$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1104586358095085577/0/3131382e36362e3234382e302f32312d3231203d3e2034383337.roa File: 3131382e36362e3234382e302f32312d3231203d3e2034383337.roa (raw, json) Hash identifier: F251ZYIEdb0QYazikx8SKnuufM2YmdvOEcR4/Bfqawc= Subject key identifier: 99:36:45:72:FE:92:67:89:9A:69:DB:66:53:C3:90:D5:2B:98:6E:78 Certificate issuer: /CN=38E427977484F36F3F0A45288D6DF64F3A7FCB09 Certificate serial: 64EDC3AC301B92E3A8798B1CA8DC46B66FFE483E Authority key identifier: 38:E4:27:97:74:84:F3:6F:3F:0A:45:28:8D:6D:F6:4F:3A:7F:CB:09 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/38E427977484F36F3F0A45288D6DF64F3A7FCB09.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1104586358095085577/0/3131382e36362e3234382e302f32312d3231203d3e2034383337.roa Signing time: Thu 07 May 2026 02:11:36 +0000 ROA not before: Thu 07 May 2026 02:06:36 +0000 ROA not after: Thu 06 May 2027 02:11:36 +0000 asID: 4837 IP address blocks: 118.66.248.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1104586358095085577/0/38E427977484F36F3F0A45288D6DF64F3A7FCB09.crl rsync://rpki-rps.cnnic.cn/repo/A1104586358095085577/0/38E427977484F36F3F0A45288D6DF64F3A7FCB09.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/38E427977484F36F3F0A45288D6DF64F3A7FCB09.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 07:28:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:ed:c3:ac:30:1b:92:e3:a8:79:8b:1c:a8:dc:46:b6:6f:fe:48:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38E427977484F36F3F0A45288D6DF64F3A7FCB09 Validity Not Before: May 7 02:06:36 2026 GMT Not After : May 6 02:11:36 2027 GMT Subject: CN=99364572FE9267899A69DB6653C390D52B986E78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:2b:3c:9c:09:13:0f:db:d0:c2:16:2d:33:98: a5:a7:4f:8b:5b:b5:b8:b4:83:15:4e:7e:25:f7:ae: a1:c2:c7:25:65:7b:93:0e:8a:50:b5:ab:c9:0d:f9: 3a:93:bd:bb:b7:3c:ca:92:5a:7c:54:a3:d6:91:b7: 04:52:3f:fa:d1:87:3d:20:f1:63:18:0d:61:3a:e2: 35:e7:6b:00:52:c0:4f:b6:ea:33:dd:e0:84:87:54: 68:74:ed:ad:a4:3a:39:7f:6d:a5:00:03:7b:f2:48: 39:f9:4b:df:1a:c6:7f:2e:38:7b:9b:54:f3:ef:b0: fb:b5:19:14:85:6c:58:00:81:95:ad:59:3a:74:1c: 22:d4:73:12:a7:cc:45:db:ab:72:80:39:ae:69:ad: 5c:6b:9d:13:b0:2f:f3:e2:ea:c9:94:72:76:28:29: 13:b4:11:e9:81:d5:1a:e2:3d:f4:af:64:db:26:78: 10:a9:a7:ad:96:95:a2:47:66:5c:3d:16:db:95:f5: 97:61:1e:39:fa:55:93:28:db:c2:ca:3e:00:07:87: e0:fd:c9:31:a6:ab:6b:43:72:72:10:d8:29:cb:7f: 61:ef:6f:aa:85:4b:af:4b:16:bc:20:8e:90:c5:50: 30:70:61:7c:0d:25:20:32:a0:04:3c:a6:ba:0e:b2: 8d:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:36:45:72:FE:92:67:89:9A:69:DB:66:53:C3:90:D5:2B:98:6E:78 X509v3 Authority Key Identifier: keyid:38:E4:27:97:74:84:F3:6F:3F:0A:45:28:8D:6D:F6:4F:3A:7F:CB:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1104586358095085577/0/38E427977484F36F3F0A45288D6DF64F3A7FCB09.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/38E427977484F36F3F0A45288D6DF64F3A7FCB09.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1104586358095085577/0/3131382e36362e3234382e302f32312d3231203d3e2034383337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 118.66.248.0/21 Signature Algorithm: sha256WithRSAEncryption 7c:82:b1:9b:2d:30:4b:b4:85:ae:f3:5e:53:7f:f9:90:33:9c: 9a:ad:a9:15:71:99:3a:9d:09:1b:09:88:fe:96:b5:fd:79:1a: dc:80:c4:0e:5f:5a:b1:55:3d:99:24:44:2e:8b:f5:6b:15:f1: f7:d6:2f:ea:d6:36:b9:16:a6:85:fb:35:11:6b:ab:2d:28:de: 7b:71:a2:4d:28:53:42:34:5b:b1:da:93:b8:a3:12:69:85:4c: 7b:28:39:ea:0a:5c:f5:96:87:ab:5f:d6:48:9d:33:e8:3d:92: fb:9b:7d:83:08:6f:c6:85:f6:00:18:31:41:35:46:0b:98:7e: cf:d8:07:4c:6f:10:c8:a2:0a:e5:ce:f6:f1:fd:0c:7a:7a:96: ad:3d:ce:97:77:2a:1b:95:43:0f:ae:39:e3:f8:0d:1a:77:46: d1:bc:d3:83:d2:c9:3b:f6:21:7e:71:ab:a6:de:73:86:13:12: f2:3b:1c:c0:0d:40:db:85:4e:5f:9b:91:dd:0f:a8:d6:7f:8a: 88:3d:56:09:5a:46:90:bf:86:ac:f4:c4:a7:e9:e7:0e:71:05: 09:33:c5:0f:be:96:89:b2:5d:d0:d6:ce:f4:0c:41:51:6b:e8: ab:44:36:c8:1d:9a:89:6a:24:ad:c0:f4:03:88:cd:4b:dd:d2: 67:c2:81:3e -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUZO3DrDAbkuOoeYscqNxGtm/+SD4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzhFNDI3OTc3NDg0RjM2RjNGMEE0NTI4OEQ2REY2NEYz QTdGQ0IwOTAeFw0yNjA1MDcwMjA2MzZaFw0yNzA1MDYwMjExMzZaMDMxMTAvBgNV BAMTKDk5MzY0NTcyRkU5MjY3ODk5QTY5REI2NjUzQzM5MEQ1MkI5ODZFNzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbKzycCRMP29DCFi0zmKWnT4tb tbi0gxVOfiX3rqHCxyVle5MOilC1q8kN+TqTvbu3PMqSWnxUo9aRtwRSP/rRhz0g 8WMYDWE64jXnawBSwE+26jPd4ISHVGh07a2kOjl/baUAA3vySDn5S98axn8uOHub VPPvsPu1GRSFbFgAgZWtWTp0HCLUcxKnzEXbq3KAOa5prVxrnROwL/Pi6smUcnYo KRO0EemB1RriPfSvZNsmeBCpp62WlaJHZlw9FtuV9ZdhHjn6VZMo28LKPgAHh+D9 yTGmq2tDcnIQ2CnLf2Hvb6qFS69LFrwgjpDFUDBwYXwNJSAyoAQ8proOso1tAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUmTZFcv6SZ4maadtmU8OQ1SuYbngwHwYDVR0j BBgwFoAUOOQnl3SE828/CkUojW32Tzp/ywkwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw NDU4NjM1ODA5NTA4NTU3Ny8wLzM4RTQyNzk3NzQ4NEYzNkYzRjBBNDUyODhENkRG NjRGM0E3RkNCMDkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMzhFNDI3OTc3NDg0RjM2RjNGMEE0NTI4OEQ2REY2NEYzQTdGQ0IwOS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTA0NTg2MzU4MDk1MDg1NTc3LzAvMzEzMTM4MmUzNjM2 MmUzMjM0MzgyZTMwMmYzMjMxMmQzMjMxMjAzZDNlMjAzNDM4MzMzNy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEA3ZC+DANBgkqhkiG9w0BAQsFAAOCAQEAfIKxmy0wS7SFrvNeU3/5kDOcmq2p FXGZOp0JGwmI/pa1/Xka3IDEDl9asVU9mSRELov1axXx99Yv6tY2uRamhfs1EWur LSjee3GiTShTQjRbsdqTuKMSaYVMeyg56gpc9ZaHq1/WSJ0z6D2S+5t9gwhvxoX2 ABgxQTVGC5h+z9gHTG8QyKIK5c728f0MenqWrT3Ol3cqG5VDD6454/gNGndG0bzT g9LJO/YhfnGrpt5zhhMS8jscwA1A24VOX5uR3Q+o1n+KiD1WCVpGkL+GrPTEp+nn DnEFCTPFD76WibJd0NbO9AxBUWvoq0Q2yB2aiWokrcD0A4jNS93SZ8KBPg== -----END CERTIFICATE-----Generated at Wed May 13 10:04:06 2026 by rpki-client