$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1106767084924174355/0/3130312e3139382e3137302e302f32332d3233203d3e203535393932.roa File: 3130312e3139382e3137302e302f32332d3233203d3e203535393932.roa (raw, json) Hash identifier: fmXSeYFH7IWYbDtIisi+JYVD1ikJPF7fXdnqpi8Ww2U= Subject key identifier: E0:A7:B2:50:6F:82:C9:61:F5:22:00:00:D2:E4:4D:1F:D6:A3:6C:79 Certificate issuer: /CN=C527EEF22ED4B9034949C91E3D39B24A69FDF984 Certificate serial: 0A7123C07497EEE0826D6A2216FA622F5DB2AAC6 Authority key identifier: C5:27:EE:F2:2E:D4:B9:03:49:49:C9:1E:3D:39:B2:4A:69:FD:F9:84 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C527EEF22ED4B9034949C91E3D39B24A69FDF984.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1106767084924174355/0/3130312e3139382e3137302e302f32332d3233203d3e203535393932.roa Signing time: Wed 13 May 2026 02:20:25 +0000 ROA not before: Wed 13 May 2026 02:15:25 +0000 ROA not after: Wed 12 May 2027 02:20:25 +0000 asID: 55992 IP address blocks: 101.198.170.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1106767084924174355/0/C527EEF22ED4B9034949C91E3D39B24A69FDF984.crl rsync://rpki-rps.cnnic.cn/repo/A1106767084924174355/0/C527EEF22ED4B9034949C91E3D39B24A69FDF984.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C527EEF22ED4B9034949C91E3D39B24A69FDF984.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:26:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:71:23:c0:74:97:ee:e0:82:6d:6a:22:16:fa:62:2f:5d:b2:aa:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C527EEF22ED4B9034949C91E3D39B24A69FDF984 Validity Not Before: May 13 02:15:25 2026 GMT Not After : May 12 02:20:25 2027 GMT Subject: CN=E0A7B2506F82C961F5220000D2E44D1FD6A36C79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:87:96:2e:b0:24:83:62:87:3b:7b:b0:e4:86: 80:68:7f:16:b8:75:c5:f1:91:84:d8:7b:86:0c:1b: 5f:7f:b3:4c:32:1d:f0:2e:a7:0e:c6:2d:b6:ad:dd: 05:5e:53:b8:3f:ef:fa:93:bc:b3:4a:09:ba:22:87: b8:74:92:2f:c6:46:34:f0:db:e7:2b:a3:17:2a:38: bb:13:a7:28:22:27:99:30:85:e2:d5:ec:72:91:6a: dd:b6:92:4b:ca:ae:27:2e:0f:0e:2e:41:a0:28:b1: a7:64:2d:95:6e:8a:c6:62:56:cb:e4:3f:cf:3b:18: f6:45:1a:a9:d0:22:7f:c2:be:dc:bb:e2:aa:ce:e6: 0f:26:69:c0:d7:ae:3c:a8:15:2c:30:75:73:ae:7c: d3:eb:f1:48:30:4a:b4:b4:d1:d2:0b:35:1d:f6:29: 66:c6:d9:e2:3d:cf:b6:85:71:be:f0:a6:e0:a1:f9: 07:a0:e8:e3:b2:c7:f8:c3:77:f9:9c:21:94:c8:c2: 23:a8:8d:41:39:52:e1:50:74:93:83:fc:01:2e:1d: 33:4c:7f:07:8d:3c:a0:42:b8:26:63:ae:d5:23:a6: 2b:dd:50:df:36:dd:23:88:0a:1a:b3:5c:2c:91:b3: a5:40:9d:9d:f9:9c:c1:d3:eb:0d:56:8b:b6:83:c2: 8c:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:A7:B2:50:6F:82:C9:61:F5:22:00:00:D2:E4:4D:1F:D6:A3:6C:79 X509v3 Authority Key Identifier: keyid:C5:27:EE:F2:2E:D4:B9:03:49:49:C9:1E:3D:39:B2:4A:69:FD:F9:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1106767084924174355/0/C527EEF22ED4B9034949C91E3D39B24A69FDF984.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C527EEF22ED4B9034949C91E3D39B24A69FDF984.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1106767084924174355/0/3130312e3139382e3137302e302f32332d3233203d3e203535393932.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.198.170.0/23 Signature Algorithm: sha256WithRSAEncryption 75:4e:85:d1:d3:7e:1d:73:57:c7:1d:f2:ba:23:27:96:6d:e6: 46:2b:15:9e:6f:d4:27:d2:99:c3:06:d0:d1:e9:a8:fd:30:31: f4:c2:9c:46:d9:e1:91:18:b1:f3:72:0d:9b:42:00:b4:98:ce: 21:89:2e:61:08:0f:77:cd:a0:3c:2c:01:bc:d1:5d:eb:d3:d6: 92:13:9d:da:da:52:ba:23:8e:18:72:8d:e3:23:48:d9:f7:01: 07:64:31:9f:1f:e8:72:0e:4c:c1:ea:ec:d0:67:2d:f1:f8:40: 0c:c5:29:99:87:3d:ee:84:dd:3f:ac:0a:b9:b1:e8:ea:1a:29: 41:d6:f5:cc:d4:5e:17:43:38:77:07:9c:55:0e:88:36:b6:cf: 6b:67:03:fa:41:13:a5:2e:f1:b4:f3:92:cc:f0:0c:37:98:43: 79:ed:c9:a1:4c:c6:98:83:98:63:f9:1a:7d:6b:e8:21:b0:6f: 76:cd:7d:7c:6b:87:cd:49:1e:e5:a0:7a:75:fd:08:b2:33:88: 1c:f9:7a:0c:71:93:55:4b:cc:ea:6d:43:58:d4:f0:bd:0d:78: 11:1e:be:95:9f:9f:91:72:9d:14:48:7b:bc:f4:61:f1:37:6b: e6:98:98:68:64:1d:6e:ce:68:98:c7:12:10:88:8b:97:05:aa: a8:c6:5a:55 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUCnEjwHSX7uCCbWoiFvpiL12yqsYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzUyN0VFRjIyRUQ0QjkwMzQ5NDlDOTFFM0QzOUIyNEE2 OUZERjk4NDAeFw0yNjA1MTMwMjE1MjVaFw0yNzA1MTIwMjIwMjVaMDMxMTAvBgNV BAMTKEUwQTdCMjUwNkY4MkM5NjFGNTIyMDAwMEQyRTQ0RDFGRDZBMzZDNzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZh5YusCSDYoc7e7DkhoBofxa4 dcXxkYTYe4YMG19/s0wyHfAupw7GLbat3QVeU7g/7/qTvLNKCboih7h0ki/GRjTw 2+croxcqOLsTpygiJ5kwheLV7HKRat22kkvKricuDw4uQaAosadkLZVuisZiVsvk P887GPZFGqnQIn/Cvty74qrO5g8macDXrjyoFSwwdXOufNPr8UgwSrS00dILNR32 KWbG2eI9z7aFcb7wpuCh+Qeg6OOyx/jDd/mcIZTIwiOojUE5UuFQdJOD/AEuHTNM fweNPKBCuCZjrtUjpivdUN823SOIChqzXCyRs6VAnZ35nMHT6w1Wi7aDwox9AgMB AAGjggIXMIICEzAdBgNVHQ4EFgQU4KeyUG+CyWH1IgAA0uRNH9ajbHkwHwYDVR0j BBgwFoAUxSfu8i7UuQNJSckePTmySmn9+YQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw Njc2NzA4NDkyNDE3NDM1NS8wL0M1MjdFRUYyMkVENEI5MDM0OTQ5QzkxRTNEMzlC MjRBNjlGREY5ODQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQzUyN0VFRjIyRUQ0QjkwMzQ5NDlDOTFFM0QzOUIyNEE2OUZERjk4NC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTExMDY3NjcwODQ5MjQxNzQzNTUvMC8zMTMwMzEyZTMx MzkzODJlMzEzNzMwMmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzUzNTM5MzkzMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWXGqjANBgkqhkiG9w0BAQsFAAOCAQEAdU6F0dN+HXNXxx3yuiMn lm3mRisVnm/UJ9KZwwbQ0emo/TAx9MKcRtnhkRix83INm0IAtJjOIYkuYQgPd82g PCwBvNFd69PWkhOd2tpSuiOOGHKN4yNI2fcBB2Qxnx/ocg5Mwers0Gct8fhADMUp mYc97oTdP6wKubHo6hopQdb1zNReF0M4dwecVQ6INrbPa2cD+kETpS7xtPOSzPAM N5hDee3JoUzGmIOYY/kafWvoIbBvds19fGuHzUke5aB6df0IsjOIHPl6DHGTVUvM 6m1DWNTwvQ14ER6+lZ+fkXKdFEh7vPRh8Tdr5piYaGQdbs5omMcSEIiLlwWqqMZa VQ== -----END CERTIFICATE-----Generated at Wed May 13 13:25:14 2026 by rpki-client