$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065588335524839425/1/3133382e3235322e37322e302f32342d3234203d3e20313337373331.roa File: 3133382e3235322e37322e302f32342d3234203d3e20313337373331.roa (raw, json) Hash identifier: UQKPf2S3sGHCJlse2YLd/IC42+k7YICa9NGSQPIobpw= Subject key identifier: A8:89:23:9A:97:BB:64:4B:16:C1:FE:F1:E7:96:7A:49:C9:2C:86:21 Certificate issuer: /CN=E3993DB092F827CDCF711046B493411A00A72701 Certificate serial: 0F409AE4B35F13ABAA3C8AA3146F907027BADCFD Authority key identifier: E3:99:3D:B0:92:F8:27:CD:CF:71:10:46:B4:93:41:1A:00:A7:27:01 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/E3993DB092F827CDCF711046B493411A00A72701.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065588335524839425/1/3133382e3235322e37322e302f32342d3234203d3e20313337373331.roa Signing time: Mon 27 Apr 2026 02:48:03 +0000 ROA not before: Mon 27 Apr 2026 02:43:03 +0000 ROA not after: Mon 26 Apr 2027 02:48:03 +0000 asID: 137731 IP address blocks: 138.252.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065588335524839425/1/E3993DB092F827CDCF711046B493411A00A72701.crl rsync://rpki-rps.cnnic.cn/repo/A1065588335524839425/1/E3993DB092F827CDCF711046B493411A00A72701.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/E3993DB092F827CDCF711046B493411A00A72701.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 12:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:40:9a:e4:b3:5f:13:ab:aa:3c:8a:a3:14:6f:90:70:27:ba:dc:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E3993DB092F827CDCF711046B493411A00A72701 Validity Not Before: Apr 27 02:43:03 2026 GMT Not After : Apr 26 02:48:03 2027 GMT Subject: CN=A889239A97BB644B16C1FEF1E7967A49C92C8621 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:b7:41:3e:12:15:e9:01:3c:0c:3c:8f:34:29: 3d:e4:28:b7:44:cf:bc:74:62:c2:6a:4e:2c:76:11: 55:f5:c5:d9:65:93:19:b8:11:de:38:84:af:ae:39: 1c:f9:e8:5d:e6:9f:95:d2:c4:5a:57:a4:39:32:9d: fc:89:fe:e7:b7:15:c0:60:6b:c1:f2:01:a8:ea:1e: 57:d2:da:80:49:3a:a3:f7:d7:26:4b:11:e7:ad:d1: e5:51:0a:92:50:71:12:00:a7:fd:32:36:9f:b6:35: 78:e8:3b:df:15:9b:77:42:0c:e7:74:69:96:de:1c: 57:7c:5f:74:43:2a:fc:23:58:bb:61:95:c8:e7:46: cb:50:d1:7b:63:2e:52:60:85:27:1a:00:fc:f5:74: a7:4f:6f:de:cf:89:94:6a:7a:23:09:1d:22:cd:a6: 5e:9c:a6:c1:f5:cc:d5:db:90:6e:09:23:4c:82:f8: 13:fc:f0:52:1c:72:c7:04:9c:54:af:07:8d:4f:7a: fd:ed:b9:48:97:30:35:24:3e:ad:ab:cb:a4:b0:17: 36:53:91:a0:8b:69:d4:e6:04:d6:8f:2d:8d:71:db: c6:2a:84:c2:08:56:05:3c:09:2c:79:46:82:63:1a: 7c:e9:1b:e1:3c:d8:b5:68:3e:e9:ea:28:6e:d9:91: bf:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:89:23:9A:97:BB:64:4B:16:C1:FE:F1:E7:96:7A:49:C9:2C:86:21 X509v3 Authority Key Identifier: keyid:E3:99:3D:B0:92:F8:27:CD:CF:71:10:46:B4:93:41:1A:00:A7:27:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065588335524839425/1/E3993DB092F827CDCF711046B493411A00A72701.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/E3993DB092F827CDCF711046B493411A00A72701.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065588335524839425/1/3133382e3235322e37322e302f32342d3234203d3e20313337373331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.252.72.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:4c:7e:4c:7d:4d:4a:93:fa:b3:1e:13:b8:c3:d8:39:aa:c1: f3:b5:a7:45:6f:d9:3e:cb:6c:b1:ad:36:67:c5:c2:fa:8c:e4: 40:22:6d:3a:72:e1:28:31:b3:85:a3:32:95:b7:09:71:67:0e: b4:e0:32:4e:a4:c5:71:7c:d1:e9:3d:93:ec:09:ab:74:57:01: 6e:0a:82:b6:39:b9:76:bc:d9:08:79:8b:f5:7a:5c:68:ea:7d: 1a:c6:e1:57:45:a4:62:4d:1e:4c:6e:8b:d5:6f:d5:46:74:aa: 44:ac:bf:b1:e5:e8:61:3c:3a:69:3b:cc:95:b7:b3:57:38:57: 7a:35:3f:74:a4:20:48:c1:bf:0e:53:36:41:f8:92:d2:2f:4b: e8:0c:cd:0b:63:8f:7d:4f:28:7d:b0:1f:83:94:cc:54:ac:35: de:42:ff:b1:f4:84:8d:ef:b5:7c:2e:e9:fc:74:53:0f:ff:38: 5f:7e:0f:3d:80:28:a1:50:a7:64:ec:af:65:70:59:82:3b:7e: f4:e1:7c:92:9d:8d:9c:19:00:53:ec:06:47:50:f8:18:3e:19: 6b:45:f1:d0:01:a7:92:fd:33:30:d2:83:7b:6d:1c:97:df:de: bd:50:b7:c7:e7:f6:49:60:7e:b9:56:82:d6:ed:b6:15:51:4a: db:25:aa:eb -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUD0Ca5LNfE6uqPIqjFG+QcCe63P0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTM5OTNEQjA5MkY4MjdDRENGNzExMDQ2QjQ5MzQxMUEw MEE3MjcwMTAeFw0yNjA0MjcwMjQzMDNaFw0yNzA0MjYwMjQ4MDNaMDMxMTAvBgNV BAMTKEE4ODkyMzlBOTdCQjY0NEIxNkMxRkVGMUU3OTY3QTQ5QzkyQzg2MjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnt0E+EhXpATwMPI80KT3kKLdE z7x0YsJqTix2EVX1xdllkxm4Ed44hK+uORz56F3mn5XSxFpXpDkynfyJ/ue3FcBg a8HyAajqHlfS2oBJOqP31yZLEeet0eVRCpJQcRIAp/0yNp+2NXjoO98Vm3dCDOd0 aZbeHFd8X3RDKvwjWLthlcjnRstQ0XtjLlJghScaAPz1dKdPb97PiZRqeiMJHSLN pl6cpsH1zNXbkG4JI0yC+BP88FIccscEnFSvB41Pev3tuUiXMDUkPq2ry6SwFzZT kaCLadTmBNaPLY1x28YqhMIIVgU8CSx5RoJjGnzpG+E82LVoPunqKG7Zkb9RAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUqIkjmpe7ZEsWwf7x55Z6SckshiEwHwYDVR0j BBgwFoAU45k9sJL4J83PcRBGtJNBGgCnJwEwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4ODMzNTUyNDgzOTQyNS8xL0UzOTkzREIwOTJGODI3Q0RDRjcxMTA0NkI0OTM0 MTFBMDBBNzI3MDEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvRTM5OTNEQjA5MkY4MjdDRENGNzExMDQ2QjQ5MzQxMUEwMEE3MjcwMS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1ODgzMzU1MjQ4Mzk0MjUvMS8zMTMzMzgyZTMy MzUzMjJlMzczMjJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzNzM3MzMzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAIr8SDANBgkqhkiG9w0BAQsFAAOCAQEAPEx+TH1NSpP6sx4TuMPY OarB87WnRW/ZPstssa02Z8XC+ozkQCJtOnLhKDGzhaMylbcJcWcOtOAyTqTFcXzR 6T2T7AmrdFcBbgqCtjm5drzZCHmL9XpcaOp9GsbhV0WkYk0eTG6L1W/VRnSqRKy/ seXoYTw6aTvMlbezVzhXejU/dKQgSMG/DlM2QfiS0i9L6AzNC2OPfU8ofbAfg5TM VKw13kL/sfSEje+1fC7p/HRTD/84X34PPYAooVCnZOyvZXBZgjt+9OF8kp2NnBkA U+wGR1D4GD4Za0Xx0AGnkv0zMNKDe20cl9/evVC3x+f2SWB+uVaC1u22FVFK2yWq 6w== -----END CERTIFICATE-----Generated at Wed May 13 19:42:20 2026 by rpki-client