4:17:b7:88:f4:f8:75:9d:6e:33:88:e3:13: aa:c9:de:08:24:63:f6:ca:5a:12:b7:a1:03:23:ae:e4:77:31: e4:34:63:fe -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUMIrp5F0/zV/hMXQfyxRyQ4aVFYgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQyMUYwNjgwRUIxQjM3NTY0ODVEMEY3NjgxRjc4MDY3 RTlDMTcyRTAeFw0yNjA1MDkxMTUwNTVaFw0yNzA1MDgxMTU1NTVaMDMxMTAvBgNV BAMTKDQ2NjIzOUExQ0JGM0VEMkVCNkY5QkVGNTY1MTU4OEI1ODk4NTMxNDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrljTiQ4Llz7wEwQni5hNEmmyn n+XGCPmOeF2t37FjOx/RlDjA6bUjLJbCmE5aIulRfeRJnOmp116o6Sbic1h1rW2r 9T76wa7i7clk71ZAKwbe4TaWf3dC96PDSHAgdwTlY8uAfA+JPN05B/xfWvJXK3fU 7sDmuYwzgiwL2ZCx80trpENkgUWrlSQ05s7FV1gTnlfnFzTOg/gPm4gHPn5+V6Uq PaJJ6oJqno58ZbYujx7glAxZE1ZzYLY7QZSuElveogbYDYBMZayinDsh6OXLi3r+ ULT1YkPPGu/glfkSsuBznoWyKPvmnhFR/QikUlSaQWasECTHwQhFv9V+1eozAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQURmI5ocvz7S62+b71ZRWItYmFMUQwHwYDVR0j BBgwFoAUhCHwaA6xs3VkhdD3aB94Bn6cFy4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NzI0MTk0NzQ3MTg3My8wLzg0MjFGMDY4MEVCMUIzNzU2NDg1RDBGNzY4MUY3 ODA2N0U5QzE3MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvODQyMUYwNjgwRUIxQjM3NTY0ODVEMEY3NjgxRjc4MDY3RTlDMTcyRS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc3MjQxOTQ3NDcxODczLzAvMzEzMTM0MmUzMjM4 MmUzMTMzMzQyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNDM4MzMzNy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAHIchjANBgkqhkiG9w0BAQsFAAOCAQEABJ9B2uDIXWF387MmZdsN9jpN/rNR 9Ko9Yi3sMBKFYF64SoAUnDcz9dFVHXJ0V1XlU1NFPHzyS2Bw1EFsHJ6SHcuQ+Y04 rYKwtyk2fNnYKDbViAzLtEKJ9gHJhHXmN95nBWu5Sz4Ei+5ySSPdXZmykDuEG1NX YFiXPcqhA2Mm/P7JoMKVUbJGbnxfCSxM+MR/tE8QBEkbZk2oK/o+CROaOoJ+juwr CDtBDaRYfUxTbOJUoWqRDXitJA6rNE8lwW6rS0C/iiLgsljvFlAQZj2H7bxswOlU LD4qdsW6labEF7eI9Ph1nW4ziOMTqsneCCRj9spaErehAyOu5Hcx5DRj/g== -----END CERTIFICATE-----Generated at Wed May 13 01:45:06 2026 by rpki-client