$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096693899595874305/0/3136332e3132382e3233362e302f32332d3234203d3e203535393939.roa File: 3136332e3132382e3233362e302f32332d3234203d3e203535393939.roa (raw, json) Hash identifier: Ffs5m/bCSZ4yG5HoL5gNLWdfNoTnNUZzl65WVT8K/0I= Subject key identifier: AE:51:18:E5:05:D3:E9:CB:9A:47:5D:FF:25:21:79:AD:47:DC:0A:57 Certificate issuer: /CN=289BA9CBEB71D9603BED963E3B60B1790E8F78A2 Certificate serial: 48DA01F95D9B2B599BBBD62BA0C4C05CBE8684C3 Authority key identifier: 28:9B:A9:CB:EB:71:D9:60:3B:ED:96:3E:3B:60:B1:79:0E:8F:78:A2 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096693899595874305/0/3136332e3132382e3233362e302f32332d3234203d3e203535393939.roa Signing time: Fri 08 May 2026 15:29:42 +0000 ROA not before: Fri 08 May 2026 15:24:42 +0000 ROA not after: Fri 07 May 2027 15:29:42 +0000 asID: 55999 IP address blocks: 163.128.236.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096693899595874305/0/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.crl rsync://rpki-rps.cnnic.cn/repo/A1096693899595874305/0/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:20:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:da:01:f9:5d:9b:2b:59:9b:bb:d6:2b:a0:c4:c0:5c:be:86:84:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=289BA9CBEB71D9603BED963E3B60B1790E8F78A2 Validity Not Before: May 8 15:24:42 2026 GMT Not After : May 7 15:29:42 2027 GMT Subject: CN=AE5118E505D3E9CB9A475DFF252179AD47DC0A57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:d1:29:32:11:22:5e:55:f0:1f:e4:63:5d:ab: 73:e3:e4:44:c2:c2:77:51:5a:a4:fe:07:72:b1:3d: 0f:7f:6e:da:ca:2e:7a:c1:27:81:b5:84:17:4f:55: 82:4b:23:19:72:8f:6e:67:bb:c1:72:ac:f6:22:00: bd:c1:1d:8d:ad:cb:08:96:51:6e:51:1e:18:f4:75: 11:bc:cc:67:36:91:5e:0d:c7:f3:3a:e3:20:11:a4: 49:24:38:c6:53:5e:e3:ae:d4:a2:dc:77:00:ec:97: 25:6f:59:b1:46:11:05:6f:53:df:77:5f:92:87:69: 8e:ed:d2:69:83:3c:83:bd:45:2f:28:29:54:81:d6: c3:55:71:4a:8c:43:16:a6:75:4d:ec:d2:56:17:6d: 29:63:06:b1:28:01:6e:40:58:a7:a2:2a:3f:1d:0b: c7:c2:c5:f9:fa:f0:cb:64:69:17:b1:2c:9d:a3:c9: 37:d7:b3:90:74:53:ca:be:70:44:89:65:ae:d2:78: 9b:fe:42:97:d3:ec:1f:27:c0:98:ff:0a:b4:43:2d: b6:91:49:af:58:a8:c2:b1:d4:8c:f6:50:24:99:7e: 20:69:cf:d9:9f:d1:84:7d:70:3d:4c:cb:fc:0e:89: fe:16:10:66:5c:82:53:13:7c:0a:cc:2b:6e:bb:a9: 7c:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:51:18:E5:05:D3:E9:CB:9A:47:5D:FF:25:21:79:AD:47:DC:0A:57 X509v3 Authority Key Identifier: keyid:28:9B:A9:CB:EB:71:D9:60:3B:ED:96:3E:3B:60:B1:79:0E:8F:78:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096693899595874305/0/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096693899595874305/0/3136332e3132382e3233362e302f32332d3234203d3e203535393939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.128.236.0/23 Signature Algorithm: sha256WithRSAEncryption 5d:f6:52:0d:8f:0a:9d:db:a8:86:04:77:1d:44:3f:d4:54:26: 92:95:c4:49:15:a1:7a:46:cb:e6:a7:c1:13:63:8d:73:76:2f: 8d:97:7e:3c:4c:4f:3e:50:d8:b7:4b:47:6f:45:c3:ea:ef:0d: c1:2a:a6:03:ce:7c:9f:f6:8c:c8:e9:c2:a4:2b:f4:93:c9:2a: 40:77:1a:7a:ec:30:01:5e:22:c2:10:4e:29:06:ae:ff:b7:48: 30:3e:ce:57:31:6a:dc:02:3a:eb:1f:77:56:6f:60:35:2c:ca: b7:72:f6:7f:8d:8c:55:c9:54:63:05:e6:f2:86:a2:cc:3d:43: ff:cf:29:8d:85:46:e2:0b:1d:e1:34:c6:81:25:d3:84:d2:85: 2a:2c:47:dd:af:65:89:9d:ac:99:ad:5b:43:53:33:ca:46:79: dd:11:aa:ca:f0:dc:8b:cb:8a:cb:fd:16:78:b2:71:a7:04:94: f3:6c:cd:18:ba:a0:19:64:b5:12:22:6b:93:3c:d3:0e:82:28: 08:8b:cd:57:bb:8a:c2:2d:8c:05:1b:bc:01:76:1c:f9:fc:63: 7c:dc:23:2b:e7:0d:b6:64:6d:11:ce:c0:e7:3b:e0:6e:61:12: 6c:21:18:12:c5:39:04:81:a4:bf:a8:c4:7d:e8:cc:49:44:a2: 21:3f:2f:d5 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUSNoB+V2bK1mbu9YroMTAXL6GhMMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg5QkE5Q0JFQjcxRDk2MDNCRUQ5NjNFM0I2MEIxNzkw RThGNzhBMjAeFw0yNjA1MDgxNTI0NDJaFw0yNzA1MDcxNTI5NDJaMDMxMTAvBgNV BAMTKEFFNTExOEU1MDVEM0U5Q0I5QTQ3NURGRjI1MjE3OUFENDdEQzBBNTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDM0SkyESJeVfAf5GNdq3Pj5ETC wndRWqT+B3KxPQ9/btrKLnrBJ4G1hBdPVYJLIxlyj25nu8FyrPYiAL3BHY2tywiW UW5RHhj0dRG8zGc2kV4Nx/M64yARpEkkOMZTXuOu1KLcdwDslyVvWbFGEQVvU993 X5KHaY7t0mmDPIO9RS8oKVSB1sNVcUqMQxamdU3s0lYXbSljBrEoAW5AWKeiKj8d C8fCxfn68MtkaRexLJ2jyTfXs5B0U8q+cESJZa7SeJv+QpfT7B8nwJj/CrRDLbaR Sa9YqMKx1Iz2UCSZfiBpz9mf0YR9cD1My/wOif4WEGZcglMTfArMK267qXzFAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUrlEY5QXT6cuaR13/JSF5rUfcClcwHwYDVR0j BBgwFoAUKJupy+tx2WA77ZY+O2CxeQ6PeKIwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjY5Mzg5OTU5NTg3NDMwNS8wLzI4OUJBOUNCRUI3MUQ5NjAzQkVEOTYzRTNCNjBC MTc5MEU4Rjc4QTIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjg5QkE5Q0JFQjcxRDk2MDNCRUQ5NjNFM0I2MEIxNzkwRThGNzhBMi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTY2OTM4OTk1OTU4NzQzMDUvMC8zMTM2MzMyZTMx MzIzODJlMzIzMzM2MmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzUzNTM5MzkzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAaOA7DANBgkqhkiG9w0BAQsFAAOCAQEAXfZSDY8KnduohgR3HUQ/ 1FQmkpXESRWhekbL5qfBE2ONc3YvjZd+PExPPlDYt0tHb0XD6u8NwSqmA858n/aM yOnCpCv0k8kqQHcaeuwwAV4iwhBOKQau/7dIMD7OVzFq3AI66x93Vm9gNSzKt3L2 f42MVclUYwXm8oaizD1D/88pjYVG4gsd4TTGgSXThNKFKixH3a9liZ2sma1bQ1Mz ykZ53RGqyvDci8uKy/0WeLJxpwSU82zNGLqgGWS1EiJrkzzTDoIoCIvNV7uKwi2M BRu8AXYc+fxjfNwjK+cNtmRtEc7A5zvgbmESbCEYEsU5BIGkv6jEfejMSUSiIT8v 1Q== -----END CERTIFICATE-----Generated at Wed May 13 21:32:09 2026 by rpki-client