$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095890985226862595/0/3130312e33362e3232342e302f32312d3231203d3e203234313338.roa File: 3130312e33362e3232342e302f32312d3231203d3e203234313338.roa (raw, json) Hash identifier: +F3cYa1wC8+5a0msjC9UuYLwP0bSM+ptpt66dCvYp5U= Subject key identifier: 5D:1E:7A:BE:AA:52:3A:AC:1B:1B:52:4A:FC:1E:E8:FA:D1:49:A2:B2 Certificate issuer: /CN=91C6B644DD6D84839ED120FBC00984D60495C8C4 Certificate serial: 3FC74B92CDD46F77BCAA3D00A5AE9420E6D7DB6E Authority key identifier: 91:C6:B6:44:DD:6D:84:83:9E:D1:20:FB:C0:09:84:D6:04:95:C8:C4 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/91C6B644DD6D84839ED120FBC00984D60495C8C4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095890985226862595/0/3130312e33362e3232342e302f32312d3231203d3e203234313338.roa Signing time: Tue 12 May 2026 07:03:25 +0000 ROA not before: Tue 12 May 2026 06:58:25 +0000 ROA not after: Tue 11 May 2027 07:03:25 +0000 asID: 24138 IP address blocks: 101.36.224.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095890985226862595/0/91C6B644DD6D84839ED120FBC00984D60495C8C4.crl rsync://rpki-rps.cnnic.cn/repo/A1095890985226862595/0/91C6B644DD6D84839ED120FBC00984D60495C8C4.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/91C6B644DD6D84839ED120FBC00984D60495C8C4.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 03:47:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:c7:4b:92:cd:d4:6f:77:bc:aa:3d:00:a5:ae:94:20:e6:d7:db:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91C6B644DD6D84839ED120FBC00984D60495C8C4 Validity Not Before: May 12 06:58:25 2026 GMT Not After : May 11 07:03:25 2027 GMT Subject: CN=5D1E7ABEAA523AAC1B1B524AFC1EE8FAD149A2B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:cd:0c:7e:0f:fa:f3:56:3f:10:34:10:d2:3f: 53:ee:d4:15:26:10:de:f2:fd:8f:01:30:30:82:19: 6b:6f:37:f6:79:d0:8c:e4:08:17:8b:f8:a3:d9:aa: ca:1c:54:7c:30:05:bf:d8:b6:ca:9a:4d:ff:3b:75: 08:fc:2a:e6:10:7f:8b:0a:f7:17:97:77:48:c4:58: a8:ba:b5:43:62:37:67:28:d4:39:a8:87:f1:39:f1: f6:b3:c9:3d:1e:63:e6:5c:24:7c:9e:b3:cf:63:29: 1f:9a:f2:dc:94:88:9f:f0:ff:d3:07:bf:c4:f9:e5: 98:62:ce:a9:60:81:d3:93:6a:54:43:bc:a9:fb:a4: bb:89:94:ca:a3:83:2c:13:58:ec:7b:bc:c8:a7:38: 88:6f:b9:7b:50:7f:d7:26:15:79:16:10:d3:a0:f1: 03:24:14:8d:24:d4:af:e9:86:dc:06:c4:e3:f0:92: ba:18:a2:07:04:f6:fd:31:bc:b9:37:a4:61:57:48: 56:57:5c:8a:17:fa:c8:47:cb:02:c4:88:9c:a2:f3: fb:90:02:14:3d:c0:1c:26:c9:b8:77:13:41:0e:de: d7:29:fb:4f:6c:3c:40:01:f5:62:28:4c:79:84:1a: 94:94:29:74:27:5d:d1:43:9c:6d:5c:0b:19:ef:2c: 95:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:1E:7A:BE:AA:52:3A:AC:1B:1B:52:4A:FC:1E:E8:FA:D1:49:A2:B2 X509v3 Authority Key Identifier: keyid:91:C6:B6:44:DD:6D:84:83:9E:D1:20:FB:C0:09:84:D6:04:95:C8:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095890985226862595/0/91C6B644DD6D84839ED120FBC00984D60495C8C4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/91C6B644DD6D84839ED120FBC00984D60495C8C4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095890985226862595/0/3130312e33362e3232342e302f32312d3231203d3e203234313338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.36.224.0/21 Signature Algorithm: sha256WithRSAEncryption aa:2f:8b:b4:93:66:57:da:f2:3b:a4:da:43:03:96:34:6e:4a: 39:08:9b:ea:c9:a8:61:c8:f6:73:3d:30:cc:b5:fc:4b:75:38: 10:38:1f:e0:d3:0a:7c:88:4c:fb:ab:a9:06:eb:28:b4:16:11: 8e:6c:c0:f4:be:c7:af:54:1c:41:55:6f:73:a5:e1:d0:2c:bc: 82:3a:f5:b4:71:5f:a7:cc:51:82:c4:a3:07:f8:b6:aa:20:33: 39:27:e2:95:d0:a5:51:70:ce:d8:cb:e9:01:48:87:e1:b4:28: fb:2d:73:d2:cb:0e:85:a4:8a:94:60:22:e6:19:b5:60:42:0a: f9:42:22:1b:e2:7a:a1:90:7e:37:ff:77:99:0a:72:9d:19:e3: 2b:49:60:7a:ef:ef:ea:e3:bc:73:36:88:7f:82:ba:96:53:d2: f8:e6:d4:e0:fa:dd:2d:b8:48:75:4a:30:da:61:5d:23:2b:6d: 2b:d7:d1:97:87:ed:a1:1f:1c:99:1f:dd:35:a3:95:d5:6c:0c: 11:db:29:ca:be:0e:39:a9:a4:f8:24:85:ec:f6:6e:b5:c0:f7: db:03:74:71:5a:fb:84:a0:20:42:c7:cb:bd:89:d1:a6:06:00: 1e:51:d6:40:09:c0:b9:6f:41:0a:8c:18:68:ab:f1:ed:95:64: 1f:b9:8d:0b -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUP8dLks3Ub3e8qj0Apa6UIObX224wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTFDNkI2NDRERDZEODQ4MzlFRDEyMEZCQzAwOTg0RDYw NDk1QzhDNDAeFw0yNjA1MTIwNjU4MjVaFw0yNzA1MTEwNzAzMjVaMDMxMTAvBgNV BAMTKDVEMUU3QUJFQUE1MjNBQUMxQjFCNTI0QUZDMUVFOEZBRDE0OUEyQjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDxzQx+D/rzVj8QNBDSP1Pu1BUm EN7y/Y8BMDCCGWtvN/Z50IzkCBeL+KPZqsocVHwwBb/YtsqaTf87dQj8KuYQf4sK 9xeXd0jEWKi6tUNiN2co1Dmoh/E58fazyT0eY+ZcJHyes89jKR+a8tyUiJ/w/9MH v8T55ZhizqlggdOTalRDvKn7pLuJlMqjgywTWOx7vMinOIhvuXtQf9cmFXkWENOg 8QMkFI0k1K/phtwGxOPwkroYogcE9v0xvLk3pGFXSFZXXIoX+shHywLEiJyi8/uQ AhQ9wBwmybh3E0EO3tcp+09sPEAB9WIoTHmEGpSUKXQnXdFDnG1cCxnvLJWhAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUXR56vqpSOqwbG1JK/B7o+tFJorIwHwYDVR0j BBgwFoAUkca2RN1thIOe0SD7wAmE1gSVyMQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTg5MDk4NTIyNjg2MjU5NS8wLzkxQzZCNjQ0REQ2RDg0ODM5RUQxMjBGQkMwMDk4 NEQ2MDQ5NUM4QzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTFDNkI2NDRERDZEODQ4MzlFRDEyMEZCQzAwOTg0RDYwNDk1QzhDNC5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NTg5MDk4NTIyNjg2MjU5NS8wLzMxMzAzMTJlMzMz NjJlMzIzMjM0MmUzMDJmMzIzMTJkMzIzMTIwM2QzZTIwMzIzNDMxMzMzOC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEA2Uk4DANBgkqhkiG9w0BAQsFAAOCAQEAqi+LtJNmV9ryO6TaQwOWNG5K OQib6smoYcj2cz0wzLX8S3U4EDgf4NMKfIhM+6upBusotBYRjmzA9L7Hr1QcQVVv c6Xh0Cy8gjr1tHFfp8xRgsSjB/i2qiAzOSfildClUXDO2MvpAUiH4bQo+y1z0ssO haSKlGAi5hm1YEIK+UIiG+J6oZB+N/93mQpynRnjK0lgeu/v6uO8czaIf4K6llPS +ObU4PrdLbhIdUow2mFdIyttK9fRl4ftoR8cmR/dNaOV1WwMEdspyr4OOamk+CSF 7PZutcD32wN0cVr7hKAgQsfLvYnRpgYAHlHWQAnAuW9BCowYaKvx7ZVkH7mNCw== -----END CERTIFICATE-----Generated at Wed May 13 11:58:33 2026 by rpki-client