$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065585649345691650/0/3132302e3133302e302e302f31362d3234203d3e2034383131.roa File: 3132302e3133302e302e302f31362d3234203d3e2034383131.roa (raw, json) Hash identifier: EFgcwJKm/PkwNvpTlx2QLTweJcahmhhmghY/iUkRC4g= Subject key identifier: 66:53:0A:13:1D:5A:68:27:EC:D6:35:9A:E5:CB:82:97:78:F5:41:8B Certificate issuer: /CN=30774653B3B7BF15B38B8BBFFD73A5C2D1EEF38F Certificate serial: 2896544BB7451818E11A1CC8E8809B34452CE4E0 Authority key identifier: 30:77:46:53:B3:B7:BF:15:B3:8B:8B:BF:FD:73:A5:C2:D1:EE:F3:8F Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/30774653B3B7BF15B38B8BBFFD73A5C2D1EEF38F.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065585649345691650/0/3132302e3133302e302e302f31362d3234203d3e2034383131.roa Signing time: Tue 28 Apr 2026 14:05:16 +0000 ROA not before: Tue 28 Apr 2026 14:00:16 +0000 ROA not after: Tue 27 Apr 2027 14:05:16 +0000 asID: 4811 IP address blocks: 120.130.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065585649345691650/0/30774653B3B7BF15B38B8BBFFD73A5C2D1EEF38F.crl rsync://rpki-rps.cnnic.cn/repo/A1065585649345691650/0/30774653B3B7BF15B38B8BBFFD73A5C2D1EEF38F.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/30774653B3B7BF15B38B8BBFFD73A5C2D1EEF38F.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 13:14:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:96:54:4b:b7:45:18:18:e1:1a:1c:c8:e8:80:9b:34:45:2c:e4:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30774653B3B7BF15B38B8BBFFD73A5C2D1EEF38F Validity Not Before: Apr 28 14:00:16 2026 GMT Not After : Apr 27 14:05:16 2027 GMT Subject: CN=66530A131D5A6827ECD6359AE5CB829778F5418B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:21:a0:d5:4e:2c:27:a2:17:26:12:01:69:37: 3e:0f:c8:f9:0c:e5:bf:0b:09:68:ac:fd:2b:d5:98: d3:75:f2:55:08:bd:06:b7:66:4e:69:ac:a9:72:7b: 9e:6f:4d:66:f8:58:b8:ca:7f:e2:b6:34:48:8f:87: b6:32:86:a4:33:e9:a2:fa:16:32:3d:77:7d:b5:ae: 31:0e:60:33:e9:c0:93:b0:3d:40:c6:c3:53:c8:b7: 5c:3f:d0:0f:a4:ee:d8:0c:c7:ee:cc:dc:7b:3a:50: af:98:d9:ba:e1:bc:df:ea:0b:21:6a:cc:98:76:9f: 5b:65:e9:a8:c8:c8:22:28:1d:b8:f9:b3:19:6d:87: 4d:66:85:e4:39:48:d4:53:c6:09:5a:fd:52:bd:42: e4:6e:65:e6:a7:bc:57:87:80:f9:b6:6c:f4:f3:2f: fe:cc:bd:13:a3:b5:94:8b:50:9b:5f:d0:84:dd:7f: 44:1a:40:14:6d:74:03:22:8c:66:04:62:11:db:9b: 7a:a8:75:11:a3:ce:62:e0:01:1a:3f:4f:6e:6b:a1: 10:c7:d1:c9:48:50:e9:43:86:4e:92:ff:ed:2b:a1: 75:15:e3:e9:93:74:53:52:df:d3:13:57:2c:13:77: 37:61:2f:ed:6f:95:dd:c1:80:a9:7c:80:b4:4b:81: 99:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:53:0A:13:1D:5A:68:27:EC:D6:35:9A:E5:CB:82:97:78:F5:41:8B X509v3 Authority Key Identifier: keyid:30:77:46:53:B3:B7:BF:15:B3:8B:8B:BF:FD:73:A5:C2:D1:EE:F3:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065585649345691650/0/30774653B3B7BF15B38B8BBFFD73A5C2D1EEF38F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/30774653B3B7BF15B38B8BBFFD73A5C2D1EEF38F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065585649345691650/0/3132302e3133302e302e302f31362d3234203d3e2034383131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 120.130.0.0/16 Signature Algorithm: sha256WithRSAEncryption 64:f8:52:bb:72:b4:14:ef:56:a7:a4:3f:dd:f9:b7:dd:44:f7: 94:a7:1e:6e:0d:f4:ab:8b:ba:fc:dc:10:3a:84:4e:30:9a:2b: 91:73:14:95:bb:82:5d:c8:2f:4b:a1:4b:1d:1b:bc:40:3a:04: 7f:b1:b1:65:8f:34:76:47:b8:8b:72:12:b0:b8:38:3c:2f:9f: 0d:b9:e0:a6:e1:1e:54:ec:32:f5:c6:10:28:ec:a6:60:0c:1f: 61:59:88:4a:77:58:91:04:53:52:51:94:91:a8:3c:32:b7:f0: 26:b6:90:8d:70:69:8b:84:59:73:1d:9b:89:47:72:87:93:ef: c5:5d:6a:c4:15:2d:6c:d1:04:5e:ee:03:9f:84:f7:84:7f:81: ca:bb:f0:b1:6f:4f:9b:43:70:cf:8f:5c:71:5f:38:66:f3:f4: 37:29:e0:b5:9e:8e:3f:5f:91:0e:65:ba:d4:b4:0a:99:bb:62: 27:d9:af:32:f4:92:5b:9d:ff:ec:32:66:d7:9e:91:7c:bc:31: cf:30:b0:66:7e:8b:27:91:14:f4:b8:ef:e8:33:77:38:d3:56: 89:7d:7a:62:a9:66:82:f0:dc:3c:33:a6:2a:77:93:33:52:94: 52:c3:e9:ba:3c:62:f2:82:34:73:5d:ec:66:29:8d:39:33:9f: 29:8a:fc:77 -----BEGIN CERTIFICATE----- MIIFBDCCA+ygAwIBAgIUKJZUS7dFGBjhGhzI6ICbNEUs5OAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzA3NzQ2NTNCM0I3QkYxNUIzOEI4QkJGRkQ3M0E1QzJE MUVFRjM4RjAeFw0yNjA0MjgxNDAwMTZaFw0yNzA0MjcxNDA1MTZaMDMxMTAvBgNV BAMTKDY2NTMwQTEzMUQ1QTY4MjdFQ0Q2MzU5QUU1Q0I4Mjk3NzhGNTQxOEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvIaDVTiwnohcmEgFpNz4PyPkM 5b8LCWis/SvVmNN18lUIvQa3Zk5prKlye55vTWb4WLjKf+K2NEiPh7YyhqQz6aL6 FjI9d321rjEOYDPpwJOwPUDGw1PIt1w/0A+k7tgMx+7M3Hs6UK+Y2brhvN/qCyFq zJh2n1tl6ajIyCIoHbj5sxlth01mheQ5SNRTxgla/VK9QuRuZeanvFeHgPm2bPTz L/7MvROjtZSLUJtf0ITdf0QaQBRtdAMijGYEYhHbm3qodRGjzmLgARo/T25roRDH 0clIUOlDhk6S/+0roXUV4+mTdFNS39MTVywTdzdhL+1vld3BgKl8gLRLgZlZAgMB AAGjggIOMIICCjAdBgNVHQ4EFgQUZlMKEx1aaCfs1jWa5cuCl3j1QYswHwYDVR0j BBgwFoAUMHdGU7O3vxWzi4u//XOlwtHu848wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4NTY0OTM0NTY5MTY1MC8wLzMwNzc0NjUzQjNCN0JGMTVCMzhCOEJCRkZENzNB NUMyRDFFRUYzOEYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMzA3NzQ2NTNCM0I3QkYxNUIzOEI4QkJGRkQ3M0E1QzJEMUVFRjM4Ri5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTg1NjQ5MzQ1NjkxNjUwLzAvMzEzMjMwMmUzMTMz MzAyZTMwMmUzMDJmMzEzNjJkMzIzNDIwM2QzZTIwMzQzODMxMzEucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD AwB4gjANBgkqhkiG9w0BAQsFAAOCAQEAZPhSu3K0FO9Wp6Q/3fm33UT3lKcebg30 q4u6/NwQOoROMJorkXMUlbuCXcgvS6FLHRu8QDoEf7GxZY80dke4i3ISsLg4PC+f DbngpuEeVOwy9cYQKOymYAwfYVmISndYkQRTUlGUkag8MrfwJraQjXBpi4RZcx2b iUdyh5PvxV1qxBUtbNEEXu4Dn4T3hH+ByrvwsW9Pm0Nwz49ccV84ZvP0NyngtZ6O P1+RDmW61LQKmbtiJ9mvMvSSW53/7DJm156RfLwxzzCwZn6LJ5EU9Ljv6DN3ONNW iX16YqlmgvDcPDOmKneTM1KUUsPpujxi8oI0c13sZimNOTOfKYr8dw== -----END CERTIFICATE-----Generated at Wed May 13 02:33:46 2026 by rpki-client