$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394458115/0/3131342e32382e3230392e302f32342d3332203d3e20313334373839.roa File: 3131342e32382e3230392e302f32342d3332203d3e20313334373839.roa (raw, json) Hash identifier: r2lfOw/F6pyoWlFje8LxCIvOVbij06a81wO0Jr7eIpA= Subject key identifier: AF:DA:F4:A2:CF:DD:9B:05:65:BA:06:99:B9:11:9C:C4:E0:E9:A2:29 Certificate issuer: /CN=EF6A2191C455D9432EF87AF82675D5F499EABD13 Certificate serial: 33F9AE5EA2F46FA04DC67161F8B6927AA65F483F Authority key identifier: EF:6A:21:91:C4:55:D9:43:2E:F8:7A:F8:26:75:D5:F4:99:EA:BD:13 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/EF6A2191C455D9432EF87AF82675D5F499EABD13.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394458115/0/3131342e32382e3230392e302f32342d3332203d3e20313334373839.roa Signing time: Wed 13 May 2026 03:06:20 +0000 ROA not before: Wed 13 May 2026 03:01:20 +0000 ROA not after: Wed 12 May 2027 03:06:20 +0000 asID: 134789 IP address blocks: 114.28.209.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394458115/0/EF6A2191C455D9432EF87AF82675D5F499EABD13.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394458115/0/EF6A2191C455D9432EF87AF82675D5F499EABD13.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/EF6A2191C455D9432EF87AF82675D5F499EABD13.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 05:40:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:f9:ae:5e:a2:f4:6f:a0:4d:c6:71:61:f8:b6:92:7a:a6:5f:48:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EF6A2191C455D9432EF87AF82675D5F499EABD13 Validity Not Before: May 13 03:01:20 2026 GMT Not After : May 12 03:06:20 2027 GMT Subject: CN=AFDAF4A2CFDD9B0565BA0699B9119CC4E0E9A229 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:58:2a:e0:89:ed:a7:cb:df:46:16:aa:d1:11: 74:02:a2:d8:0b:42:59:10:a7:d3:05:be:81:21:fe: 0a:a1:11:38:df:a4:2f:be:a9:57:f2:79:b0:5a:21: cc:f6:2d:a7:4f:06:97:2f:e0:81:23:83:e3:33:4a: 0f:85:44:7e:92:97:a5:38:80:1b:83:7d:11:75:d0: da:eb:17:62:7f:2c:1d:ce:64:d4:fe:3e:20:92:20: 43:ad:db:a9:79:14:b9:b7:09:00:04:52:48:01:bc: c2:5d:86:43:6d:66:7e:43:98:14:7e:fb:26:72:d6: 0e:ee:4b:b4:a0:f6:87:6b:02:19:14:3d:8c:21:ff: 62:cd:96:df:9f:73:4d:45:dc:4f:82:e1:00:ef:df: 62:1d:a2:cb:2e:0f:6c:a6:ec:71:e9:c8:69:c6:e9: 77:84:f3:15:e6:94:a6:73:91:47:5b:4f:37:a7:1f: bc:f1:eb:9e:4c:f6:45:16:25:1a:c4:06:a5:46:c2: ce:3b:f0:21:8e:d7:38:cd:66:ec:b4:b4:7c:21:f4: 1d:ef:46:be:29:1e:8d:e7:06:c8:69:3e:88:18:5e: 01:48:3a:1a:2c:6b:54:27:2b:54:08:af:8d:08:43: 0a:6f:d7:2c:fa:70:c1:56:87:95:89:ec:99:c7:68: ea:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:DA:F4:A2:CF:DD:9B:05:65:BA:06:99:B9:11:9C:C4:E0:E9:A2:29 X509v3 Authority Key Identifier: keyid:EF:6A:21:91:C4:55:D9:43:2E:F8:7A:F8:26:75:D5:F4:99:EA:BD:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394458115/0/EF6A2191C455D9432EF87AF82675D5F499EABD13.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/EF6A2191C455D9432EF87AF82675D5F499EABD13.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394458115/0/3131342e32382e3230392e302f32342d3332203d3e20313334373839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.28.209.0/24 Signature Algorithm: sha256WithRSAEncryption 17:6f:86:2c:40:e5:21:43:65:81:3d:21:aa:cb:5c:a3:b4:1b: 44:c1:f6:4d:1e:1f:59:2b:3c:96:55:22:b1:d2:35:1b:d8:92: e2:60:83:7d:68:41:ef:1c:d1:67:a3:c7:01:2b:7c:6c:45:9b: 90:92:12:69:af:b3:8c:d0:4e:bd:ca:75:98:cc:9d:42:e9:1b: 45:b1:5b:74:ed:11:40:a4:39:ce:ba:e1:fa:9f:26:b5:6e:d6: 53:42:13:0a:dd:6c:35:8f:fc:9d:16:71:89:b2:df:e4:84:ac: fb:fa:b1:94:2c:88:a8:43:ec:d8:23:37:52:b3:6d:a3:60:27: a5:51:08:b0:c7:c6:48:5b:98:37:e1:0c:82:ec:4c:ef:6e:72: 37:ce:de:2f:57:c9:e6:0d:c6:1b:59:00:ab:47:fc:d5:e7:48: 71:83:9d:c7:39:f5:88:0f:1c:9a:8a:a8:62:8a:c4:75:81:a2: ce:59:48:5b:1b:9a:de:9d:6e:6a:65:34:2f:06:1e:ff:4e:93: 91:e4:18:6b:c0:57:d0:b5:c9:c9:09:db:36:8e:f8:ac:b9:6b: a7:f5:a6:82:1f:ac:95:1f:bc:8b:60:f2:63:fe:78:00:62:6a: 30:b3:5e:62:b8:45:8f:a3:3a:9d:83:13:88:a0:8f:84:74:ee: ac:a2:26:7f -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUM/muXqL0b6BNxnFh+LaSeqZfSD8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUY2QTIxOTFDNDU1RDk0MzJFRjg3QUY4MjY3NUQ1RjQ5 OUVBQkQxMzAeFw0yNjA1MTMwMzAxMjBaFw0yNzA1MTIwMzA2MjBaMDMxMTAvBgNV BAMTKEFGREFGNEEyQ0ZERDlCMDU2NUJBMDY5OUI5MTE5Q0M0RTBFOUEyMjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGWCrgie2ny99GFqrREXQCotgL QlkQp9MFvoEh/gqhETjfpC++qVfyebBaIcz2LadPBpcv4IEjg+MzSg+FRH6Sl6U4 gBuDfRF10NrrF2J/LB3OZNT+PiCSIEOt26l5FLm3CQAEUkgBvMJdhkNtZn5DmBR+ +yZy1g7uS7Sg9odrAhkUPYwh/2LNlt+fc01F3E+C4QDv32IdossuD2ym7HHpyGnG 6XeE8xXmlKZzkUdbTzenH7zx655M9kUWJRrEBqVGws478CGO1zjNZuy0tHwh9B3v Rr4pHo3nBshpPogYXgFIOhosa1QnK1QIr40IQwpv1yz6cMFWh5WJ7JnHaOqPAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUr9r0os/dmwVlugaZuRGcxODpoikwHwYDVR0j BBgwFoAU72ohkcRV2UMu+Hr4JnXV9JnqvRMwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDQ1ODExNS8wL0VGNkEyMTkxQzQ1NUQ5NDMyRUY4N0FGODI2NzVE NUY0OTlFQUJEMTMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRUY2QTIxOTFDNDU1RDk0MzJFRjg3QUY4MjY3NUQ1RjQ5OUVBQkQxMy5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1Nzk1MzQzOTQ0NTgxMTUvMC8zMTMxMzQyZTMy MzgyZTMyMzAzOTJlMzAyZjMyMzQyZDMzMzIyMDNkM2UyMDMxMzMzNDM3MzgzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAHIc0TANBgkqhkiG9w0BAQsFAAOCAQEAF2+GLEDlIUNlgT0hqstc o7QbRMH2TR4fWSs8llUisdI1G9iS4mCDfWhB7xzRZ6PHASt8bEWbkJISaa+zjNBO vcp1mMydQukbRbFbdO0RQKQ5zrrh+p8mtW7WU0ITCt1sNY/8nRZxibLf5ISs+/qx lCyIqEPs2CM3UrNto2AnpVEIsMfGSFuYN+EMguxM725yN87eL1fJ5g3GG1kAq0f8 1edIcYOdxzn1iA8cmoqoYorEdYGizllIWxua3p1uamU0LwYe/06TkeQYa8BX0LXJ yQnbNo74rLlrp/Wmgh+slR+8i2DyY/54AGJqMLNeYrhFj6M6nYMTiKCPhHTurKIm fw== -----END CERTIFICATE-----Generated at Wed May 13 14:57:11 2026 by rpki-client