$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098489245552607235/0/3132352e3235342e3138392e302f32342d3234203d3e2039383038.roa File: 3132352e3235342e3138392e302f32342d3234203d3e2039383038.roa (raw, json) Hash identifier: 14VVII3/Kh4eQWJbSdaMvxb/pl9UAqJo9as0ATjZz6g= Subject key identifier: 31:EA:7B:8B:D1:67:03:A8:DF:10:22:43:0C:4A:FB:EC:4A:98:1D:62 Certificate issuer: /CN=51110140697A5E791546E594A2208042F4C4C6DB Certificate serial: 24C2C00B9D8542CB53082B4D3D35B59A336F479A Authority key identifier: 51:11:01:40:69:7A:5E:79:15:46:E5:94:A2:20:80:42:F4:C4:C6:DB Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/51110140697A5E791546E594A2208042F4C4C6DB.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098489245552607235/0/3132352e3235342e3138392e302f32342d3234203d3e2039383038.roa Signing time: Mon 20 Apr 2026 07:28:08 +0000 ROA not before: Mon 20 Apr 2026 07:23:08 +0000 ROA not after: Mon 19 Apr 2027 07:28:08 +0000 asID: 9808 IP address blocks: 125.254.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098489245552607235/0/51110140697A5E791546E594A2208042F4C4C6DB.crl rsync://rpki-rps.cnnic.cn/repo/A1098489245552607235/0/51110140697A5E791546E594A2208042F4C4C6DB.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/51110140697A5E791546E594A2208042F4C4C6DB.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 03:58:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:c2:c0:0b:9d:85:42:cb:53:08:2b:4d:3d:35:b5:9a:33:6f:47:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=51110140697A5E791546E594A2208042F4C4C6DB Validity Not Before: Apr 20 07:23:08 2026 GMT Not After : Apr 19 07:28:08 2027 GMT Subject: CN=31EA7B8BD16703A8DF1022430C4AFBEC4A981D62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:c3:7b:82:6a:90:c1:a1:63:d2:ae:d7:52:97: 72:9b:8d:56:3b:fe:e7:94:07:41:0b:f7:b7:e8:d0: 73:ee:ce:fb:75:22:b4:4c:e6:8e:60:0c:4b:0a:a2: e2:89:b9:5f:62:03:fb:7c:df:a3:fe:36:1a:88:c9: 00:7a:61:f8:f6:30:f5:5f:65:f2:f7:d8:b4:37:b5: 90:9b:52:a2:f4:08:cc:c5:ab:7e:4e:16:f1:9f:1d: 1b:8c:ac:b9:58:46:be:a0:03:93:eb:4c:31:b4:a4: ce:8c:1c:23:21:0e:5c:ab:1f:9d:a9:8b:69:e2:ad: dc:d3:a2:90:bd:26:ac:52:4e:d9:3c:15:b4:60:4f: f3:8f:59:50:c9:7d:cd:03:1f:b7:c1:b2:c5:3a:23: 86:f0:4b:2b:c8:97:4c:c2:31:70:13:87:3d:b7:82: 0e:d6:98:4c:f6:09:ad:e0:8e:ce:e9:ca:89:ae:a6: 42:17:d9:41:a7:30:11:58:5f:40:6e:b7:8f:ab:35: 0a:0f:d8:d4:58:bd:40:b0:ba:8d:6b:a8:15:55:7c: 8c:0c:c5:50:c0:1a:6b:d4:94:c7:9d:6b:24:a0:79: 65:db:b3:22:1b:e1:8e:94:fb:eb:30:02:91:aa:10: 77:67:31:fc:9e:e9:ef:4b:54:4f:00:ad:71:dc:5c: 52:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:EA:7B:8B:D1:67:03:A8:DF:10:22:43:0C:4A:FB:EC:4A:98:1D:62 X509v3 Authority Key Identifier: keyid:51:11:01:40:69:7A:5E:79:15:46:E5:94:A2:20:80:42:F4:C4:C6:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098489245552607235/0/51110140697A5E791546E594A2208042F4C4C6DB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/51110140697A5E791546E594A2208042F4C4C6DB.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098489245552607235/0/3132352e3235342e3138392e302f32342d3234203d3e2039383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 125.254.189.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:55:59:68:6c:81:dd:23:76:eb:a1:6b:44:9b:31:3b:89:41: b0:6b:a6:e9:35:cb:28:c3:d3:d6:37:6e:1b:bb:8d:bf:9a:27: a4:fd:9d:a2:5f:ac:2b:7c:e0:39:c5:88:7a:13:91:1f:98:35: 90:be:b3:9e:08:e8:19:16:3b:ca:2c:2b:51:4a:af:54:5f:83: 1c:19:6d:6a:00:40:17:d0:f2:3d:e8:0d:03:c3:6c:92:b0:cf: f1:13:34:38:09:2b:8e:31:fd:89:35:e9:30:de:49:95:1a:6c: d3:b1:fd:06:fd:4a:95:19:fd:e6:95:70:a3:60:d0:43:c9:36: e0:4c:ac:1b:e4:a7:cf:32:ac:a9:ac:f0:60:10:a0:15:4d:0e: 29:80:e1:46:60:50:0c:6f:13:7b:77:03:93:47:2c:41:e6:1d: 49:34:20:1c:d7:49:9a:b6:89:a5:08:6a:80:11:8c:a0:63:b0: 68:fd:7f:8c:99:d0:27:c0:0a:63:3a:f3:ae:f4:26:a1:53:04: a3:0c:f2:81:b2:d4:68:fe:76:80:e5:e8:31:56:34:52:84:5b: ce:15:68:a6:e1:b3:c3:ba:00:09:be:cc:1a:20:47:02:ed:2f: 77:3b:41:5f:ea:76:67:e5:05:32:7b:d3:51:cb:4a:26:52:df: e2:97:ba:bb -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUJMLAC52FQstTCCtNPTW1mjNvR5owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTExMTAxNDA2OTdBNUU3OTE1NDZFNTk0QTIyMDgwNDJG NEM0QzZEQjAeFw0yNjA0MjAwNzIzMDhaFw0yNzA0MTkwNzI4MDhaMDMxMTAvBgNV BAMTKDMxRUE3QjhCRDE2NzAzQThERjEwMjI0MzBDNEFGQkVDNEE5ODFENjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjw3uCapDBoWPSrtdSl3KbjVY7 /ueUB0EL97fo0HPuzvt1IrRM5o5gDEsKouKJuV9iA/t836P+NhqIyQB6Yfj2MPVf ZfL32LQ3tZCbUqL0CMzFq35OFvGfHRuMrLlYRr6gA5PrTDG0pM6MHCMhDlyrH52p i2nirdzTopC9JqxSTtk8FbRgT/OPWVDJfc0DH7fBssU6I4bwSyvIl0zCMXAThz23 gg7WmEz2Ca3gjs7pyomupkIX2UGnMBFYX0But4+rNQoP2NRYvUCwuo1rqBVVfIwM xVDAGmvUlMedaySgeWXbsyIb4Y6U++swApGqEHdnMfye6e9LVE8ArXHcXFLbAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUMep7i9FnA6jfECJDDEr77EqYHWIwHwYDVR0j BBgwFoAUUREBQGl6XnkVRuWUoiCAQvTExtswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODQ4OTI0NTU1MjYwNzIzNS8wLzUxMTEwMTQwNjk3QTVFNzkxNTQ2RTU5NEEyMjA4 MDQyRjRDNEM2REIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTExMTAxNDA2OTdBNUU3OTE1NDZFNTk0QTIyMDgwNDJGNEM0QzZEQi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5ODQ4OTI0NTU1MjYwNzIzNS8wLzMxMzIzNTJlMzIz NTM0MmUzMTM4MzkyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzOTM4MzAzOC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAH3+vTANBgkqhkiG9w0BAQsFAAOCAQEAfVVZaGyB3SN266FrRJsxO4lB sGum6TXLKMPT1jduG7uNv5onpP2dol+sK3zgOcWIehORH5g1kL6zngjoGRY7yiwr UUqvVF+DHBltagBAF9DyPegNA8NskrDP8RM0OAkrjjH9iTXpMN5JlRps07H9Bv1K lRn95pVwo2DQQ8k24EysG+SnzzKsqazwYBCgFU0OKYDhRmBQDG8Te3cDk0csQeYd STQgHNdJmraJpQhqgBGMoGOwaP1/jJnQJ8AKYzrzrvQmoVMEowzygbLUaP52gOXo MVY0UoRbzhVopuGzw7oACb7MGiBHAu0vdztBX+p2Z+UFMnvTUctKJlLf4pe6uw== -----END CERTIFICATE-----Generated at Wed May 13 17:13:39 2026 by rpki-client