$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/3131362e3233362e362e302f32342d3234203d3e2034383132.roa File: 3131362e3233362e362e302f32342d3234203d3e2034383132.roa (raw, json) Hash identifier: nap/OW7+q796OhvulvmlQGXvbhs1iiS/t9VeDqb+vEg= Subject key identifier: CA:57:42:A1:EC:BE:94:5E:4E:86:D1:B7:B6:FB:D5:B7:07:58:03:7F Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 458E2BCF30F593A9B9E46253CF2ACA6DB290D37A Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/3131362e3233362e362e302f32342d3234203d3e2034383132.roa Signing time: Mon 11 May 2026 16:11:56 +0000 ROA not before: Mon 11 May 2026 16:06:56 +0000 ROA not after: Mon 10 May 2027 16:11:56 +0000 asID: 4812 IP address blocks: 116.236.6.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 08:12:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:8e:2b:cf:30:f5:93:a9:b9:e4:62:53:cf:2a:ca:6d:b2:90:d3:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: May 11 16:06:56 2026 GMT Not After : May 10 16:11:56 2027 GMT Subject: CN=CA5742A1ECBE945E4E86D1B7B6FBD5B70758037F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:7c:54:b4:60:91:3f:c9:1b:66:8f:cc:60:0c: 2c:ae:02:a6:a0:83:d2:8c:8c:25:23:b7:ef:59:a3: d1:67:c4:b5:0e:09:93:98:63:2e:11:fc:74:84:fc: 21:26:9e:81:b8:9f:99:44:82:d2:aa:a8:59:f5:78: 5a:e3:6d:c1:05:ad:b3:cc:71:28:e7:16:f5:11:d6: 18:76:3f:c7:c9:17:00:0d:e4:38:45:07:0a:f0:fb: e8:48:5f:23:55:c6:45:b2:4f:a1:58:3d:41:9b:66: 45:64:dc:55:19:5e:98:ec:51:c2:77:cf:31:3f:3d: 58:53:c7:5c:6c:dd:f3:37:f0:2f:4b:d7:d3:95:7a: 41:cb:18:fe:8d:00:3b:40:4f:dc:60:74:02:ce:11: ea:bc:75:ad:1f:19:c7:1b:49:db:22:67:1a:7e:36: 51:69:e5:b7:a3:30:fa:ba:ff:23:a3:ca:27:93:d0: 4a:84:94:bb:c3:4f:d2:66:26:fe:d1:1a:d4:b3:34: 78:d9:cf:66:ae:10:7a:b6:9f:dc:90:c6:2b:62:04: f6:db:38:df:07:0c:71:3e:cd:eb:c6:12:4f:55:fb: 22:86:d7:74:fb:1d:0a:92:f8:d2:08:80:c1:b0:06: 71:ff:dd:ac:08:c8:6d:4d:1e:d9:6b:99:f6:67:ec: ca:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:57:42:A1:EC:BE:94:5E:4E:86:D1:B7:B6:FB:D5:B7:07:58:03:7F X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/3131362e3233362e362e302f32342d3234203d3e2034383132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.236.6.0/24 Signature Algorithm: sha256WithRSAEncryption 62:d0:96:38:b6:ff:27:ad:fa:2c:a8:25:7b:5f:c6:e1:b5:76: b6:31:31:4e:a0:62:88:f4:e1:8e:ad:b7:5d:bc:d1:c6:03:3b: 1f:75:e1:5f:17:43:5a:ee:b7:d5:82:c6:bf:17:09:e9:71:db: 61:2e:06:d9:d8:cd:e4:8a:80:9a:63:46:e1:41:d9:94:2a:00: 22:0b:01:39:05:f9:ba:53:50:d2:75:84:36:3b:eb:26:a2:94: 74:ea:20:7f:27:fc:90:cf:0e:db:8e:88:41:13:85:af:9b:91: 88:0f:00:d0:74:c2:84:95:c8:99:17:7e:45:b4:7b:9a:ff:6d: 1a:49:3f:03:8c:29:1f:11:b9:3d:64:f0:28:08:4c:dc:84:6e: fd:ff:c4:81:55:eb:df:61:26:ca:0d:a9:97:26:14:e5:98:8c: 13:cd:42:f8:52:c1:74:ec:f3:02:fb:1c:8f:a0:9a:dc:ae:7a: 53:11:95:21:25:62:a1:5b:4e:42:90:62:7b:38:a8:ce:c9:6d: 91:3c:8b:a2:e5:da:d1:5e:ba:f8:c4:56:a2:1b:48:93:7a:08: ec:37:0c:74:a2:41:96:f8:56:e1:02:8c:00:84:d4:c8:92:b7: 4d:d6:0e:77:4a:1b:d0:41:e6:b8:52:f3:56:79:1b:4d:a2:82: 0e:ac:05:c6 -----BEGIN CERTIFICATE----- MIIFHDCCBASgAwIBAgIURY4rzzD1k6m55GJTzyrKbbKQ03owDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDUxMTE2MDY1NloX DTI3MDUxMDE2MTE1NlowMzExMC8GA1UEAxMoQ0E1NzQyQTFFQ0JFOTQ1RTRFODZE MUI3QjZGQkQ1QjcwNzU4MDM3RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMF8VLRgkT/JG2aPzGAMLK4CpqCD0oyMJSO371mj0WfEtQ4Jk5hjLhH8dIT8 ISaegbifmUSC0qqoWfV4WuNtwQWts8xxKOcW9RHWGHY/x8kXAA3kOEUHCvD76Ehf I1XGRbJPoVg9QZtmRWTcVRlemOxRwnfPMT89WFPHXGzd8zfwL0vX05V6QcsY/o0A O0BP3GB0As4R6rx1rR8ZxxtJ2yJnGn42UWnlt6Mw+rr/I6PKJ5PQSoSUu8NP0mYm /tEa1LM0eNnPZq4Qeraf3JDGK2IE9ts43wcMcT7N68YST1X7IobXdPsdCpL40giA wbAGcf/drAjIbU0e2WuZ9mfsyrcCAwEAAaOCAg8wggILMB0GA1UdDgQWBBTKV0Kh 7L6UXk6G0be2+9W3B1gDfzAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjCBiAYIKwYBBQUHAQsEfDB6MHgGCCsGAQUF BzALhmxyc3luYzovL3Jwa2ktcnBzLmNubmljLmNuL3JlcG8vQTEwOTcwOTk0MDI5 MDU5NzY4MzUvMS8zMTMxMzYyZTMyMzMzNjJlMzYyZTMwMmYzMjM0MmQzMjM0MjAz ZDNlMjAzNDM4MzEzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggr BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHTsBjANBgkqhkiG9w0BAQsFAAOCAQEA YtCWOLb/J636LKgle1/G4bV2tjExTqBiiPThjq23XbzRxgM7H3XhXxdDWu631YLG vxcJ6XHbYS4G2djN5IqAmmNG4UHZlCoAIgsBOQX5ulNQ0nWENjvrJqKUdOogfyf8 kM8O246IQROFr5uRiA8A0HTChJXImRd+RbR7mv9tGkk/A4wpHxG5PWTwKAhM3IRu /f/EgVXr32Emyg2plyYU5ZiME81C+FLBdOzzAvscj6Ca3K56UxGVISVioVtOQpBi eziozsltkTyLouXa0V66+MRWohtIk3oI7DcMdKJBlvhW4QKMAITUyJK3TdYOd0ob 0EHmuFLzVnkbTaKCDqwFxg== -----END CERTIFICATE-----Generated at Wed May 13 12:43:13 2026 by rpki-client