$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095903841322270721/0/3132322e3131392e3233362e302f32342d3234203d3e203338333831.roa File: 3132322e3131392e3233362e302f32342d3234203d3e203338333831.roa (raw, json) Hash identifier: DIcAKExdPWmsRcykKFOPbb28q2jLhcwuQceAFw7pK/g= Subject key identifier: 58:47:49:61:D9:6F:CD:80:51:FE:FD:9A:4C:81:F4:A8:5B:3C:B8:94 Certificate issuer: /CN=5115966FB62A2BDB4D65D974DF0DD9B020811D8D Certificate serial: 7095E10723FC2C3EE1641254AA781EFCB35E8790 Authority key identifier: 51:15:96:6F:B6:2A:2B:DB:4D:65:D9:74:DF:0D:D9:B0:20:81:1D:8D Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5115966FB62A2BDB4D65D974DF0DD9B020811D8D.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095903841322270721/0/3132322e3131392e3233362e302f32342d3234203d3e203338333831.roa Signing time: Wed 22 Apr 2026 07:57:30 +0000 ROA not before: Wed 22 Apr 2026 07:52:30 +0000 ROA not after: Wed 21 Apr 2027 07:57:30 +0000 asID: 38381 IP address blocks: 122.119.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095903841322270721/0/5115966FB62A2BDB4D65D974DF0DD9B020811D8D.crl rsync://rpki-rps.cnnic.cn/repo/A1095903841322270721/0/5115966FB62A2BDB4D65D974DF0DD9B020811D8D.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5115966FB62A2BDB4D65D974DF0DD9B020811D8D.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:95:e1:07:23:fc:2c:3e:e1:64:12:54:aa:78:1e:fc:b3:5e:87:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5115966FB62A2BDB4D65D974DF0DD9B020811D8D Validity Not Before: Apr 22 07:52:30 2026 GMT Not After : Apr 21 07:57:30 2027 GMT Subject: CN=58474961D96FCD8051FEFD9A4C81F4A85B3CB894 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:88:ee:4b:69:7c:d9:e6:39:20:90:3d:db:15: 82:53:f5:ac:3e:45:16:31:9f:cd:19:0a:53:f0:19: 3f:18:7f:00:54:59:05:1a:d3:23:2e:e3:2c:a9:41: 51:df:bf:1c:3e:9a:a0:ad:61:fb:8b:ea:10:fd:77: 32:37:c5:dc:41:76:45:51:38:50:0e:f7:a6:fb:4f: 64:a7:f9:f6:d3:12:4c:53:36:cd:94:47:69:d3:45: 0f:41:bd:d3:ad:9b:c7:03:fe:1f:e7:f5:33:92:27: 2f:72:7c:f9:5f:83:c1:06:7b:c3:43:46:f8:21:99: 5a:9b:b8:d2:a2:0c:34:cd:7e:b6:52:e5:7c:84:c2: f5:bf:1c:23:ad:5c:6d:18:74:8e:53:fb:e7:5c:80: 07:33:41:23:65:75:d6:27:52:3f:b7:ac:a6:2e:7c: 93:a3:06:bd:4a:98:8a:67:b6:98:88:80:c5:5e:de: c6:0d:ab:22:d4:30:f5:c6:32:38:54:b0:44:8f:19: 6b:34:9c:7a:15:5e:12:e9:12:57:6b:98:cc:ec:03: 51:73:82:87:df:28:c3:d3:11:b6:8a:58:aa:2d:9a: 36:4f:3f:5d:4e:f0:52:96:ee:10:80:54:d9:02:7f: 50:c6:a3:96:87:68:01:c7:d7:11:7e:33:b9:a4:27: 78:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:47:49:61:D9:6F:CD:80:51:FE:FD:9A:4C:81:F4:A8:5B:3C:B8:94 X509v3 Authority Key Identifier: keyid:51:15:96:6F:B6:2A:2B:DB:4D:65:D9:74:DF:0D:D9:B0:20:81:1D:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095903841322270721/0/5115966FB62A2BDB4D65D974DF0DD9B020811D8D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5115966FB62A2BDB4D65D974DF0DD9B020811D8D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095903841322270721/0/3132322e3131392e3233362e302f32342d3234203d3e203338333831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.119.236.0/24 Signature Algorithm: sha256WithRSAEncryption 85:08:63:ac:74:2a:db:a6:f1:5e:50:f1:0d:a3:94:a7:5f:4b: 69:89:82:29:56:68:60:04:6e:e5:07:24:42:c0:c6:b0:73:a8: cd:8a:36:34:3f:00:b0:58:fb:6e:43:93:a5:5d:58:da:db:4a: 8f:e3:99:04:4a:4f:0d:f7:ec:a9:fd:e1:aa:38:d2:2e:b6:38: 3b:6c:91:6a:b0:70:11:99:ba:cb:26:3b:de:e4:c1:03:e5:cf: b8:6b:a3:06:ca:4a:2f:f0:5b:60:01:cb:0a:23:47:b1:f1:36: e9:37:d8:84:1a:97:64:cd:b3:39:5c:bc:b8:68:9d:57:0c:7c: 87:04:38:3b:d3:ed:0f:d9:1a:8b:47:d0:c0:f9:38:f7:34:cb: 51:7c:ec:c7:2a:fd:e2:47:bf:8c:23:06:41:ac:92:03:a6:e5: fc:f0:5b:75:f1:b7:bb:00:d5:48:53:69:18:4b:95:88:02:d5: b5:b1:f2:f1:2a:e8:44:6f:30:df:94:40:89:9b:ec:3e:c4:17: bb:cd:4c:6f:4a:94:ff:3f:77:74:67:6d:85:f9:45:f5:95:bc: 90:08:35:17:36:8f:ce:88:07:20:1e:74:86:29:9e:ae:cc:f5: 22:e9:11:de:83:05:3e:f4:ac:16:db:60:ac:45:c1:f4:41:40: c7:47:9c:ce -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUcJXhByP8LD7hZBJUqnge/LNeh5AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTExNTk2NkZCNjJBMkJEQjRENjVEOTc0REYwREQ5QjAy MDgxMUQ4RDAeFw0yNjA0MjIwNzUyMzBaFw0yNzA0MjEwNzU3MzBaMDMxMTAvBgNV BAMTKDU4NDc0OTYxRDk2RkNEODA1MUZFRkQ5QTRDODFGNEE4NUIzQ0I4OTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeiO5LaXzZ5jkgkD3bFYJT9aw+ RRYxn80ZClPwGT8YfwBUWQUa0yMu4yypQVHfvxw+mqCtYfuL6hD9dzI3xdxBdkVR OFAO96b7T2Sn+fbTEkxTNs2UR2nTRQ9BvdOtm8cD/h/n9TOSJy9yfPlfg8EGe8ND RvghmVqbuNKiDDTNfrZS5XyEwvW/HCOtXG0YdI5T++dcgAczQSNlddYnUj+3rKYu fJOjBr1KmIpntpiIgMVe3sYNqyLUMPXGMjhUsESPGWs0nHoVXhLpEldrmMzsA1Fz goffKMPTEbaKWKotmjZPP11O8FKW7hCAVNkCf1DGo5aHaAHH1xF+M7mkJ3j9AgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUWEdJYdlvzYBR/v2aTIH0qFs8uJQwHwYDVR0j BBgwFoAUURWWb7YqK9tNZdl03w3ZsCCBHY0wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTkwMzg0MTMyMjI3MDcyMS8wLzUxMTU5NjZGQjYyQTJCREI0RDY1RDk3NERGMERE OUIwMjA4MTFEOEQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTExNTk2NkZCNjJBMkJEQjRENjVEOTc0REYwREQ5QjAyMDgxMUQ4RC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTU5MDM4NDEzMjIyNzA3MjEvMC8zMTMyMzIyZTMx MzEzOTJlMzIzMzM2MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzMzODMzMzgzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAHp37DANBgkqhkiG9w0BAQsFAAOCAQEAhQhjrHQq26bxXlDxDaOU p19LaYmCKVZoYARu5QckQsDGsHOozYo2ND8AsFj7bkOTpV1Y2ttKj+OZBEpPDffs qf3hqjjSLrY4O2yRarBwEZm6yyY73uTBA+XPuGujBspKL/BbYAHLCiNHsfE26TfY hBqXZM2zOVy8uGidVwx8hwQ4O9PtD9kai0fQwPk49zTLUXzsxyr94ke/jCMGQayS A6bl/PBbdfG3uwDVSFNpGEuViALVtbHy8SroRG8w35RAiZvsPsQXu81Mb0qU/z93 dGdthflF9ZW8kAg1FzaPzogHIB50himersz1IukR3oMFPvSsFttgrEXB9EFAx0ec zg== -----END CERTIFICATE-----Generated at Wed May 13 21:31:33 2026 by rpki-client