$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1088651015181303810/0/3231392e3233322e33322e302f31392d3139203d3e2034383437.roa File: 3231392e3233322e33322e302f31392d3139203d3e2034383437.roa (raw, json) Hash identifier: XnvWHCHXJJHlF0VPu6jLiAqdmQ9yX8bDWf+QnfAsvcU= Subject key identifier: 7F:5A:DA:B8:D7:44:21:7E:C2:E7:E4:D9:A9:E2:70:DC:A8:78:F5:BD Certificate issuer: /CN=D5EF2A792166F94FBE33377E0239034ED2FC2F80 Certificate serial: 13A5CED619BA50F1FD37CB503AC7BFFB2DEFF1F2 Authority key identifier: D5:EF:2A:79:21:66:F9:4F:BE:33:37:7E:02:39:03:4E:D2:FC:2F:80 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D5EF2A792166F94FBE33377E0239034ED2FC2F80.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1088651015181303810/0/3231392e3233322e33322e302f31392d3139203d3e2034383437.roa Signing time: Wed 13 May 2026 02:08:07 +0000 ROA not before: Wed 13 May 2026 02:03:07 +0000 ROA not after: Wed 12 May 2027 02:08:07 +0000 asID: 4847 IP address blocks: 219.232.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1088651015181303810/0/D5EF2A792166F94FBE33377E0239034ED2FC2F80.crl rsync://rpki-rps.cnnic.cn/repo/A1088651015181303810/0/D5EF2A792166F94FBE33377E0239034ED2FC2F80.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D5EF2A792166F94FBE33377E0239034ED2FC2F80.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 05:10:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:a5:ce:d6:19:ba:50:f1:fd:37:cb:50:3a:c7:bf:fb:2d:ef:f1:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D5EF2A792166F94FBE33377E0239034ED2FC2F80 Validity Not Before: May 13 02:03:07 2026 GMT Not After : May 12 02:08:07 2027 GMT Subject: CN=7F5ADAB8D744217EC2E7E4D9A9E270DCA878F5BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:e2:59:e9:78:ef:ef:51:98:6e:a4:fa:d2:bc: c6:bb:0d:56:a4:06:bb:22:1b:ff:f6:ec:76:e6:e5: 38:fa:57:a7:21:ad:f6:72:0a:48:53:65:ce:e3:65: e3:d7:5a:a8:9a:77:75:ec:fd:f8:a2:f5:ee:a5:ad: 77:05:b2:c5:f1:25:76:8b:34:cf:6f:e6:a9:20:18: a3:62:fe:15:a7:7b:67:49:cf:1f:64:d2:52:c8:c0: 7a:8e:2a:07:a8:0d:5b:62:f0:8a:6b:d3:ae:25:e7: 9b:1f:c5:e0:40:06:71:23:d4:eb:e9:4f:4a:ea:ba: b7:94:6b:41:76:e3:60:fe:cd:78:b5:5c:b0:a3:05: 73:9f:7f:77:e7:84:89:7d:27:ca:b3:df:06:16:79: 76:fa:cb:ce:f1:c0:2b:74:12:f7:a0:3c:30:46:62: 27:8c:fd:be:2f:c9:a2:e8:4b:45:d9:45:8b:1a:0b: 8f:33:d6:27:cf:7e:1f:a3:9c:03:9b:8c:2f:0e:85: 77:33:2d:6d:68:b1:ec:16:11:e9:30:8e:df:17:fa: 10:88:18:35:4b:f2:02:8a:d5:3f:85:ab:1c:8e:bf: 4a:69:29:8f:2a:97:59:2c:45:6f:fa:8c:83:5a:67: 88:0a:bf:0f:06:93:06:5b:9a:b9:a5:dc:5c:b4:74: 89:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:5A:DA:B8:D7:44:21:7E:C2:E7:E4:D9:A9:E2:70:DC:A8:78:F5:BD X509v3 Authority Key Identifier: keyid:D5:EF:2A:79:21:66:F9:4F:BE:33:37:7E:02:39:03:4E:D2:FC:2F:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1088651015181303810/0/D5EF2A792166F94FBE33377E0239034ED2FC2F80.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D5EF2A792166F94FBE33377E0239034ED2FC2F80.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1088651015181303810/0/3231392e3233322e33322e302f31392d3139203d3e2034383437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 219.232.32.0/19 Signature Algorithm: sha256WithRSAEncryption a9:31:28:43:cc:bb:55:97:dc:30:85:ee:d2:6b:14:07:57:f1: d9:e9:c5:3f:74:d9:e0:77:dd:8a:81:66:e5:a9:a1:a6:da:74: ab:c3:f9:01:b6:20:75:e9:50:6a:d6:e5:0a:a4:7e:a6:ca:e7: f1:0d:39:c7:40:12:7e:ec:69:0b:6f:f0:05:59:c2:85:0f:a4: 1f:ad:d8:85:4c:20:d7:d1:ad:f3:a8:5e:37:9b:70:76:10:db: ed:bd:6e:46:f2:3e:12:b8:b1:18:ce:42:9a:b2:20:17:2e:36: 83:ae:6b:02:19:1e:6b:cb:43:ce:80:75:b5:56:42:ac:b4:ca: ff:c1:e8:ce:da:f3:f5:bb:80:cc:cd:f4:90:84:de:36:92:db: 69:c1:48:cb:f6:dc:fa:6e:c9:49:f3:85:46:8c:0e:9d:ad:64: bb:f4:7b:6f:5b:eb:f7:c6:5b:56:8f:f8:ac:ca:a2:62:82:ce: b9:63:d8:34:56:59:26:4f:c7:a1:69:5e:5d:a5:64:52:b2:2f: 09:b1:55:a7:0f:d5:22:b3:57:55:00:50:c2:c9:0b:ab:b9:bc: 09:90:09:1d:ba:e3:fd:4c:34:c2:b1:4b:6d:be:30:f2:1f:1e: ba:88:1c:b5:2b:9d:83:36:c3:67:fa:f0:7c:e8:e5:7c:39:5a: 36:34:d9:f9 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUE6XO1hm6UPH9N8tQOse/+y3v8fIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDVFRjJBNzkyMTY2Rjk0RkJFMzMzNzdFMDIzOTAzNEVE MkZDMkY4MDAeFw0yNjA1MTMwMjAzMDdaFw0yNzA1MTIwMjA4MDdaMDMxMTAvBgNV BAMTKDdGNUFEQUI4RDc0NDIxN0VDMkU3RTREOUE5RTI3MERDQTg3OEY1QkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDq4lnpeO/vUZhupPrSvMa7DVak BrsiG//27Hbm5Tj6V6chrfZyCkhTZc7jZePXWqiad3Xs/fii9e6lrXcFssXxJXaL NM9v5qkgGKNi/hWne2dJzx9k0lLIwHqOKgeoDVti8Ipr064l55sfxeBABnEj1Ovp T0rqureUa0F242D+zXi1XLCjBXOff3fnhIl9J8qz3wYWeXb6y87xwCt0EvegPDBG YieM/b4vyaLoS0XZRYsaC48z1ifPfh+jnAObjC8OhXczLW1osewWEekwjt8X+hCI GDVL8gKK1T+FqxyOv0ppKY8ql1ksRW/6jINaZ4gKvw8GkwZbmrml3Fy0dImFAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUf1rauNdEIX7C5+TZqeJw3Kh49b0wHwYDVR0j BBgwFoAU1e8qeSFm+U++Mzd+AjkDTtL8L4AwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA4 ODY1MTAxNTE4MTMwMzgxMC8wL0Q1RUYyQTc5MjE2NkY5NEZCRTMzMzc3RTAyMzkw MzRFRDJGQzJGODAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRDVFRjJBNzkyMTY2Rjk0RkJFMzMzNzdFMDIzOTAzNEVEMkZDMkY4MC5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDg4NjUxMDE1MTgxMzAzODEwLzAvMzIzMTM5MmUzMjMz MzIyZTMzMzIyZTMwMmYzMTM5MmQzMTM5MjAzZDNlMjAzNDM4MzQzNy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBdvoIDANBgkqhkiG9w0BAQsFAAOCAQEAqTEoQ8y7VZfcMIXu0msUB1fx2enF P3TZ4HfdioFm5amhptp0q8P5AbYgdelQatblCqR+psrn8Q05x0ASfuxpC2/wBVnC hQ+kH63YhUwg19Gt86heN5twdhDb7b1uRvI+ErixGM5CmrIgFy42g65rAhkea8tD zoB1tVZCrLTK/8Hoztrz9buAzM30kITeNpLbacFIy/bc+m7JSfOFRowOna1ku/R7 b1vr98ZbVo/4rMqiYoLOuWPYNFZZJk/HoWleXaVkUrIvCbFVpw/VIrNXVQBQwskL q7m8CZAJHbrj/Uw0wrFLbb4w8h8euogctSudgzbDZ/rwfOjlfDlaNjTZ+Q== -----END CERTIFICATE-----Generated at Wed May 13 15:07:16 2026 by rpki-client