$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098494210874540035/0/3132352e3235342e3136382e302f32312d3231203d3e2039383038.roa File: 3132352e3235342e3136382e302f32312d3231203d3e2039383038.roa (raw, json) Hash identifier: jIBaOQf/G7rNS/DVWjE6H4dhEL1mXI4wvD13/gtpmAU= Subject key identifier: 5D:DC:1C:A1:DC:D2:83:35:88:49:7F:AF:30:5C:D1:41:41:A9:3D:A6 Certificate issuer: /CN=6D1AB58561FCA85349B344B3CCABAF9318D49FAF Certificate serial: 6D08AB939B1CFF26E7F81AC5148D836103CC1D6B Authority key identifier: 6D:1A:B5:85:61:FC:A8:53:49:B3:44:B3:CC:AB:AF:93:18:D4:9F:AF Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6D1AB58561FCA85349B344B3CCABAF9318D49FAF.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098494210874540035/0/3132352e3235342e3136382e302f32312d3231203d3e2039383038.roa Signing time: Wed 13 May 2026 01:53:28 +0000 ROA not before: Wed 13 May 2026 01:48:28 +0000 ROA not after: Wed 12 May 2027 01:53:28 +0000 asID: 9808 IP address blocks: 125.254.168.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098494210874540035/0/6D1AB58561FCA85349B344B3CCABAF9318D49FAF.crl rsync://rpki-rps.cnnic.cn/repo/A1098494210874540035/0/6D1AB58561FCA85349B344B3CCABAF9318D49FAF.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6D1AB58561FCA85349B344B3CCABAF9318D49FAF.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:01:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:08:ab:93:9b:1c:ff:26:e7:f8:1a:c5:14:8d:83:61:03:cc:1d:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6D1AB58561FCA85349B344B3CCABAF9318D49FAF Validity Not Before: May 13 01:48:28 2026 GMT Not After : May 12 01:53:28 2027 GMT Subject: CN=5DDC1CA1DCD2833588497FAF305CD14141A93DA6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:b7:15:38:08:b1:39:70:73:b6:b1:d7:b0:27: 1b:10:07:24:53:54:22:bc:d4:47:39:36:6c:8b:9a: b7:cb:33:7c:3a:20:31:14:ee:c7:9b:32:54:3d:2a: 79:70:89:50:35:74:04:08:cf:f5:07:9f:a9:8e:76: 4a:05:45:8a:7b:0b:7a:97:02:75:af:ff:44:4e:d6: a5:3f:f1:50:64:19:57:2d:fd:93:46:7b:f8:31:a2: b9:72:54:e7:57:aa:b4:6f:05:04:fb:68:54:a9:26: 23:87:55:f8:b5:05:8d:cf:81:50:d6:71:b0:3f:f0: 2d:f6:1b:8e:a5:e8:d9:a4:bc:d1:1b:18:26:20:0b: 21:90:2e:25:f4:d0:ae:d9:7a:aa:74:b5:26:02:d1: 76:31:cf:07:a3:f2:bf:91:ab:00:6c:84:c5:fb:0f: dd:83:20:4a:67:1a:cc:00:04:fa:84:7a:e5:b1:13: 95:b9:25:81:5c:d7:a5:f1:74:d7:b9:42:62:57:4e: d2:58:47:bd:3f:c3:1b:4b:5e:ea:d5:6c:31:17:7c: fc:91:2e:a1:a0:80:ab:06:03:23:37:c6:f0:08:1f: 72:6c:2e:f4:c3:a0:13:b0:0a:b3:78:0c:15:2e:98: 19:64:41:0f:a5:a8:c0:54:7f:48:f3:02:cf:a6:10: 69:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:DC:1C:A1:DC:D2:83:35:88:49:7F:AF:30:5C:D1:41:41:A9:3D:A6 X509v3 Authority Key Identifier: keyid:6D:1A:B5:85:61:FC:A8:53:49:B3:44:B3:CC:AB:AF:93:18:D4:9F:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098494210874540035/0/6D1AB58561FCA85349B344B3CCABAF9318D49FAF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6D1AB58561FCA85349B344B3CCABAF9318D49FAF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098494210874540035/0/3132352e3235342e3136382e302f32312d3231203d3e2039383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 125.254.168.0/21 Signature Algorithm: sha256WithRSAEncryption b3:5f:1b:53:50:4f:ad:ce:84:bb:6e:48:19:e7:d5:b0:a7:17: 9c:86:b6:26:f5:87:48:50:36:91:a7:a6:da:d2:72:7e:2f:5d: 07:b2:5a:83:3e:1e:ce:0e:be:84:39:4a:6b:91:fd:f3:f9:4a: 05:5a:d7:a3:38:c8:db:75:9e:91:1b:96:b3:88:af:d6:94:87: 40:50:c9:18:e4:13:f3:ba:f3:d8:ae:a6:19:19:d5:58:a7:6a: 43:d1:fb:8f:8a:ac:30:9e:50:fa:a9:4c:9a:fb:74:70:9e:7d: e0:93:cf:1e:ae:3e:21:37:42:7d:24:49:84:5c:e2:c4:a8:65: cc:51:d6:c4:7a:45:6e:f3:7e:47:4a:63:e5:88:ab:28:eb:b5: af:cd:63:0a:ce:3b:c4:91:f3:a5:6b:53:14:e3:e1:f4:59:5d: 1d:2c:b3:a9:dc:4b:51:b4:29:b9:c4:21:d3:99:f4:24:46:17: f4:50:5e:a3:64:e0:95:38:d2:d0:58:6d:b0:c8:b8:53:61:08: 15:3c:e4:1b:58:dd:d7:22:a0:32:5c:16:4e:1b:ca:08:29:66: 33:c8:4d:0a:e9:72:04:d3:24:28:ce:b0:2e:e3:e7:eb:77:f1: 93:6c:b2:28:cf:32:bc:36:10:c2:45:5a:2e:82:d6:d0:25:a1: e6:b6:f3:a0 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUbQirk5sc/ybn+BrFFI2DYQPMHWswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkQxQUI1ODU2MUZDQTg1MzQ5QjM0NEIzQ0NBQkFGOTMx OEQ0OUZBRjAeFw0yNjA1MTMwMTQ4MjhaFw0yNzA1MTIwMTUzMjhaMDMxMTAvBgNV BAMTKDVEREMxQ0ExRENEMjgzMzU4ODQ5N0ZBRjMwNUNEMTQxNDFBOTNEQTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNtxU4CLE5cHO2sdewJxsQByRT VCK81Ec5NmyLmrfLM3w6IDEU7sebMlQ9KnlwiVA1dAQIz/UHn6mOdkoFRYp7C3qX AnWv/0RO1qU/8VBkGVct/ZNGe/gxorlyVOdXqrRvBQT7aFSpJiOHVfi1BY3PgVDW cbA/8C32G46l6NmkvNEbGCYgCyGQLiX00K7Zeqp0tSYC0XYxzwej8r+RqwBshMX7 D92DIEpnGswABPqEeuWxE5W5JYFc16XxdNe5QmJXTtJYR70/wxtLXurVbDEXfPyR LqGggKsGAyM3xvAIH3JsLvTDoBOwCrN4DBUumBlkQQ+lqMBUf0jzAs+mEGklAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUXdwcodzSgzWISX+vMFzRQUGpPaYwHwYDVR0j BBgwFoAUbRq1hWH8qFNJs0SzzKuvkxjUn68wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODQ5NDIxMDg3NDU0MDAzNS8wLzZEMUFCNTg1NjFGQ0E4NTM0OUIzNDRCM0NDQUJB RjkzMThENDlGQUYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNkQxQUI1ODU2MUZDQTg1MzQ5QjM0NEIzQ0NBQkFGOTMxOEQ0OUZBRi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5ODQ5NDIxMDg3NDU0MDAzNS8wLzMxMzIzNTJlMzIz NTM0MmUzMTM2MzgyZTMwMmYzMjMxMmQzMjMxMjAzZDNlMjAzOTM4MzAzOC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEA33+qDANBgkqhkiG9w0BAQsFAAOCAQEAs18bU1BPrc6Eu25IGefVsKcX nIa2JvWHSFA2kaem2tJyfi9dB7Jagz4ezg6+hDlKa5H98/lKBVrXozjI23WekRuW s4iv1pSHQFDJGOQT87rz2K6mGRnVWKdqQ9H7j4qsMJ5Q+qlMmvt0cJ594JPPHq4+ ITdCfSRJhFzixKhlzFHWxHpFbvN+R0pj5YirKOu1r81jCs47xJHzpWtTFOPh9Fld HSyzqdxLUbQpucQh05n0JEYX9FBeo2TglTjS0FhtsMi4U2EIFTzkG1jd1yKgMlwW ThvKCClmM8hNCulyBNMkKM6wLuPn63fxk2yyKM8yvDYQwkVaLoLW0CWh5rbzoA== -----END CERTIFICATE-----Generated at Wed May 13 15:36:48 2026 by rpki-client