$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1099583963774582787/0/3138302e3233352e36342e302f32312d3231203d3e2030.roa File: 3138302e3233352e36342e302f32312d3231203d3e2030.roa (raw, json) Hash identifier: cMBPUCq8Td7R/BqK16OR4ezGPHcLtpaW8zDbr66rEq8= Subject key identifier: FE:CE:53:63:0B:F1:D9:75:60:F3:39:C4:D0:E8:F4:10:39:AE:6B:6D Certificate issuer: /CN=8B215666577E10BF852C3AC9A7EB59536DFF468B Certificate serial: 46A29E859B07E356422085FA5F0B13233E8C06AA Authority key identifier: 8B:21:56:66:57:7E:10:BF:85:2C:3A:C9:A7:EB:59:53:6D:FF:46:8B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8B215666577E10BF852C3AC9A7EB59536DFF468B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1099583963774582787/0/3138302e3233352e36342e302f32312d3231203d3e2030.roa Signing time: Tue 28 Apr 2026 09:10:17 +0000 ROA not before: Tue 28 Apr 2026 09:05:17 +0000 ROA not after: Tue 27 Apr 2027 09:10:17 +0000 asID: 0 IP address blocks: 180.235.64.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1099583963774582787/0/8B215666577E10BF852C3AC9A7EB59536DFF468B.crl rsync://rpki-rps.cnnic.cn/repo/A1099583963774582787/0/8B215666577E10BF852C3AC9A7EB59536DFF468B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8B215666577E10BF852C3AC9A7EB59536DFF468B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:58:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:a2:9e:85:9b:07:e3:56:42:20:85:fa:5f:0b:13:23:3e:8c:06:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8B215666577E10BF852C3AC9A7EB59536DFF468B Validity Not Before: Apr 28 09:05:17 2026 GMT Not After : Apr 27 09:10:17 2027 GMT Subject: CN=FECE53630BF1D97560F339C4D0E8F41039AE6B6D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:6e:0f:1d:fa:51:e0:6e:09:f9:9a:04:d5:15: aa:dd:f8:47:7c:9f:bd:1b:17:33:af:72:96:ec:85: 99:17:97:a9:e7:1f:bb:47:01:b1:75:9d:be:dc:5b: 44:ac:2c:90:10:c5:0b:ce:b6:8e:07:2e:be:bd:8e: 36:95:2b:6f:a9:79:02:a5:8d:81:7f:16:fc:af:8e: 76:0b:62:a0:a7:07:18:0f:5a:cb:c7:ee:24:af:ff: 53:1a:19:d4:c5:5e:fa:0f:67:63:f2:26:41:d2:36: b4:a4:31:7d:7e:aa:40:d9:01:89:ce:b2:35:85:17: d6:4d:a2:25:2d:98:85:65:47:11:6f:de:b1:bb:84: b9:df:8e:3d:4d:73:c4:17:c7:4e:ea:e8:15:81:67: fa:71:e2:b7:e6:e3:ee:9f:3a:ca:77:ef:2f:a8:10: b3:0a:6b:98:2b:da:9e:bf:79:b4:62:d8:3f:68:4b: 94:6c:dd:22:dc:68:ab:69:06:24:0f:69:f1:8e:fa: f8:ac:11:a4:ec:f3:9e:96:18:4a:f6:0d:44:6f:f8: 9b:f2:27:45:a9:f8:1b:76:1c:3e:23:ed:8a:2b:60: ab:44:52:c7:ec:e4:38:55:f9:05:7f:65:ee:fc:81: 73:db:f3:c9:39:5c:ef:41:dd:8e:dd:7a:5a:86:04: 9a:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:CE:53:63:0B:F1:D9:75:60:F3:39:C4:D0:E8:F4:10:39:AE:6B:6D X509v3 Authority Key Identifier: keyid:8B:21:56:66:57:7E:10:BF:85:2C:3A:C9:A7:EB:59:53:6D:FF:46:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1099583963774582787/0/8B215666577E10BF852C3AC9A7EB59536DFF468B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8B215666577E10BF852C3AC9A7EB59536DFF468B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1099583963774582787/0/3138302e3233352e36342e302f32312d3231203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.235.64.0/21 Signature Algorithm: sha256WithRSAEncryption 69:78:ef:54:4a:de:f7:31:95:a0:d6:75:57:82:50:72:50:3a: ad:18:40:9b:3b:1a:d4:d6:f2:31:19:12:fa:4d:29:f5:0b:a2: 36:55:5f:d2:c7:8b:df:96:e1:5b:a9:1e:b8:0f:b6:82:23:da: c5:88:f7:73:51:2b:89:6d:6b:0a:29:68:b5:27:59:97:2d:f5: 59:7a:ca:bc:c0:3b:4b:c0:9e:f9:0d:f4:81:78:63:6c:11:64: c1:5a:21:e1:12:c0:82:bc:25:6f:c1:48:cc:a8:d9:a1:e4:00: ce:e2:ca:49:e6:7e:aa:cb:0d:55:55:d7:c1:07:f7:73:c7:fe: c7:1b:e0:9a:1f:f8:98:a2:f9:8a:77:98:e5:ca:69:e9:9f:98: bf:fc:3a:cc:cb:e5:d2:f1:14:27:c7:37:62:47:c9:16:dd:aa: 49:c8:89:0a:df:3a:94:fe:96:f6:56:9a:8b:0c:eb:bd:a2:a7: 33:65:de:16:5c:2d:51:95:31:e6:c1:4a:c3:dd:fe:ea:03:bd: 28:37:96:73:42:54:fc:3e:b8:6b:95:1a:e0:ea:d1:cb:e9:46: 10:ed:b3:8e:2d:02:ff:a4:6c:e1:15:9b:ea:9f:ea:18:2a:d0: 31:39:0f:2e:2b:85:70:39:a2:56:a2:f5:8c:e4:a9:53:ac:40: ba:49:ab:12 -----BEGIN CERTIFICATE----- MIIFATCCA+mgAwIBAgIURqKehZsH41ZCIIX6XwsTIz6MBqowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEIyMTU2NjY1NzdFMTBCRjg1MkMzQUM5QTdFQjU5NTM2 REZGNDY4QjAeFw0yNjA0MjgwOTA1MTdaFw0yNzA0MjcwOTEwMTdaMDMxMTAvBgNV BAMTKEZFQ0U1MzYzMEJGMUQ5NzU2MEYzMzlDNEQwRThGNDEwMzlBRTZCNkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0bg8d+lHgbgn5mgTVFard+Ed8 n70bFzOvcpbshZkXl6nnH7tHAbF1nb7cW0SsLJAQxQvOto4HLr69jjaVK2+peQKl jYF/FvyvjnYLYqCnBxgPWsvH7iSv/1MaGdTFXvoPZ2PyJkHSNrSkMX1+qkDZAYnO sjWFF9ZNoiUtmIVlRxFv3rG7hLnfjj1Nc8QXx07q6BWBZ/px4rfm4+6fOsp37y+o ELMKa5gr2p6/ebRi2D9oS5Rs3SLcaKtpBiQPafGO+visEaTs856WGEr2DURv+Jvy J0Wp+Bt2HD4j7YorYKtEUsfs5DhV+QV/Ze78gXPb88k5XO9B3Y7delqGBJqLAgMB AAGjggILMIICBzAdBgNVHQ4EFgQU/s5TYwvx2XVg8znE0Oj0EDmua20wHwYDVR0j BBgwFoAUiyFWZld+EL+FLDrJp+tZU23/RoswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 OTU4Mzk2Mzc3NDU4Mjc4Ny8wLzhCMjE1NjY2NTc3RTEwQkY4NTJDM0FDOUE3RUI1 OTUzNkRGRjQ2OEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOEIyMTU2NjY1NzdFMTBCRjg1MkMzQUM5QTdFQjU5NTM2REZGNDY4Qi5jZXIw gYQGCCsGAQUFBwELBHgwdjB0BggrBgEFBQcwC4ZocnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk5NTgzOTYzNzc0NTgyNzg3LzAvMzEzODMwMmUzMjMz MzUyZTM2MzQyZTMwMmYzMjMxMmQzMjMxMjAzZDNlMjAzMC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA7Tr QDANBgkqhkiG9w0BAQsFAAOCAQEAaXjvVEre9zGVoNZ1V4JQclA6rRhAmzsa1Nby MRkS+k0p9QuiNlVf0seL35bhW6keuA+2giPaxYj3c1EriW1rCilotSdZly31WXrK vMA7S8Ce+Q30gXhjbBFkwVoh4RLAgrwlb8FIzKjZoeQAzuLKSeZ+qssNVVXXwQf3 c8f+xxvgmh/4mKL5ineY5cpp6Z+Yv/w6zMvl0vEUJ8c3YkfJFt2qSciJCt86lP6W 9laaiwzrvaKnM2XeFlwtUZUx5sFKw93+6gO9KDeWc0JU/D64a5Ua4OrRy+lGEO2z ji0C/6Rs4RWb6p/qGCrQMTkPLiuFcDmiVqL1jOSpU6xAukmrEg== -----END CERTIFICATE-----Generated at Wed May 13 08:28:39 2026 by rpki-client