$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065577241947602945/0/3132332e3130382e38392e302f32342d3234203d3e203535393936.roa File: 3132332e3130382e38392e302f32342d3234203d3e203535393936.roa (raw, json) Hash identifier: 130SRR30io0LfTsfzBIPoJa332P30v7oXz+QUWgEhmc= Subject key identifier: 2B:65:BD:16:9B:33:48:12:6B:B0:83:26:55:D0:08:4B:05:37:95:A4 Certificate issuer: /CN=5DF8086D3EFA176487A1C376B7BCCF3E83AB2339 Certificate serial: 27F80145F33B0A2B3A70FEADBB37F6C97B36F685 Authority key identifier: 5D:F8:08:6D:3E:FA:17:64:87:A1:C3:76:B7:BC:CF:3E:83:AB:23:39 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/3132332e3130382e38392e302f32342d3234203d3e203535393936.roa Signing time: Thu 07 May 2026 15:59:00 +0000 ROA not before: Thu 07 May 2026 15:54:00 +0000 ROA not after: Thu 06 May 2027 15:59:00 +0000 asID: 55996 IP address blocks: 123.108.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.crl rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:32:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:f8:01:45:f3:3b:0a:2b:3a:70:fe:ad:bb:37:f6:c9:7b:36:f6:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5DF8086D3EFA176487A1C376B7BCCF3E83AB2339 Validity Not Before: May 7 15:54:00 2026 GMT Not After : May 6 15:59:00 2027 GMT Subject: CN=2B65BD169B3348126BB0832655D0084B053795A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b5:3e:23:2b:e4:e8:3e:3c:bc:02:2a:fb:79: 09:2b:3b:8b:e3:aa:ce:c3:ba:5d:2e:e3:e2:1d:89: c7:5c:23:b2:23:3d:d3:2c:be:35:31:27:68:60:bb: 45:44:ff:fe:27:e2:e6:53:fe:42:8d:08:6d:c8:8d: f8:db:a8:c1:45:91:5f:45:9f:1b:b3:e4:ad:87:af: 81:a6:ec:83:cb:df:68:1a:36:8b:70:62:38:2c:a7: d3:a7:28:72:59:7e:f9:23:be:d4:49:b0:2c:77:a0: 0e:ab:37:e8:ec:3d:92:d4:de:80:ad:a7:6b:a9:ae: fc:78:68:2c:67:a5:a2:d1:49:18:46:4b:9f:c8:a6: ad:47:b1:84:45:54:01:ee:3b:e2:49:9b:df:b5:2d: 01:47:62:5f:7a:21:23:58:72:be:34:e7:a3:81:68: 30:59:c8:cb:79:5d:50:52:78:7c:64:d6:2d:2b:84: 89:40:ca:f1:ca:4a:de:34:02:96:9b:b1:aa:09:93: cd:f4:d5:51:93:d0:32:24:c9:9c:3d:d9:9b:ce:95: 03:38:60:da:29:5a:99:8d:d6:0e:2f:5c:e4:7e:cd: cd:cb:0b:9b:95:f6:a8:e7:1b:ff:a4:52:e2:a8:03: 58:8f:89:b0:19:a6:72:ea:96:db:1b:28:2f:7a:5f: cc:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:65:BD:16:9B:33:48:12:6B:B0:83:26:55:D0:08:4B:05:37:95:A4 X509v3 Authority Key Identifier: keyid:5D:F8:08:6D:3E:FA:17:64:87:A1:C3:76:B7:BC:CF:3E:83:AB:23:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/3132332e3130382e38392e302f32342d3234203d3e203535393936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.108.89.0/24 Signature Algorithm: sha256WithRSAEncryption 62:06:7b:6f:6e:24:a0:1a:04:bd:55:a8:e2:0a:7a:05:04:1e: 80:08:13:a8:72:c2:16:ce:e6:31:56:51:14:ad:a9:e5:fc:69: a2:e8:a2:79:43:e0:80:60:1d:c8:84:04:56:c0:d2:be:82:8d: dd:0e:98:6e:d2:4d:60:9b:77:79:11:43:5a:4f:49:62:00:17: e2:c4:f3:b4:68:2c:4d:d1:99:33:43:3b:84:52:c8:89:e8:b2: e0:50:9f:cf:16:af:d1:81:c2:88:56:c7:b5:e5:6c:ab:b9:cd: 3f:6c:25:3b:2a:20:5e:b7:84:21:57:b4:78:d1:5a:b4:f7:a4: 4e:81:dc:e8:8b:e7:a5:13:a1:35:3a:17:6a:4f:6b:a4:ef:6c: cd:22:ac:50:05:ac:12:35:a0:05:cc:3f:23:9e:da:4e:9a:ad: a2:41:14:3a:fc:00:de:65:e2:46:59:89:f5:61:b4:4d:1b:f6: dc:05:d0:c5:aa:a9:94:63:a8:2c:cd:e3:e2:8a:36:f2:25:f0: dd:d5:90:24:3e:fc:75:ad:27:f7:d2:c5:0f:0c:c2:cb:8b:45: 06:55:ac:95:e2:28:8b:20:7c:4b:bf:e7:72:22:5a:99:e2:b1: 1d:f0:d9:4c:ba:cd:8a:64:98:79:bb:cd:24:4b:8a:c2:e4:0b: 9c:b8:dc:3f -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUJ/gBRfM7Cis6cP6tuzf2yXs29oUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNURGODA4NkQzRUZBMTc2NDg3QTFDMzc2QjdCQ0NGM0U4 M0FCMjMzOTAeFw0yNjA1MDcxNTU0MDBaFw0yNzA1MDYxNTU5MDBaMDMxMTAvBgNV BAMTKDJCNjVCRDE2OUIzMzQ4MTI2QkIwODMyNjU1RDAwODRCMDUzNzk1QTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCtT4jK+ToPjy8Air7eQkrO4vj qs7Dul0u4+IdicdcI7IjPdMsvjUxJ2hgu0VE//4n4uZT/kKNCG3IjfjbqMFFkV9F nxuz5K2Hr4Gm7IPL32gaNotwYjgsp9OnKHJZfvkjvtRJsCx3oA6rN+jsPZLU3oCt p2uprvx4aCxnpaLRSRhGS5/Ipq1HsYRFVAHuO+JJm9+1LQFHYl96ISNYcr4056OB aDBZyMt5XVBSeHxk1i0rhIlAyvHKSt40ApabsaoJk8301VGT0DIkyZw92ZvOlQM4 YNopWpmN1g4vXOR+zc3LC5uV9qjnG/+kUuKoA1iPibAZpnLqltsbKC96X8xbAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUK2W9FpszSBJrsIMmVdAISwU3laQwHwYDVR0j BBgwFoAUXfgIbT76F2SHocN2t7zPPoOrIzkwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NzI0MTk0NzYwMjk0NS8wLzVERjgwODZEM0VGQTE3NjQ4N0ExQzM3NkI3QkND RjNFODNBQjIzMzkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNURGODA4NkQzRUZBMTc2NDg3QTFDMzc2QjdCQ0NGM0U4M0FCMjMzOS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3NzI0MTk0NzYwMjk0NS8wLzMxMzIzMzJlMzEz MDM4MmUzODM5MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzUzNTM5MzkzNi5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAHtsWTANBgkqhkiG9w0BAQsFAAOCAQEAYgZ7b24koBoEvVWo4gp6BQQe gAgTqHLCFs7mMVZRFK2p5fxpouiieUPggGAdyIQEVsDSvoKN3Q6YbtJNYJt3eRFD Wk9JYgAX4sTztGgsTdGZM0M7hFLIieiy4FCfzxav0YHCiFbHteVsq7nNP2wlOyog XreEIVe0eNFatPekToHc6IvnpROhNToXak9rpO9szSKsUAWsEjWgBcw/I57aTpqt okEUOvwA3mXiRlmJ9WG0TRv23AXQxaqplGOoLM3j4oo28iXw3dWQJD78da0n99LF DwzCy4tFBlWsleIoiyB8S7/nciJameKxHfDZTLrNimSYebvNJEuKwuQLnLjcPw== -----END CERTIFICATE-----Generated at Wed May 13 11:59:44 2026 by rpki-client