$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065588553129525251/0/3130312e3233322e3230342e302f32322d3234203d3e20323034373635.roa File: 3130312e3233322e3230342e302f32322d3234203d3e20323034373635.roa (raw, json) Hash identifier: 6A/AIRiiVaX7UoduQ/NIqJpxcXw67tT6yGCDsjcJFBI= Subject key identifier: 74:E0:92:24:D4:87:C4:B7:BA:92:E1:BE:23:E3:D7:01:26:9C:7E:B1 Certificate issuer: /CN=E893434A32058DAFE9758FDA7B36659444C9EF8E Certificate serial: 26FF58352F1B8D1885F3FDC91515A5CB019F5810 Authority key identifier: E8:93:43:4A:32:05:8D:AF:E9:75:8F:DA:7B:36:65:94:44:C9:EF:8E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/3130312e3233322e3230342e302f32322d3234203d3e20323034373635.roa Signing time: Wed 06 May 2026 06:44:10 +0000 ROA not before: Wed 06 May 2026 06:39:10 +0000 ROA not after: Wed 05 May 2027 06:44:10 +0000 asID: 204765 IP address blocks: 101.232.204.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.crl rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:26:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:ff:58:35:2f:1b:8d:18:85:f3:fd:c9:15:15:a5:cb:01:9f:58:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E893434A32058DAFE9758FDA7B36659444C9EF8E Validity Not Before: May 6 06:39:10 2026 GMT Not After : May 5 06:44:10 2027 GMT Subject: CN=74E09224D487C4B7BA92E1BE23E3D701269C7EB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:a4:83:e1:db:bc:72:61:7f:08:45:b1:df:8d: 90:ef:15:af:45:2b:b4:53:49:59:aa:fc:93:45:26: 15:35:b6:c2:1e:d9:ab:86:52:57:d2:3b:61:30:c1: df:d2:e5:b9:80:1c:2c:bc:8d:9d:3a:50:ed:b9:d7: c1:19:1a:22:e8:3d:21:2d:32:81:bf:66:c2:09:94: b9:67:9d:77:06:dd:aa:30:1c:b1:19:f1:5d:6b:00: 91:70:88:22:5f:d7:c1:65:8b:af:c5:44:1a:9a:49: 6b:45:f5:22:08:6e:e3:d1:b2:d5:c4:5e:68:d0:86: f6:b6:48:62:b0:a5:63:43:a4:bf:5c:cc:02:b0:f2: f3:45:79:2e:49:8a:c3:40:15:51:b6:fd:44:aa:31: 57:48:f2:b8:37:6a:c8:95:2d:0d:13:63:c1:ba:66: c7:53:c8:dd:74:02:c0:b0:54:e4:dc:4a:1b:a1:9b: ce:99:c7:f4:a6:54:de:17:09:aa:34:1b:43:3b:b7: c3:5b:12:51:b9:d7:ac:34:59:9d:5c:59:8a:b8:72: ab:32:04:ae:7c:f4:30:0c:e2:c2:bb:e3:af:fb:bb: c4:40:04:a9:dc:3f:e6:38:fa:b5:ca:90:eb:78:2b: 74:48:92:6d:9a:81:15:68:36:dd:e1:43:e9:ea:30: fa:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:E0:92:24:D4:87:C4:B7:BA:92:E1:BE:23:E3:D7:01:26:9C:7E:B1 X509v3 Authority Key Identifier: keyid:E8:93:43:4A:32:05:8D:AF:E9:75:8F:DA:7B:36:65:94:44:C9:EF:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/3130312e3233322e3230342e302f32322d3234203d3e20323034373635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.232.204.0/22 Signature Algorithm: sha256WithRSAEncryption c3:29:27:8b:9a:1f:32:d8:88:b4:e5:94:3b:08:19:48:b9:24: fa:97:24:f1:ce:ae:0c:fa:8b:97:45:b7:03:3e:b9:7e:e6:40: 16:a0:b1:9c:01:1d:19:f8:29:e3:25:7c:72:12:5e:6f:10:7c: 06:75:5c:14:7e:b5:e2:02:00:a9:8d:98:71:64:17:0b:a3:a2: 0b:37:d5:8e:9a:12:d6:3c:53:1a:d4:3d:a3:fc:79:3e:f0:3e: 3f:7d:39:8d:2e:c5:a8:2d:24:a3:95:45:1e:b0:39:99:39:a3: 28:f9:5d:30:f7:43:1b:7a:e8:77:2e:56:a3:97:1e:16:38:2c: 46:b2:b0:69:29:1b:0c:3f:c8:26:f1:43:5c:a9:f5:6c:43:59: 5d:06:7a:23:66:cb:a1:3c:37:b6:bd:4a:26:d2:1f:ed:18:31: 5e:fd:f5:51:87:f4:6c:c0:a1:0d:af:07:a9:7f:e7:a4:5b:b8: 65:5b:f8:6b:4b:07:eb:34:c9:6e:40:05:78:d3:8e:e4:1d:8e: bb:7a:b9:0f:4c:6d:6b:d5:5e:e1:e6:f0:7d:46:bb:15:0d:e9: 8c:c6:a2:da:ef:d6:19:b9:1b:fe:13:41:43:2a:73:92:27:19: 18:d9:9f:5e:9f:5d:d5:1a:c2:cc:78:2d:7c:08:78:92:4c:23: 55:44:dd:40 -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUJv9YNS8bjRiF8/3JFRWlywGfWBAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTg5MzQzNEEzMjA1OERBRkU5NzU4RkRBN0IzNjY1OTQ0 NEM5RUY4RTAeFw0yNjA1MDYwNjM5MTBaFw0yNzA1MDUwNjQ0MTBaMDMxMTAvBgNV BAMTKDc0RTA5MjI0RDQ4N0M0QjdCQTkyRTFCRTIzRTNENzAxMjY5QzdFQjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYpIPh27xyYX8IRbHfjZDvFa9F K7RTSVmq/JNFJhU1tsIe2auGUlfSO2Ewwd/S5bmAHCy8jZ06UO2518EZGiLoPSEt MoG/ZsIJlLlnnXcG3aowHLEZ8V1rAJFwiCJf18Fli6/FRBqaSWtF9SIIbuPRstXE XmjQhva2SGKwpWNDpL9czAKw8vNFeS5JisNAFVG2/USqMVdI8rg3asiVLQ0TY8G6 ZsdTyN10AsCwVOTcShuhm86Zx/SmVN4XCao0G0M7t8NbElG516w0WZ1cWYq4cqsy BK589DAM4sK746/7u8RABKncP+Y4+rXKkOt4K3RIkm2agRVoNt3hQ+nqMPqPAgMB AAGjggIaMIICFjAdBgNVHQ4EFgQUdOCSJNSHxLe6kuG+I+PXASacfrEwHwYDVR0j BBgwFoAU6JNDSjIFja/pdY/aezZllETJ744wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4ODU1MzEyOTUyNTI1MS8wL0U4OTM0MzRBMzIwNThEQUZFOTc1OEZEQTdCMzY2 NTk0NDRDOUVGOEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRTg5MzQzNEEzMjA1OERBRkU5NzU4RkRBN0IzNjY1OTQ0NEM5RUY4RS5jZXIw gZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMDY1NTg4NTUzMTI5NTI1MjUxLzAvMzEzMDMxMmUz MjMzMzIyZTMyMzAzNDJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDMyMzAzNDM3MzYz NS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAmXozDANBgkqhkiG9w0BAQsFAAOCAQEAwykni5ofMtiItOWU OwgZSLkk+pck8c6uDPqLl0W3Az65fuZAFqCxnAEdGfgp4yV8chJebxB8BnVcFH61 4gIAqY2YcWQXC6OiCzfVjpoS1jxTGtQ9o/x5PvA+P305jS7FqC0ko5VFHrA5mTmj KPldMPdDG3rody5Wo5ceFjgsRrKwaSkbDD/IJvFDXKn1bENZXQZ6I2bLoTw3tr1K JtIf7RgxXv31UYf0bMChDa8HqX/npFu4ZVv4a0sH6zTJbkAFeNOO5B2Ou3q5D0xt a9Ve4ebwfUa7FQ3pjMai2u/WGbkb/hNBQypzkicZGNmfXp9d1RrCzHgtfAh4kkwj VUTdQA== -----END CERTIFICATE-----Generated at Wed May 13 14:34:39 2026 by rpki-client