$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1105058072943919117/0/3139322e3134302e3138382e302f32322d3232203d3e20313436383137.roa File: 3139322e3134302e3138382e302f32322d3232203d3e20313436383137.roa (raw, json) Hash identifier: eGkWjCYsq5cKvmDdyFLFtq+sOx7QwppyA7yKWqg66wc= Subject key identifier: 3E:09:5D:3C:C0:91:C1:58:D4:05:B1:88:F4:CF:79:1E:B6:2F:EC:75 Certificate issuer: /CN=825E5C73B7552363E0F92261ADC637585EBE0362 Certificate serial: 206EE1E14991397F822667CB378C5448F9E3BDF6 Authority key identifier: 82:5E:5C:73:B7:55:23:63:E0:F9:22:61:AD:C6:37:58:5E:BE:03:62 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/825E5C73B7552363E0F92261ADC637585EBE0362.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1105058072943919117/0/3139322e3134302e3138382e302f32322d3232203d3e20313436383137.roa Signing time: Fri 08 May 2026 09:41:55 +0000 ROA not before: Fri 08 May 2026 09:36:55 +0000 ROA not after: Fri 07 May 2027 09:41:55 +0000 asID: 146817 IP address blocks: 192.140.188.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1105058072943919117/0/825E5C73B7552363E0F92261ADC637585EBE0362.crl rsync://rpki-rps.cnnic.cn/repo/A1105058072943919117/0/825E5C73B7552363E0F92261ADC637585EBE0362.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/825E5C73B7552363E0F92261ADC637585EBE0362.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:6e:e1:e1:49:91:39:7f:82:26:67:cb:37:8c:54:48:f9:e3:bd:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=825E5C73B7552363E0F92261ADC637585EBE0362 Validity Not Before: May 8 09:36:55 2026 GMT Not After : May 7 09:41:55 2027 GMT Subject: CN=3E095D3CC091C158D405B188F4CF791EB62FEC75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:15:46:d1:1d:89:14:11:8f:83:a2:2d:b5:43: 16:30:21:21:e8:7d:ee:ea:8f:22:53:ba:0e:56:27: 63:48:ea:e0:ff:7c:fe:6e:4f:55:38:15:c0:0b:80: 86:94:53:23:2f:22:cf:c2:74:4d:d3:ff:7e:58:6a: 76:69:f7:c1:2d:19:1f:42:92:32:01:66:aa:e8:6d: 92:39:27:f3:e3:f8:37:c6:61:68:90:93:65:02:4e: c9:df:1b:56:0a:0f:6e:4a:38:51:19:d8:b9:5c:91: b9:8d:5b:0c:eb:e5:82:bd:d2:36:87:64:ca:94:bd: 99:b0:ed:f2:b6:9a:ac:25:e1:c5:5a:c6:5c:e4:25: eb:02:a2:81:00:87:44:69:c7:87:71:4e:27:cc:67: 4c:ac:20:3c:33:15:a2:ff:e3:79:e6:29:c8:53:53: fa:10:da:60:8e:3a:1c:08:e7:2f:a9:2d:84:13:5c: b7:a7:2d:4f:d4:2e:5e:53:e7:ec:fb:57:70:20:e0: 29:bd:23:4a:ed:09:e1:c3:08:c6:b7:4c:34:a7:b7: ad:d3:51:f5:4e:26:1b:83:d7:77:8f:d5:75:4c:08: 4b:bf:08:a0:2f:6a:08:7c:34:9d:0c:42:b3:fb:f9: 16:cf:26:59:b9:c1:cf:39:b0:dc:74:0b:09:48:b0: cd:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:09:5D:3C:C0:91:C1:58:D4:05:B1:88:F4:CF:79:1E:B6:2F:EC:75 X509v3 Authority Key Identifier: keyid:82:5E:5C:73:B7:55:23:63:E0:F9:22:61:AD:C6:37:58:5E:BE:03:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1105058072943919117/0/825E5C73B7552363E0F92261ADC637585EBE0362.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/825E5C73B7552363E0F92261ADC637585EBE0362.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1105058072943919117/0/3139322e3134302e3138382e302f32322d3232203d3e20313436383137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.140.188.0/22 Signature Algorithm: sha256WithRSAEncryption 47:be:25:c3:19:87:6d:48:0c:eb:0a:bc:cc:ef:b5:81:72:c9: 85:5b:50:63:ae:e5:43:61:8d:ba:ea:7e:e9:d2:a3:dc:b2:d0: f1:7c:61:e2:a4:6f:e3:64:1c:bc:d6:ed:79:17:a8:b5:89:a1: 00:35:6c:2d:e2:d0:b3:d5:b4:e1:cb:8e:cc:20:b6:52:8b:c5: 33:94:e0:4f:24:a3:5d:1c:c8:b3:ae:8d:8e:f9:84:52:ca:94: a2:c9:31:2c:b8:b4:b2:44:6d:c3:63:31:26:72:75:86:eb:80: a6:a3:1b:a4:80:56:90:72:f5:cb:09:ec:13:39:a2:ca:8f:92: 7a:59:cf:40:b8:6f:73:84:6c:49:71:36:6b:22:be:ba:78:a4: 7d:b2:c2:fd:fc:73:7b:73:ef:b8:6f:c1:23:c4:8f:fb:32:aa: d0:93:a0:7f:54:7a:f9:fa:d5:d2:c4:73:41:9a:d0:fc:aa:47: f4:36:9b:03:ae:ad:7d:bf:43:30:48:f8:4b:1c:ac:ee:05:1d: 54:de:64:83:06:c3:bf:ae:00:d6:2f:51:32:02:55:3b:7d:3a: 15:7c:47:e6:e0:9d:58:cc:66:00:7a:d7:45:9e:89:18:e1:88: 7c:7b:9b:a6:17:16:51:1e:93:45:9e:d4:af:f5:d5:7f:a8:39: 66:78:9f:83 -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUIG7h4UmROX+CJmfLN4xUSPnjvfYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODI1RTVDNzNCNzU1MjM2M0UwRjkyMjYxQURDNjM3NTg1 RUJFMDM2MjAeFw0yNjA1MDgwOTM2NTVaFw0yNzA1MDcwOTQxNTVaMDMxMTAvBgNV BAMTKDNFMDk1RDNDQzA5MUMxNThENDA1QjE4OEY0Q0Y3OTFFQjYyRkVDNzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCKFUbRHYkUEY+Doi21QxYwISHo fe7qjyJTug5WJ2NI6uD/fP5uT1U4FcALgIaUUyMvIs/CdE3T/35YanZp98EtGR9C kjIBZqrobZI5J/Pj+DfGYWiQk2UCTsnfG1YKD25KOFEZ2LlckbmNWwzr5YK90jaH ZMqUvZmw7fK2mqwl4cVaxlzkJesCooEAh0Rpx4dxTifMZ0ysIDwzFaL/43nmKchT U/oQ2mCOOhwI5y+pLYQTXLenLU/ULl5T5+z7V3Ag4Cm9I0rtCeHDCMa3TDSnt63T UfVOJhuD13eP1XVMCEu/CKAvagh8NJ0MQrP7+RbPJlm5wc85sNx0CwlIsM3NAgMB AAGjggIaMIICFjAdBgNVHQ4EFgQUPgldPMCRwVjUBbGI9M95HrYv7HUwHwYDVR0j BBgwFoAUgl5cc7dVI2Pg+SJhrcY3WF6+A2IwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw NTA1ODA3Mjk0MzkxOTExNy8wLzgyNUU1QzczQjc1NTIzNjNFMEY5MjI2MUFEQzYz NzU4NUVCRTAzNjIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvODI1RTVDNzNCNzU1MjM2M0UwRjkyMjYxQURDNjM3NTg1RUJFMDM2Mi5jZXIw gZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMTA1MDU4MDcyOTQzOTE5MTE3LzAvMzEzOTMyMmUz MTM0MzAyZTMxMzgzODJlMzAyZjMyMzIyZDMyMzIyMDNkM2UyMDMxMzQzNjM4MzEz Ny5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAsCMvDANBgkqhkiG9w0BAQsFAAOCAQEAR74lwxmHbUgM6wq8 zO+1gXLJhVtQY67lQ2GNuup+6dKj3LLQ8Xxh4qRv42QcvNbteReotYmhADVsLeLQ s9W04cuOzCC2UovFM5TgTySjXRzIs66NjvmEUsqUoskxLLi0skRtw2MxJnJ1huuA pqMbpIBWkHL1ywnsEzmiyo+SelnPQLhvc4RsSXE2ayK+unikfbLC/fxze3PvuG/B I8SP+zKq0JOgf1R6+frV0sRzQZrQ/KpH9DabA66tfb9DMEj4Sxys7gUdVN5kgwbD v64A1i9RMgJVO306FXxH5uCdWMxmAHrXRZ6JGOGIfHubphcWUR6TRZ7Ur/XVf6g5 Znifgw== -----END CERTIFICATE-----Generated at Wed May 13 20:55:38 2026 by rpki-client