$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1104586358095085577/0/3131382e36342e302e302f32322d3232203d3e2039333839.roa File: 3131382e36342e302e302f32322d3232203d3e2039333839.roa (raw, json) Hash identifier: oy4UAbF8kIk45QDZqSxU3iR+FRmOlhEMJGLFNXkmi5I= Subject key identifier: 2F:A2:18:D1:11:1A:EC:2D:CE:EE:F7:D8:2F:7A:DD:1B:61:2C:62:96 Certificate issuer: /CN=38E427977484F36F3F0A45288D6DF64F3A7FCB09 Certificate serial: 7B9D4ADB9975D2210B3A39C83C237EE18EFEB634 Authority key identifier: 38:E4:27:97:74:84:F3:6F:3F:0A:45:28:8D:6D:F6:4F:3A:7F:CB:09 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/38E427977484F36F3F0A45288D6DF64F3A7FCB09.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1104586358095085577/0/3131382e36342e302e302f32322d3232203d3e2039333839.roa Signing time: Thu 07 May 2026 02:06:45 +0000 ROA not before: Thu 07 May 2026 02:01:45 +0000 ROA not after: Thu 06 May 2027 02:06:45 +0000 asID: 9389 IP address blocks: 118.64.0.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1104586358095085577/0/38E427977484F36F3F0A45288D6DF64F3A7FCB09.crl rsync://rpki-rps.cnnic.cn/repo/A1104586358095085577/0/38E427977484F36F3F0A45288D6DF64F3A7FCB09.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/38E427977484F36F3F0A45288D6DF64F3A7FCB09.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 13:31:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:9d:4a:db:99:75:d2:21:0b:3a:39:c8:3c:23:7e:e1:8e:fe:b6:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38E427977484F36F3F0A45288D6DF64F3A7FCB09 Validity Not Before: May 7 02:01:45 2026 GMT Not After : May 6 02:06:45 2027 GMT Subject: CN=2FA218D1111AEC2DCEEEF7D82F7ADD1B612C6296 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:7f:76:9c:12:90:fe:29:4a:87:4f:cd:2b:52: 08:2e:8b:e4:1a:b4:f9:df:70:fd:58:63:5f:57:75: a4:13:54:c7:ac:19:50:20:72:5f:25:69:9a:36:a8: 25:81:a0:43:df:90:01:38:80:3f:e2:99:85:d7:53: 31:bc:e1:bf:fe:41:fa:52:06:a2:ba:40:27:7a:a9: 21:72:04:c5:65:42:f6:bb:cb:c9:b5:8b:ef:74:59: 6d:e4:5f:a0:4e:e3:cd:4e:c1:a0:fb:5f:f5:ad:47: e1:8f:41:ee:3a:d0:0c:87:b4:ca:4b:29:66:64:f7: 27:ae:4d:08:dd:89:8e:ae:b1:f8:92:25:e9:41:3f: 22:32:3f:40:4d:09:3c:77:cd:c2:59:3e:6b:20:8e: ca:22:bf:e3:71:7d:fa:98:3a:96:05:20:bf:10:7a: 09:6c:ea:b0:8b:7d:3a:e0:7a:09:dc:56:44:63:d5: 44:99:0f:9e:c5:66:4c:a0:f7:18:30:7f:69:ae:1a: 93:8f:c5:bd:28:67:bf:b0:14:8d:7c:d9:8d:33:88: 4d:f8:3c:81:c7:21:8f:4b:67:07:56:a7:08:1f:5c: 53:82:53:d4:47:7d:85:c9:da:98:e8:68:81:35:6e: b3:4c:6a:16:19:f1:1d:f5:f0:43:42:0a:67:e7:fc: c8:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:A2:18:D1:11:1A:EC:2D:CE:EE:F7:D8:2F:7A:DD:1B:61:2C:62:96 X509v3 Authority Key Identifier: keyid:38:E4:27:97:74:84:F3:6F:3F:0A:45:28:8D:6D:F6:4F:3A:7F:CB:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1104586358095085577/0/38E427977484F36F3F0A45288D6DF64F3A7FCB09.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/38E427977484F36F3F0A45288D6DF64F3A7FCB09.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1104586358095085577/0/3131382e36342e302e302f32322d3232203d3e2039333839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 118.64.0.0/22 Signature Algorithm: sha256WithRSAEncryption 8d:60:c4:fc:5e:47:22:26:0d:13:47:7a:62:f2:eb:ae:4d:5d: b0:de:e5:d3:a4:3b:fc:12:ff:a9:c0:f9:f3:ac:9d:e9:ee:23: f3:0c:22:aa:15:75:ea:97:2a:9a:ff:69:6d:fd:8d:b3:fc:26: 8b:e8:58:16:c4:97:b9:87:dd:5e:c8:53:4a:7e:91:34:bb:fd: 7c:f8:13:71:40:f8:dd:af:53:11:44:e4:47:73:e6:ff:2b:7f: 04:f8:e3:91:c3:67:c3:3c:7f:17:4e:5f:3e:fa:cb:c1:8c:85: c3:8f:1e:4b:82:eb:43:c8:21:93:a6:ef:93:ca:bd:a2:d4:0d: 14:07:fa:ae:6f:4f:b6:f0:36:5f:dc:b3:08:fc:97:b8:a3:b8: 3a:1c:6c:2e:6b:20:7c:dc:c9:50:bf:71:ea:ab:8e:c9:1d:1a: cf:05:3a:d3:72:c7:8b:69:21:2b:8c:e8:d3:0e:a5:c2:b4:77: d3:bf:c7:92:d1:dc:d4:82:97:82:44:af:c5:b0:94:f6:b8:39: 88:cb:f8:00:90:fc:61:fc:64:7e:e6:ba:60:f3:4d:44:b7:69: 32:a6:51:51:4a:0d:fe:8f:f6:48:6c:49:49:92:0a:55:c7:c9: ee:f4:35:c9:4e:3a:29:d0:8f:65:ca:50:aa:a8:d7:fd:e0:33: 9a:d4:7e:7a -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgIUe51K25l10iELOjnIPCN+4Y7+tjQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzhFNDI3OTc3NDg0RjM2RjNGMEE0NTI4OEQ2REY2NEYz QTdGQ0IwOTAeFw0yNjA1MDcwMjAxNDVaFw0yNzA1MDYwMjA2NDVaMDMxMTAvBgNV BAMTKDJGQTIxOEQxMTExQUVDMkRDRUVFRjdEODJGN0FERDFCNjEyQzYyOTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCUf3acEpD+KUqHT80rUggui+Qa tPnfcP1YY19XdaQTVMesGVAgcl8laZo2qCWBoEPfkAE4gD/imYXXUzG84b/+QfpS BqK6QCd6qSFyBMVlQva7y8m1i+90WW3kX6BO481OwaD7X/WtR+GPQe460AyHtMpL KWZk9yeuTQjdiY6usfiSJelBPyIyP0BNCTx3zcJZPmsgjsoiv+NxffqYOpYFIL8Q egls6rCLfTrgegncVkRj1USZD57FZkyg9xgwf2muGpOPxb0oZ7+wFI182Y0ziE34 PIHHIY9LZwdWpwgfXFOCU9RHfYXJ2pjoaIE1brNMahYZ8R318ENCCmfn/MiFAgMB AAGjggINMIICCTAdBgNVHQ4EFgQUL6IY0REa7C3O7vfYL3rdG2EsYpYwHwYDVR0j BBgwFoAUOOQnl3SE828/CkUojW32Tzp/ywkwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw NDU4NjM1ODA5NTA4NTU3Ny8wLzM4RTQyNzk3NzQ4NEYzNkYzRjBBNDUyODhENkRG NjRGM0E3RkNCMDkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMzhFNDI3OTc3NDg0RjM2RjNGMEE0NTI4OEQ2REY2NEYzQTdGQ0IwOS5jZXIw gYYGCCsGAQUFBwELBHoweDB2BggrBgEFBQcwC4ZqcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTA0NTg2MzU4MDk1MDg1NTc3LzAvMzEzMTM4MmUzNjM0 MmUzMDJlMzAyZjMyMzIyZDMyMzIyMDNkM2UyMDM5MzMzODM5LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQC dkAAMA0GCSqGSIb3DQEBCwUAA4IBAQCNYMT8XkciJg0TR3pi8uuuTV2w3uXTpDv8 Ev+pwPnzrJ3p7iPzDCKqFXXqlyqa/2lt/Y2z/CaL6FgWxJe5h91eyFNKfpE0u/18 +BNxQPjdr1MRRORHc+b/K38E+OORw2fDPH8XTl8++svBjIXDjx5LgutDyCGTpu+T yr2i1A0UB/qub0+28DZf3LMI/Je4o7g6HGwuayB83MlQv3Hqq47JHRrPBTrTcseL aSErjOjTDqXCtHfTv8eS0dzUgpeCRK/FsJT2uDmIy/gAkPxh/GR+5rpg801Et2ky plFRSg3+j/ZIbElJkgpVx8nu9DXJTjop0I9lylCqqNf94DOa1H56 -----END CERTIFICATE-----Generated at Wed May 13 05:14:17 2026 by rpki-client