$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1106503155660619793/0/32372e302e3136342e302f32332d3233203d3e203633363134.roa File: 32372e302e3136342e302f32332d3233203d3e203633363134.roa (raw, json) Hash identifier: xK3ZkZqmtMvo3ivfx/vtBQEP9Y/roBFijeQOIgVpdsQ= Subject key identifier: E5:C7:DC:1F:F1:5D:48:58:91:5D:A5:1D:E7:F5:02:AA:5F:B5:8D:A5 Certificate issuer: /CN=40D86726DB14F9E5E06610928FF6C77226F14874 Certificate serial: 4F9F6CCA61A2FD9A3BC64E1CFD440C7989885A58 Authority key identifier: 40:D8:67:26:DB:14:F9:E5:E0:66:10:92:8F:F6:C7:72:26:F1:48:74 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/40D86726DB14F9E5E06610928FF6C77226F14874.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1106503155660619793/0/32372e302e3136342e302f32332d3233203d3e203633363134.roa Signing time: Tue 12 May 2026 09:05:11 +0000 ROA not before: Tue 12 May 2026 09:00:11 +0000 ROA not after: Tue 11 May 2027 09:05:11 +0000 asID: 63614 IP address blocks: 27.0.164.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1106503155660619793/0/40D86726DB14F9E5E06610928FF6C77226F14874.crl rsync://rpki-rps.cnnic.cn/repo/A1106503155660619793/0/40D86726DB14F9E5E06610928FF6C77226F14874.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/40D86726DB14F9E5E06610928FF6C77226F14874.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 05:10:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:9f:6c:ca:61:a2:fd:9a:3b:c6:4e:1c:fd:44:0c:79:89:88:5a:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40D86726DB14F9E5E06610928FF6C77226F14874 Validity Not Before: May 12 09:00:11 2026 GMT Not After : May 11 09:05:11 2027 GMT Subject: CN=E5C7DC1FF15D4858915DA51DE7F502AA5FB58DA5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:f9:2f:9a:e8:14:8b:2b:b4:89:7f:4a:ad:0f: 76:3a:12:e2:6e:a3:b9:18:8c:2b:d4:2a:1b:3f:97: 22:ad:fb:31:e7:b2:a0:1b:1b:df:6e:e3:83:6d:06: 6e:84:e9:8e:0a:21:b1:0d:fb:c2:f9:2f:cd:dc:56: 34:67:e6:37:cd:07:50:88:34:83:5b:b8:0e:56:74: 61:63:fd:d0:5b:09:14:8a:f6:a8:ca:ba:92:7f:bb: 27:7f:0a:1b:be:43:a4:fd:c8:6a:a6:66:ae:15:c2: e7:e4:70:09:83:3a:87:7d:4d:e2:3a:7b:4f:84:5c: 37:ea:f0:fe:88:dc:af:4e:ad:f3:66:c3:aa:62:c3: b8:a5:ba:f0:14:aa:02:89:66:72:c0:1f:e2:66:6c: b5:29:27:26:89:a0:ae:89:b1:da:7a:da:fe:5b:2f: 08:8a:a1:c9:de:fc:51:cb:a9:a9:48:b1:00:e9:8e: 9d:bb:b8:1d:81:f5:bc:3f:14:e0:57:1d:d0:5b:84: 83:99:ae:d9:15:a2:d8:35:02:d7:2a:e5:74:6d:6e: a4:18:1e:05:16:c4:c1:40:ff:59:04:db:09:d8:fd: f2:30:09:4b:8f:f3:8d:07:0e:2f:48:79:6e:cd:ce: 46:72:58:10:2f:e0:ca:8b:50:5a:3e:34:10:d9:cd: a2:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:C7:DC:1F:F1:5D:48:58:91:5D:A5:1D:E7:F5:02:AA:5F:B5:8D:A5 X509v3 Authority Key Identifier: keyid:40:D8:67:26:DB:14:F9:E5:E0:66:10:92:8F:F6:C7:72:26:F1:48:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1106503155660619793/0/40D86726DB14F9E5E06610928FF6C77226F14874.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/40D86726DB14F9E5E06610928FF6C77226F14874.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1106503155660619793/0/32372e302e3136342e302f32332d3233203d3e203633363134.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.0.164.0/23 Signature Algorithm: sha256WithRSAEncryption 83:99:2a:38:b0:0e:bf:a9:1c:ac:0e:ab:93:7b:42:17:bf:95: d5:81:c4:de:fe:97:b8:0f:6e:5e:0b:80:6a:d7:cb:da:8a:10: b3:6d:0c:fa:f1:97:f2:2d:3f:b4:95:b2:f7:76:90:00:13:7b: 42:aa:59:a0:42:21:b3:ed:ac:f5:a1:d8:8b:7f:e5:2e:00:c3: 87:90:78:dc:01:f0:c4:a9:c0:bf:3c:08:a8:56:48:da:0f:a9: 8b:bf:a1:16:96:d6:47:ca:ba:ec:10:cf:f1:6d:92:ea:39:0c: 7e:60:0b:4f:5a:e6:e2:d5:d5:6c:f4:3f:61:90:2c:86:87:5e: 8b:76:e8:01:1d:ac:f6:1e:97:1a:a9:22:85:c6:1f:3e:d7:a0: ee:ab:dc:8d:d7:6f:05:d9:3e:db:84:48:e1:82:e8:f5:af:a4: 8d:8a:70:3b:23:99:5c:63:d4:84:02:fd:75:77:45:73:97:3d: cb:05:c0:1e:01:46:ac:de:01:df:d1:f2:2c:fe:9a:e3:04:2f: eb:b5:02:7f:cc:6f:d0:2c:d2:16:ac:b9:27:14:9d:c7:b1:36: 50:b4:b3:2d:9f:4f:af:8d:c5:50:ba:7d:56:9d:7d:db:91:ef: f9:e4:5a:6c:fa:03:29:ba:d2:88:62:ba:5a:5d:bf:dc:34:06: 2a:71:49:21 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUT59symGi/Zo7xk4c/UQMeYmIWlgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDBEODY3MjZEQjE0RjlFNUUwNjYxMDkyOEZGNkM3NzIy NkYxNDg3NDAeFw0yNjA1MTIwOTAwMTFaFw0yNzA1MTEwOTA1MTFaMDMxMTAvBgNV BAMTKEU1QzdEQzFGRjE1RDQ4NTg5MTVEQTUxREU3RjUwMkFBNUZCNThEQTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCd+S+a6BSLK7SJf0qtD3Y6EuJu o7kYjCvUKhs/lyKt+zHnsqAbG99u44NtBm6E6Y4KIbEN+8L5L83cVjRn5jfNB1CI NINbuA5WdGFj/dBbCRSK9qjKupJ/uyd/Chu+Q6T9yGqmZq4VwufkcAmDOod9TeI6 e0+EXDfq8P6I3K9OrfNmw6piw7iluvAUqgKJZnLAH+JmbLUpJyaJoK6Jsdp62v5b LwiKocne/FHLqalIsQDpjp27uB2B9bw/FOBXHdBbhIOZrtkVotg1Atcq5XRtbqQY HgUWxMFA/1kE2wnY/fIwCUuP840HDi9IeW7NzkZyWBAv4MqLUFo+NBDZzaIpAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQU5cfcH/FdSFiRXaUd5/UCql+1jaUwHwYDVR0j BBgwFoAUQNhnJtsU+eXgZhCSj/bHcibxSHQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw NjUwMzE1NTY2MDYxOTc5My8wLzQwRDg2NzI2REIxNEY5RTVFMDY2MTA5MjhGRjZD NzcyMjZGMTQ4NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNDBEODY3MjZEQjE0RjlFNUUwNjYxMDkyOEZGNkM3NzIyNkYxNDg3NC5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTA2NTAzMTU1NjYwNjE5NzkzLzAvMzIzNzJlMzAyZTMx MzYzNDJlMzAyZjMyMzMyZDMyMzMyMDNkM2UyMDM2MzMzNjMxMzQucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAEbAKQwDQYJKoZIhvcNAQELBQADggEBAIOZKjiwDr+pHKwOq5N7Qhe/ldWBxN7+ l7gPbl4LgGrXy9qKELNtDPrxl/ItP7SVsvd2kAATe0KqWaBCIbPtrPWh2It/5S4A w4eQeNwB8MSpwL88CKhWSNoPqYu/oRaW1kfKuuwQz/Ftkuo5DH5gC09a5uLV1Wz0 P2GQLIaHXot26AEdrPYelxqpIoXGHz7XoO6r3I3XbwXZPtuESOGC6PWvpI2KcDsj mVxj1IQC/XV3RXOXPcsFwB4BRqzeAd/R8iz+muMEL+u1An/Mb9As0hasuScUncex NlC0sy2fT6+NxVC6fVadfduR7/nkWmz6Aym60ohiulpdv9w0BipxSSE= -----END CERTIFICATE-----Generated at Wed May 13 13:31:15 2026 by rpki-client