$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1104639429030445063/0/3132302e3133312e32382e302f32342d3234203d3e20313339303939.roa File: 3132302e3133312e32382e302f32342d3234203d3e20313339303939.roa (raw, json) Hash identifier: hYxxYoIZP3J/iYtdqCMEcZXtw+8pCLe3+9PRn+6kkYQ= Subject key identifier: 34:8B:77:7B:0E:38:DA:0D:49:56:FB:5F:C7:74:B0:E6:6B:47:75:92 Certificate issuer: /CN=9BA4442F6B0705465AE54FB5CA81B38CADA578F5 Certificate serial: 609D7D1C3007101D89397BA031C6EAA15A45BA73 Authority key identifier: 9B:A4:44:2F:6B:07:05:46:5A:E5:4F:B5:CA:81:B3:8C:AD:A5:78:F5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9BA4442F6B0705465AE54FB5CA81B38CADA578F5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1104639429030445063/0/3132302e3133312e32382e302f32342d3234203d3e20313339303939.roa Signing time: Thu 07 May 2026 05:31:24 +0000 ROA not before: Thu 07 May 2026 05:26:24 +0000 ROA not after: Thu 06 May 2027 05:31:24 +0000 asID: 139099 IP address blocks: 120.131.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1104639429030445063/0/9BA4442F6B0705465AE54FB5CA81B38CADA578F5.crl rsync://rpki-rps.cnnic.cn/repo/A1104639429030445063/0/9BA4442F6B0705465AE54FB5CA81B38CADA578F5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9BA4442F6B0705465AE54FB5CA81B38CADA578F5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:17:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:9d:7d:1c:30:07:10:1d:89:39:7b:a0:31:c6:ea:a1:5a:45:ba:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9BA4442F6B0705465AE54FB5CA81B38CADA578F5 Validity Not Before: May 7 05:26:24 2026 GMT Not After : May 6 05:31:24 2027 GMT Subject: CN=348B777B0E38DA0D4956FB5FC774B0E66B477592 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:b7:86:02:db:d9:ff:af:80:7d:ed:48:da:75: b0:39:37:ec:3d:75:22:c4:60:40:4e:1a:35:aa:fa: 0c:97:06:4a:a4:43:64:5a:7e:d7:c9:e6:49:60:22: 62:62:aa:db:37:18:ad:0d:a4:6a:d1:f0:3c:00:cf: 7e:b0:44:89:e6:81:4b:d4:3d:c0:6c:6d:95:cd:42: 04:3f:6e:02:41:bf:0b:c9:38:5b:2c:7c:bf:ce:46: f2:a6:cf:40:f9:95:e3:61:85:97:6b:24:fe:f0:2b: e0:38:75:b2:d6:de:9c:c1:a1:1a:d2:89:d8:d7:1c: ce:11:14:ea:cb:b7:0b:3d:cc:71:a5:b9:46:b5:69: 36:f1:4b:61:43:00:a1:73:7f:36:dc:30:ca:52:41: ee:01:41:ec:2e:17:44:ae:fc:91:48:bc:ea:40:4d: 7f:ad:17:79:d6:b4:0e:09:fb:1e:3c:36:10:45:18: 20:b6:18:91:cb:36:b4:9f:8e:25:cd:32:10:92:58: f8:56:eb:be:1a:91:ac:36:0c:79:b9:3d:2f:41:77: c7:6b:ac:29:cc:ab:88:5b:0a:5c:50:43:91:34:8b: 6d:13:d6:9e:93:8e:71:b4:87:7b:66:4b:8e:71:06: 88:30:e1:db:11:e7:1c:3b:9a:56:51:72:f2:52:6b: 8e:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:8B:77:7B:0E:38:DA:0D:49:56:FB:5F:C7:74:B0:E6:6B:47:75:92 X509v3 Authority Key Identifier: keyid:9B:A4:44:2F:6B:07:05:46:5A:E5:4F:B5:CA:81:B3:8C:AD:A5:78:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1104639429030445063/0/9BA4442F6B0705465AE54FB5CA81B38CADA578F5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9BA4442F6B0705465AE54FB5CA81B38CADA578F5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1104639429030445063/0/3132302e3133312e32382e302f32342d3234203d3e20313339303939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 120.131.28.0/24 Signature Algorithm: sha256WithRSAEncryption 67:04:f9:59:eb:22:51:0d:a0:5f:17:60:65:a7:a2:48:72:f0: de:1a:fb:93:72:e3:7c:82:aa:45:32:44:eb:23:30:56:6e:41: ca:86:9e:46:a1:ba:13:4a:31:ef:83:da:98:74:d2:5d:f7:0a: 1a:da:79:13:a1:7a:68:5d:32:8c:ba:7d:cc:99:dd:19:bc:4b: 2f:38:10:e5:53:4e:2c:d9:19:06:fd:34:f7:8b:46:d1:11:47: c9:76:24:16:a0:3b:3c:a3:88:fb:33:f1:ec:a9:f5:a7:47:f9: 96:63:fc:7d:66:55:a4:c7:9f:54:d7:78:77:02:61:63:f8:74: 36:47:f4:68:91:64:b9:b4:fb:d5:45:aa:c0:55:f6:45:3e:52: 79:e1:f1:23:eb:c6:0d:08:ca:82:fa:64:ad:c2:55:44:e9:8c: 5e:3b:ea:49:1c:53:01:7e:af:32:23:12:a5:27:86:bd:e5:32: ce:46:03:d8:56:14:f6:21:36:2c:97:28:1e:2c:e0:0f:8d:62: 36:d4:3e:f5:27:3a:45:4a:dc:ed:63:84:f3:67:ba:05:8a:35: 55:b0:f9:6c:6c:e2:c3:0d:64:e1:44:b2:1a:78:27:cd:a6:f3: 4e:c0:4f:58:20:d1:5b:df:bd:05:1c:d7:44:cd:8f:93:e0:80: b3:21:2c:0e -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUYJ19HDAHEB2JOXugMcbqoVpFunMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUJBNDQ0MkY2QjA3MDU0NjVBRTU0RkI1Q0E4MUIzOENB REE1NzhGNTAeFw0yNjA1MDcwNTI2MjRaFw0yNzA1MDYwNTMxMjRaMDMxMTAvBgNV BAMTKDM0OEI3NzdCMEUzOERBMEQ0OTU2RkI1RkM3NzRCMEU2NkI0Nzc1OTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYt4YC29n/r4B97UjadbA5N+w9 dSLEYEBOGjWq+gyXBkqkQ2RaftfJ5klgImJiqts3GK0NpGrR8DwAz36wRInmgUvU PcBsbZXNQgQ/bgJBvwvJOFssfL/ORvKmz0D5leNhhZdrJP7wK+A4dbLW3pzBoRrS idjXHM4RFOrLtws9zHGluUa1aTbxS2FDAKFzfzbcMMpSQe4BQewuF0Su/JFIvOpA TX+tF3nWtA4J+x48NhBFGCC2GJHLNrSfjiXNMhCSWPhW674akaw2DHm5PS9Bd8dr rCnMq4hbClxQQ5E0i20T1p6TjnG0h3tmS45xBogw4dsR5xw7mlZRcvJSa45XAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUNIt3ew442g1JVvtfx3Sw5mtHdZIwHwYDVR0j BBgwFoAUm6REL2sHBUZa5U+1yoGzjK2lePUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw NDYzOTQyOTAzMDQ0NTA2My8wLzlCQTQ0NDJGNkIwNzA1NDY1QUU1NEZCNUNBODFC MzhDQURBNTc4RjUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOUJBNDQ0MkY2QjA3MDU0NjVBRTU0RkI1Q0E4MUIzOENBREE1NzhGNS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTExMDQ2Mzk0MjkwMzA0NDUwNjMvMC8zMTMyMzAyZTMx MzMzMTJlMzIzODJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzOTMwMzkzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAHiDHDANBgkqhkiG9w0BAQsFAAOCAQEAZwT5WesiUQ2gXxdgZaei SHLw3hr7k3LjfIKqRTJE6yMwVm5ByoaeRqG6E0ox74PamHTSXfcKGtp5E6F6aF0y jLp9zJndGbxLLzgQ5VNOLNkZBv0094tG0RFHyXYkFqA7PKOI+zPx7Kn1p0f5lmP8 fWZVpMefVNd4dwJhY/h0Nkf0aJFkubT71UWqwFX2RT5SeeHxI+vGDQjKgvpkrcJV ROmMXjvqSRxTAX6vMiMSpSeGveUyzkYD2FYU9iE2LJcoHizgD41iNtQ+9Sc6RUrc 7WOE82e6BYo1VbD5bGziww1k4USyGngnzabzTsBPWCDRW9+9BRzXRM2Pk+CAsyEs Dg== -----END CERTIFICATE-----Generated at Wed May 13 21:32:08 2026 by rpki-client