$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095903841322270721/0/3132322e3131392e3132352e302f32342d3234203d3e203338333831.roa File: 3132322e3131392e3132352e302f32342d3234203d3e203338333831.roa (raw, json) Hash identifier: 5xb/fqcSOWl8ffdRF2pi8aWPmYE1IbQOMFM20YvoA7c= Subject key identifier: 83:77:CC:E5:50:5F:24:DD:0B:26:1E:A0:2B:3C:B1:DA:E0:0A:D2:2D Certificate issuer: /CN=5115966FB62A2BDB4D65D974DF0DD9B020811D8D Certificate serial: 6D2823F475E5D5A5BC8B1D76474B4E5547D9015C Authority key identifier: 51:15:96:6F:B6:2A:2B:DB:4D:65:D9:74:DF:0D:D9:B0:20:81:1D:8D Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5115966FB62A2BDB4D65D974DF0DD9B020811D8D.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095903841322270721/0/3132322e3131392e3132352e302f32342d3234203d3e203338333831.roa Signing time: Wed 22 Apr 2026 07:55:00 +0000 ROA not before: Wed 22 Apr 2026 07:50:00 +0000 ROA not after: Wed 21 Apr 2027 07:55:00 +0000 asID: 38381 IP address blocks: 122.119.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095903841322270721/0/5115966FB62A2BDB4D65D974DF0DD9B020811D8D.crl rsync://rpki-rps.cnnic.cn/repo/A1095903841322270721/0/5115966FB62A2BDB4D65D974DF0DD9B020811D8D.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5115966FB62A2BDB4D65D974DF0DD9B020811D8D.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:28:23:f4:75:e5:d5:a5:bc:8b:1d:76:47:4b:4e:55:47:d9:01:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5115966FB62A2BDB4D65D974DF0DD9B020811D8D Validity Not Before: Apr 22 07:50:00 2026 GMT Not After : Apr 21 07:55:00 2027 GMT Subject: CN=8377CCE5505F24DD0B261EA02B3CB1DAE00AD22D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:6e:41:a0:73:1e:8d:57:51:55:b5:c6:5f:7d: 3f:02:0d:75:fe:8d:1b:b7:0c:b1:41:3d:ac:81:92: 4f:20:4b:e7:eb:b9:d5:7e:a4:b1:e7:d4:d9:3c:9e: 81:a7:54:58:ce:fa:99:36:83:cc:5b:51:67:30:0e: f5:80:6b:77:9a:a0:28:fb:3f:11:e6:8d:73:c6:24: 8a:15:86:8c:b3:b4:81:96:55:23:45:2d:71:ef:d7: a5:26:0f:b8:f0:0d:56:fd:e5:ca:59:e5:a4:c6:2a: 53:c7:aa:75:6e:89:de:ec:4c:e1:03:c5:fb:6c:2f: fe:69:de:4a:d6:9a:41:58:86:1b:32:11:7c:9e:60: 11:bd:60:9c:4f:d6:3c:99:50:49:b0:3e:ad:28:47: ba:a3:21:23:15:7f:c9:4b:59:71:47:b4:e3:90:70: ce:00:a2:d0:10:48:fe:bd:03:e9:b0:92:8f:75:1e: 46:02:a0:7c:ae:c6:1c:11:21:e7:c4:df:42:7b:8d: c5:89:d7:b7:85:b4:8b:73:d0:5c:51:ce:14:48:65: fa:67:1a:04:17:cf:7c:d0:17:1b:94:b5:ae:3c:6c: 00:71:5b:18:b0:33:3d:25:6c:06:91:09:6a:3b:81: cc:99:b0:43:0b:97:b3:ab:e0:49:5e:9a:3f:c1:41: 61:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:77:CC:E5:50:5F:24:DD:0B:26:1E:A0:2B:3C:B1:DA:E0:0A:D2:2D X509v3 Authority Key Identifier: keyid:51:15:96:6F:B6:2A:2B:DB:4D:65:D9:74:DF:0D:D9:B0:20:81:1D:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095903841322270721/0/5115966FB62A2BDB4D65D974DF0DD9B020811D8D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5115966FB62A2BDB4D65D974DF0DD9B020811D8D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095903841322270721/0/3132322e3131392e3132352e302f32342d3234203d3e203338333831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.119.125.0/24 Signature Algorithm: sha256WithRSAEncryption 13:7a:57:11:22:03:de:cf:27:36:50:9a:73:08:f5:0f:7e:80: a1:f3:dc:fb:35:c0:cb:ef:b4:c4:c5:8f:a3:1f:32:b0:42:a7: bd:7d:3e:ab:e3:22:ec:73:f8:bd:ea:98:e6:0d:87:c1:7c:45: 6d:d2:fb:1b:bb:4a:13:80:9e:80:0e:fa:95:a0:3b:52:2a:b7: ce:89:88:34:52:57:3d:0a:96:bd:d8:89:8a:a4:d9:c5:31:c9: 47:cf:d1:6a:7b:73:bb:87:13:51:36:86:87:c9:9f:5c:54:8b: 41:2b:97:62:ff:ac:73:b3:3a:fe:94:09:f9:75:91:b3:98:85: cf:47:3b:e4:85:e6:7b:08:31:ce:7c:5c:6d:dc:a3:29:f9:5f: eb:65:b8:ce:4a:0a:b4:22:f2:b6:ef:16:61:83:e1:38:24:f3: c4:eb:e4:f6:18:5a:8f:17:96:ec:b7:84:fc:f2:21:55:0c:cc: dc:bc:47:b0:5c:1a:02:28:ce:77:ba:4b:6b:74:e2:6d:c6:e7: b0:1b:ce:34:70:96:84:f3:00:b9:86:49:cb:ad:16:00:73:ef: d1:53:24:e9:15:97:9c:a2:5d:f9:a1:9d:f6:bf:34:42:f3:63: 25:d8:1f:ac:0e:42:9a:ef:09:e6:a5:ed:83:39:97:6b:cd:63: d0:f6:de:1a -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUbSgj9HXl1aW8ix12R0tOVUfZAVwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTExNTk2NkZCNjJBMkJEQjRENjVEOTc0REYwREQ5QjAy MDgxMUQ4RDAeFw0yNjA0MjIwNzUwMDBaFw0yNzA0MjEwNzU1MDBaMDMxMTAvBgNV BAMTKDgzNzdDQ0U1NTA1RjI0REQwQjI2MUVBMDJCM0NCMURBRTAwQUQyMkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChbkGgcx6NV1FVtcZffT8CDXX+ jRu3DLFBPayBkk8gS+frudV+pLHn1Nk8noGnVFjO+pk2g8xbUWcwDvWAa3eaoCj7 PxHmjXPGJIoVhoyztIGWVSNFLXHv16UmD7jwDVb95cpZ5aTGKlPHqnVuid7sTOED xftsL/5p3krWmkFYhhsyEXyeYBG9YJxP1jyZUEmwPq0oR7qjISMVf8lLWXFHtOOQ cM4AotAQSP69A+mwko91HkYCoHyuxhwRIefE30J7jcWJ17eFtItz0FxRzhRIZfpn GgQXz3zQFxuUta48bABxWxiwMz0lbAaRCWo7gcyZsEMLl7Or4Elemj/BQWHDAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUg3fM5VBfJN0LJh6gKzyx2uAK0i0wHwYDVR0j BBgwFoAUURWWb7YqK9tNZdl03w3ZsCCBHY0wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTkwMzg0MTMyMjI3MDcyMS8wLzUxMTU5NjZGQjYyQTJCREI0RDY1RDk3NERGMERE OUIwMjA4MTFEOEQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTExNTk2NkZCNjJBMkJEQjRENjVEOTc0REYwREQ5QjAyMDgxMUQ4RC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTU5MDM4NDEzMjIyNzA3MjEvMC8zMTMyMzIyZTMx MzEzOTJlMzEzMjM1MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzMzODMzMzgzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAHp3fTANBgkqhkiG9w0BAQsFAAOCAQEAE3pXESID3s8nNlCacwj1 D36AofPc+zXAy++0xMWPox8ysEKnvX0+q+Mi7HP4veqY5g2HwXxFbdL7G7tKE4Ce gA76laA7Uiq3zomINFJXPQqWvdiJiqTZxTHJR8/Rantzu4cTUTaGh8mfXFSLQSuX Yv+sc7M6/pQJ+XWRs5iFz0c75IXmewgxznxcbdyjKflf62W4zkoKtCLytu8WYYPh OCTzxOvk9hhajxeW7LeE/PIhVQzM3LxHsFwaAijOd7pLa3TibcbnsBvONHCWhPMA uYZJy60WAHPv0VMk6RWXnKJd+aGd9r80QvNjJdgfrA5Cmu8J5qXtgzmXa81j0Pbe Gg== -----END CERTIFICATE-----Generated at Wed May 13 21:31:32 2026 by rpki-client