$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1068363599790997506/0/312e3131382e36342e302f31392d3234203d3e20313337373533.roa File: 312e3131382e36342e302f31392d3234203d3e20313337373533.roa (raw, json) Hash identifier: tObk82ypt899Ae71gDcnATLW2DJAnEZ18kmyPZI+N2c= Subject key identifier: 28:C3:15:38:09:BA:8F:44:9A:92:80:12:5F:BF:1B:FA:DC:B1:5C:2C Certificate issuer: /CN=D6805DB309057612CC9272CB2C85BA6CB0D389E5 Certificate serial: 73AEC91203E092A211D493307ED48EFE7D48964E Authority key identifier: D6:80:5D:B3:09:05:76:12:CC:92:72:CB:2C:85:BA:6C:B0:D3:89:E5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D6805DB309057612CC9272CB2C85BA6CB0D389E5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/312e3131382e36342e302f31392d3234203d3e20313337373533.roa Signing time: Wed 04 Mar 2026 08:37:31 +0000 ROA not before: Wed 04 Mar 2026 08:32:31 +0000 ROA not after: Wed 03 Mar 2027 08:37:31 +0000 asID: 137753 IP address blocks: 1.118.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/D6805DB309057612CC9272CB2C85BA6CB0D389E5.crl rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/D6805DB309057612CC9272CB2C85BA6CB0D389E5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D6805DB309057612CC9272CB2C85BA6CB0D389E5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 08:57:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:ae:c9:12:03:e0:92:a2:11:d4:93:30:7e:d4:8e:fe:7d:48:96:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D6805DB309057612CC9272CB2C85BA6CB0D389E5 Validity Not Before: Mar 4 08:32:31 2026 GMT Not After : Mar 3 08:37:31 2027 GMT Subject: CN=28C3153809BA8F449A9280125FBF1BFADCB15C2C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:32:97:af:7d:98:a4:68:e7:11:a8:3d:4f:e7: 30:66:8a:2e:36:61:54:a3:37:19:f5:87:84:6f:c4: 75:55:1a:fa:cf:3a:8f:b8:fa:be:c6:46:6d:78:67: bc:ca:98:4d:f8:8f:7a:f1:76:b6:e1:ee:20:aa:10: 16:f1:c5:ab:4b:06:8b:ad:1b:7d:8e:98:be:02:0d: db:83:3a:35:af:52:a0:82:29:1f:d1:8d:0a:52:e1: bb:a3:80:a1:24:9a:be:a0:c5:e3:2f:d1:13:15:ec: 78:24:d1:56:df:f4:f7:9a:80:cb:f8:91:19:69:9c: 5d:41:0a:dc:47:6d:03:92:99:11:12:67:6f:ef:bc: 5d:a9:a0:f3:ef:e6:49:40:1f:e2:8b:f9:3b:e9:91: ca:fb:79:b1:1a:52:dc:49:aa:16:46:c7:92:7d:55: 8e:45:b6:5e:cd:f9:1d:f5:31:e3:9d:72:fd:14:b0: 9d:bb:58:89:f5:ff:6c:78:d3:9b:32:7a:ea:fe:00: 3e:d8:ed:e7:3a:df:4c:a9:6a:c5:c1:1c:7e:15:5f: 8d:2c:5a:d1:9e:da:76:6a:5e:dd:be:fc:e8:c1:6d: 6b:5a:33:9f:44:89:92:65:58:5f:0a:55:7c:ab:b9: 54:31:09:5c:7d:ca:06:7c:7f:23:bd:41:bb:98:e3: c5:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:C3:15:38:09:BA:8F:44:9A:92:80:12:5F:BF:1B:FA:DC:B1:5C:2C X509v3 Authority Key Identifier: keyid:D6:80:5D:B3:09:05:76:12:CC:92:72:CB:2C:85:BA:6C:B0:D3:89:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/D6805DB309057612CC9272CB2C85BA6CB0D389E5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D6805DB309057612CC9272CB2C85BA6CB0D389E5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/312e3131382e36342e302f31392d3234203d3e20313337373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 1.118.64.0/19 Signature Algorithm: sha256WithRSAEncryption 07:07:57:f6:27:cf:07:98:c8:71:44:fe:21:99:c2:e8:0a:be: 1d:0b:7d:70:3c:d7:74:31:2d:9a:7a:c9:52:36:18:18:09:6f: 86:96:ff:ec:7b:cc:3a:cd:53:bc:84:43:99:24:41:6c:56:51: 81:d0:28:1f:aa:bd:62:82:cc:01:a8:22:3c:43:55:55:86:02: 01:ff:e1:19:ba:49:ec:17:16:b1:e3:1f:5a:5c:18:eb:81:7a: b6:8c:77:1c:f7:32:31:32:42:6f:ec:4f:3f:89:64:e7:02:7d: c4:46:e3:aa:05:4a:71:04:8b:8b:b9:fb:de:39:bd:49:c4:94: e9:17:bc:9f:83:1b:79:2b:f3:ac:34:98:8c:19:c3:5a:bc:91: 37:60:7b:b4:89:63:3f:05:6e:34:f0:04:00:16:13:38:42:69: f2:39:95:eb:68:5c:51:95:53:7f:57:64:b3:4d:83:40:87:ed: 21:55:90:de:8c:47:72:93:05:2d:57:8c:ba:fa:bb:67:aa:5e: 8e:b5:1e:37:a3:92:92:18:6c:0c:32:f8:82:70:2f:5b:12:56: d0:80:78:4f:99:30:b5:0a:50:bd:a9:07:11:66:1c:a5:aa:25: 8b:84:ca:a4:29:2b:11:67:92:b6:7a:80:56:dc:60:4e:85:78: 22:6d:69:c3 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUc67JEgPgkqIR1JMwftSO/n1Ilk4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDY4MDVEQjMwOTA1NzYxMkNDOTI3MkNCMkM4NUJBNkNC MEQzODlFNTAeFw0yNjAzMDQwODMyMzFaFw0yNzAzMDMwODM3MzFaMDMxMTAvBgNV BAMTKDI4QzMxNTM4MDlCQThGNDQ5QTkyODAxMjVGQkYxQkZBRENCMTVDMkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNMpevfZikaOcRqD1P5zBmii42 YVSjNxn1h4RvxHVVGvrPOo+4+r7GRm14Z7zKmE34j3rxdrbh7iCqEBbxxatLBout G32OmL4CDduDOjWvUqCCKR/RjQpS4bujgKEkmr6gxeMv0RMV7Hgk0Vbf9PeagMv4 kRlpnF1BCtxHbQOSmRESZ2/vvF2poPPv5klAH+KL+Tvpkcr7ebEaUtxJqhZGx5J9 VY5Ftl7N+R31MeOdcv0UsJ27WIn1/2x405syeur+AD7Y7ec630ypasXBHH4VX40s WtGe2nZqXt2+/OjBbWtaM59EiZJlWF8KVXyruVQxCVx9ygZ8fyO9QbuY48WxAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUKMMVOAm6j0SakoASX78b+tyxXCwwHwYDVR0j BBgwFoAU1oBdswkFdhLMknLLLIW6bLDTieUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 ODM2MzU5OTc5MDk5NzUwNi8wL0Q2ODA1REIzMDkwNTc2MTJDQzkyNzJDQjJDODVC QTZDQjBEMzg5RTUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRDY4MDVEQjMwOTA1NzYxMkNDOTI3MkNCMkM4NUJBNkNCMEQzODlFNS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY4MzYzNTk5NzkwOTk3NTA2LzAvMzEyZTMxMzEzODJl MzYzNDJlMzAyZjMxMzkyZDMyMzQyMDNkM2UyMDMxMzMzNzM3MzUzMy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBQF2QDANBgkqhkiG9w0BAQsFAAOCAQEABwdX9ifPB5jIcUT+IZnC6Aq+HQt9 cDzXdDEtmnrJUjYYGAlvhpb/7HvMOs1TvIRDmSRBbFZRgdAoH6q9YoLMAagiPENV VYYCAf/hGbpJ7BcWseMfWlwY64F6tox3HPcyMTJCb+xPP4lk5wJ9xEbjqgVKcQSL i7n73jm9ScSU6Re8n4MbeSvzrDSYjBnDWryRN2B7tIljPwVuNPAEABYTOEJp8jmV 62hcUZVTf1dks02DQIftIVWQ3oxHcpMFLVeMuvq7Z6pejrUeN6OSkhhsDDL4gnAv WxJW0IB4T5kwtQpQvakHEWYcpaoli4TKpCkrEWeStnqAVtxgToV4Im1pww== -----END CERTIFICATE-----Generated at Fri Mar 27 00:19:00 2026 by rpki-client