$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065588553129525251/0/3130312e3233322e3230302e302f32322d3234203d3e20323034373635.roa File: 3130312e3233322e3230302e302f32322d3234203d3e20323034373635.roa (raw, json) Hash identifier: Pcgt/SOcHCzrLc2frkpVFBdIsBFRIMDiwUIYHFzMIPw= Subject key identifier: 5F:A8:A6:FD:26:83:84:5D:44:12:FA:EE:2A:F8:AE:3B:35:9D:57:C7 Certificate issuer: /CN=E893434A32058DAFE9758FDA7B36659444C9EF8E Certificate serial: 5AE7382FDB4D22DD1FC4DC847A2276C46EC8982F Authority key identifier: E8:93:43:4A:32:05:8D:AF:E9:75:8F:DA:7B:36:65:94:44:C9:EF:8E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/3130312e3233322e3230302e302f32322d3234203d3e20323034373635.roa Signing time: Wed 06 May 2026 06:44:04 +0000 ROA not before: Wed 06 May 2026 06:39:04 +0000 ROA not after: Wed 05 May 2027 06:44:04 +0000 asID: 204765 IP address blocks: 101.232.200.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.crl rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:26:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:e7:38:2f:db:4d:22:dd:1f:c4:dc:84:7a:22:76:c4:6e:c8:98:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E893434A32058DAFE9758FDA7B36659444C9EF8E Validity Not Before: May 6 06:39:04 2026 GMT Not After : May 5 06:44:04 2027 GMT Subject: CN=5FA8A6FD2683845D4412FAEE2AF8AE3B359D57C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:b5:dc:08:0f:46:7f:07:3e:fd:73:c7:10:ed: 7e:9d:68:7e:bb:3e:2c:f7:52:ae:1e:92:e7:a4:d5: 42:00:6d:cd:0e:67:26:7b:69:25:ec:60:ea:8b:68: 0c:b9:40:24:6b:1e:1b:38:75:22:56:e1:b9:74:f1: 72:59:22:85:86:71:ad:74:66:e7:ea:22:96:55:db: 01:41:45:a0:84:0e:79:00:bd:80:87:47:ea:4f:20: db:3c:aa:6b:ac:cc:26:58:38:79:34:41:10:79:86: 3e:33:db:ab:96:15:ab:9b:d5:8a:88:09:dc:ef:26: 58:7a:e5:46:47:6c:72:bb:90:0e:48:36:ea:9c:bc: 31:be:27:e6:3b:22:a3:93:c3:44:2c:1d:6d:12:6e: 35:11:56:2c:15:2b:db:27:9c:67:8d:8a:e6:a1:8d: bc:1e:f1:da:ad:dd:ba:fe:c5:f6:6d:13:76:c1:c9: 3b:20:d1:b9:d0:96:d2:d1:41:aa:e5:ce:ce:be:a7: a1:0d:72:81:20:a7:36:da:52:b9:80:77:30:3a:f4: 95:d2:47:a2:6d:ad:b1:17:c5:6a:c9:44:7e:41:b3: a7:06:49:09:47:e7:1a:f3:41:35:c2:4c:32:a5:7a: de:a7:74:a2:e6:cf:21:ed:26:1b:42:9f:4b:23:52: 22:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:A8:A6:FD:26:83:84:5D:44:12:FA:EE:2A:F8:AE:3B:35:9D:57:C7 X509v3 Authority Key Identifier: keyid:E8:93:43:4A:32:05:8D:AF:E9:75:8F:DA:7B:36:65:94:44:C9:EF:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/3130312e3233322e3230302e302f32322d3234203d3e20323034373635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.232.200.0/22 Signature Algorithm: sha256WithRSAEncryption c4:e4:69:12:94:59:01:ea:20:d6:c8:7c:1d:26:54:b9:79:4d: 7d:38:5f:49:43:57:d4:d2:4a:b3:6a:de:b0:cd:51:52:39:94: da:32:a2:13:c8:91:35:d2:6e:e6:c0:e7:ff:75:82:4b:f6:44: 4b:c9:71:34:f4:9f:cf:94:53:0e:20:d9:e0:3e:f2:d9:42:0b: 9d:f1:f5:72:52:ad:2b:a7:29:b8:ba:ec:67:84:4c:c3:6c:a8: 1f:3a:95:fe:10:be:80:97:b4:25:0c:96:41:b4:5a:24:9a:fb: 4b:b4:1f:8d:90:04:25:02:a0:b9:2d:fb:2d:9e:b2:56:aa:ac: 0f:22:8a:84:8c:9f:5d:38:c5:5a:e6:44:6c:43:4c:55:7e:7a: b6:f8:e5:6b:36:6d:2f:7a:11:b5:93:c7:87:14:a7:ff:fe:6c: 07:ca:ae:5e:04:cb:f9:c5:88:22:f7:be:2e:63:a2:03:8e:17: f1:c9:67:ae:a4:fa:af:92:40:2d:fd:6f:cd:4b:ef:e0:e9:88: c9:fe:85:20:8a:05:50:64:5a:23:d5:0d:86:59:48:2f:f2:a8: 6d:69:80:52:5b:04:b7:9a:80:9e:b7:64:c1:c6:91:70:32:eb: 29:50:73:e0:a2:0e:5e:6a:ab:8d:06:6c:3c:cf:68:ff:7b:78: 9b:d1:42:cc -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUWuc4L9tNIt0fxNyEeiJ2xG7ImC8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTg5MzQzNEEzMjA1OERBRkU5NzU4RkRBN0IzNjY1OTQ0 NEM5RUY4RTAeFw0yNjA1MDYwNjM5MDRaFw0yNzA1MDUwNjQ0MDRaMDMxMTAvBgNV BAMTKDVGQThBNkZEMjY4Mzg0NUQ0NDEyRkFFRTJBRjhBRTNCMzU5RDU3QzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDStdwID0Z/Bz79c8cQ7X6daH67 Piz3Uq4ekuek1UIAbc0OZyZ7aSXsYOqLaAy5QCRrHhs4dSJW4bl08XJZIoWGca10 ZufqIpZV2wFBRaCEDnkAvYCHR+pPINs8qmuszCZYOHk0QRB5hj4z26uWFaub1YqI CdzvJlh65UZHbHK7kA5INuqcvDG+J+Y7IqOTw0QsHW0SbjURViwVK9snnGeNiuah jbwe8dqt3br+xfZtE3bByTsg0bnQltLRQarlzs6+p6ENcoEgpzbaUrmAdzA69JXS R6JtrbEXxWrJRH5Bs6cGSQlH5xrzQTXCTDKlet6ndKLmzyHtJhtCn0sjUiK3AgMB AAGjggIaMIICFjAdBgNVHQ4EFgQUX6im/SaDhF1EEvruKviuOzWdV8cwHwYDVR0j BBgwFoAU6JNDSjIFja/pdY/aezZllETJ744wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4ODU1MzEyOTUyNTI1MS8wL0U4OTM0MzRBMzIwNThEQUZFOTc1OEZEQTdCMzY2 NTk0NDRDOUVGOEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRTg5MzQzNEEzMjA1OERBRkU5NzU4RkRBN0IzNjY1OTQ0NEM5RUY4RS5jZXIw gZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMDY1NTg4NTUzMTI5NTI1MjUxLzAvMzEzMDMxMmUz MjMzMzIyZTMyMzAzMDJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDMyMzAzNDM3MzYz NS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAmXoyDANBgkqhkiG9w0BAQsFAAOCAQEAxORpEpRZAeog1sh8 HSZUuXlNfThfSUNX1NJKs2resM1RUjmU2jKiE8iRNdJu5sDn/3WCS/ZES8lxNPSf z5RTDiDZ4D7y2UILnfH1clKtK6cpuLrsZ4RMw2yoHzqV/hC+gJe0JQyWQbRaJJr7 S7QfjZAEJQKguS37LZ6yVqqsDyKKhIyfXTjFWuZEbENMVX56tvjlazZtL3oRtZPH hxSn//5sB8quXgTL+cWIIve+LmOiA44X8clnrqT6r5JALf1vzUvv4OmIyf6FIIoF UGRaI9UNhllIL/KobWmAUlsEt5qAnrdkwcaRcDLrKVBz4KIOXmqrjQZsPM9o/3t4 m9FCzA== -----END CERTIFICATE-----Generated at Wed May 13 14:24:46 2026 by rpki-client