$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098494210874540035/0/3132352e3235342e3137362e302f32312d3231203d3e2039383038.roa File: 3132352e3235342e3137362e302f32312d3231203d3e2039383038.roa (raw, json) Hash identifier: lUeK8xpVipC5mFV8styuczLSL00UPEUPbJqAx4qGge8= Subject key identifier: 9E:95:5C:2E:69:81:3B:E8:28:28:6B:19:FB:32:12:11:C5:22:89:A4 Certificate issuer: /CN=6D1AB58561FCA85349B344B3CCABAF9318D49FAF Certificate serial: 1FD849502A3140153FBBD472BC594C086F83B9CD Authority key identifier: 6D:1A:B5:85:61:FC:A8:53:49:B3:44:B3:CC:AB:AF:93:18:D4:9F:AF Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6D1AB58561FCA85349B344B3CCABAF9318D49FAF.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098494210874540035/0/3132352e3235342e3137362e302f32312d3231203d3e2039383038.roa Signing time: Mon 20 Apr 2026 06:27:48 +0000 ROA not before: Mon 20 Apr 2026 06:22:48 +0000 ROA not after: Mon 19 Apr 2027 06:27:48 +0000 asID: 9808 IP address blocks: 125.254.176.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098494210874540035/0/6D1AB58561FCA85349B344B3CCABAF9318D49FAF.crl rsync://rpki-rps.cnnic.cn/repo/A1098494210874540035/0/6D1AB58561FCA85349B344B3CCABAF9318D49FAF.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6D1AB58561FCA85349B344B3CCABAF9318D49FAF.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:01:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:d8:49:50:2a:31:40:15:3f:bb:d4:72:bc:59:4c:08:6f:83:b9:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6D1AB58561FCA85349B344B3CCABAF9318D49FAF Validity Not Before: Apr 20 06:22:48 2026 GMT Not After : Apr 19 06:27:48 2027 GMT Subject: CN=9E955C2E69813BE828286B19FB321211C52289A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:2f:7e:78:9e:2a:53:87:ef:ea:0c:08:e6:69: 78:16:67:14:2f:70:2b:b8:4b:25:7a:69:1d:50:3a: ee:2b:86:9d:28:7d:e4:72:0d:d3:a2:b9:be:6b:8a: 9d:20:1b:25:fc:45:c9:ba:a7:a1:50:a4:a1:4a:13: fa:4a:16:a9:10:66:d6:df:8e:37:5a:de:56:69:b3: 6d:fd:be:c1:f2:92:ce:c6:4e:15:3f:16:c6:57:df: f7:d2:62:a1:b9:be:10:82:ae:d9:c2:11:b1:f2:fb: d4:b0:73:c9:ee:cc:f7:c3:a9:a1:e8:2e:b6:51:19: b5:fc:e0:8b:8f:1b:4a:b4:08:1f:ea:23:04:50:ed: 5b:2d:5a:d2:9e:70:25:74:ea:12:3d:dd:72:b1:30: 71:d1:a7:a1:96:1e:32:d1:d3:b3:05:99:85:43:35: f2:ff:2c:7d:21:25:11:d8:c8:22:d6:72:6f:42:89: 49:52:36:07:d4:ab:33:52:60:b5:a8:52:75:77:cb: 17:a4:d2:5e:c8:fe:7f:ad:8a:c1:57:38:a5:27:93: bf:af:f1:b9:57:e5:d9:3a:bd:84:11:8e:db:ad:b4: fe:3f:89:88:33:65:1e:0a:14:60:3c:af:b8:f1:9f: a2:4d:58:7f:6c:7a:1e:fa:7f:42:35:e2:90:c4:58: a3:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:95:5C:2E:69:81:3B:E8:28:28:6B:19:FB:32:12:11:C5:22:89:A4 X509v3 Authority Key Identifier: keyid:6D:1A:B5:85:61:FC:A8:53:49:B3:44:B3:CC:AB:AF:93:18:D4:9F:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098494210874540035/0/6D1AB58561FCA85349B344B3CCABAF9318D49FAF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6D1AB58561FCA85349B344B3CCABAF9318D49FAF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098494210874540035/0/3132352e3235342e3137362e302f32312d3231203d3e2039383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 125.254.176.0/21 Signature Algorithm: sha256WithRSAEncryption d2:40:ac:f0:cc:b9:97:5e:93:ee:3c:a2:f6:3a:f1:62:7e:ce: 6b:25:4c:69:29:29:35:23:e8:5e:9c:3b:52:48:b8:30:c1:c7: a6:fb:eb:2a:a5:4f:61:cb:f2:a7:a1:c2:6f:be:22:bd:0d:1f: af:f0:b8:b9:3d:e8:dd:57:ab:8b:33:b2:13:29:e2:28:d7:4e: a6:39:2a:72:d2:4e:6c:44:a7:00:d4:39:21:04:a8:84:81:33: b1:f1:ff:1a:92:87:7e:b0:d3:3b:62:63:41:2d:af:36:29:c5: 46:5d:2a:5c:04:d7:b8:4a:34:1e:84:33:ca:1b:60:76:a4:d7: 16:69:45:92:b9:9f:79:5e:87:5b:82:f0:d0:92:5a:87:cc:a9: 14:05:59:22:a6:9e:00:bf:75:84:ae:0a:d9:87:ab:5f:97:f5: cf:2f:fd:21:b2:29:e7:e7:a0:00:f2:90:17:09:5a:80:9a:25: e6:e7:60:00:e0:9e:5a:98:f7:43:8a:63:df:bc:4c:3d:49:97: eb:f7:16:6e:ce:e8:5d:48:be:ed:5c:7a:52:40:2c:d5:33:1d: d5:2d:56:6a:84:11:41:fe:c3:c6:c1:08:8d:0f:5c:7c:5e:09: aa:2b:b1:83:85:6d:09:0a:35:8b:9f:67:14:b9:eb:48:75:03: 50:91:8e:b8 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUH9hJUCoxQBU/u9RyvFlMCG+Duc0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkQxQUI1ODU2MUZDQTg1MzQ5QjM0NEIzQ0NBQkFGOTMx OEQ0OUZBRjAeFw0yNjA0MjAwNjIyNDhaFw0yNzA0MTkwNjI3NDhaMDMxMTAvBgNV BAMTKDlFOTU1QzJFNjk4MTNCRTgyODI4NkIxOUZCMzIxMjExQzUyMjg5QTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeL354nipTh+/qDAjmaXgWZxQv cCu4SyV6aR1QOu4rhp0ofeRyDdOiub5rip0gGyX8Rcm6p6FQpKFKE/pKFqkQZtbf jjda3lZps239vsHyks7GThU/FsZX3/fSYqG5vhCCrtnCEbHy+9Swc8nuzPfDqaHo LrZRGbX84IuPG0q0CB/qIwRQ7VstWtKecCV06hI93XKxMHHRp6GWHjLR07MFmYVD NfL/LH0hJRHYyCLWcm9CiUlSNgfUqzNSYLWoUnV3yxek0l7I/n+tisFXOKUnk7+v 8blX5dk6vYQRjtuttP4/iYgzZR4KFGA8r7jxn6JNWH9seh76f0I14pDEWKMRAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUnpVcLmmBO+goKGsZ+zISEcUiiaQwHwYDVR0j BBgwFoAUbRq1hWH8qFNJs0SzzKuvkxjUn68wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODQ5NDIxMDg3NDU0MDAzNS8wLzZEMUFCNTg1NjFGQ0E4NTM0OUIzNDRCM0NDQUJB RjkzMThENDlGQUYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNkQxQUI1ODU2MUZDQTg1MzQ5QjM0NEIzQ0NBQkFGOTMxOEQ0OUZBRi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5ODQ5NDIxMDg3NDU0MDAzNS8wLzMxMzIzNTJlMzIz NTM0MmUzMTM3MzYyZTMwMmYzMjMxMmQzMjMxMjAzZDNlMjAzOTM4MzAzOC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEA33+sDANBgkqhkiG9w0BAQsFAAOCAQEA0kCs8My5l16T7jyi9jrxYn7O ayVMaSkpNSPoXpw7Uki4MMHHpvvrKqVPYcvyp6HCb74ivQ0fr/C4uT3o3VerizOy EyniKNdOpjkqctJObESnANQ5IQSohIEzsfH/GpKHfrDTO2JjQS2vNinFRl0qXATX uEo0HoQzyhtgdqTXFmlFkrmfeV6HW4Lw0JJah8ypFAVZIqaeAL91hK4K2YerX5f1 zy/9IbIp5+egAPKQFwlagJol5udgAOCeWpj3Q4pj37xMPUmX6/cWbs7oXUi+7Vx6 UkAs1TMd1S1WaoQRQf7DxsEIjQ9cfF4Jqiuxg4VtCQo1i59nFLnrSHUDUJGOuA== -----END CERTIFICATE-----Generated at Wed May 13 14:56:34 2026 by rpki-client