$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065588553129525251/0/3132332e39382e372e302f32342d3234203d3e20313938343836.roa File: 3132332e39382e372e302f32342d3234203d3e20313938343836.roa (raw, json) Hash identifier: rSllA1GfIavCBSRNchvQGTSDgg1ZdCtlv39Y36IM/RA= Subject key identifier: 1B:52:C1:83:94:C7:06:5D:FB:EB:FA:7A:99:7B:B5:DA:32:D3:94:F8 Certificate issuer: /CN=E893434A32058DAFE9758FDA7B36659444C9EF8E Certificate serial: 214B10E12EDAAB1FD8659A8BC9E02C7D14D953E8 Authority key identifier: E8:93:43:4A:32:05:8D:AF:E9:75:8F:DA:7B:36:65:94:44:C9:EF:8E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/3132332e39382e372e302f32342d3234203d3e20313938343836.roa Signing time: Wed 06 May 2026 06:18:50 +0000 ROA not before: Wed 06 May 2026 06:13:50 +0000 ROA not after: Wed 05 May 2027 06:18:50 +0000 asID: 198486 IP address blocks: 123.98.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.crl rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:26:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:4b:10:e1:2e:da:ab:1f:d8:65:9a:8b:c9:e0:2c:7d:14:d9:53:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E893434A32058DAFE9758FDA7B36659444C9EF8E Validity Not Before: May 6 06:13:50 2026 GMT Not After : May 5 06:18:50 2027 GMT Subject: CN=1B52C18394C7065DFBEBFA7A997BB5DA32D394F8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:da:c9:36:98:c9:8a:9f:b9:7d:2d:21:b2:9c: 1d:7a:df:6e:1f:15:cf:7a:24:11:60:fb:2c:c4:b3: 62:ce:37:05:f9:78:17:69:09:87:53:8b:44:db:1a: 73:36:4a:ad:2f:3f:4a:e6:d5:67:01:1b:69:7e:60: 0c:08:10:bc:b4:93:5b:9f:98:05:fb:e2:36:57:0e: 9b:0f:41:58:52:fc:87:d2:73:e6:16:b8:f0:a0:99: 9e:4f:74:29:85:cc:68:ca:98:1f:30:d3:87:46:e8: e8:37:2e:ae:57:44:dd:0b:b6:86:b7:54:19:5c:82: 5a:2f:1d:c7:07:37:26:70:1f:64:d2:db:fe:53:00: e5:9f:77:cb:30:55:a0:08:03:ee:6c:62:f7:d0:f2: 90:45:e9:d2:61:4b:e3:1f:b8:49:4f:ac:c8:05:b3: c8:b8:09:e6:b5:64:8f:08:e8:5c:13:81:43:08:46: e1:c8:45:e8:b5:ea:45:e4:bf:25:e3:61:f9:0c:5d: c6:23:f9:d7:e5:70:b0:a8:8f:37:3a:ec:0e:cc:21: 3e:bb:aa:5c:f6:f8:52:7d:ad:3a:44:ad:00:ac:41: 35:58:5b:bc:5a:b6:fe:3a:99:6d:d5:25:39:ee:c6: da:fe:b4:3f:09:fe:c0:1a:dd:2a:48:2d:fa:91:6e: 48:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:52:C1:83:94:C7:06:5D:FB:EB:FA:7A:99:7B:B5:DA:32:D3:94:F8 X509v3 Authority Key Identifier: keyid:E8:93:43:4A:32:05:8D:AF:E9:75:8F:DA:7B:36:65:94:44:C9:EF:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/3132332e39382e372e302f32342d3234203d3e20313938343836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.98.7.0/24 Signature Algorithm: sha256WithRSAEncryption 67:d3:22:88:28:56:27:a1:b1:99:73:f0:73:64:5e:f5:72:bd: c3:f6:90:a1:5e:bf:23:d5:ad:6b:db:2f:d7:7f:e4:ad:a1:20: 0f:46:f7:63:0c:c0:a1:9c:79:a4:b2:e3:e7:84:8a:18:3c:33: d5:8d:b0:1b:fc:56:aa:05:b2:6d:38:ab:cb:a1:d2:9a:88:38: 40:18:1d:60:93:2e:9f:4a:89:d2:5b:a4:82:66:75:1c:96:a6: 25:6b:43:78:86:8c:c6:6e:80:6f:11:dc:29:79:05:7f:21:a0: d4:71:cd:10:82:9e:06:e7:1b:97:43:0b:9d:c2:33:bf:5a:67: 0c:51:12:43:7a:d3:25:0c:91:0a:cd:ee:36:8b:66:44:88:18: 71:10:cc:47:f6:28:96:09:51:87:54:a0:4f:ec:f2:6b:cb:96: 83:72:6d:26:0c:58:5d:52:9c:41:2d:55:f6:19:b6:04:15:57: be:80:36:86:00:c5:cd:8f:83:62:12:5d:3e:f8:00:94:74:e5: b2:3f:f3:13:e9:d0:ed:61:4c:d6:4a:d5:69:3e:8b:a8:ee:98: b1:39:42:f5:cf:be:5b:d6:09:0c:cf:ff:e5:34:b3:b3:1a:ba: e0:dc:c4:37:b2:ff:8d:32:1e:10:53:c9:09:7a:8f:26:27:86: a9:e2:69:9e -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUIUsQ4S7aqx/YZZqLyeAsfRTZU+gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTg5MzQzNEEzMjA1OERBRkU5NzU4RkRBN0IzNjY1OTQ0 NEM5RUY4RTAeFw0yNjA1MDYwNjEzNTBaFw0yNzA1MDUwNjE4NTBaMDMxMTAvBgNV BAMTKDFCNTJDMTgzOTRDNzA2NURGQkVCRkE3QTk5N0JCNURBMzJEMzk0RjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCf2sk2mMmKn7l9LSGynB16324f Fc96JBFg+yzEs2LONwX5eBdpCYdTi0TbGnM2Sq0vP0rm1WcBG2l+YAwIELy0k1uf mAX74jZXDpsPQVhS/IfSc+YWuPCgmZ5PdCmFzGjKmB8w04dG6Og3Lq5XRN0Ltoa3 VBlcglovHccHNyZwH2TS2/5TAOWfd8swVaAIA+5sYvfQ8pBF6dJhS+MfuElPrMgF s8i4Cea1ZI8I6FwTgUMIRuHIRei16kXkvyXjYfkMXcYj+dflcLCojzc67A7MIT67 qlz2+FJ9rTpErQCsQTVYW7xatv46mW3VJTnuxtr+tD8J/sAa3SpILfqRbkj1AgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUG1LBg5THBl376/p6mXu12jLTlPgwHwYDVR0j BBgwFoAU6JNDSjIFja/pdY/aezZllETJ744wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4ODU1MzEyOTUyNTI1MS8wL0U4OTM0MzRBMzIwNThEQUZFOTc1OEZEQTdCMzY2 NTk0NDRDOUVGOEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRTg5MzQzNEEzMjA1OERBRkU5NzU4RkRBN0IzNjY1OTQ0NEM5RUY4RS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTg4NTUzMTI5NTI1MjUxLzAvMzEzMjMzMmUzOTM4 MmUzNzJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzkzODM0MzgzNi5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAHtiBzANBgkqhkiG9w0BAQsFAAOCAQEAZ9MiiChWJ6GxmXPwc2Re9XK9w/aQ oV6/I9Wta9sv13/kraEgD0b3YwzAoZx5pLLj54SKGDwz1Y2wG/xWqgWybTiry6HS mog4QBgdYJMun0qJ0lukgmZ1HJamJWtDeIaMxm6AbxHcKXkFfyGg1HHNEIKeBucb l0MLncIzv1pnDFESQ3rTJQyRCs3uNotmRIgYcRDMR/YolglRh1SgT+zya8uWg3Jt JgxYXVKcQS1V9hm2BBVXvoA2hgDFzY+DYhJdPvgAlHTlsj/zE+nQ7WFM1krVaT6L qO6YsTlC9c++W9YJDM//5TSzsxq64NzEN7L/jTIeEFPJCXqPJieGqeJpng== -----END CERTIFICATE-----Generated at Wed May 13 11:59:29 2026 by rpki-client