$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1104586358095085577/0/3131382e36362e3232342e302f32302d3230203d3e2039333839.roa File: 3131382e36362e3232342e302f32302d3230203d3e2039333839.roa (raw, json) Hash identifier: VoEPZV2uikZMpg3NN/MblpcH5H7VW4gjRc9iZGDuynU= Subject key identifier: 31:64:43:52:56:9D:DB:3F:B7:26:B6:56:22:35:7F:A8:F5:93:FE:82 Certificate issuer: /CN=38E427977484F36F3F0A45288D6DF64F3A7FCB09 Certificate serial: 1DCB21CB01F6A6641A8A6A1CEA59512AAE0FDE66 Authority key identifier: 38:E4:27:97:74:84:F3:6F:3F:0A:45:28:8D:6D:F6:4F:3A:7F:CB:09 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/38E427977484F36F3F0A45288D6DF64F3A7FCB09.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1104586358095085577/0/3131382e36362e3232342e302f32302d3230203d3e2039333839.roa Signing time: Thu 07 May 2026 02:11:36 +0000 ROA not before: Thu 07 May 2026 02:06:36 +0000 ROA not after: Thu 06 May 2027 02:11:36 +0000 asID: 9389 IP address blocks: 118.66.224.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1104586358095085577/0/38E427977484F36F3F0A45288D6DF64F3A7FCB09.crl rsync://rpki-rps.cnnic.cn/repo/A1104586358095085577/0/38E427977484F36F3F0A45288D6DF64F3A7FCB09.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/38E427977484F36F3F0A45288D6DF64F3A7FCB09.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 13:31:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:cb:21:cb:01:f6:a6:64:1a:8a:6a:1c:ea:59:51:2a:ae:0f:de:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38E427977484F36F3F0A45288D6DF64F3A7FCB09 Validity Not Before: May 7 02:06:36 2026 GMT Not After : May 6 02:11:36 2027 GMT Subject: CN=31644352569DDB3FB726B65622357FA8F593FE82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:36:e4:0f:ec:4c:6d:6a:37:a3:21:63:de:0c: 95:b4:72:e0:9d:b0:5b:93:3e:92:7c:32:33:4c:13: 86:c4:d2:d7:d0:5b:87:59:91:54:21:b2:2d:21:13: 11:5b:b5:b9:a3:fc:1d:7f:7a:fc:07:5d:82:4c:51: 04:65:5d:95:f8:92:8b:fe:16:cc:31:77:c2:d8:42: 37:36:d0:12:bf:4c:39:f9:f1:66:aa:7c:51:0b:aa: 95:14:1a:20:5f:52:b0:56:17:74:2d:36:1c:63:ec: 01:fd:ba:08:ce:93:a8:96:f4:b7:5a:f6:a1:c6:7d: fa:22:98:cd:d0:67:88:3c:60:ce:7f:36:37:0e:30: a0:5a:79:b4:bb:6c:54:d3:64:b1:93:8d:08:f7:74: 64:17:f6:79:e5:23:d8:88:5c:ae:0c:85:58:84:62: ac:60:07:3d:76:fd:00:15:99:42:e7:2d:72:24:28: 54:b1:cc:14:de:79:e6:09:24:f2:2f:e4:f0:f2:0a: 8f:ad:e7:e6:37:16:a3:cb:c9:48:21:94:e0:f3:52: d9:1e:5d:ff:c8:70:45:a5:10:57:e7:39:9c:d0:40: 61:a9:dd:50:36:74:82:07:c0:51:64:87:94:1c:07: b2:83:1d:cb:10:e9:63:bc:81:9b:f7:49:75:ac:43: f4:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:64:43:52:56:9D:DB:3F:B7:26:B6:56:22:35:7F:A8:F5:93:FE:82 X509v3 Authority Key Identifier: keyid:38:E4:27:97:74:84:F3:6F:3F:0A:45:28:8D:6D:F6:4F:3A:7F:CB:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1104586358095085577/0/38E427977484F36F3F0A45288D6DF64F3A7FCB09.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/38E427977484F36F3F0A45288D6DF64F3A7FCB09.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1104586358095085577/0/3131382e36362e3232342e302f32302d3230203d3e2039333839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 118.66.224.0/20 Signature Algorithm: sha256WithRSAEncryption 04:5b:ec:10:83:23:2d:d5:07:42:19:c2:f8:53:20:d7:c3:78: bf:61:b9:57:19:28:bc:a0:16:7e:c2:ed:20:65:6a:0c:1d:df: e6:2a:e4:3b:fb:1e:f7:d6:65:70:5e:ed:ff:6d:a5:b7:22:77: 2e:38:51:78:8a:a1:a2:68:61:83:84:fc:19:9c:79:8c:42:8e: b8:ed:f4:f4:89:59:89:49:57:9a:2e:a0:d2:02:75:1c:4f:fa: 23:91:41:d9:35:3b:f3:0d:d9:25:60:52:a1:74:e9:1b:85:f2: 5e:a0:83:e5:34:70:eb:7a:26:b0:f9:34:2d:be:e4:60:d0:c6: 8a:4e:e4:7d:ed:98:ea:3b:83:b8:08:30:61:e9:bc:47:09:16: 3a:57:df:85:df:1b:c6:e0:30:73:59:6b:a3:e6:dd:cf:be:85: 41:0d:c2:f7:a9:0e:a4:93:93:85:bb:89:00:f9:9f:67:a1:d7: 6d:06:a2:ba:93:9b:ad:b4:e3:77:e1:cd:ed:8f:ba:1c:08:54: 8a:c2:4b:e2:40:15:7d:58:36:45:98:65:42:52:49:03:b3:cd: da:46:7d:cf:e3:26:9d:60:e4:46:4a:61:83:79:3b:01:41:4a: b8:cc:0d:a1:f6:ff:ab:34:d8:56:d0:09:f4:e8:d5:2d:fc:61: 41:7d:0a:4e -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUHcshywH2pmQaimoc6llRKq4P3mYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzhFNDI3OTc3NDg0RjM2RjNGMEE0NTI4OEQ2REY2NEYz QTdGQ0IwOTAeFw0yNjA1MDcwMjA2MzZaFw0yNzA1MDYwMjExMzZaMDMxMTAvBgNV BAMTKDMxNjQ0MzUyNTY5RERCM0ZCNzI2QjY1NjIyMzU3RkE4RjU5M0ZFODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQNuQP7ExtajejIWPeDJW0cuCd sFuTPpJ8MjNME4bE0tfQW4dZkVQhsi0hExFbtbmj/B1/evwHXYJMUQRlXZX4kov+ Fswxd8LYQjc20BK/TDn58WaqfFELqpUUGiBfUrBWF3QtNhxj7AH9ugjOk6iW9Lda 9qHGffoimM3QZ4g8YM5/NjcOMKBaebS7bFTTZLGTjQj3dGQX9nnlI9iIXK4MhViE YqxgBz12/QAVmULnLXIkKFSxzBTeeeYJJPIv5PDyCo+t5+Y3FqPLyUghlODzUtke Xf/IcEWlEFfnOZzQQGGp3VA2dIIHwFFkh5QcB7KDHcsQ6WO8gZv3SXWsQ/QhAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUMWRDUlad2z+3JrZWIjV/qPWT/oIwHwYDVR0j BBgwFoAUOOQnl3SE828/CkUojW32Tzp/ywkwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw NDU4NjM1ODA5NTA4NTU3Ny8wLzM4RTQyNzk3NzQ4NEYzNkYzRjBBNDUyODhENkRG NjRGM0E3RkNCMDkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMzhFNDI3OTc3NDg0RjM2RjNGMEE0NTI4OEQ2REY2NEYzQTdGQ0IwOS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTA0NTg2MzU4MDk1MDg1NTc3LzAvMzEzMTM4MmUzNjM2 MmUzMjMyMzQyZTMwMmYzMjMwMmQzMjMwMjAzZDNlMjAzOTMzMzgzOS5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBHZC4DANBgkqhkiG9w0BAQsFAAOCAQEABFvsEIMjLdUHQhnC+FMg18N4v2G5 VxkovKAWfsLtIGVqDB3f5irkO/se99ZlcF7t/22ltyJ3LjhReIqhomhhg4T8GZx5 jEKOuO309IlZiUlXmi6g0gJ1HE/6I5FB2TU78w3ZJWBSoXTpG4XyXqCD5TRw63om sPk0Lb7kYNDGik7kfe2Y6juDuAgwYem8RwkWOlffhd8bxuAwc1lro+bdz76FQQ3C 96kOpJOThbuJAPmfZ6HXbQaiupObrbTjd+HN7Y+6HAhUisJL4kAVfVg2RZhlQlJJ A7PN2kZ9z+MmnWDkRkphg3k7AUFKuMwNofb/qzTYVtAJ9OjVLfxhQX0KTg== -----END CERTIFICATE-----Generated at Tue May 12 21:53:16 2026 by rpki-client