$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065577241947602945/0/3132332e3130382e38392e302f32342d3234203d3e20313331323734.roa File: 3132332e3130382e38392e302f32342d3234203d3e20313331323734.roa (raw, json) Hash identifier: 7n8J6fUqXYRBj2bUNl124uf1OoynPYMBDjOI5i93ibg= Subject key identifier: CB:B2:A8:83:3C:72:8A:F6:37:3B:3B:7F:40:7D:56:8F:A0:DE:89:61 Certificate issuer: /CN=5DF8086D3EFA176487A1C376B7BCCF3E83AB2339 Certificate serial: 516B821F2D0ED46A9BE28388318473474B9703DA Authority key identifier: 5D:F8:08:6D:3E:FA:17:64:87:A1:C3:76:B7:BC:CF:3E:83:AB:23:39 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/3132332e3130382e38392e302f32342d3234203d3e20313331323734.roa Signing time: Thu 07 May 2026 15:56:18 +0000 ROA not before: Thu 07 May 2026 15:51:18 +0000 ROA not after: Thu 06 May 2027 15:56:18 +0000 asID: 131274 IP address blocks: 123.108.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.crl rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:32:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:6b:82:1f:2d:0e:d4:6a:9b:e2:83:88:31:84:73:47:4b:97:03:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5DF8086D3EFA176487A1C376B7BCCF3E83AB2339 Validity Not Before: May 7 15:51:18 2026 GMT Not After : May 6 15:56:18 2027 GMT Subject: CN=CBB2A8833C728AF6373B3B7F407D568FA0DE8961 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:53:77:54:d1:f7:95:56:9e:dc:8e:be:2e:e0: 87:50:68:67:00:53:2c:96:46:f6:5b:f2:68:64:7c: f1:6c:f0:e0:43:8c:de:03:ad:27:54:83:1e:75:df: 7a:49:2b:05:f0:b4:9b:af:9f:12:3e:6f:25:49:81: 09:b2:11:9e:b2:65:66:67:28:e6:25:02:75:3d:48: 0a:31:40:e1:cb:64:18:27:03:89:05:13:9e:a6:c0: 23:a5:39:ac:8f:1b:9e:2c:b9:e5:c7:50:c4:6e:a0: 3f:22:45:27:6d:98:23:8e:ed:ba:65:dd:a2:59:6f: 3b:f8:60:c3:79:4f:31:ee:36:79:28:e5:8b:6e:90: 46:7f:b3:d1:8e:9f:13:0b:bb:d5:94:23:a3:85:b9: 26:d6:d3:81:f3:84:e2:1d:2f:c6:ec:d2:ae:75:2e: 33:2e:ab:40:e1:bc:45:eb:56:61:bb:9b:91:3c:da: 6a:93:86:7b:47:db:2a:a7:26:71:d3:e1:02:53:06: cd:d7:6a:ea:69:42:c6:27:d0:85:d8:b3:81:16:c2: 7d:e5:97:c0:8a:1c:3f:98:41:2e:b1:95:8c:3e:8e: cf:ab:37:97:fc:30:1f:a6:90:c2:af:c0:c9:8f:9a: 9c:a8:20:e4:fd:6d:8c:ba:11:4c:b7:53:d2:70:57: 7e:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:B2:A8:83:3C:72:8A:F6:37:3B:3B:7F:40:7D:56:8F:A0:DE:89:61 X509v3 Authority Key Identifier: keyid:5D:F8:08:6D:3E:FA:17:64:87:A1:C3:76:B7:BC:CF:3E:83:AB:23:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/3132332e3130382e38392e302f32342d3234203d3e20313331323734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.108.89.0/24 Signature Algorithm: sha256WithRSAEncryption 53:d2:04:a1:c2:80:f7:0e:61:d6:52:ca:08:3a:e8:f3:45:64: 30:d3:9b:58:5c:fb:0e:c0:64:42:7f:c2:0e:25:c4:57:1d:cb: 3d:b8:06:87:f2:b6:fa:f8:81:b1:9d:89:25:d8:e0:9e:27:19: e5:ab:bd:d2:98:39:33:1b:89:f5:76:7e:27:5c:4c:11:7d:69: 51:86:33:85:e4:5c:73:fb:41:11:e2:d3:26:25:f7:1b:c2:90: 8b:3d:a8:d6:4e:bd:9e:34:d6:db:32:75:7c:49:f3:8f:5a:50: 41:eb:53:ab:78:e2:12:6f:68:69:09:18:d7:23:ec:fd:1a:8b: 40:37:ad:48:98:07:69:1b:1a:fe:f4:1b:39:77:5e:cf:ba:3a: cf:3d:30:de:93:66:2a:32:7f:c2:c5:15:68:ec:a8:30:b9:46: 88:8c:42:19:3e:f8:a9:f3:5c:ed:37:be:b0:ff:1f:a1:0b:84: eb:93:d1:dd:1f:f4:c2:af:91:74:87:1b:c6:63:f9:7a:fb:f6: 92:c5:36:24:2f:b0:cc:4a:c2:c7:35:4e:1f:ce:67:70:c0:3a: 8e:f4:a3:ad:7f:ce:4a:b0:38:17:de:36:8e:00:62:d0:80:70: f8:f3:41:d2:d9:78:7d:81:a7:f8:e7:0c:21:4f:64:fd:d0:e9: 36:79:e7:96 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUUWuCHy0O1Gqb4oOIMYRzR0uXA9owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNURGODA4NkQzRUZBMTc2NDg3QTFDMzc2QjdCQ0NGM0U4 M0FCMjMzOTAeFw0yNjA1MDcxNTUxMThaFw0yNzA1MDYxNTU2MThaMDMxMTAvBgNV BAMTKENCQjJBODgzM0M3MjhBRjYzNzNCM0I3RjQwN0Q1NjhGQTBERTg5NjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEU3dU0feVVp7cjr4u4IdQaGcA UyyWRvZb8mhkfPFs8OBDjN4DrSdUgx5133pJKwXwtJuvnxI+byVJgQmyEZ6yZWZn KOYlAnU9SAoxQOHLZBgnA4kFE56mwCOlOayPG54sueXHUMRuoD8iRSdtmCOO7bpl 3aJZbzv4YMN5TzHuNnko5YtukEZ/s9GOnxMLu9WUI6OFuSbW04HzhOIdL8bs0q51 LjMuq0DhvEXrVmG7m5E82mqThntH2yqnJnHT4QJTBs3XauppQsYn0IXYs4EWwn3l l8CKHD+YQS6xlYw+js+rN5f8MB+mkMKvwMmPmpyoIOT9bYy6EUy3U9JwV37PAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUy7KogzxyivY3Ozt/QH1Wj6DeiWEwHwYDVR0j BBgwFoAUXfgIbT76F2SHocN2t7zPPoOrIzkwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NzI0MTk0NzYwMjk0NS8wLzVERjgwODZEM0VGQTE3NjQ4N0ExQzM3NkI3QkND RjNFODNBQjIzMzkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNURGODA4NkQzRUZBMTc2NDg3QTFDMzc2QjdCQ0NGM0U4M0FCMjMzOS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzcyNDE5NDc2MDI5NDUvMC8zMTMyMzMyZTMx MzAzODJlMzgzOTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzMTMyMzczNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAHtsWTANBgkqhkiG9w0BAQsFAAOCAQEAU9IEocKA9w5h1lLKCDro 80VkMNObWFz7DsBkQn/CDiXEVx3LPbgGh/K2+viBsZ2JJdjgnicZ5au90pg5MxuJ 9XZ+J1xMEX1pUYYzheRcc/tBEeLTJiX3G8KQiz2o1k69njTW2zJ1fEnzj1pQQetT q3jiEm9oaQkY1yPs/RqLQDetSJgHaRsa/vQbOXdez7o6zz0w3pNmKjJ/wsUVaOyo MLlGiIxCGT74qfNc7Te+sP8foQuE65PR3R/0wq+RdIcbxmP5evv2ksU2JC+wzErC xzVOH85ncMA6jvSjrX/OSrA4F942jgBi0IBw+PNB0tl4fYGn+OcMIU9k/dDpNnnn lg== -----END CERTIFICATE-----Generated at Wed May 13 12:28:49 2026 by rpki-client