$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1104586358095085577/0/3132312e33392e3235352e302f32342d3234203d3e2039333839.roa File: 3132312e33392e3235352e302f32342d3234203d3e2039333839.roa (raw, json) Hash identifier: bGbqly3WjVX/D2/wcDkZysy9RmD67vU/Y/s1Wu8p6vE= Subject key identifier: 28:4F:6C:CB:3C:4F:D2:D6:CF:9E:19:5D:19:51:6B:17:F9:4C:96:B3 Certificate issuer: /CN=38E427977484F36F3F0A45288D6DF64F3A7FCB09 Certificate serial: 1B0F09411E7EE6DD1063030E10BCC77DBBE893D4 Authority key identifier: 38:E4:27:97:74:84:F3:6F:3F:0A:45:28:8D:6D:F6:4F:3A:7F:CB:09 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/38E427977484F36F3F0A45288D6DF64F3A7FCB09.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1104586358095085577/0/3132312e33392e3235352e302f32342d3234203d3e2039333839.roa Signing time: Thu 07 May 2026 02:11:36 +0000 ROA not before: Thu 07 May 2026 02:06:36 +0000 ROA not after: Thu 06 May 2027 02:11:36 +0000 asID: 9389 IP address blocks: 121.39.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1104586358095085577/0/38E427977484F36F3F0A45288D6DF64F3A7FCB09.crl rsync://rpki-rps.cnnic.cn/repo/A1104586358095085577/0/38E427977484F36F3F0A45288D6DF64F3A7FCB09.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/38E427977484F36F3F0A45288D6DF64F3A7FCB09.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 07:28:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:0f:09:41:1e:7e:e6:dd:10:63:03:0e:10:bc:c7:7d:bb:e8:93:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38E427977484F36F3F0A45288D6DF64F3A7FCB09 Validity Not Before: May 7 02:06:36 2026 GMT Not After : May 6 02:11:36 2027 GMT Subject: CN=284F6CCB3C4FD2D6CF9E195D19516B17F94C96B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:39:cc:c5:03:28:83:c9:b5:72:98:37:64:36: 9e:c8:f3:9b:7b:c4:c1:67:6e:4d:c3:91:51:fb:31: a0:95:16:0e:34:04:c8:a0:dc:1f:9c:22:8b:7a:27: e8:23:c9:c5:cd:d1:18:56:93:34:e1:43:01:6a:b9: ea:bc:27:2d:b3:1b:7e:5d:7d:ca:aa:41:3a:1f:b1: f3:95:e0:d0:19:ca:4e:1c:af:d8:a4:55:92:7d:e3: f0:28:d0:93:ce:ba:80:2f:69:42:da:80:73:02:d8: 85:43:13:61:50:03:a1:b4:26:f8:c8:e0:be:af:cf: 61:fc:d9:29:9d:b3:f9:91:0d:8e:35:cf:99:9e:76: 02:8c:65:40:81:32:3e:7b:e9:2d:6c:ba:24:3f:28: ac:ff:c6:e7:2f:e2:98:d5:7d:0c:52:c8:d4:fa:9f: 66:04:0f:c4:6f:e3:e2:ba:93:17:49:b3:af:bb:e1: ee:17:10:c6:49:98:50:d3:f5:04:78:38:01:71:3c: 63:ff:87:a2:2f:7e:a0:2f:80:40:09:12:91:5c:f1: 13:32:d2:eb:fd:cd:5b:fc:98:8f:79:80:95:1d:37: dd:70:e5:4d:82:8a:cc:1b:8c:d6:ce:b8:6c:f6:b7: 95:7f:35:bb:4d:88:77:5c:84:8d:a8:a5:e9:3c:8b: ab:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:4F:6C:CB:3C:4F:D2:D6:CF:9E:19:5D:19:51:6B:17:F9:4C:96:B3 X509v3 Authority Key Identifier: keyid:38:E4:27:97:74:84:F3:6F:3F:0A:45:28:8D:6D:F6:4F:3A:7F:CB:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1104586358095085577/0/38E427977484F36F3F0A45288D6DF64F3A7FCB09.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/38E427977484F36F3F0A45288D6DF64F3A7FCB09.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1104586358095085577/0/3132312e33392e3235352e302f32342d3234203d3e2039333839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 121.39.255.0/24 Signature Algorithm: sha256WithRSAEncryption 98:c8:64:a4:10:19:71:27:94:ce:77:a3:b4:7b:02:34:d8:fa: 85:d3:f3:d7:0d:ab:9a:0c:9c:da:15:a2:64:40:f5:b3:01:fc: 90:5b:56:50:cc:42:09:74:61:36:48:ed:cd:06:e6:68:9f:d3: d7:c2:20:f9:bc:17:22:bb:1b:59:6f:70:3d:aa:0e:00:02:d6: 6d:ce:f9:c8:ca:7d:d0:a9:ed:bc:14:07:9b:63:a7:91:76:fa: 2b:92:bc:3e:61:10:9e:4d:a5:9c:dc:1d:74:e0:b9:73:a4:87: 05:70:2d:e1:f8:5a:7f:75:f4:20:bf:60:07:24:8a:21:d0:8f: 1f:d3:b4:6e:7e:55:f9:da:5a:f3:96:3b:ae:d6:70:dc:ff:4f: 82:af:c1:35:45:78:11:71:ab:db:9f:48:8e:a0:19:74:a0:3c: 2c:4b:10:91:ac:24:f8:f3:11:24:14:a3:f0:27:3e:2f:6a:52: 32:06:34:91:14:ab:46:61:fb:0d:22:3e:8e:5c:ce:d8:0d:1c: ce:8a:f4:41:86:55:18:f4:29:a7:9f:1c:94:4f:e3:cb:fa:a6: 5f:85:f1:8e:f2:b9:33:7d:e7:fd:74:60:e9:cc:33:f2:4e:e7: f6:31:68:bb:64:52:38:e2:96:f3:1b:7e:4f:92:9b:df:62:da: e2:d6:63:4f -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUGw8JQR5+5t0QYwMOELzHfbvok9QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzhFNDI3OTc3NDg0RjM2RjNGMEE0NTI4OEQ2REY2NEYz QTdGQ0IwOTAeFw0yNjA1MDcwMjA2MzZaFw0yNzA1MDYwMjExMzZaMDMxMTAvBgNV BAMTKDI4NEY2Q0NCM0M0RkQyRDZDRjlFMTk1RDE5NTE2QjE3Rjk0Qzk2QjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaOczFAyiDybVymDdkNp7I85t7 xMFnbk3DkVH7MaCVFg40BMig3B+cIot6J+gjycXN0RhWkzThQwFqueq8Jy2zG35d fcqqQTofsfOV4NAZyk4cr9ikVZJ94/Ao0JPOuoAvaULagHMC2IVDE2FQA6G0JvjI 4L6vz2H82Smds/mRDY41z5medgKMZUCBMj576S1suiQ/KKz/xucv4pjVfQxSyNT6 n2YED8Rv4+K6kxdJs6+74e4XEMZJmFDT9QR4OAFxPGP/h6IvfqAvgEAJEpFc8RMy 0uv9zVv8mI95gJUdN91w5U2CiswbjNbOuGz2t5V/NbtNiHdchI2opek8i6sNAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUKE9syzxP0tbPnhldGVFrF/lMlrMwHwYDVR0j BBgwFoAUOOQnl3SE828/CkUojW32Tzp/ywkwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw NDU4NjM1ODA5NTA4NTU3Ny8wLzM4RTQyNzk3NzQ4NEYzNkYzRjBBNDUyODhENkRG NjRGM0E3RkNCMDkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMzhFNDI3OTc3NDg0RjM2RjNGMEE0NTI4OEQ2REY2NEYzQTdGQ0IwOS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTA0NTg2MzU4MDk1MDg1NTc3LzAvMzEzMjMxMmUzMzM5 MmUzMjM1MzUyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzOTMzMzgzOS5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAHkn/zANBgkqhkiG9w0BAQsFAAOCAQEAmMhkpBAZcSeUznejtHsCNNj6hdPz 1w2rmgyc2hWiZED1swH8kFtWUMxCCXRhNkjtzQbmaJ/T18Ig+bwXIrsbWW9wPaoO AALWbc75yMp90KntvBQHm2OnkXb6K5K8PmEQnk2lnNwddOC5c6SHBXAt4fhaf3X0 IL9gBySKIdCPH9O0bn5V+dpa85Y7rtZw3P9Pgq/BNUV4EXGr259IjqAZdKA8LEsQ kawk+PMRJBSj8Cc+L2pSMgY0kRSrRmH7DSI+jlzO2A0czor0QYZVGPQpp58clE/j y/qmX4XxjvK5M33n/XRg6cwz8k7n9jFou2RSOOKW8xt+T5Kb32La4tZjTw== -----END CERTIFICATE-----Generated at Wed May 13 11:50:28 2026 by rpki-client