$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065588553129525251/0/3130312e3233322e3232382e302f32322d3234203d3e20323034373635.roa File: 3130312e3233322e3232382e302f32322d3234203d3e20323034373635.roa (raw, json) Hash identifier: UIxnOlKt35yHKJhSwkz9giyLFxwmBgn22Xsw1KyNTC0= Subject key identifier: 8E:D7:B7:6D:B7:A3:8A:22:84:02:BE:D9:33:8B:28:DA:78:81:B6:1A Certificate issuer: /CN=E893434A32058DAFE9758FDA7B36659444C9EF8E Certificate serial: 4C025E8223F861DAFA73EFE86A2DF5319F70A3AE Authority key identifier: E8:93:43:4A:32:05:8D:AF:E9:75:8F:DA:7B:36:65:94:44:C9:EF:8E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/3130312e3233322e3232382e302f32322d3234203d3e20323034373635.roa Signing time: Wed 06 May 2026 06:44:52 +0000 ROA not before: Wed 06 May 2026 06:39:52 +0000 ROA not after: Wed 05 May 2027 06:44:52 +0000 asID: 204765 IP address blocks: 101.232.228.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.crl rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:26:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:02:5e:82:23:f8:61:da:fa:73:ef:e8:6a:2d:f5:31:9f:70:a3:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E893434A32058DAFE9758FDA7B36659444C9EF8E Validity Not Before: May 6 06:39:52 2026 GMT Not After : May 5 06:44:52 2027 GMT Subject: CN=8ED7B76DB7A38A228402BED9338B28DA7881B61A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:a8:a2:3b:4b:69:ea:f0:08:de:2e:c3:f9:1f: f2:e5:b0:d8:4f:f2:61:a0:7f:d3:37:37:26:87:1c: 70:80:55:26:6e:00:63:61:fd:c2:30:22:1c:0b:90: ac:fd:6a:ef:d3:84:de:ed:fc:09:e5:0b:9e:33:2b: 23:63:be:01:31:c9:86:e2:75:70:11:07:fa:15:55: c7:48:66:f3:b6:a2:0b:67:63:3f:97:d9:30:58:6b: 79:8f:4e:56:82:c7:00:53:4f:37:e4:ea:34:32:a1: 9a:8d:ec:96:9a:0b:0f:0c:34:97:f2:d2:d3:82:7b: fe:db:3e:f1:ed:15:68:71:69:04:75:14:52:7e:b9: 43:08:d1:f6:9b:de:8f:92:93:29:3e:1f:af:58:eb: cf:98:71:fd:d2:f0:c5:67:d4:1e:f9:86:2b:58:db: ec:c4:72:43:7e:bd:a0:2f:ef:9d:84:e7:7a:16:07: 58:49:ed:72:0a:45:7a:8c:ad:77:51:3c:40:9e:65: aa:48:4f:69:93:e6:29:ff:b6:1c:62:2e:d1:bb:8b: 34:71:d7:bd:e6:4a:e4:70:59:a3:47:31:c1:6f:64: f6:c1:69:ae:57:b9:9d:89:8e:94:30:05:fb:e3:d7: 4b:35:31:41:ce:27:cd:8f:90:d1:79:d4:dd:09:18: cf:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:D7:B7:6D:B7:A3:8A:22:84:02:BE:D9:33:8B:28:DA:78:81:B6:1A X509v3 Authority Key Identifier: keyid:E8:93:43:4A:32:05:8D:AF:E9:75:8F:DA:7B:36:65:94:44:C9:EF:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/3130312e3233322e3232382e302f32322d3234203d3e20323034373635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.232.228.0/22 Signature Algorithm: sha256WithRSAEncryption 18:28:9d:51:9e:4e:b1:48:0c:41:af:c7:d5:d4:ef:11:a7:dc: 7b:3b:91:bf:54:3c:16:d3:a2:a7:63:3f:c0:f4:80:a7:b7:45: b0:9c:5a:14:dc:b9:c5:3b:92:ac:13:0d:98:b3:97:c4:fe:67: ec:3f:a5:b7:12:e7:79:71:42:c2:f5:7c:96:69:ad:67:7e:fb: aa:92:cb:86:69:0c:15:f7:3f:b8:06:17:ec:15:d8:75:45:4b: ab:af:24:5c:4e:4a:6a:5d:ad:15:65:2d:f1:5a:62:10:6d:44: 98:14:3c:f0:1a:ad:42:64:40:0d:59:44:1a:f8:72:fa:d5:bc: 88:05:32:85:3b:36:ef:d6:c2:32:aa:e4:58:4c:08:2d:f0:58: 2a:9a:88:f0:7a:3d:e0:8e:45:b9:96:2b:70:3f:fe:bf:69:ba: 41:30:c3:e8:25:e4:af:57:f8:44:cc:55:95:cf:58:e2:3a:c0: a1:a4:01:0d:07:39:4e:d8:24:e6:a7:31:e8:72:9e:c0:6a:81: 4c:61:43:72:de:67:c8:79:cf:61:af:ba:51:30:f9:70:d7:b9: 95:f7:9f:1d:66:bd:c6:19:6a:d7:22:0b:28:d9:d5:9a:11:91: 5f:27:e2:bd:f5:fc:f0:98:50:6e:9a:75:d4:58:b4:0c:ec:7c: 16:15:64:fc -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUTAJegiP4Ydr6c+/oai31MZ9wo64wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTg5MzQzNEEzMjA1OERBRkU5NzU4RkRBN0IzNjY1OTQ0 NEM5RUY4RTAeFw0yNjA1MDYwNjM5NTJaFw0yNzA1MDUwNjQ0NTJaMDMxMTAvBgNV BAMTKDhFRDdCNzZEQjdBMzhBMjI4NDAyQkVEOTMzOEIyOERBNzg4MUI2MUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpqKI7S2nq8AjeLsP5H/LlsNhP 8mGgf9M3NyaHHHCAVSZuAGNh/cIwIhwLkKz9au/ThN7t/AnlC54zKyNjvgExyYbi dXARB/oVVcdIZvO2ogtnYz+X2TBYa3mPTlaCxwBTTzfk6jQyoZqN7JaaCw8MNJfy 0tOCe/7bPvHtFWhxaQR1FFJ+uUMI0fab3o+Skyk+H69Y68+Ycf3S8MVn1B75hitY 2+zEckN+vaAv752E53oWB1hJ7XIKRXqMrXdRPECeZapIT2mT5in/thxiLtG7izRx 173mSuRwWaNHMcFvZPbBaa5XuZ2JjpQwBfvj10s1MUHOJ82PkNF51N0JGM+VAgMB AAGjggIaMIICFjAdBgNVHQ4EFgQUjte3bbejiiKEAr7ZM4so2niBthowHwYDVR0j BBgwFoAU6JNDSjIFja/pdY/aezZllETJ744wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4ODU1MzEyOTUyNTI1MS8wL0U4OTM0MzRBMzIwNThEQUZFOTc1OEZEQTdCMzY2 NTk0NDRDOUVGOEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRTg5MzQzNEEzMjA1OERBRkU5NzU4RkRBN0IzNjY1OTQ0NEM5RUY4RS5jZXIw gZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMDY1NTg4NTUzMTI5NTI1MjUxLzAvMzEzMDMxMmUz MjMzMzIyZTMyMzIzODJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDMyMzAzNDM3MzYz NS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAmXo5DANBgkqhkiG9w0BAQsFAAOCAQEAGCidUZ5OsUgMQa/H 1dTvEafcezuRv1Q8FtOip2M/wPSAp7dFsJxaFNy5xTuSrBMNmLOXxP5n7D+ltxLn eXFCwvV8lmmtZ377qpLLhmkMFfc/uAYX7BXYdUVLq68kXE5Kal2tFWUt8VpiEG1E mBQ88BqtQmRADVlEGvhy+tW8iAUyhTs279bCMqrkWEwILfBYKpqI8Ho94I5FuZYr cD/+v2m6QTDD6CXkr1f4RMxVlc9Y4jrAoaQBDQc5Ttgk5qcx6HKewGqBTGFDct5n yHnPYa+6UTD5cNe5lfefHWa9xhlq1yILKNnVmhGRXyfivfX88JhQbpp11Fi0DOx8 FhVk/A== -----END CERTIFICATE-----Generated at Wed May 13 15:03:38 2026 by rpki-client