$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065588553129525251/0/3132332e39382e352e302f32342d3234203d3e20313938343836.roa File: 3132332e39382e352e302f32342d3234203d3e20313938343836.roa (raw, json) Hash identifier: V7VFwT9HaXbbxqlXFGhvoXtIJnC4OcdsAULJWYCC97s= Subject key identifier: C3:11:19:C5:A2:AA:E3:4B:F3:38:21:EE:F7:DB:5B:0D:61:D1:1D:CC Certificate issuer: /CN=E893434A32058DAFE9758FDA7B36659444C9EF8E Certificate serial: 041D060E9DAEAE0F4F29890FD410BA779754143B Authority key identifier: E8:93:43:4A:32:05:8D:AF:E9:75:8F:DA:7B:36:65:94:44:C9:EF:8E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/3132332e39382e352e302f32342d3234203d3e20313938343836.roa Signing time: Wed 06 May 2026 06:18:35 +0000 ROA not before: Wed 06 May 2026 06:13:35 +0000 ROA not after: Wed 05 May 2027 06:18:35 +0000 asID: 198486 IP address blocks: 123.98.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.crl rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:26:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:1d:06:0e:9d:ae:ae:0f:4f:29:89:0f:d4:10:ba:77:97:54:14:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E893434A32058DAFE9758FDA7B36659444C9EF8E Validity Not Before: May 6 06:13:35 2026 GMT Not After : May 5 06:18:35 2027 GMT Subject: CN=C31119C5A2AAE34BF33821EEF7DB5B0D61D11DCC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:23:73:d1:a7:1a:e3:b6:e0:f1:6b:ad:66:4c: 36:b2:23:dc:0b:0b:36:b6:62:cd:40:ac:60:25:42: c3:e6:e2:0c:15:bb:74:9e:4f:5c:22:03:99:61:98: eb:6e:ee:6d:de:3e:44:b9:0c:fc:67:c7:ca:2c:57: 2f:74:c9:0a:35:fa:9e:75:35:5c:2b:ca:9f:f6:b4: 66:c2:f8:93:75:41:43:37:90:c1:0b:64:96:59:ac: b0:7c:05:e4:1c:b3:7b:ab:6f:0c:f9:c0:9f:79:b9: 6e:79:6f:a8:57:5b:af:36:cd:81:01:6a:ef:22:ee: bd:46:93:89:5a:1a:a1:47:65:47:af:6d:d1:bb:50: 4d:29:25:c3:f6:2b:91:c7:e8:29:b2:42:2a:2f:d1: 1a:9d:b7:a5:f8:20:66:25:72:a6:42:e7:13:4d:bd: d5:a1:10:7d:cb:70:79:6b:c4:ee:f1:e9:51:f0:31: 38:59:36:32:97:42:50:26:f4:cb:4c:6b:be:e1:17: c9:73:b5:b8:6e:4b:d2:a6:d2:bb:83:99:3a:03:38: c6:34:66:86:90:aa:c4:eb:c2:27:1c:a6:51:0f:c5: 90:39:85:14:da:99:aa:01:81:dc:7c:e7:7a:fc:0a: 44:14:97:fa:81:bd:7f:6c:08:de:15:7f:09:87:e9: c9:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:11:19:C5:A2:AA:E3:4B:F3:38:21:EE:F7:DB:5B:0D:61:D1:1D:CC X509v3 Authority Key Identifier: keyid:E8:93:43:4A:32:05:8D:AF:E9:75:8F:DA:7B:36:65:94:44:C9:EF:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/3132332e39382e352e302f32342d3234203d3e20313938343836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.98.5.0/24 Signature Algorithm: sha256WithRSAEncryption 64:9a:a0:45:0a:f1:ff:2b:02:55:88:1b:16:bb:7d:a0:fc:6b: f4:0e:4b:a7:25:9f:7e:06:30:66:08:a2:1e:31:a1:4a:c8:5a: 7f:03:40:61:4e:25:c4:30:6f:51:a2:eb:75:59:6f:71:2c:ea: f0:56:b0:29:01:5c:1b:8d:8b:5e:c9:2b:e4:8a:71:80:8c:75: 73:60:fc:da:93:ac:d9:49:e1:24:78:ac:4a:d9:11:4b:6f:14: ff:ea:aa:5b:35:3a:71:cd:cc:d5:07:4d:a1:f5:b4:0d:a2:9f: 37:f3:91:8a:c1:1f:59:e2:75:47:cf:a3:19:29:66:7a:c9:3a: b5:87:68:16:1d:ec:60:14:07:51:13:38:e9:31:c2:7f:8b:cb: ea:f1:a6:77:c5:92:c3:54:b7:4d:73:32:c2:2b:b8:cf:6b:89: 78:05:58:bc:3e:a1:17:bd:22:ee:3d:a5:75:07:48:4b:98:bc: 8c:af:3d:31:32:47:26:9e:8c:9e:81:43:c1:7a:d9:af:c2:ef: 2d:35:07:21:ca:4d:aa:33:6c:cd:e8:a5:30:4d:cf:0b:1b:52: 67:5f:c2:53:98:18:00:bc:a2:ee:8f:f2:8c:cc:44:f6:cd:88: f3:59:c1:f2:84:f1:0e:ae:60:4c:46:e3:57:09:ef:99:0e:7e: bd:15:97:bd -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUBB0GDp2urg9PKYkP1BC6d5dUFDswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTg5MzQzNEEzMjA1OERBRkU5NzU4RkRBN0IzNjY1OTQ0 NEM5RUY4RTAeFw0yNjA1MDYwNjEzMzVaFw0yNzA1MDUwNjE4MzVaMDMxMTAvBgNV BAMTKEMzMTExOUM1QTJBQUUzNEJGMzM4MjFFRUY3REI1QjBENjFEMTFEQ0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKI3PRpxrjtuDxa61mTDayI9wL Cza2Ys1ArGAlQsPm4gwVu3SeT1wiA5lhmOtu7m3ePkS5DPxnx8osVy90yQo1+p51 NVwryp/2tGbC+JN1QUM3kMELZJZZrLB8BeQcs3urbwz5wJ95uW55b6hXW682zYEB au8i7r1Gk4laGqFHZUevbdG7UE0pJcP2K5HH6CmyQiov0Rqdt6X4IGYlcqZC5xNN vdWhEH3LcHlrxO7x6VHwMThZNjKXQlAm9MtMa77hF8lztbhuS9Km0ruDmToDOMY0 ZoaQqsTrwiccplEPxZA5hRTamaoBgdx853r8CkQUl/qBvX9sCN4VfwmH6ckZAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUwxEZxaKq40vzOCHu99tbDWHRHcwwHwYDVR0j BBgwFoAU6JNDSjIFja/pdY/aezZllETJ744wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4ODU1MzEyOTUyNTI1MS8wL0U4OTM0MzRBMzIwNThEQUZFOTc1OEZEQTdCMzY2 NTk0NDRDOUVGOEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRTg5MzQzNEEzMjA1OERBRkU5NzU4RkRBN0IzNjY1OTQ0NEM5RUY4RS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTg4NTUzMTI5NTI1MjUxLzAvMzEzMjMzMmUzOTM4 MmUzNTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzkzODM0MzgzNi5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAHtiBTANBgkqhkiG9w0BAQsFAAOCAQEAZJqgRQrx/ysCVYgbFrt9oPxr9A5L pyWffgYwZgiiHjGhSshafwNAYU4lxDBvUaLrdVlvcSzq8FawKQFcG42LXskr5Ipx gIx1c2D82pOs2UnhJHisStkRS28U/+qqWzU6cc3M1QdNofW0DaKfN/ORisEfWeJ1 R8+jGSlmesk6tYdoFh3sYBQHURM46THCf4vL6vGmd8WSw1S3TXMywiu4z2uJeAVY vD6hF70i7j2ldQdIS5i8jK89MTJHJp6MnoFDwXrZr8LvLTUHIcpNqjNszeilME3P CxtSZ1/CU5gYALyi7o/yjMxE9s2I81nB8oTxDq5gTEbjVwnvmQ5+vRWXvQ== -----END CERTIFICATE-----Generated at Wed May 13 12:18:08 2026 by rpki-client