$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065577241947602945/0/3132332e3130382e38382e302f32342d3234203d3e20313331323734.roa File: 3132332e3130382e38382e302f32342d3234203d3e20313331323734.roa (raw, json) Hash identifier: sheafeIJDzKMXa+PCZxVA5vIVS2W+60Ur7psAvsuexM= Subject key identifier: 12:89:38:C0:71:73:21:C1:AB:49:D2:0F:69:57:E4:E4:D2:0E:45:3B Certificate issuer: /CN=5DF8086D3EFA176487A1C376B7BCCF3E83AB2339 Certificate serial: 67495A9EAC12355E424D3120D7EB158DF6AFC984 Authority key identifier: 5D:F8:08:6D:3E:FA:17:64:87:A1:C3:76:B7:BC:CF:3E:83:AB:23:39 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/3132332e3130382e38382e302f32342d3234203d3e20313331323734.roa Signing time: Thu 07 May 2026 15:59:00 +0000 ROA not before: Thu 07 May 2026 15:54:00 +0000 ROA not after: Thu 06 May 2027 15:59:00 +0000 asID: 131274 IP address blocks: 123.108.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.crl rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:32:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:49:5a:9e:ac:12:35:5e:42:4d:31:20:d7:eb:15:8d:f6:af:c9:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5DF8086D3EFA176487A1C376B7BCCF3E83AB2339 Validity Not Before: May 7 15:54:00 2026 GMT Not After : May 6 15:59:00 2027 GMT Subject: CN=128938C0717321C1AB49D20F6957E4E4D20E453B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:d9:25:30:fa:99:1d:2c:50:47:9e:66:17:11: de:f9:e4:b0:fb:93:5d:c3:21:0b:9b:73:c8:17:d7: 25:f0:03:8f:e0:71:68:d2:ff:db:3d:4b:7b:9e:c2: 40:3e:6a:a3:d1:0d:fd:a8:55:de:bb:e7:3e:35:0b: d5:7a:bc:bf:49:0f:0f:cb:73:b6:3d:f6:e9:cb:aa: bd:29:41:5b:1c:55:27:5d:64:aa:24:a5:4b:d0:a9: 52:2a:76:34:18:d3:02:f3:88:06:7e:b9:b5:41:b9: e4:82:39:70:31:97:9c:6a:8e:7b:c1:f2:ff:33:5f: 42:b7:63:8e:e4:6c:54:fc:2e:f5:bb:ca:0e:66:fc: 52:3e:8a:03:ac:0b:e4:c5:ce:0d:a5:43:f1:48:75: 02:72:01:39:18:cd:2c:1a:7e:70:86:88:b1:ab:a2: d2:04:36:63:b9:3a:b3:03:98:a0:6f:15:6a:c0:20: 53:8c:09:5a:01:a3:15:57:20:63:cb:60:61:f7:18: ad:b8:eb:a2:9a:dc:61:fd:20:ad:6c:c9:9b:dd:a9: f2:eb:3c:4b:18:8e:67:32:69:34:88:ff:d3:10:e8: 53:62:69:e5:53:55:d6:21:70:d0:16:24:99:bf:4e: 2c:7e:07:56:9c:57:08:65:69:32:bd:2c:1c:4f:27: c6:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:89:38:C0:71:73:21:C1:AB:49:D2:0F:69:57:E4:E4:D2:0E:45:3B X509v3 Authority Key Identifier: keyid:5D:F8:08:6D:3E:FA:17:64:87:A1:C3:76:B7:BC:CF:3E:83:AB:23:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/3132332e3130382e38382e302f32342d3234203d3e20313331323734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.108.88.0/24 Signature Algorithm: sha256WithRSAEncryption ad:bb:05:04:dd:8e:a4:b3:7b:35:a9:2f:e4:c2:b4:be:7c:80: 2a:eb:f2:ae:f4:0b:6f:62:4c:e1:27:01:49:91:d8:f8:ab:f5: 2e:c9:fe:b2:3a:ee:a6:51:6a:8c:c1:fa:de:d0:1f:d0:7d:e6: 57:b7:54:35:98:2f:2a:c6:2b:d7:99:90:e3:8b:b2:cb:25:28: 0c:99:1e:4c:7a:c4:a6:51:85:b0:f8:01:1e:ab:74:9d:f5:7d: 07:85:70:80:0d:ae:fb:aa:08:a9:8e:0c:f8:43:e9:db:fe:20: c4:85:ab:df:97:9f:6a:e7:39:b0:9c:06:93:39:ce:e6:c0:f5: b0:2a:3a:30:7c:f4:0f:9e:b3:b0:04:e5:f2:fc:c7:c9:77:07: e2:10:6d:18:27:e9:2d:70:cc:48:e0:ed:22:56:5d:ea:ad:d3: 03:14:00:08:aa:ca:a9:b8:04:f8:f0:6d:70:a3:f8:25:7e:79: 3a:80:50:ab:3d:31:6f:fb:5a:26:7e:42:0f:22:98:ad:08:18: e3:64:9e:5c:67:d2:6a:ea:43:8d:b1:0b:da:58:bc:7e:f3:c2: 0e:91:e6:db:43:30:44:3b:56:7a:19:91:42:b6:74:ad:63:ae: 74:ea:d8:fe:05:65:47:d3:46:9e:13:d8:45:68:ef:a4:92:37: f9:04:1f:76 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUZ0lanqwSNV5CTTEg1+sVjfavyYQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNURGODA4NkQzRUZBMTc2NDg3QTFDMzc2QjdCQ0NGM0U4 M0FCMjMzOTAeFw0yNjA1MDcxNTU0MDBaFw0yNzA1MDYxNTU5MDBaMDMxMTAvBgNV BAMTKDEyODkzOEMwNzE3MzIxQzFBQjQ5RDIwRjY5NTdFNEU0RDIwRTQ1M0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCN2SUw+pkdLFBHnmYXEd755LD7 k13DIQubc8gX1yXwA4/gcWjS/9s9S3uewkA+aqPRDf2oVd675z41C9V6vL9JDw/L c7Y99unLqr0pQVscVSddZKokpUvQqVIqdjQY0wLziAZ+ubVBueSCOXAxl5xqjnvB 8v8zX0K3Y47kbFT8LvW7yg5m/FI+igOsC+TFzg2lQ/FIdQJyATkYzSwafnCGiLGr otIENmO5OrMDmKBvFWrAIFOMCVoBoxVXIGPLYGH3GK2466Ka3GH9IK1syZvdqfLr PEsYjmcyaTSI/9MQ6FNiaeVTVdYhcNAWJJm/Tix+B1acVwhlaTK9LBxPJ8YdAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUEok4wHFzIcGrSdIPaVfk5NIORTswHwYDVR0j BBgwFoAUXfgIbT76F2SHocN2t7zPPoOrIzkwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NzI0MTk0NzYwMjk0NS8wLzVERjgwODZEM0VGQTE3NjQ4N0ExQzM3NkI3QkND RjNFODNBQjIzMzkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNURGODA4NkQzRUZBMTc2NDg3QTFDMzc2QjdCQ0NGM0U4M0FCMjMzOS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzcyNDE5NDc2MDI5NDUvMC8zMTMyMzMyZTMx MzAzODJlMzgzODJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzMTMyMzczNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAHtsWDANBgkqhkiG9w0BAQsFAAOCAQEArbsFBN2OpLN7Nakv5MK0 vnyAKuvyrvQLb2JM4ScBSZHY+Kv1Lsn+sjruplFqjMH63tAf0H3mV7dUNZgvKsYr 15mQ44uyyyUoDJkeTHrEplGFsPgBHqt0nfV9B4VwgA2u+6oIqY4M+EPp2/4gxIWr 35efauc5sJwGkznO5sD1sCo6MHz0D56zsATl8vzHyXcH4hBtGCfpLXDMSODtIlZd 6q3TAxQACKrKqbgE+PBtcKP4JX55OoBQqz0xb/taJn5CDyKYrQgY42SeXGfSaupD jbEL2li8fvPCDpHm20MwRDtWehmRQrZ0rWOudOrY/gVlR9NGnhPYRWjvpJI3+QQf dg== -----END CERTIFICATE-----Generated at Wed May 13 12:17:53 2026 by rpki-client