$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065588553129525251/0/3130312e3233322e3231322e302f32322d3234203d3e20323034373635.roa File: 3130312e3233322e3231322e302f32322d3234203d3e20323034373635.roa (raw, json) Hash identifier: ko/m5TIVCqzufkwsT6xUwMjy1+fPPTpqUGw1Er9ICTg= Subject key identifier: 2F:8F:1B:37:5F:20:13:DE:45:47:65:C7:28:CC:F5:A6:26:3C:6E:6F Certificate issuer: /CN=E893434A32058DAFE9758FDA7B36659444C9EF8E Certificate serial: 04CDD22DEE849B4450450CA0BD4668F9B4C4081D Authority key identifier: E8:93:43:4A:32:05:8D:AF:E9:75:8F:DA:7B:36:65:94:44:C9:EF:8E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/3130312e3233322e3231322e302f32322d3234203d3e20323034373635.roa Signing time: Wed 06 May 2026 06:44:25 +0000 ROA not before: Wed 06 May 2026 06:39:25 +0000 ROA not after: Wed 05 May 2027 06:44:25 +0000 asID: 204765 IP address blocks: 101.232.212.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.crl rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:26:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:cd:d2:2d:ee:84:9b:44:50:45:0c:a0:bd:46:68:f9:b4:c4:08:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E893434A32058DAFE9758FDA7B36659444C9EF8E Validity Not Before: May 6 06:39:25 2026 GMT Not After : May 5 06:44:25 2027 GMT Subject: CN=2F8F1B375F2013DE454765C728CCF5A6263C6E6F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:4c:cf:53:09:63:27:06:95:db:21:77:4e:b4: 83:3b:c0:0b:94:8b:bd:6c:70:24:28:4e:92:63:74: c4:8a:d3:31:0e:a6:29:ad:d1:d5:c4:12:a4:3b:94: 5b:53:75:bf:df:15:0b:67:7c:36:8c:e2:79:ea:59: 5d:7e:6c:03:a6:a1:11:3d:c3:5d:78:17:3e:31:ce: 32:a7:ca:72:8b:06:e3:cf:83:7c:41:9f:13:7e:18: bd:ee:7e:2e:79:25:ac:00:21:55:4b:e1:58:8a:99: d6:f1:e9:d6:6a:ac:68:f8:2d:31:2a:9e:18:3a:40: 8c:9b:e9:7c:ae:48:2e:a4:84:ea:e8:38:93:c9:e1: b9:73:2d:c3:c1:f5:54:b1:7b:31:45:8f:af:a2:ce: 9e:cb:2f:5b:1a:8a:9c:28:98:af:2a:69:b6:d9:ce: 38:58:df:00:dc:cb:0c:84:24:b1:a0:67:92:1c:2f: 30:1f:29:7d:6e:ce:5b:51:14:e2:90:3a:51:0e:c5: 48:2c:c0:b2:74:9c:ed:66:7b:7f:82:b6:d7:19:d9: 09:f8:f5:40:5e:e9:44:af:38:09:6d:b9:e9:4e:32: 86:36:54:75:71:a7:e6:4f:b4:fe:29:2a:d4:c3:ea: 93:73:84:a6:df:74:e1:2c:52:23:fb:5c:b7:12:fc: 0b:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:8F:1B:37:5F:20:13:DE:45:47:65:C7:28:CC:F5:A6:26:3C:6E:6F X509v3 Authority Key Identifier: keyid:E8:93:43:4A:32:05:8D:AF:E9:75:8F:DA:7B:36:65:94:44:C9:EF:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/3130312e3233322e3231322e302f32322d3234203d3e20323034373635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.232.212.0/22 Signature Algorithm: sha256WithRSAEncryption ac:ac:3f:2f:d3:b8:32:04:a4:aa:c4:c1:7c:22:ca:96:20:77: 52:98:7b:8c:9d:21:e6:54:9b:b1:79:e6:ce:f4:32:12:8d:e5: 79:47:8c:89:1e:02:74:d7:4e:5f:96:7e:53:f5:08:19:ac:12: 6d:0d:f2:16:10:fe:d3:13:e6:70:21:9a:4b:16:ec:d2:ea:3f: 43:3f:4f:f5:06:5a:98:1c:6b:d6:37:b9:d1:46:9a:92:60:46: db:7e:34:b6:4c:81:7b:4d:fc:37:86:b9:40:a1:6c:b8:d1:35: 01:da:6d:df:5b:dd:b9:6c:44:8b:63:27:35:1f:ed:d2:b0:7d: 3e:bf:cb:85:f9:23:78:3e:59:91:bc:93:57:0e:d9:70:3f:39: 89:ba:fc:18:49:a8:91:c8:7a:db:59:a4:06:de:aa:57:bd:8f: 51:53:dc:7a:19:48:a1:41:b6:8c:03:ad:6a:f3:ae:2b:5f:2c: 3c:05:8f:26:ef:d6:c9:54:6f:74:a8:db:40:db:7b:e8:1f:13: 47:eb:ea:5f:3d:6c:42:dd:74:9f:fd:2b:81:3d:0b:f7:09:1e: 7b:e6:fc:07:5a:8d:d4:44:0f:a5:dd:89:de:52:57:32:f1:d2: f7:ad:d7:ae:74:a6:6d:c3:14:32:a1:7a:76:16:e8:b6:1f:52: 1c:95:e1:29 -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUBM3SLe6Em0RQRQygvUZo+bTECB0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTg5MzQzNEEzMjA1OERBRkU5NzU4RkRBN0IzNjY1OTQ0 NEM5RUY4RTAeFw0yNjA1MDYwNjM5MjVaFw0yNzA1MDUwNjQ0MjVaMDMxMTAvBgNV BAMTKDJGOEYxQjM3NUYyMDEzREU0NTQ3NjVDNzI4Q0NGNUE2MjYzQzZFNkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzTM9TCWMnBpXbIXdOtIM7wAuU i71scCQoTpJjdMSK0zEOpimt0dXEEqQ7lFtTdb/fFQtnfDaM4nnqWV1+bAOmoRE9 w114Fz4xzjKnynKLBuPPg3xBnxN+GL3ufi55JawAIVVL4ViKmdbx6dZqrGj4LTEq nhg6QIyb6XyuSC6khOroOJPJ4blzLcPB9VSxezFFj6+izp7LL1saipwomK8qabbZ zjhY3wDcywyEJLGgZ5IcLzAfKX1uzltRFOKQOlEOxUgswLJ0nO1me3+CttcZ2Qn4 9UBe6USvOAltuelOMoY2VHVxp+ZPtP4pKtTD6pNzhKbfdOEsUiP7XLcS/AsHAgMB AAGjggIaMIICFjAdBgNVHQ4EFgQUL48bN18gE95FR2XHKMz1piY8bm8wHwYDVR0j BBgwFoAU6JNDSjIFja/pdY/aezZllETJ744wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4ODU1MzEyOTUyNTI1MS8wL0U4OTM0MzRBMzIwNThEQUZFOTc1OEZEQTdCMzY2 NTk0NDRDOUVGOEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRTg5MzQzNEEzMjA1OERBRkU5NzU4RkRBN0IzNjY1OTQ0NEM5RUY4RS5jZXIw gZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMDY1NTg4NTUzMTI5NTI1MjUxLzAvMzEzMDMxMmUz MjMzMzIyZTMyMzEzMjJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDMyMzAzNDM3MzYz NS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAmXo1DANBgkqhkiG9w0BAQsFAAOCAQEArKw/L9O4MgSkqsTB fCLKliB3Uph7jJ0h5lSbsXnmzvQyEo3leUeMiR4CdNdOX5Z+U/UIGawSbQ3yFhD+ 0xPmcCGaSxbs0uo/Qz9P9QZamBxr1je50UaakmBG2340tkyBe038N4a5QKFsuNE1 Adpt31vduWxEi2MnNR/t0rB9Pr/LhfkjeD5ZkbyTVw7ZcD85ibr8GEmokch621mk Bt6qV72PUVPcehlIoUG2jAOtavOuK18sPAWPJu/WyVRvdKjbQNt76B8TR+vqXz1s Qt10n/0rgT0L9wkee+b8B1qN1EQPpd2J3lJXMvHS963XrnSmbcMUMqF6dhboth9S HJXhKQ== -----END CERTIFICATE-----Generated at Wed May 13 14:56:35 2026 by rpki-client