$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1106106457318752269/0/3132302e3133312e3132342e302f32322d3232203d3e203536303438.roa File: 3132302e3133312e3132342e302f32322d3232203d3e203536303438.roa (raw, json) Hash identifier: LhI8mdYxd1LLQ8sMWDd4eFucYLTAWf/uPAhQmoP0aNk= Subject key identifier: 42:6A:B1:B2:45:8C:7F:DF:14:CC:2A:F9:2F:56:03:75:93:F7:F2:30 Certificate issuer: /CN=6B231F5DF7535BF86CFFEB85A0B28E0A447CBD52 Certificate serial: 19B70B776BD488271B281E15643AD99899424AA7 Authority key identifier: 6B:23:1F:5D:F7:53:5B:F8:6C:FF:EB:85:A0:B2:8E:0A:44:7C:BD:52 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6B231F5DF7535BF86CFFEB85A0B28E0A447CBD52.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1106106457318752269/0/3132302e3133312e3132342e302f32322d3232203d3e203536303438.roa Signing time: Mon 11 May 2026 08:06:31 +0000 ROA not before: Mon 11 May 2026 08:01:31 +0000 ROA not after: Mon 10 May 2027 08:06:31 +0000 asID: 56048 IP address blocks: 120.131.124.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1106106457318752269/0/6B231F5DF7535BF86CFFEB85A0B28E0A447CBD52.crl rsync://rpki-rps.cnnic.cn/repo/A1106106457318752269/0/6B231F5DF7535BF86CFFEB85A0B28E0A447CBD52.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6B231F5DF7535BF86CFFEB85A0B28E0A447CBD52.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:52:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:b7:0b:77:6b:d4:88:27:1b:28:1e:15:64:3a:d9:98:99:42:4a:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B231F5DF7535BF86CFFEB85A0B28E0A447CBD52 Validity Not Before: May 11 08:01:31 2026 GMT Not After : May 10 08:06:31 2027 GMT Subject: CN=426AB1B2458C7FDF14CC2AF92F56037593F7F230 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e3:a7:33:17:9a:54:d0:cc:f4:41:b7:f6:9c: 70:63:fd:da:b3:b1:0e:df:f1:29:51:22:b9:9b:6b: 76:52:32:78:31:36:cc:87:5a:61:4d:80:52:89:51: 28:ac:c3:60:3c:fa:e6:07:54:f1:d8:9b:5a:01:fa: a4:c4:6e:a1:1f:6c:bb:48:98:53:d3:81:d9:cb:c8: 54:4b:c5:14:6f:ee:95:26:a1:21:04:5a:60:e1:c3: 93:b9:ae:0e:b5:59:99:dc:76:ee:b8:49:78:73:c2: 4f:bd:ab:b0:15:50:b3:47:c3:46:0d:22:7c:26:99: 9a:1b:7a:09:b0:bf:9d:d5:14:1b:23:a8:65:ef:4a: be:43:a4:5d:6a:06:1f:18:0a:86:d2:2c:49:6b:f3: 97:20:10:0b:07:14:37:7e:9e:43:8d:db:92:ff:c0: 4e:38:d7:c5:a8:47:40:4b:e9:a1:f7:09:91:7b:eb: eb:f8:36:ac:7d:3f:b5:56:b2:b5:d2:2d:46:e4:23: 83:63:24:cc:f0:03:13:be:48:ec:65:fc:08:f3:d8: d2:a7:0f:b6:c4:81:4e:a0:73:ef:49:33:16:ac:68: 46:ab:12:2c:3b:1a:73:76:d5:d7:0c:0a:6d:0f:5e: 6a:47:a6:90:95:71:d2:74:e6:c5:9a:1e:f2:a0:3d: 55:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:6A:B1:B2:45:8C:7F:DF:14:CC:2A:F9:2F:56:03:75:93:F7:F2:30 X509v3 Authority Key Identifier: keyid:6B:23:1F:5D:F7:53:5B:F8:6C:FF:EB:85:A0:B2:8E:0A:44:7C:BD:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1106106457318752269/0/6B231F5DF7535BF86CFFEB85A0B28E0A447CBD52.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6B231F5DF7535BF86CFFEB85A0B28E0A447CBD52.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1106106457318752269/0/3132302e3133312e3132342e302f32322d3232203d3e203536303438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 120.131.124.0/22 Signature Algorithm: sha256WithRSAEncryption 9c:bb:5f:4a:02:54:92:03:4b:26:3e:dc:39:40:dc:e1:e6:b0: f2:c9:65:cf:87:df:d4:2f:ec:09:9b:cd:e2:63:b4:3d:f6:c1: 91:1d:df:8b:16:b6:76:21:0f:65:e3:a0:88:82:c8:d5:16:47: 24:a1:64:30:2d:3c:97:e3:7c:15:c3:26:ec:26:08:73:e4:55: 48:f1:b2:68:30:de:52:91:ad:c7:24:35:94:b5:83:ee:1c:9a: 42:6e:b4:7a:e8:23:da:12:b5:85:62:ae:a4:75:49:e2:68:6f: 51:76:44:c3:1b:b4:1a:d9:64:b3:d5:97:b4:78:53:ed:2e:93: 25:93:02:0b:11:24:5f:11:8f:24:6e:24:84:ef:57:24:39:8b: bf:43:d1:4f:24:73:b6:46:ba:e0:05:79:e7:3a:9f:8b:2b:11: b2:98:34:13:d8:69:32:cd:c5:4e:ec:76:21:b2:12:bd:33:93: 50:70:37:a3:02:44:27:28:d0:c9:d2:66:90:b9:35:87:bb:3a: c2:0d:c6:90:2b:91:f5:bf:4f:b4:6a:60:f5:45:3c:8b:17:e2: 95:92:1a:f2:5d:f9:f7:90:f2:d5:1d:06:61:e0:49:3b:dc:6a: 36:71:1c:82:be:a4:70:7b:f5:98:63:d9:f0:f9:dc:3f:96:27: e9:9f:45:c1 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUGbcLd2vUiCcbKB4VZDrZmJlCSqcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIyMzFGNURGNzUzNUJGODZDRkZFQjg1QTBCMjhFMEE0 NDdDQkQ1MjAeFw0yNjA1MTEwODAxMzFaFw0yNzA1MTAwODA2MzFaMDMxMTAvBgNV BAMTKDQyNkFCMUIyNDU4QzdGREYxNENDMkFGOTJGNTYwMzc1OTNGN0YyMzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDC46czF5pU0Mz0Qbf2nHBj/dqz sQ7f8SlRIrmba3ZSMngxNsyHWmFNgFKJUSisw2A8+uYHVPHYm1oB+qTEbqEfbLtI mFPTgdnLyFRLxRRv7pUmoSEEWmDhw5O5rg61WZncdu64SXhzwk+9q7AVULNHw0YN InwmmZobegmwv53VFBsjqGXvSr5DpF1qBh8YCobSLElr85cgEAsHFDd+nkON25L/ wE4418WoR0BL6aH3CZF76+v4Nqx9P7VWsrXSLUbkI4NjJMzwAxO+SOxl/Ajz2NKn D7bEgU6gc+9JMxasaEarEiw7GnN21dcMCm0PXmpHppCVcdJ05sWaHvKgPVVzAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUQmqxskWMf98UzCr5L1YDdZP38jAwHwYDVR0j BBgwFoAUayMfXfdTW/hs/+uFoLKOCkR8vVIwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw NjEwNjQ1NzMxODc1MjI2OS8wLzZCMjMxRjVERjc1MzVCRjg2Q0ZGRUI4NUEwQjI4 RTBBNDQ3Q0JENTIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNkIyMzFGNURGNzUzNUJGODZDRkZFQjg1QTBCMjhFMEE0NDdDQkQ1Mi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTExMDYxMDY0NTczMTg3NTIyNjkvMC8zMTMyMzAyZTMx MzMzMTJlMzEzMjM0MmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzUzNjMwMzQzOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAniDfDANBgkqhkiG9w0BAQsFAAOCAQEAnLtfSgJUkgNLJj7cOUDc 4eaw8sllz4ff1C/sCZvN4mO0PfbBkR3fixa2diEPZeOgiILI1RZHJKFkMC08l+N8 FcMm7CYIc+RVSPGyaDDeUpGtxyQ1lLWD7hyaQm60eugj2hK1hWKupHVJ4mhvUXZE wxu0Gtlks9WXtHhT7S6TJZMCCxEkXxGPJG4khO9XJDmLv0PRTyRztka64AV55zqf iysRspg0E9hpMs3FTux2IbISvTOTUHA3owJEJyjQydJmkLk1h7s6wg3GkCuR9b9P tGpg9UU8ixfilZIa8l3595Dy1R0GYeBJO9xqNnEcgr6kcHv1mGPZ8PncP5Yn6Z9F wQ== -----END CERTIFICATE-----Generated at Wed May 13 13:31:28 2026 by rpki-client