$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097027706349944834/0/3136332e35332e36302e302f32322d3234203d3e2034383437.roa File: 3136332e35332e36302e302f32322d3234203d3e2034383437.roa (raw, json) Hash identifier: zCJovD2eqwILcdrWcNck/IH71jbfkBr6uE1e6yDoCn4= Subject key identifier: E4:DB:F6:52:0F:21:40:57:B7:66:BE:0B:65:30:B4:05:CB:51:9A:D8 Certificate issuer: /CN=D8652A391E44DB4EE76BEE76A4C433F666BB507A Certificate serial: 01F8AABB5591916175B18BD6BDA31D4428A12D73 Authority key identifier: D8:65:2A:39:1E:44:DB:4E:E7:6B:EE:76:A4:C4:33:F6:66:BB:50:7A Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D8652A391E44DB4EE76BEE76A4C433F666BB507A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097027706349944834/0/3136332e35332e36302e302f32322d3234203d3e2034383437.roa Signing time: Sat 09 May 2026 08:19:16 +0000 ROA not before: Sat 09 May 2026 08:14:16 +0000 ROA not after: Sat 08 May 2027 08:19:16 +0000 asID: 4847 IP address blocks: 163.53.60.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097027706349944834/0/D8652A391E44DB4EE76BEE76A4C433F666BB507A.crl rsync://rpki-rps.cnnic.cn/repo/A1097027706349944834/0/D8652A391E44DB4EE76BEE76A4C433F666BB507A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D8652A391E44DB4EE76BEE76A4C433F666BB507A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 05:30:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:f8:aa:bb:55:91:91:61:75:b1:8b:d6:bd:a3:1d:44:28:a1:2d:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D8652A391E44DB4EE76BEE76A4C433F666BB507A Validity Not Before: May 9 08:14:16 2026 GMT Not After : May 8 08:19:16 2027 GMT Subject: CN=E4DBF6520F214057B766BE0B6530B405CB519AD8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:f2:53:b5:3e:5b:2a:ac:3e:e2:9c:ed:70:ae: 4e:20:ca:64:43:93:92:57:65:10:25:32:3a:a8:d7: 2f:b8:5e:9c:65:0a:6b:91:38:3e:6b:de:10:23:af: 8d:2d:65:8d:35:76:c0:95:ea:63:76:86:95:14:bb: 0b:23:22:d3:59:0e:5a:c6:27:a8:65:0f:18:c1:73: 8b:17:55:80:e6:5a:54:e9:c2:c5:28:dd:7f:bc:7e: 4f:e1:f8:72:40:46:dd:8e:37:ff:40:35:05:d0:67: 8e:47:45:b0:00:e3:a5:6f:67:16:22:e8:f9:39:f9: a8:67:95:c5:b9:bf:a7:7c:b3:99:d2:b2:a1:1a:20: 76:8d:06:f3:79:62:be:9f:dd:3f:2c:a5:a9:35:89: c9:51:40:66:5f:9f:d7:9f:ca:14:3d:6a:62:cb:3f: 3f:9f:d4:6e:c2:92:54:b0:ea:a6:4a:bc:d5:ea:93: 25:aa:b7:3d:02:0d:b4:cf:dc:ff:2b:07:1e:d3:d1: ec:a5:97:61:60:a4:6d:74:46:0d:bf:20:71:63:00: c8:8d:56:d5:e4:5c:03:2f:00:fb:e4:ea:e2:bf:56: 80:0e:f8:ed:b8:54:7e:9a:58:08:ce:f7:18:f8:1d: 63:d6:29:4f:0b:b1:9b:99:7e:f2:37:aa:9e:16:2f: 63:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:DB:F6:52:0F:21:40:57:B7:66:BE:0B:65:30:B4:05:CB:51:9A:D8 X509v3 Authority Key Identifier: keyid:D8:65:2A:39:1E:44:DB:4E:E7:6B:EE:76:A4:C4:33:F6:66:BB:50:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097027706349944834/0/D8652A391E44DB4EE76BEE76A4C433F666BB507A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D8652A391E44DB4EE76BEE76A4C433F666BB507A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097027706349944834/0/3136332e35332e36302e302f32322d3234203d3e2034383437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.53.60.0/22 Signature Algorithm: sha256WithRSAEncryption a9:a5:e6:62:0e:c4:04:25:4f:7a:51:e9:94:2b:43:62:90:29: 60:9e:50:12:24:fa:43:1b:06:02:23:dd:cd:09:18:60:55:1a: 69:e1:84:03:53:33:b2:2d:01:d5:c3:f6:47:1e:61:9a:aa:89: c3:bf:5c:db:14:31:d7:b7:c8:a0:6a:fb:4d:be:cf:e4:ed:d5: cc:60:f9:bb:46:5e:da:1c:5f:50:69:36:6a:92:55:c7:34:cb: db:57:2f:8c:30:af:d3:8c:6d:d6:98:69:21:84:58:73:22:f1: e2:44:5d:3d:12:4f:3b:17:41:2b:19:08:b6:12:a3:f8:a7:81: 67:7c:67:a2:1a:7d:ad:a6:c0:3d:26:4e:ac:c3:34:a2:4b:10: 76:82:5d:46:39:95:a6:95:db:70:70:af:79:ee:19:35:5c:c3: b8:ab:1d:1d:33:5f:49:61:f2:62:10:89:f9:05:9e:b4:fd:a5: 7a:25:d5:48:ae:9c:17:dd:de:af:e9:78:7a:68:ad:83:51:1f: ba:ec:dc:5e:43:e9:ab:e9:dc:8d:19:5e:6e:c0:9c:52:b5:ec: c6:86:e9:5e:71:ed:6c:43:6d:27:62:c2:c1:11:93:04:0e:17: b3:27:c1:9b:d9:cd:a2:cc:32:98:4e:60:8b:ec:6e:ae:9b:9a: 4f:5c:64:cb -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUAfiqu1WRkWF1sYvWvaMdRCihLXMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDg2NTJBMzkxRTQ0REI0RUU3NkJFRTc2QTRDNDMzRjY2 NkJCNTA3QTAeFw0yNjA1MDkwODE0MTZaFw0yNzA1MDgwODE5MTZaMDMxMTAvBgNV BAMTKEU0REJGNjUyMEYyMTQwNTdCNzY2QkUwQjY1MzBCNDA1Q0I1MTlBRDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCg8lO1PlsqrD7inO1wrk4gymRD k5JXZRAlMjqo1y+4XpxlCmuROD5r3hAjr40tZY01dsCV6mN2hpUUuwsjItNZDlrG J6hlDxjBc4sXVYDmWlTpwsUo3X+8fk/h+HJARt2ON/9ANQXQZ45HRbAA46VvZxYi 6Pk5+ahnlcW5v6d8s5nSsqEaIHaNBvN5Yr6f3T8spak1iclRQGZfn9efyhQ9amLL Pz+f1G7CklSw6qZKvNXqkyWqtz0CDbTP3P8rBx7T0eyll2FgpG10Rg2/IHFjAMiN VtXkXAMvAPvk6uK/VoAO+O24VH6aWAjO9xj4HWPWKU8LsZuZfvI3qp4WL2PNAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQU5Nv2Ug8hQFe3Zr4LZTC0BctRmtgwHwYDVR0j BBgwFoAU2GUqOR5E207na+52pMQz9ma7UHowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzAyNzcwNjM0OTk0NDgzNC8wL0Q4NjUyQTM5MUU0NERCNEVFNzZCRUU3NkE0QzQz M0Y2NjZCQjUwN0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRDg2NTJBMzkxRTQ0REI0RUU3NkJFRTc2QTRDNDMzRjY2NkJCNTA3QS5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk3MDI3NzA2MzQ5OTQ0ODM0LzAvMzEzNjMzMmUzNTMz MmUzNjMwMmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzQzODM0Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAKjNTwwDQYJKoZIhvcNAQELBQADggEBAKml5mIOxAQlT3pR6ZQrQ2KQKWCeUBIk +kMbBgIj3c0JGGBVGmnhhANTM7ItAdXD9kceYZqqicO/XNsUMde3yKBq+02+z+Tt 1cxg+btGXtocX1BpNmqSVcc0y9tXL4wwr9OMbdaYaSGEWHMi8eJEXT0STzsXQSsZ CLYSo/ingWd8Z6Iafa2mwD0mTqzDNKJLEHaCXUY5laaV23Bwr3nuGTVcw7irHR0z X0lh8mIQifkFnrT9pXol1UiunBfd3q/peHporYNRH7rs3F5D6avp3I0ZXm7AnFK1 7MaG6V5x7WxDbSdiwsERkwQOF7MnwZvZzaLMMphOYIvsbq6bmk9cZMs= -----END CERTIFICATE-----Generated at Wed May 13 10:54:51 2026 by rpki-client