$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1106106457318752269/0/3132302e39322e3234302e302f32302d3230203d3e2030.roa File: 3132302e39322e3234302e302f32302d3230203d3e2030.roa (raw, json) Hash identifier: B9W6Zt/DNy4DINt5dVOvkXno2w0XxCDKDBx6wHW8nXY= Subject key identifier: 7D:62:2C:61:E8:C8:17:A0:1F:D7:A5:75:2B:6E:1E:35:10:65:77:6D Certificate issuer: /CN=6B231F5DF7535BF86CFFEB85A0B28E0A447CBD52 Certificate serial: 0911FA0E2025910E8159868EE440183FEB770945 Authority key identifier: 6B:23:1F:5D:F7:53:5B:F8:6C:FF:EB:85:A0:B2:8E:0A:44:7C:BD:52 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6B231F5DF7535BF86CFFEB85A0B28E0A447CBD52.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1106106457318752269/0/3132302e39322e3234302e302f32302d3230203d3e2030.roa Signing time: Mon 11 May 2026 08:30:02 +0000 ROA not before: Mon 11 May 2026 08:25:02 +0000 ROA not after: Mon 10 May 2027 08:30:02 +0000 asID: 0 IP address blocks: 120.92.240.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1106106457318752269/0/6B231F5DF7535BF86CFFEB85A0B28E0A447CBD52.crl rsync://rpki-rps.cnnic.cn/repo/A1106106457318752269/0/6B231F5DF7535BF86CFFEB85A0B28E0A447CBD52.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6B231F5DF7535BF86CFFEB85A0B28E0A447CBD52.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:52:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:11:fa:0e:20:25:91:0e:81:59:86:8e:e4:40:18:3f:eb:77:09:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B231F5DF7535BF86CFFEB85A0B28E0A447CBD52 Validity Not Before: May 11 08:25:02 2026 GMT Not After : May 10 08:30:02 2027 GMT Subject: CN=7D622C61E8C817A01FD7A5752B6E1E351065776D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:6b:e0:f1:37:bb:21:e4:91:cc:4a:de:ff:4e: a8:31:e3:79:70:a1:f0:bb:85:b0:15:0c:44:4f:82: 06:a3:24:e5:0e:c6:ba:e8:f8:ec:63:ad:6b:82:ef: 14:98:af:86:d1:3d:fb:ff:c3:8d:de:2f:0b:c2:68: 09:f4:a3:2e:d9:ee:bf:31:c1:11:39:8e:af:bd:bb: e0:14:74:05:a7:63:e5:ac:fd:66:63:2e:ce:19:0e: 2c:1f:f2:85:c8:40:82:4d:fa:fa:37:c2:10:79:0f: 60:9b:90:44:cc:5f:e8:c8:b2:2f:8a:dc:1a:b7:cc: b9:3e:a6:00:a7:69:b6:08:17:15:21:1d:47:b7:36: e6:22:be:48:71:f6:8a:47:50:61:2b:25:25:e5:24: 17:ad:1b:9d:53:9d:c9:84:cb:4d:f7:26:11:43:8d: ad:68:e1:a3:b6:55:e8:36:73:68:97:fa:b4:7d:6b: 97:9a:34:30:fb:e7:37:11:02:63:39:4c:58:6b:c7: 63:24:80:05:9e:85:0f:c9:ec:31:a2:49:7b:6f:11: 34:d9:d5:5a:36:5b:2b:bc:6f:d1:d6:ee:0e:54:b5: 6a:0c:97:62:64:6b:6d:49:fa:2f:99:b7:39:20:da: 3d:f2:a7:1a:51:2b:ae:3b:07:b8:68:81:ba:03:ac: 0d:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:62:2C:61:E8:C8:17:A0:1F:D7:A5:75:2B:6E:1E:35:10:65:77:6D X509v3 Authority Key Identifier: keyid:6B:23:1F:5D:F7:53:5B:F8:6C:FF:EB:85:A0:B2:8E:0A:44:7C:BD:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1106106457318752269/0/6B231F5DF7535BF86CFFEB85A0B28E0A447CBD52.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6B231F5DF7535BF86CFFEB85A0B28E0A447CBD52.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1106106457318752269/0/3132302e39322e3234302e302f32302d3230203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 120.92.240.0/20 Signature Algorithm: sha256WithRSAEncryption 26:5a:db:69:c9:61:ab:99:a6:1c:b0:73:ee:0f:4e:50:20:02: 48:01:e5:89:3e:8a:f1:c2:ef:2a:25:d0:4c:0a:af:60:af:3d: d1:d2:e4:06:9f:3f:4c:ec:b0:b9:ca:c2:b7:e8:94:86:6b:65: 16:a4:b8:74:53:7a:95:ed:b7:24:27:89:81:d9:c4:10:8b:43: 6d:cc:ac:2f:bf:72:a8:5a:3f:e5:c7:e8:a6:30:99:11:66:6a: fe:55:2b:90:68:e7:a7:7a:16:75:b5:96:18:21:24:38:7d:80: 73:eb:35:6d:f9:a7:49:7d:db:76:b4:17:2d:f4:cd:0f:40:c0: 78:b4:fc:c9:ae:85:42:75:3e:e8:a3:34:63:9d:be:38:41:86: e2:85:c3:b3:c5:47:69:6d:a8:81:25:80:28:a6:27:fb:16:73: 8c:58:68:2e:03:51:bd:85:a2:aa:6f:c3:db:84:07:22:bc:e2: 04:a8:1c:31:cb:4d:2e:4e:7d:a7:97:72:03:fb:a9:d9:38:35: 98:f8:61:64:fc:1c:35:b3:77:a9:9b:36:96:fa:ee:0f:15:c3: 24:6f:85:67:a0:82:fa:6a:89:d4:e7:50:f7:3d:3e:65:27:e9: 33:1d:70:90:94:da:2d:c0:65:b4:06:01:77:39:a9:09:d5:e7: d2:8e:c3:a7 -----BEGIN CERTIFICATE----- MIIFATCCA+mgAwIBAgIUCRH6DiAlkQ6BWYaO5EAYP+t3CUUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIyMzFGNURGNzUzNUJGODZDRkZFQjg1QTBCMjhFMEE0 NDdDQkQ1MjAeFw0yNjA1MTEwODI1MDJaFw0yNzA1MTAwODMwMDJaMDMxMTAvBgNV BAMTKDdENjIyQzYxRThDODE3QTAxRkQ3QTU3NTJCNkUxRTM1MTA2NTc3NkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCza+DxN7sh5JHMSt7/Tqgx43lw ofC7hbAVDERPggajJOUOxrro+OxjrWuC7xSYr4bRPfv/w43eLwvCaAn0oy7Z7r8x wRE5jq+9u+AUdAWnY+Ws/WZjLs4ZDiwf8oXIQIJN+vo3whB5D2CbkETMX+jIsi+K 3Bq3zLk+pgCnabYIFxUhHUe3NuYivkhx9opHUGErJSXlJBetG51TncmEy033JhFD ja1o4aO2Veg2c2iX+rR9a5eaNDD75zcRAmM5TFhrx2MkgAWehQ/J7DGiSXtvETTZ 1Vo2Wyu8b9HW7g5UtWoMl2Jka21J+i+Ztzkg2j3ypxpRK647B7hogboDrA2RAgMB AAGjggILMIICBzAdBgNVHQ4EFgQUfWIsYejIF6Af16V1K24eNRBld20wHwYDVR0j BBgwFoAUayMfXfdTW/hs/+uFoLKOCkR8vVIwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw NjEwNjQ1NzMxODc1MjI2OS8wLzZCMjMxRjVERjc1MzVCRjg2Q0ZGRUI4NUEwQjI4 RTBBNDQ3Q0JENTIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNkIyMzFGNURGNzUzNUJGODZDRkZFQjg1QTBCMjhFMEE0NDdDQkQ1Mi5jZXIw gYQGCCsGAQUFBwELBHgwdjB0BggrBgEFBQcwC4ZocnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTA2MTA2NDU3MzE4NzUyMjY5LzAvMzEzMjMwMmUzOTMy MmUzMjM0MzAyZTMwMmYzMjMwMmQzMjMwMjAzZDNlMjAzMC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBHhc 8DANBgkqhkiG9w0BAQsFAAOCAQEAJlrbaclhq5mmHLBz7g9OUCACSAHliT6K8cLv KiXQTAqvYK890dLkBp8/TOywucrCt+iUhmtlFqS4dFN6le23JCeJgdnEEItDbcys L79yqFo/5cfopjCZEWZq/lUrkGjnp3oWdbWWGCEkOH2Ac+s1bfmnSX3bdrQXLfTN D0DAeLT8ya6FQnU+6KM0Y52+OEGG4oXDs8VHaW2ogSWAKKYn+xZzjFhoLgNRvYWi qm/D24QHIrziBKgcMctNLk59p5dyA/up2Tg1mPhhZPwcNbN3qZs2lvruDxXDJG+F Z6CC+mqJ1OdQ9z0+ZSfpMx1wkJTaLcBltAYBdzmpCdXn0o7Dpw== -----END CERTIFICATE-----Generated at Wed May 13 05:57:56 2026 by rpki-client