$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097027706349944834/0/3231382e3234352e34382e302f32302d3234203d3e2034383437.roa File: 3231382e3234352e34382e302f32302d3234203d3e2034383437.roa (raw, json) Hash identifier: 7EQlIaV2yI/gfHucxhcFCwdlOro72lQsQV9a2/1Pvws= Subject key identifier: 3A:BF:52:AA:D4:92:00:C4:32:5D:3D:7E:CE:81:BB:E6:67:9A:2B:44 Certificate issuer: /CN=D8652A391E44DB4EE76BEE76A4C433F666BB507A Certificate serial: 14C604DDFF90599583387A01088603BB5CC1B5B1 Authority key identifier: D8:65:2A:39:1E:44:DB:4E:E7:6B:EE:76:A4:C4:33:F6:66:BB:50:7A Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D8652A391E44DB4EE76BEE76A4C433F666BB507A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097027706349944834/0/3231382e3234352e34382e302f32302d3234203d3e2034383437.roa Signing time: Wed 13 May 2026 08:46:15 +0000 ROA not before: Wed 13 May 2026 08:41:15 +0000 ROA not after: Wed 12 May 2027 08:46:15 +0000 asID: 4847 IP address blocks: 218.245.48.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097027706349944834/0/D8652A391E44DB4EE76BEE76A4C433F666BB507A.crl rsync://rpki-rps.cnnic.cn/repo/A1097027706349944834/0/D8652A391E44DB4EE76BEE76A4C433F666BB507A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D8652A391E44DB4EE76BEE76A4C433F666BB507A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:c6:04:dd:ff:90:59:95:83:38:7a:01:08:86:03:bb:5c:c1:b5:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D8652A391E44DB4EE76BEE76A4C433F666BB507A Validity Not Before: May 13 08:41:15 2026 GMT Not After : May 12 08:46:15 2027 GMT Subject: CN=3ABF52AAD49200C4325D3D7ECE81BBE6679A2B44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:e7:c1:ba:d9:6e:53:de:d0:70:7c:15:25:38: 88:c3:b5:ac:75:71:71:38:e1:8f:a4:46:6e:9d:8a: 7b:17:6b:1c:f9:c7:0e:37:da:62:ca:01:8e:1c:37: b1:ca:fe:a0:b3:d7:02:ee:fb:b3:a4:f9:23:e6:e7: 10:e2:e2:35:c3:0c:6c:2e:c0:de:8b:7e:1d:df:be: cb:5a:5a:54:57:52:01:dc:4e:6b:84:c3:89:61:52: 0a:65:ef:ac:a4:2d:6e:35:7d:b8:13:46:aa:02:15: 36:02:24:44:6f:db:35:62:b2:b8:4a:b1:ab:a6:05: c0:f9:a0:a7:54:54:98:cf:dc:ec:ff:0f:d0:77:ee: 5b:1a:10:91:4b:b2:16:8c:08:f9:22:06:f5:00:6b: b1:36:53:53:6c:8b:ab:58:ed:f3:92:27:65:0d:e9: 56:00:be:4a:ab:11:44:58:3e:6c:23:30:ad:43:a8: 7b:83:9b:ad:c5:eb:f3:a3:20:5b:be:f6:76:07:6a: 73:d9:59:da:d3:04:c2:d6:81:88:2c:8b:8a:c3:2a: 8c:83:68:3b:f7:b4:1a:4d:81:1b:42:8b:93:0d:b8: 34:7e:e1:1b:8b:e9:13:10:04:7e:bd:52:39:67:a7: 6f:51:d1:22:7d:75:65:15:3d:31:3a:3a:43:88:ae: eb:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:BF:52:AA:D4:92:00:C4:32:5D:3D:7E:CE:81:BB:E6:67:9A:2B:44 X509v3 Authority Key Identifier: keyid:D8:65:2A:39:1E:44:DB:4E:E7:6B:EE:76:A4:C4:33:F6:66:BB:50:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097027706349944834/0/D8652A391E44DB4EE76BEE76A4C433F666BB507A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D8652A391E44DB4EE76BEE76A4C433F666BB507A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097027706349944834/0/3231382e3234352e34382e302f32302d3234203d3e2034383437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 218.245.48.0/20 Signature Algorithm: sha256WithRSAEncryption 10:d8:31:cb:27:2a:eb:2f:64:6b:95:10:9c:66:8f:1b:7b:57: ae:67:ec:87:37:c8:38:9d:1b:0e:8a:d9:18:f9:99:f9:cc:25: 66:9b:ea:3a:20:3f:3c:a8:0f:ed:63:f6:c2:d1:9d:d3:34:59: fd:c1:03:bf:4d:85:7f:2c:ae:f2:98:d1:bf:bd:fc:ef:0e:cc: b7:30:0c:a3:3c:95:15:7c:f7:eb:55:e7:c3:ad:33:df:1d:64: 95:f2:5c:76:ae:1b:0c:78:73:f0:70:19:70:41:27:0d:dc:4f: e9:40:bb:18:8c:5b:68:08:de:2b:34:3b:a4:9e:1e:53:cb:0d: a0:52:2e:26:08:0b:b4:dd:78:95:6d:a9:ce:ae:35:7c:8c:f1: 11:31:48:74:97:f9:dd:f6:5f:f1:7d:3f:01:83:3e:27:93:6e: 9b:18:39:3c:72:a1:75:85:d8:55:47:c3:cb:0b:c7:c7:1d:5c: de:86:68:ad:1c:74:92:38:b5:02:37:7e:fe:c9:01:da:6e:af: 03:06:33:3d:be:88:80:a3:e1:32:ce:8e:a3:cb:fa:55:04:3f: 8d:42:19:c6:6c:78:69:37:cf:6e:df:3b:07:52:36:72:ef:c5: 2a:30:dc:e2:3c:ee:85:8b:8f:1f:5f:ed:5f:1c:e1:df:91:47: 9b:e0:56:c7 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUFMYE3f+QWZWDOHoBCIYDu1zBtbEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDg2NTJBMzkxRTQ0REI0RUU3NkJFRTc2QTRDNDMzRjY2 NkJCNTA3QTAeFw0yNjA1MTMwODQxMTVaFw0yNzA1MTIwODQ2MTVaMDMxMTAvBgNV BAMTKDNBQkY1MkFBRDQ5MjAwQzQzMjVEM0Q3RUNFODFCQkU2Njc5QTJCNDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB58G62W5T3tBwfBUlOIjDtax1 cXE44Y+kRm6dinsXaxz5xw432mLKAY4cN7HK/qCz1wLu+7Ok+SPm5xDi4jXDDGwu wN6Lfh3fvstaWlRXUgHcTmuEw4lhUgpl76ykLW41fbgTRqoCFTYCJERv2zVisrhK saumBcD5oKdUVJjP3Oz/D9B37lsaEJFLshaMCPkiBvUAa7E2U1Nsi6tY7fOSJ2UN 6VYAvkqrEURYPmwjMK1DqHuDm63F6/OjIFu+9nYHanPZWdrTBMLWgYgsi4rDKoyD aDv3tBpNgRtCi5MNuDR+4RuL6RMQBH69Ujlnp29R0SJ9dWUVPTE6OkOIruslAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUOr9SqtSSAMQyXT1+zoG75meaK0QwHwYDVR0j BBgwFoAU2GUqOR5E207na+52pMQz9ma7UHowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzAyNzcwNjM0OTk0NDgzNC8wL0Q4NjUyQTM5MUU0NERCNEVFNzZCRUU3NkE0QzQz M0Y2NjZCQjUwN0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRDg2NTJBMzkxRTQ0REI0RUU3NkJFRTc2QTRDNDMzRjY2NkJCNTA3QS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk3MDI3NzA2MzQ5OTQ0ODM0LzAvMzIzMTM4MmUzMjM0 MzUyZTM0MzgyZTMwMmYzMjMwMmQzMjM0MjAzZDNlMjAzNDM4MzQzNy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBNr1MDANBgkqhkiG9w0BAQsFAAOCAQEAENgxyycq6y9ka5UQnGaPG3tXrmfs hzfIOJ0bDorZGPmZ+cwlZpvqOiA/PKgP7WP2wtGd0zRZ/cEDv02Ffyyu8pjRv738 7w7MtzAMozyVFXz361Xnw60z3x1klfJcdq4bDHhz8HAZcEEnDdxP6UC7GIxbaAje KzQ7pJ4eU8sNoFIuJggLtN14lW2pzq41fIzxETFIdJf53fZf8X0/AYM+J5Numxg5 PHKhdYXYVUfDywvHxx1c3oZorRx0kji1Ajd+/skB2m6vAwYzPb6IgKPhMs6Oo8v6 VQQ/jUIZxmx4aTfPbt87B1I2cu/FKjDc4jzuhYuPH1/tXxzh35FHm+BWxw== -----END CERTIFICATE-----Generated at Wed May 13 12:43:09 2026 by rpki-client