$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1105058072943919117/0/3136302e3230322e3235322e302f32322d3232203d3e20313436383137.roa File: 3136302e3230322e3235322e302f32322d3232203d3e20313436383137.roa (raw, json) Hash identifier: 6zw+D7MJIJUVvtORRzi5l2m2wvZDnjyCVo3nmK1PDlM= Subject key identifier: 53:08:8D:3A:DE:B4:3E:EE:1C:84:8E:36:9C:67:63:73:EF:1D:5F:D2 Certificate issuer: /CN=825E5C73B7552363E0F92261ADC637585EBE0362 Certificate serial: 20CDE140D8FA7FCCF1B810A6922A45AB67CE2397 Authority key identifier: 82:5E:5C:73:B7:55:23:63:E0:F9:22:61:AD:C6:37:58:5E:BE:03:62 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/825E5C73B7552363E0F92261ADC637585EBE0362.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1105058072943919117/0/3136302e3230322e3235322e302f32322d3232203d3e20313436383137.roa Signing time: Fri 08 May 2026 09:47:16 +0000 ROA not before: Fri 08 May 2026 09:42:16 +0000 ROA not after: Fri 07 May 2027 09:47:16 +0000 asID: 146817 IP address blocks: 160.202.252.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1105058072943919117/0/825E5C73B7552363E0F92261ADC637585EBE0362.crl rsync://rpki-rps.cnnic.cn/repo/A1105058072943919117/0/825E5C73B7552363E0F92261ADC637585EBE0362.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/825E5C73B7552363E0F92261ADC637585EBE0362.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:cd:e1:40:d8:fa:7f:cc:f1:b8:10:a6:92:2a:45:ab:67:ce:23:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=825E5C73B7552363E0F92261ADC637585EBE0362 Validity Not Before: May 8 09:42:16 2026 GMT Not After : May 7 09:47:16 2027 GMT Subject: CN=53088D3ADEB43EEE1C848E369C676373EF1D5FD2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:70:c5:d9:53:da:da:61:6d:9c:a3:bd:1d:00: 4f:b5:3d:75:00:ba:bc:a0:bc:fb:87:09:17:17:4e: e0:d2:d5:fe:b8:7c:4a:b4:15:1d:44:02:33:bf:88: 28:35:9d:a1:5b:d7:1f:08:19:6f:ef:b6:99:1b:5d: 66:83:98:b6:00:49:dc:12:85:94:43:be:56:9e:41: b8:be:d0:ad:6c:8b:15:87:2d:e8:5d:c2:c4:11:05: fe:70:a0:22:eb:8d:f0:03:82:03:3a:eb:40:5b:f0: 57:2a:61:5b:06:72:81:18:cd:33:aa:b8:6b:b1:8f: 06:78:aa:bf:3a:ea:bb:f5:d9:0c:68:ad:9d:12:14: 4c:88:e0:3c:15:59:c6:8d:1b:c0:22:04:4e:04:d1: 0f:05:e9:16:ea:50:7f:3a:62:86:f4:36:7d:23:e5: a5:dd:c5:20:f2:74:d9:91:dc:75:ef:25:2f:3e:69: 47:0d:b1:5a:0c:39:95:f5:84:11:d8:f7:4f:8b:2f: 2b:26:d1:66:f1:b5:4c:62:8f:a8:99:80:12:73:5e: 01:a1:ff:57:11:a2:de:0d:7f:15:5b:f3:d5:17:10: 81:fc:8f:fe:f4:4d:f2:3b:c3:4c:86:45:e8:bb:6e: b9:18:ae:7e:b7:f6:2f:9f:a0:81:b3:e2:9d:96:3e: 5f:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:08:8D:3A:DE:B4:3E:EE:1C:84:8E:36:9C:67:63:73:EF:1D:5F:D2 X509v3 Authority Key Identifier: keyid:82:5E:5C:73:B7:55:23:63:E0:F9:22:61:AD:C6:37:58:5E:BE:03:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1105058072943919117/0/825E5C73B7552363E0F92261ADC637585EBE0362.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/825E5C73B7552363E0F92261ADC637585EBE0362.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1105058072943919117/0/3136302e3230322e3235322e302f32322d3232203d3e20313436383137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.202.252.0/22 Signature Algorithm: sha256WithRSAEncryption 8b:e1:d8:29:04:31:36:7f:5a:9b:03:86:9c:61:86:32:63:2e: 41:f4:d8:49:21:6c:0d:c7:62:3d:8b:9d:63:8a:80:d0:f2:3b: 88:58:f1:73:6c:38:59:ce:ca:f2:13:f0:5d:10:a5:d8:03:7e: c2:c8:34:39:63:72:22:db:9a:64:1e:8a:c7:4a:4b:f0:e5:53: e4:2a:da:56:05:ce:76:33:34:ba:dc:e8:60:0d:50:26:8e:00: c2:fa:c5:99:92:da:a0:49:41:7e:08:af:0c:13:81:f5:2f:23: a4:0a:73:41:3c:3c:6c:cf:9c:59:0e:11:a3:63:3b:0c:63:c9: ac:a9:c4:d9:94:d8:71:a3:1e:8b:0d:f1:c8:e5:24:cb:f1:fe: 5f:bc:51:94:f9:c3:98:b8:ea:aa:99:f0:de:e5:c7:c5:ce:c2: 93:55:4b:64:18:14:f5:11:0c:7d:46:47:bb:4d:86:83:2c:0b: 70:cc:a5:b1:41:bf:02:6f:0f:da:0b:b6:7a:2b:49:ab:0e:ad: 09:87:96:61:7e:5a:8f:72:c9:1e:d5:13:57:6b:be:b4:0b:0f: 09:c0:fd:8a:52:af:95:4e:45:4b:68:4f:af:4b:22:f0:db:0d: 0a:d3:30:ec:63:ff:c1:99:bf:08:3b:e6:ad:dc:4a:5a:62:d9: 05:d6:4a:da -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUIM3hQNj6f8zxuBCmkipFq2fOI5cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODI1RTVDNzNCNzU1MjM2M0UwRjkyMjYxQURDNjM3NTg1 RUJFMDM2MjAeFw0yNjA1MDgwOTQyMTZaFw0yNzA1MDcwOTQ3MTZaMDMxMTAvBgNV BAMTKDUzMDg4RDNBREVCNDNFRUUxQzg0OEUzNjlDNjc2MzczRUYxRDVGRDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYcMXZU9raYW2co70dAE+1PXUA urygvPuHCRcXTuDS1f64fEq0FR1EAjO/iCg1naFb1x8IGW/vtpkbXWaDmLYASdwS hZRDvlaeQbi+0K1sixWHLehdwsQRBf5woCLrjfADggM660Bb8FcqYVsGcoEYzTOq uGuxjwZ4qr866rv12QxorZ0SFEyI4DwVWcaNG8AiBE4E0Q8F6RbqUH86Yob0Nn0j 5aXdxSDydNmR3HXvJS8+aUcNsVoMOZX1hBHY90+LLysm0WbxtUxij6iZgBJzXgGh /1cRot4NfxVb89UXEIH8j/70TfI7w0yGRei7brkYrn639i+foIGz4p2WPl9ZAgMB AAGjggIaMIICFjAdBgNVHQ4EFgQUUwiNOt60Pu4chI42nGdjc+8dX9IwHwYDVR0j BBgwFoAUgl5cc7dVI2Pg+SJhrcY3WF6+A2IwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw NTA1ODA3Mjk0MzkxOTExNy8wLzgyNUU1QzczQjc1NTIzNjNFMEY5MjI2MUFEQzYz NzU4NUVCRTAzNjIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvODI1RTVDNzNCNzU1MjM2M0UwRjkyMjYxQURDNjM3NTg1RUJFMDM2Mi5jZXIw gZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMTA1MDU4MDcyOTQzOTE5MTE3LzAvMzEzNjMwMmUz MjMwMzIyZTMyMzUzMjJlMzAyZjMyMzIyZDMyMzIyMDNkM2UyMDMxMzQzNjM4MzEz Ny5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAqDK/DANBgkqhkiG9w0BAQsFAAOCAQEAi+HYKQQxNn9amwOG nGGGMmMuQfTYSSFsDcdiPYudY4qA0PI7iFjxc2w4Wc7K8hPwXRCl2AN+wsg0OWNy ItuaZB6Kx0pL8OVT5CraVgXOdjM0utzoYA1QJo4AwvrFmZLaoElBfgivDBOB9S8j pApzQTw8bM+cWQ4Ro2M7DGPJrKnE2ZTYcaMeiw3xyOUky/H+X7xRlPnDmLjqqpnw 3uXHxc7Ck1VLZBgU9REMfUZHu02GgywLcMylsUG/Am8P2gu2eitJqw6tCYeWYX5a j3LJHtUTV2u+tAsPCcD9ilKvlU5FS2hPr0si8NsNCtMw7GP/wZm/CDvmrdxKWmLZ BdZK2g== -----END CERTIFICATE-----Generated at Wed May 13 20:55:14 2026 by rpki-client