$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065588553129525251/0/3231312e3134392e36382e302f32322d3234203d3e20323034373635.roa File: 3231312e3134392e36382e302f32322d3234203d3e20323034373635.roa (raw, json) Hash identifier: 2ZVeTPFH7lj3j8I3eTzElo2kXrwPokdZgXF0/iTQe3s= Subject key identifier: A1:EF:6F:30:A7:EE:09:A6:CD:08:96:7D:F0:FD:AE:A6:DB:E9:EF:12 Certificate issuer: /CN=E893434A32058DAFE9758FDA7B36659444C9EF8E Certificate serial: 2906BAF004790CD8A0FB7608AA1BDEC5D943DD76 Authority key identifier: E8:93:43:4A:32:05:8D:AF:E9:75:8F:DA:7B:36:65:94:44:C9:EF:8E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/3231312e3134392e36382e302f32322d3234203d3e20323034373635.roa Signing time: Wed 06 May 2026 06:41:41 +0000 ROA not before: Wed 06 May 2026 06:36:41 +0000 ROA not after: Wed 05 May 2027 06:41:41 +0000 asID: 204765 IP address blocks: 211.149.68.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.crl rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:26:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:06:ba:f0:04:79:0c:d8:a0:fb:76:08:aa:1b:de:c5:d9:43:dd:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E893434A32058DAFE9758FDA7B36659444C9EF8E Validity Not Before: May 6 06:36:41 2026 GMT Not After : May 5 06:41:41 2027 GMT Subject: CN=A1EF6F30A7EE09A6CD08967DF0FDAEA6DBE9EF12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:b3:ed:d0:b7:72:eb:8c:15:2f:bf:85:b4:73: af:31:b6:b5:d4:36:92:50:0d:2f:92:20:0d:74:95: 7d:44:6c:80:5f:b0:90:09:32:1e:39:3e:b6:74:1b: e9:87:6c:f2:ea:60:70:d9:27:16:89:84:55:5a:bd: 76:d5:f1:89:f4:a5:e8:9d:72:a7:75:e7:e1:2c:40: f8:01:b3:b6:60:e0:12:be:28:54:cd:75:ac:b5:10: ae:d3:0f:12:bf:16:8e:54:b0:0c:ea:af:11:04:d8: 71:42:99:d3:22:ae:36:a4:88:d7:25:34:49:c1:36: ed:45:64:db:35:e7:28:c6:e0:d5:4d:50:39:24:72: eb:07:f6:d6:93:67:9b:92:5e:43:67:91:f3:9e:f8: d0:93:71:c9:71:2e:a7:d1:49:3a:aa:83:f3:1c:aa: de:58:87:39:41:58:3b:3e:8b:be:11:6f:87:5a:90: ad:a3:4b:8b:ec:00:8f:8b:30:b0:2d:21:e9:c1:6d: b8:4d:70:34:4a:c3:b1:39:6b:1e:c0:4c:2d:98:79: d0:1f:7d:4f:ab:ff:40:5d:98:ff:f3:1c:43:e2:de: a3:84:ed:ae:dd:ac:6e:58:49:b9:01:b1:b9:4d:f7: e4:c3:7c:9a:f2:4e:23:f0:94:e3:15:8d:f4:05:76: 40:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:EF:6F:30:A7:EE:09:A6:CD:08:96:7D:F0:FD:AE:A6:DB:E9:EF:12 X509v3 Authority Key Identifier: keyid:E8:93:43:4A:32:05:8D:AF:E9:75:8F:DA:7B:36:65:94:44:C9:EF:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/3231312e3134392e36382e302f32322d3234203d3e20323034373635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 211.149.68.0/22 Signature Algorithm: sha256WithRSAEncryption 18:19:90:ec:8d:ea:32:fc:63:ef:f6:1f:6a:c5:64:4e:80:44: ff:ce:7d:e0:32:2e:7a:d8:49:0b:65:09:2b:e3:d5:26:e0:06: 29:af:15:24:56:d9:c5:cc:f7:da:9f:b8:bb:9c:6d:8e:7a:ed: 32:b5:04:b7:09:dc:f2:f4:ea:74:70:dd:bc:af:cc:4d:ab:00: e5:e8:3b:82:54:4c:6f:af:26:57:48:e0:7b:aa:c6:6d:9a:86: 68:70:8f:d0:2b:61:e4:5d:46:c6:79:fc:5a:23:0a:ef:d7:40: c7:24:37:42:53:c3:63:55:ad:d1:8b:ce:99:c4:94:d3:80:a3: c6:a4:3f:4a:0f:44:64:e3:53:c5:95:2e:21:d5:5e:c3:be:e8: 3e:84:df:bd:1f:8a:1d:71:e4:ba:7f:32:28:00:42:8a:42:13: 01:f5:32:3b:2a:34:9d:94:a3:62:8b:a3:46:08:33:b2:2e:be: 05:19:dc:a3:73:4a:21:0d:cc:8f:cb:fb:e8:27:1b:97:bc:3f: 2e:0a:04:ca:15:01:e0:fa:d4:e1:d8:e9:d0:c1:56:d6:36:66: b1:b7:fa:66:db:b8:9f:58:57:de:b1:19:2c:7d:96:d6:52:ab: d7:41:d3:e4:89:24:06:80:dc:c7:2e:f2:3d:73:65:12:d6:37: 13:24:89:60 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUKQa68AR5DNig+3YIqhvexdlD3XYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTg5MzQzNEEzMjA1OERBRkU5NzU4RkRBN0IzNjY1OTQ0 NEM5RUY4RTAeFw0yNjA1MDYwNjM2NDFaFw0yNzA1MDUwNjQxNDFaMDMxMTAvBgNV BAMTKEExRUY2RjMwQTdFRTA5QTZDRDA4OTY3REYwRkRBRUE2REJFOUVGMTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSs+3Qt3LrjBUvv4W0c68xtrXU NpJQDS+SIA10lX1EbIBfsJAJMh45PrZ0G+mHbPLqYHDZJxaJhFVavXbV8Yn0peid cqd15+EsQPgBs7Zg4BK+KFTNday1EK7TDxK/Fo5UsAzqrxEE2HFCmdMirjakiNcl NEnBNu1FZNs15yjG4NVNUDkkcusH9taTZ5uSXkNnkfOe+NCTcclxLqfRSTqqg/Mc qt5YhzlBWDs+i74Rb4dakK2jS4vsAI+LMLAtIenBbbhNcDRKw7E5ax7ATC2YedAf fU+r/0BdmP/zHEPi3qOE7a7drG5YSbkBsblN9+TDfJryTiPwlOMVjfQFdkDHAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUoe9vMKfuCabNCJZ98P2uptvp7xIwHwYDVR0j BBgwFoAU6JNDSjIFja/pdY/aezZllETJ744wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4ODU1MzEyOTUyNTI1MS8wL0U4OTM0MzRBMzIwNThEQUZFOTc1OEZEQTdCMzY2 NTk0NDRDOUVGOEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRTg5MzQzNEEzMjA1OERBRkU5NzU4RkRBN0IzNjY1OTQ0NEM5RUY4RS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1ODg1NTMxMjk1MjUyNTEvMC8zMjMxMzEyZTMx MzQzOTJlMzYzODJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDMyMzAzNDM3MzYzNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAtOVRDANBgkqhkiG9w0BAQsFAAOCAQEAGBmQ7I3qMvxj7/YfasVk ToBE/8594DIuethJC2UJK+PVJuAGKa8VJFbZxcz32p+4u5xtjnrtMrUEtwnc8vTq dHDdvK/MTasA5eg7glRMb68mV0jge6rGbZqGaHCP0Cth5F1Gxnn8WiMK79dAxyQ3 QlPDY1Wt0YvOmcSU04CjxqQ/Sg9EZONTxZUuIdVew77oPoTfvR+KHXHkun8yKABC ikITAfUyOyo0nZSjYoujRggzsi6+BRnco3NKIQ3Mj8v76Ccbl7w/LgoEyhUB4PrU 4djp0MFW1jZmsbf6Ztu4n1hX3rEZLH2W1lKr10HT5IkkBoDcxy7yPXNlEtY3EySJ YA== -----END CERTIFICATE-----Generated at Wed May 13 13:46:01 2026 by rpki-client