$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065591195721596929/0/3138302e3232332e302e302f31382d3234203d3e2034313334.roa File: 3138302e3232332e302e302f31382d3234203d3e2034313334.roa (raw, json) Hash identifier: LsLgQ5iH4ml3fnCvlMJnKeHAk3qYyHQ23FuOMKUI0+Y= Subject key identifier: 58:01:7E:A2:E4:5D:7C:B1:C0:30:D6:95:BC:53:91:4C:53:A3:C9:1C Certificate issuer: /CN=0C02007C391DB5414355DE1A053D4E6D06CDD2CE Certificate serial: 1D03C5F5F998571616949E1892BBACAB9F79A204 Authority key identifier: 0C:02:00:7C:39:1D:B5:41:43:55:DE:1A:05:3D:4E:6D:06:CD:D2:CE Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/0C02007C391DB5414355DE1A053D4E6D06CDD2CE.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065591195721596929/0/3138302e3232332e302e302f31382d3234203d3e2034313334.roa Signing time: Wed 18 Mar 2026 00:45:27 +0000 ROA not before: Wed 18 Mar 2026 00:40:27 +0000 ROA not after: Wed 17 Mar 2027 00:45:27 +0000 asID: 4134 IP address blocks: 180.223.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065591195721596929/0/0C02007C391DB5414355DE1A053D4E6D06CDD2CE.crl rsync://rpki-rps.cnnic.cn/repo/A1065591195721596929/0/0C02007C391DB5414355DE1A053D4E6D06CDD2CE.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/0C02007C391DB5414355DE1A053D4E6D06CDD2CE.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Mar 2026 17:26:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:03:c5:f5:f9:98:57:16:16:94:9e:18:92:bb:ac:ab:9f:79:a2:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0C02007C391DB5414355DE1A053D4E6D06CDD2CE Validity Not Before: Mar 18 00:40:27 2026 GMT Not After : Mar 17 00:45:27 2027 GMT Subject: CN=58017EA2E45D7CB1C030D695BC53914C53A3C91C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:56:b2:19:15:51:99:e6:b7:f2:fc:55:2b:17: 5d:45:d0:fe:c8:6b:ce:5f:60:db:8e:ee:f7:7c:31: e9:0e:2b:c1:89:c3:a6:6a:e4:55:26:bc:c3:32:7b: 20:13:84:b0:0a:07:5b:1c:8c:53:7b:cd:79:2c:14: 69:f1:fe:17:3a:d8:65:e5:fc:f5:5e:b3:08:33:2d: cf:31:44:89:9d:a0:71:4b:be:5e:c7:5c:17:ba:a1: 66:bf:bc:35:a5:d6:12:40:69:90:e3:ce:3c:cb:11: 3b:1a:e3:84:d6:67:c3:bd:a1:b9:47:96:5b:4f:d7: da:f3:6b:1c:9c:f7:d0:e7:e7:c5:09:45:da:f2:34: de:dc:af:77:d4:53:b1:17:f2:5a:18:cc:41:a4:af: cc:86:22:9a:09:67:e5:4d:4e:d7:25:3a:3b:a2:5e: aa:2d:b8:64:c2:44:32:59:8f:99:2e:1f:be:71:90: 74:86:47:09:64:ed:49:cb:35:c4:6e:88:ab:11:e2: 3b:ec:52:fc:58:98:8b:68:5e:e7:9c:98:ea:18:43: 1c:02:a3:f7:d0:d3:e4:2d:36:9f:c8:bb:7c:23:82: a8:2e:ff:21:3e:07:4f:ed:a4:c7:c1:a2:e1:28:16: f5:51:61:77:a1:5b:23:b4:bd:dc:f5:4d:31:14:20: 09:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:01:7E:A2:E4:5D:7C:B1:C0:30:D6:95:BC:53:91:4C:53:A3:C9:1C X509v3 Authority Key Identifier: keyid:0C:02:00:7C:39:1D:B5:41:43:55:DE:1A:05:3D:4E:6D:06:CD:D2:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065591195721596929/0/0C02007C391DB5414355DE1A053D4E6D06CDD2CE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/0C02007C391DB5414355DE1A053D4E6D06CDD2CE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065591195721596929/0/3138302e3232332e302e302f31382d3234203d3e2034313334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.223.0.0/18 Signature Algorithm: sha256WithRSAEncryption b6:17:c8:ed:dc:13:4e:d1:f5:09:bd:50:6e:11:c4:d4:ae:69: ed:a2:c8:f9:e9:53:c1:07:5c:a4:5a:ee:f5:c5:db:d9:ab:27: 11:ee:49:cb:4e:8b:24:5f:2d:bc:e9:e9:b9:da:30:c8:cd:34: 24:98:bb:9c:46:e3:e2:7e:0f:95:e1:4c:40:c8:34:88:aa:07: bc:23:c9:e0:09:e6:ff:f7:64:2e:61:d9:f1:26:70:ba:6f:25: c4:f8:43:53:5f:7e:8a:54:82:da:d3:e4:23:44:1d:03:14:d3: d9:22:89:5f:75:e2:f8:1f:2f:3f:19:82:1b:56:16:fb:a2:ee: 5b:e4:eb:a8:33:11:72:14:7e:16:50:c1:62:cb:70:02:68:b9: 58:31:94:14:7f:c8:5c:be:03:ec:3e:84:32:d2:54:6b:ad:d9: e8:d9:27:5b:c1:1f:23:46:09:be:b1:49:2c:72:a7:2c:33:b2: d2:89:1c:ab:a4:d4:1c:c0:54:b7:24:8c:21:51:09:55:97:8a: e5:9e:34:97:1b:a0:e7:e0:cb:90:e6:2b:5f:78:79:e3:f5:9a: 61:04:93:26:8a:9d:74:30:7e:b6:b9:34:82:f7:54:52:bf:89: f1:3b:91:2a:19:6d:22:7f:c4:36:b8:a0:cf:35:4f:e5:13:0b: 27:fe:67:d8 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUHQPF9fmYVxYWlJ4Ykrusq595ogQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEMwMjAwN0MzOTFEQjU0MTQzNTVERTFBMDUzRDRFNkQw NkNERDJDRTAeFw0yNjAzMTgwMDQwMjdaFw0yNzAzMTcwMDQ1MjdaMDMxMTAvBgNV BAMTKDU4MDE3RUEyRTQ1RDdDQjFDMDMwRDY5NUJDNTM5MTRDNTNBM0M5MUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHVrIZFVGZ5rfy/FUrF11F0P7I a85fYNuO7vd8MekOK8GJw6Zq5FUmvMMyeyAThLAKB1scjFN7zXksFGnx/hc62GXl /PVeswgzLc8xRImdoHFLvl7HXBe6oWa/vDWl1hJAaZDjzjzLETsa44TWZ8O9oblH lltP19rzaxyc99Dn58UJRdryNN7cr3fUU7EX8loYzEGkr8yGIpoJZ+VNTtclOjui XqotuGTCRDJZj5kuH75xkHSGRwlk7UnLNcRuiKsR4jvsUvxYmItoXuecmOoYQxwC o/fQ0+QtNp/Iu3wjgqgu/yE+B0/tpMfBouEoFvVRYXehWyO0vdz1TTEUIAmfAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUWAF+ouRdfLHAMNaVvFORTFOjyRwwHwYDVR0j BBgwFoAUDAIAfDkdtUFDVd4aBT1ObQbN0s4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU5MTE5NTcyMTU5NjkyOS8wLzBDMDIwMDdDMzkxREI1NDE0MzU1REUxQTA1M0Q0 RTZEMDZDREQyQ0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMEMwMjAwN0MzOTFEQjU0MTQzNTVERTFBMDUzRDRFNkQwNkNERDJDRS5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTkxMTk1NzIxNTk2OTI5LzAvMzEzODMwMmUzMjMy MzMyZTMwMmUzMDJmMzEzODJkMzIzNDIwM2QzZTIwMzQzMTMzMzQucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAa03wAwDQYJKoZIhvcNAQELBQADggEBALYXyO3cE07R9Qm9UG4RxNSuae2iyPnp U8EHXKRa7vXF29mrJxHuSctOiyRfLbzp6bnaMMjNNCSYu5xG4+J+D5XhTEDINIiq B7wjyeAJ5v/3ZC5h2fEmcLpvJcT4Q1NffopUgtrT5CNEHQMU09kiiV914vgfLz8Z ghtWFvui7lvk66gzEXIUfhZQwWLLcAJouVgxlBR/yFy+A+w+hDLSVGut2ejZJ1vB HyNGCb6xSSxypywzstKJHKuk1BzAVLckjCFRCVWXiuWeNJcboOfgy5DmK194eeP1 mmEEkyaKnXQwfra5NIL3VFK/ifE7kSoZbSJ/xDa4oM81T+UTCyf+Z9g= -----END CERTIFICATE-----Generated at Thu Mar 26 06:01:06 2026 by rpki-client