$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098494210874540035/0/3132352e3235342e3136382e302f32312d3231203d3e203233373234.roa File: 3132352e3235342e3136382e302f32312d3231203d3e203233373234.roa (raw, json) Hash identifier: gj+UmcoP7t9OxmOHfB+/nZrnXWANKJKXP2VI5gBrjmM= Subject key identifier: 87:78:BD:0F:D7:D9:F4:5D:73:D0:FE:0B:0F:60:63:E4:91:40:85:4C Certificate issuer: /CN=6D1AB58561FCA85349B344B3CCABAF9318D49FAF Certificate serial: 0D000F20276EC0861D35FDE2E9B561AD0BFDEADA Authority key identifier: 6D:1A:B5:85:61:FC:A8:53:49:B3:44:B3:CC:AB:AF:93:18:D4:9F:AF Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6D1AB58561FCA85349B344B3CCABAF9318D49FAF.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098494210874540035/0/3132352e3235342e3136382e302f32312d3231203d3e203233373234.roa Signing time: Wed 13 May 2026 01:53:27 +0000 ROA not before: Wed 13 May 2026 01:48:27 +0000 ROA not after: Wed 12 May 2027 01:53:27 +0000 asID: 23724 IP address blocks: 125.254.168.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098494210874540035/0/6D1AB58561FCA85349B344B3CCABAF9318D49FAF.crl rsync://rpki-rps.cnnic.cn/repo/A1098494210874540035/0/6D1AB58561FCA85349B344B3CCABAF9318D49FAF.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6D1AB58561FCA85349B344B3CCABAF9318D49FAF.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:01:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:00:0f:20:27:6e:c0:86:1d:35:fd:e2:e9:b5:61:ad:0b:fd:ea:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6D1AB58561FCA85349B344B3CCABAF9318D49FAF Validity Not Before: May 13 01:48:27 2026 GMT Not After : May 12 01:53:27 2027 GMT Subject: CN=8778BD0FD7D9F45D73D0FE0B0F6063E49140854C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:7e:5f:3f:ac:2d:cf:0c:5a:af:23:f7:eb:b8: cf:75:11:76:d5:d0:41:aa:44:42:45:3b:db:8b:cc: dd:a4:10:ef:23:b2:52:86:14:35:bc:88:5e:57:6c: 01:e8:31:85:57:ea:a1:43:7c:ce:3f:ca:c0:3c:d4: 26:26:a5:dd:73:53:70:15:6c:4c:b5:0a:70:ce:8b: e8:da:3b:61:cc:2f:5e:55:9e:37:7b:32:15:9b:3e: 56:d3:fd:df:e5:83:6f:d3:56:09:c8:d7:70:5a:cd: eb:80:08:33:58:41:bd:37:06:2a:bf:5b:c3:e9:db: c2:43:4b:4d:b8:6b:d2:65:3e:2f:20:90:24:05:0b: 77:3d:47:e5:e3:81:6a:54:5e:df:dd:b2:67:25:91: d2:b2:2e:37:08:41:2f:f6:dd:f1:01:a5:c4:2b:b7: 83:48:60:62:7e:4f:ca:84:8d:c9:e9:4f:84:ef:de: 3d:e6:2a:6e:60:e0:8a:43:e6:20:3c:52:6c:b0:ea: d3:76:78:3e:1a:3f:3d:4b:71:8e:70:05:2a:96:61: 67:0f:b4:d9:04:d3:f4:15:df:c6:e5:53:34:db:bf: be:1c:40:2f:ac:81:41:7b:26:ec:7e:a9:8d:f8:0c: 9d:42:c7:e3:9e:8d:bd:8d:3c:10:f6:f0:b7:e6:dd: 51:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:78:BD:0F:D7:D9:F4:5D:73:D0:FE:0B:0F:60:63:E4:91:40:85:4C X509v3 Authority Key Identifier: keyid:6D:1A:B5:85:61:FC:A8:53:49:B3:44:B3:CC:AB:AF:93:18:D4:9F:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098494210874540035/0/6D1AB58561FCA85349B344B3CCABAF9318D49FAF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6D1AB58561FCA85349B344B3CCABAF9318D49FAF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098494210874540035/0/3132352e3235342e3136382e302f32312d3231203d3e203233373234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 125.254.168.0/21 Signature Algorithm: sha256WithRSAEncryption 8e:42:60:c6:26:63:82:35:9f:0a:fb:d1:f9:6d:2b:a2:97:29: 15:29:e5:1e:6d:5b:73:79:fc:a7:7d:8b:94:7b:8e:1e:8e:0f: e1:98:ff:8c:a4:fa:94:f6:cb:c3:e9:4d:20:ac:56:09:49:e5: 57:cd:a8:9f:63:8c:29:99:db:f4:b2:ef:e4:e1:e7:46:91:ad: db:ad:91:d7:cd:de:58:40:8b:58:e0:17:00:97:e1:0b:a6:fa: 22:cf:4d:15:86:d0:81:04:02:e2:20:c6:bf:1c:3f:8b:bf:6a: e4:26:48:6d:38:a2:61:a1:73:d9:9d:1c:60:73:34:ea:76:4e: 02:5d:13:be:7b:28:b2:16:7b:89:34:8a:1a:12:2f:3f:ed:17: 12:da:b5:86:7f:51:b4:04:b1:fd:40:2d:1b:d1:b3:11:16:c0: e8:ef:42:22:8e:b5:3b:d8:4c:01:87:f9:01:6c:5e:5e:6b:4a: 56:5e:af:3f:bc:a8:aa:a3:e0:10:7e:db:0c:1f:3f:c8:1f:80: 63:00:a9:3f:86:40:dd:8e:fc:68:d2:34:2e:60:c1:e8:d0:1e: 03:56:6e:cc:62:8b:b2:f5:23:0e:8b:8f:df:88:0e:3b:00:e8: a4:7d:d8:32:b0:86:17:68:8c:cb:79:7f:39:6b:6c:ce:0b:36: b3:36:3d:bf -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUDQAPICduwIYdNf3i6bVhrQv96towDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkQxQUI1ODU2MUZDQTg1MzQ5QjM0NEIzQ0NBQkFGOTMx OEQ0OUZBRjAeFw0yNjA1MTMwMTQ4MjdaFw0yNzA1MTIwMTUzMjdaMDMxMTAvBgNV BAMTKDg3NzhCRDBGRDdEOUY0NUQ3M0QwRkUwQjBGNjA2M0U0OTE0MDg1NEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcfl8/rC3PDFqvI/fruM91EXbV 0EGqREJFO9uLzN2kEO8jslKGFDW8iF5XbAHoMYVX6qFDfM4/ysA81CYmpd1zU3AV bEy1CnDOi+jaO2HML15Vnjd7MhWbPlbT/d/lg2/TVgnI13BazeuACDNYQb03Biq/ W8Pp28JDS024a9JlPi8gkCQFC3c9R+XjgWpUXt/dsmclkdKyLjcIQS/23fEBpcQr t4NIYGJ+T8qEjcnpT4Tv3j3mKm5g4IpD5iA8Umyw6tN2eD4aPz1LcY5wBSqWYWcP tNkE0/QV38blUzTbv74cQC+sgUF7Jux+qY34DJ1Cx+Oejb2NPBD28Lfm3VHrAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUh3i9D9fZ9F1z0P4LD2Bj5JFAhUwwHwYDVR0j BBgwFoAUbRq1hWH8qFNJs0SzzKuvkxjUn68wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODQ5NDIxMDg3NDU0MDAzNS8wLzZEMUFCNTg1NjFGQ0E4NTM0OUIzNDRCM0NDQUJB RjkzMThENDlGQUYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNkQxQUI1ODU2MUZDQTg1MzQ5QjM0NEIzQ0NBQkFGOTMxOEQ0OUZBRi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTg0OTQyMTA4NzQ1NDAwMzUvMC8zMTMyMzUyZTMy MzUzNDJlMzEzNjM4MmUzMDJmMzIzMTJkMzIzMTIwM2QzZTIwMzIzMzM3MzIzNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEA33+qDANBgkqhkiG9w0BAQsFAAOCAQEAjkJgxiZjgjWfCvvR+W0r opcpFSnlHm1bc3n8p32LlHuOHo4P4Zj/jKT6lPbLw+lNIKxWCUnlV82on2OMKZnb 9LLv5OHnRpGt262R183eWECLWOAXAJfhC6b6Is9NFYbQgQQC4iDGvxw/i79q5CZI bTiiYaFz2Z0cYHM06nZOAl0TvnsoshZ7iTSKGhIvP+0XEtq1hn9RtASx/UAtG9Gz ERbA6O9CIo61O9hMAYf5AWxeXmtKVl6vP7yoqqPgEH7bDB8/yB+AYwCpP4ZA3Y78 aNI0LmDB6NAeA1ZuzGKLsvUjDouP34gOOwDopH3YMrCGF2iMy3l/OWtszgs2szY9 vw== -----END CERTIFICATE-----Generated at Wed May 13 15:56:10 2026 by rpki-client