$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1068363599790997506/0/312e3131382e33322e302f32322d3234203d3e20313337373533.roa File: 312e3131382e33322e302f32322d3234203d3e20313337373533.roa (raw, json) Hash identifier: 3olER77Eb/qrnFQ6fryREN7c/oB5Od6mzJn5VRZWU3M= Subject key identifier: F6:89:7F:15:0B:B6:A5:FE:C6:AD:2E:8D:06:9B:4B:DF:56:6F:A9:49 Certificate issuer: /CN=D6805DB309057612CC9272CB2C85BA6CB0D389E5 Certificate serial: 46CD320F79076EBA664F4832C8D3D7562F9EA40B Authority key identifier: D6:80:5D:B3:09:05:76:12:CC:92:72:CB:2C:85:BA:6C:B0:D3:89:E5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D6805DB309057612CC9272CB2C85BA6CB0D389E5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/312e3131382e33322e302f32322d3234203d3e20313337373533.roa Signing time: Fri 06 Mar 2026 07:03:04 +0000 ROA not before: Fri 06 Mar 2026 06:58:04 +0000 ROA not after: Fri 05 Mar 2027 07:03:04 +0000 asID: 137753 IP address blocks: 1.118.32.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/D6805DB309057612CC9272CB2C85BA6CB0D389E5.crl rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/D6805DB309057612CC9272CB2C85BA6CB0D389E5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D6805DB309057612CC9272CB2C85BA6CB0D389E5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 22:39:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:cd:32:0f:79:07:6e:ba:66:4f:48:32:c8:d3:d7:56:2f:9e:a4:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D6805DB309057612CC9272CB2C85BA6CB0D389E5 Validity Not Before: Mar 6 06:58:04 2026 GMT Not After : Mar 5 07:03:04 2027 GMT Subject: CN=F6897F150BB6A5FEC6AD2E8D069B4BDF566FA949 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:ce:21:87:d1:48:72:15:67:39:f2:c9:ad:70: b2:26:6e:1e:85:a7:5a:f8:ba:3e:a4:d1:7d:4b:b6: 75:6a:2b:83:5c:d2:a9:e9:c3:bf:a9:55:52:32:05: a6:a2:7c:d7:63:de:95:15:90:ad:26:8f:b9:d3:41: 5a:67:bf:73:03:10:f9:a7:6e:29:99:df:ac:c5:85: 32:20:bc:a4:95:03:10:50:e8:b5:f2:52:a8:49:3a: 1e:dc:ce:00:f5:06:13:0a:32:72:1d:90:c3:ce:89: 93:9e:12:31:c6:68:de:69:1e:1b:2c:4e:63:d4:9b: 12:2a:62:e4:ce:98:8c:9f:d5:09:c3:5c:ad:3b:76: 70:3c:e7:99:b3:71:c1:6f:36:bc:16:7d:ba:74:46: 67:c2:53:3a:06:e2:8a:91:04:be:31:98:ba:cc:32: 05:a8:55:09:f8:1f:18:87:ab:25:f2:8d:83:89:a0: 1e:cf:36:75:9e:04:f8:79:c2:1b:44:0a:0f:2a:e1: ef:1e:6c:39:66:d8:67:22:19:f9:d2:df:d9:bd:42: 6a:c3:5d:e1:7a:b4:ef:d0:23:18:54:c0:cb:0a:33: 57:9f:84:22:5b:cd:21:c5:cf:89:38:0f:17:52:64: 54:be:b1:62:05:43:18:7e:48:69:9f:a1:73:0c:08: 25:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:89:7F:15:0B:B6:A5:FE:C6:AD:2E:8D:06:9B:4B:DF:56:6F:A9:49 X509v3 Authority Key Identifier: keyid:D6:80:5D:B3:09:05:76:12:CC:92:72:CB:2C:85:BA:6C:B0:D3:89:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/D6805DB309057612CC9272CB2C85BA6CB0D389E5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D6805DB309057612CC9272CB2C85BA6CB0D389E5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/312e3131382e33322e302f32322d3234203d3e20313337373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 1.118.32.0/22 Signature Algorithm: sha256WithRSAEncryption af:cc:a5:7e:18:38:0d:5e:31:a9:05:e0:6d:8b:cd:46:20:8d: f8:f5:e6:14:fc:4f:37:ea:02:26:88:d8:6c:78:8f:07:8b:01: 48:fb:f9:4d:b3:2c:97:0b:31:a2:c6:49:2c:83:ee:72:22:2b: 39:c1:48:de:42:12:4f:a2:8b:74:56:ab:04:90:5c:59:f0:63: 33:01:27:35:81:48:64:b9:78:49:97:1a:1f:e5:9d:43:7c:bd: 3f:30:79:1f:09:10:4c:ff:40:b6:c0:1d:c0:7c:a1:a6:fc:60: 75:f8:3f:eb:66:12:a3:ee:3d:4e:03:f7:67:a9:7f:b0:9b:2a: d9:21:da:10:21:3f:75:f7:ec:6d:2b:85:50:7c:ae:af:4f:57: bf:42:a3:5d:8b:2d:39:39:c3:45:8b:c7:a6:77:e4:73:8f:9f: 78:3f:7f:25:05:5c:0b:3a:4f:fb:e7:d4:37:75:e1:05:34:6e: 2f:0f:49:e5:d1:76:db:4b:08:fb:73:70:81:09:11:0f:8f:5f: f6:a5:33:38:83:12:37:d6:ea:e4:e2:9c:c9:eb:4c:b6:ce:3a: 88:b9:74:84:7d:3b:2e:db:45:ef:8e:90:e9:c6:e2:ae:9f:f0: ea:b9:37:3f:95:04:c6:ba:0d:95:ab:4f:84:2f:f5:98:8c:8d: ae:ce:cd:98 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIURs0yD3kHbrpmT0gyyNPXVi+epAswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDY4MDVEQjMwOTA1NzYxMkNDOTI3MkNCMkM4NUJBNkNC MEQzODlFNTAeFw0yNjAzMDYwNjU4MDRaFw0yNzAzMDUwNzAzMDRaMDMxMTAvBgNV BAMTKEY2ODk3RjE1MEJCNkE1RkVDNkFEMkU4RDA2OUI0QkRGNTY2RkE5NDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbziGH0UhyFWc58smtcLImbh6F p1r4uj6k0X1LtnVqK4Nc0qnpw7+pVVIyBaaifNdj3pUVkK0mj7nTQVpnv3MDEPmn bimZ36zFhTIgvKSVAxBQ6LXyUqhJOh7czgD1BhMKMnIdkMPOiZOeEjHGaN5pHhss TmPUmxIqYuTOmIyf1QnDXK07dnA855mzccFvNrwWfbp0RmfCUzoG4oqRBL4xmLrM MgWoVQn4HxiHqyXyjYOJoB7PNnWeBPh5whtECg8q4e8ebDlm2GciGfnS39m9QmrD XeF6tO/QIxhUwMsKM1efhCJbzSHFz4k4DxdSZFS+sWIFQxh+SGmfoXMMCCU7AgMB AAGjggIRMIICDTAdBgNVHQ4EFgQU9ol/FQu2pf7GrS6NBptL31ZvqUkwHwYDVR0j BBgwFoAU1oBdswkFdhLMknLLLIW6bLDTieUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 ODM2MzU5OTc5MDk5NzUwNi8wL0Q2ODA1REIzMDkwNTc2MTJDQzkyNzJDQjJDODVC QTZDQjBEMzg5RTUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRDY4MDVEQjMwOTA1NzYxMkNDOTI3MkNCMkM4NUJBNkNCMEQzODlFNS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY4MzYzNTk5NzkwOTk3NTA2LzAvMzEyZTMxMzEzODJl MzMzMjJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDMxMzMzNzM3MzUzMy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAgF2IDANBgkqhkiG9w0BAQsFAAOCAQEAr8ylfhg4DV4xqQXgbYvNRiCN+PXm FPxPN+oCJojYbHiPB4sBSPv5TbMslwsxosZJLIPuciIrOcFI3kIST6KLdFarBJBc WfBjMwEnNYFIZLl4SZcaH+WdQ3y9PzB5HwkQTP9AtsAdwHyhpvxgdfg/62YSo+49 TgP3Z6l/sJsq2SHaECE/dffsbSuFUHyur09Xv0KjXYstOTnDRYvHpnfkc4+feD9/ JQVcCzpP++fUN3XhBTRuLw9J5dF220sI+3NwgQkRD49f9qUzOIMSN9bq5OKcyetM ts46iLl0hH07LttF746Q6cbirp/w6rk3P5UExroNlatPhC/1mIyNrs7NmA== -----END CERTIFICATE-----Generated at Fri Mar 27 03:21:58 2026 by rpki-client