$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065588553129525251/0/3130312e3233322e3232302e302f32322d3234203d3e20323034373635.roa File: 3130312e3233322e3232302e302f32322d3234203d3e20323034373635.roa (raw, json) Hash identifier: BiRop7oqD/sTY1hEP/f7pfIzuabR97aF0tQYYyDMF5Y= Subject key identifier: 29:3B:F2:12:98:FE:0B:5E:AE:C9:43:77:3C:97:1C:A3:0E:12:42:4B Certificate issuer: /CN=E893434A32058DAFE9758FDA7B36659444C9EF8E Certificate serial: 42A8F480C2DC90BB2995849B677D1C8D972F82FF Authority key identifier: E8:93:43:4A:32:05:8D:AF:E9:75:8F:DA:7B:36:65:94:44:C9:EF:8E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/3130312e3233322e3232302e302f32322d3234203d3e20323034373635.roa Signing time: Wed 06 May 2026 06:44:40 +0000 ROA not before: Wed 06 May 2026 06:39:40 +0000 ROA not after: Wed 05 May 2027 06:44:40 +0000 asID: 204765 IP address blocks: 101.232.220.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.crl rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:26:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:a8:f4:80:c2:dc:90:bb:29:95:84:9b:67:7d:1c:8d:97:2f:82:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E893434A32058DAFE9758FDA7B36659444C9EF8E Validity Not Before: May 6 06:39:40 2026 GMT Not After : May 5 06:44:40 2027 GMT Subject: CN=293BF21298FE0B5EAEC943773C971CA30E12424B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:ab:ff:5f:c6:29:39:bd:80:e5:ed:2e:42:87: 87:1e:34:bc:94:97:79:94:b9:6f:8d:59:3c:40:ee: fb:89:53:4d:6d:e7:c6:fb:c1:18:06:ff:dd:f6:6f: 5f:4a:6c:c0:63:5c:39:05:3c:67:d6:88:0e:fd:89: c6:bf:6f:cc:0b:38:17:e9:81:15:93:8c:2b:d9:07: 1a:93:05:15:32:d3:27:34:2d:b4:8a:d1:85:65:a0: 5c:41:29:5e:10:2e:49:e5:be:06:21:56:e4:c4:f7: e5:08:15:92:70:a0:5b:4b:70:ad:bd:4a:8f:a3:80: 7a:bb:e9:60:e8:66:5c:52:b3:06:b7:a0:26:21:7b: 4a:4a:9e:eb:38:26:80:b4:15:3b:1c:79:10:2f:74: d3:ed:92:a7:5e:20:43:95:64:43:ff:69:81:bb:93: 7e:6e:df:a4:97:7d:39:35:cf:19:68:93:be:77:49: a9:c9:5a:e0:d6:92:4e:92:c3:40:db:e2:be:83:21: 52:14:ea:59:f1:23:3f:b8:b6:d6:e0:40:52:75:cc: 07:48:5d:70:d9:6a:b8:81:04:41:01:94:3e:a1:e1: ef:9a:58:ff:38:03:f4:7b:a5:32:65:e9:41:0e:b6: 9e:2a:32:91:ee:eb:3f:62:dc:2e:33:60:66:a9:2b: 68:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:3B:F2:12:98:FE:0B:5E:AE:C9:43:77:3C:97:1C:A3:0E:12:42:4B X509v3 Authority Key Identifier: keyid:E8:93:43:4A:32:05:8D:AF:E9:75:8F:DA:7B:36:65:94:44:C9:EF:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/3130312e3233322e3232302e302f32322d3234203d3e20323034373635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.232.220.0/22 Signature Algorithm: sha256WithRSAEncryption 02:ab:dc:cb:1e:3d:4b:74:60:15:be:75:d9:b4:8c:41:5a:03: d6:7f:7e:4e:53:11:b4:93:cf:69:ce:f1:20:3d:60:ca:13:4b: a1:9a:f9:8e:83:c7:58:71:12:a6:0a:12:95:37:4d:2a:d4:ef: 13:93:4e:9a:a4:4a:39:1c:a9:ce:55:35:7d:e6:53:51:ef:a3: d9:b4:55:4f:e8:07:b1:a1:a3:57:cb:11:9d:21:52:e0:86:b9: d5:ca:ce:8b:9b:86:85:4a:99:67:2a:a3:87:38:0a:a5:04:78: 22:db:36:8c:92:3c:7a:c5:d1:47:9d:83:3f:60:74:4d:41:d3: bc:32:41:ce:c2:61:70:44:52:23:ec:a7:f7:cf:71:a9:ce:60: 17:42:b1:1d:ea:4e:7f:1e:29:96:46:26:b9:71:4a:c6:bd:88: 86:a3:ec:6e:72:65:b2:06:96:b4:64:ab:07:2d:ef:8f:6b:0b: 97:19:48:5d:da:3f:6b:99:53:fe:ee:5c:67:ce:fb:78:78:2b: e9:91:c4:ac:f0:ef:b3:34:3f:9d:2d:87:98:8c:51:98:22:f1: d9:c4:96:13:9c:3c:76:3f:21:13:5c:4a:07:85:fe:3f:93:3a: 32:06:01:38:40:94:ca:40:a2:1f:7a:4d:cb:a2:8c:86:34:94: 2b:09:00:df -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUQqj0gMLckLsplYSbZ30cjZcvgv8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTg5MzQzNEEzMjA1OERBRkU5NzU4RkRBN0IzNjY1OTQ0 NEM5RUY4RTAeFw0yNjA1MDYwNjM5NDBaFw0yNzA1MDUwNjQ0NDBaMDMxMTAvBgNV BAMTKDI5M0JGMjEyOThGRTBCNUVBRUM5NDM3NzNDOTcxQ0EzMEUxMjQyNEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlq/9fxik5vYDl7S5Ch4ceNLyU l3mUuW+NWTxA7vuJU01t58b7wRgG/932b19KbMBjXDkFPGfWiA79ica/b8wLOBfp gRWTjCvZBxqTBRUy0yc0LbSK0YVloFxBKV4QLknlvgYhVuTE9+UIFZJwoFtLcK29 So+jgHq76WDoZlxSswa3oCYhe0pKnus4JoC0FTsceRAvdNPtkqdeIEOVZEP/aYG7 k35u36SXfTk1zxlok753SanJWuDWkk6Sw0Db4r6DIVIU6lnxIz+4ttbgQFJ1zAdI XXDZariBBEEBlD6h4e+aWP84A/R7pTJl6UEOtp4qMpHu6z9i3C4zYGapK2jNAgMB AAGjggIaMIICFjAdBgNVHQ4EFgQUKTvyEpj+C16uyUN3PJccow4SQkswHwYDVR0j BBgwFoAU6JNDSjIFja/pdY/aezZllETJ744wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4ODU1MzEyOTUyNTI1MS8wL0U4OTM0MzRBMzIwNThEQUZFOTc1OEZEQTdCMzY2 NTk0NDRDOUVGOEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRTg5MzQzNEEzMjA1OERBRkU5NzU4RkRBN0IzNjY1OTQ0NEM5RUY4RS5jZXIw gZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMDY1NTg4NTUzMTI5NTI1MjUxLzAvMzEzMDMxMmUz MjMzMzIyZTMyMzIzMDJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDMyMzAzNDM3MzYz NS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAmXo3DANBgkqhkiG9w0BAQsFAAOCAQEAAqvcyx49S3RgFb51 2bSMQVoD1n9+TlMRtJPPac7xID1gyhNLoZr5joPHWHESpgoSlTdNKtTvE5NOmqRK ORypzlU1feZTUe+j2bRVT+gHsaGjV8sRnSFS4Ia51crOi5uGhUqZZyqjhzgKpQR4 Its2jJI8esXRR52DP2B0TUHTvDJBzsJhcERSI+yn989xqc5gF0KxHepOfx4plkYm uXFKxr2IhqPsbnJlsgaWtGSrBy3vj2sLlxlIXdo/a5lT/u5cZ877eHgr6ZHErPDv szQ/nS2HmIxRmCLx2cSWE5w8dj8hE1xKB4X+P5M6MgYBOECUykCiH3pNy6KMhjSU KwkA3w== -----END CERTIFICATE-----Generated at Wed May 13 14:59:34 2026 by rpki-client