$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1106767084924174355/0/3130312e3139382e3138392e302f32342d3234203d3e203535393932.roa File: 3130312e3139382e3138392e302f32342d3234203d3e203535393932.roa (raw, json) Hash identifier: WkSTH3diUKPM7YeEWlFR4Botaw/ZnICgxutTYj7QYMo= Subject key identifier: 01:D9:C5:C1:BF:B5:F7:B1:C1:B3:10:FA:45:9A:B3:0E:FD:9C:64:93 Certificate issuer: /CN=C527EEF22ED4B9034949C91E3D39B24A69FDF984 Certificate serial: 246A5B5370F9DD4E4C9C1A4AEE3469B7AB1F58FF Authority key identifier: C5:27:EE:F2:2E:D4:B9:03:49:49:C9:1E:3D:39:B2:4A:69:FD:F9:84 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C527EEF22ED4B9034949C91E3D39B24A69FDF984.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1106767084924174355/0/3130312e3139382e3138392e302f32342d3234203d3e203535393932.roa Signing time: Wed 13 May 2026 02:32:28 +0000 ROA not before: Wed 13 May 2026 02:27:28 +0000 ROA not after: Wed 12 May 2027 02:32:28 +0000 asID: 55992 IP address blocks: 101.198.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1106767084924174355/0/C527EEF22ED4B9034949C91E3D39B24A69FDF984.crl rsync://rpki-rps.cnnic.cn/repo/A1106767084924174355/0/C527EEF22ED4B9034949C91E3D39B24A69FDF984.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C527EEF22ED4B9034949C91E3D39B24A69FDF984.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:26:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:6a:5b:53:70:f9:dd:4e:4c:9c:1a:4a:ee:34:69:b7:ab:1f:58:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C527EEF22ED4B9034949C91E3D39B24A69FDF984 Validity Not Before: May 13 02:27:28 2026 GMT Not After : May 12 02:32:28 2027 GMT Subject: CN=01D9C5C1BFB5F7B1C1B310FA459AB30EFD9C6493 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:2f:ec:e0:23:37:52:a6:46:b0:7d:f9:c2:75: bd:ba:fe:08:a2:27:b9:58:3b:f6:5b:e2:9b:1e:12: ec:4b:fe:05:50:b5:92:05:25:82:ae:77:9e:9a:bc: f2:13:84:16:2f:ce:b8:20:92:aa:5e:81:fa:55:c0: fe:79:ac:bf:4c:de:73:a3:cf:47:1e:de:d4:e7:15: f4:77:7b:00:4b:e1:8a:79:e8:5a:21:4f:37:bc:3a: cc:5e:44:2c:6d:8a:72:dc:a1:d7:d8:c7:66:f1:c0: 82:5b:52:0c:34:c6:61:bc:c4:14:3b:b8:e1:53:63: 53:c3:9e:9e:4e:3c:29:e5:56:a5:5f:54:f4:7e:33: 59:56:32:c0:1e:78:48:18:8b:19:ba:a4:c4:11:14: a6:c8:bc:c1:29:1b:91:21:3f:96:91:3d:e5:5a:1a: 6d:26:38:3b:39:94:ed:42:92:c7:39:b3:e6:7d:ff: 92:36:85:73:bb:f5:c0:a9:f6:c9:86:2a:27:80:fc: 07:75:7a:b6:d1:99:01:45:a2:12:11:02:11:2b:5e: 4f:8f:56:1d:26:21:cc:29:71:6c:49:1a:4c:02:11: 23:d5:59:84:fd:26:09:2f:25:16:16:2d:bc:b3:38: 8d:8a:6f:6d:38:2e:16:f9:9e:46:e2:15:ab:9a:fe: f8:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:D9:C5:C1:BF:B5:F7:B1:C1:B3:10:FA:45:9A:B3:0E:FD:9C:64:93 X509v3 Authority Key Identifier: keyid:C5:27:EE:F2:2E:D4:B9:03:49:49:C9:1E:3D:39:B2:4A:69:FD:F9:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1106767084924174355/0/C527EEF22ED4B9034949C91E3D39B24A69FDF984.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C527EEF22ED4B9034949C91E3D39B24A69FDF984.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1106767084924174355/0/3130312e3139382e3138392e302f32342d3234203d3e203535393932.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.198.189.0/24 Signature Algorithm: sha256WithRSAEncryption 40:ed:28:98:05:78:a6:05:b2:fb:f0:75:62:38:d7:7c:4b:90: 93:e0:2d:1b:fa:09:16:90:48:c3:4c:b0:1a:41:cf:65:1e:73: 99:07:2e:8e:f0:b6:38:a1:14:99:b1:3b:af:bc:9e:6d:60:9d: 96:86:b6:5e:90:c0:42:c8:d8:bd:16:d6:ee:56:1c:7d:fe:ef: 0f:74:53:68:b6:4e:c5:9e:c2:46:4f:5f:90:5d:8a:d7:13:2b: 7a:eb:31:a1:d1:49:71:65:2f:6d:ad:f6:4b:82:8c:b3:7f:69: 3a:fe:0b:1b:a8:8f:47:c3:28:63:f1:a4:18:0c:19:4a:c4:5b: 4e:90:51:13:db:fa:24:4a:9d:a2:5f:9c:51:2c:b2:22:d3:f4: 8d:bf:95:a0:bd:15:ff:66:e1:91:26:05:ab:4c:aa:91:65:37: 02:22:dd:03:4d:be:89:78:1e:67:7b:d7:de:94:1b:8c:ec:a7: d9:b3:05:c0:55:96:0a:44:aa:82:04:2b:63:c0:8e:66:cd:0a: 2d:4f:3a:45:53:64:5a:f5:c4:7d:9b:7f:09:d8:d1:23:cd:cd: 88:00:82:c6:1e:36:55:6d:2c:97:f3:e0:1b:85:8b:28:37:02: 52:e6:a5:70:4f:92:03:55:19:14:ad:8a:e7:c1:4d:5f:a1:65: 06:e9:1b:17 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUJGpbU3D53U5MnBpK7jRpt6sfWP8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzUyN0VFRjIyRUQ0QjkwMzQ5NDlDOTFFM0QzOUIyNEE2 OUZERjk4NDAeFw0yNjA1MTMwMjI3MjhaFw0yNzA1MTIwMjMyMjhaMDMxMTAvBgNV BAMTKDAxRDlDNUMxQkZCNUY3QjFDMUIzMTBGQTQ1OUFCMzBFRkQ5QzY0OTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCHL+zgIzdSpkawffnCdb26/gii J7lYO/Zb4pseEuxL/gVQtZIFJYKud56avPIThBYvzrggkqpegfpVwP55rL9M3nOj z0ce3tTnFfR3ewBL4Yp56FohTze8OsxeRCxtinLcodfYx2bxwIJbUgw0xmG8xBQ7 uOFTY1PDnp5OPCnlVqVfVPR+M1lWMsAeeEgYixm6pMQRFKbIvMEpG5EhP5aRPeVa Gm0mODs5lO1Cksc5s+Z9/5I2hXO79cCp9smGKieA/Ad1erbRmQFFohIRAhErXk+P Vh0mIcwpcWxJGkwCESPVWYT9JgkvJRYWLbyzOI2Kb204Lhb5nkbiFaua/viBAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUAdnFwb+197HBsxD6RZqzDv2cZJMwHwYDVR0j BBgwFoAUxSfu8i7UuQNJSckePTmySmn9+YQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw Njc2NzA4NDkyNDE3NDM1NS8wL0M1MjdFRUYyMkVENEI5MDM0OTQ5QzkxRTNEMzlC MjRBNjlGREY5ODQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQzUyN0VFRjIyRUQ0QjkwMzQ5NDlDOTFFM0QzOUIyNEE2OUZERjk4NC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTExMDY3NjcwODQ5MjQxNzQzNTUvMC8zMTMwMzEyZTMx MzkzODJlMzEzODM5MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzUzNTM5MzkzMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGXGvTANBgkqhkiG9w0BAQsFAAOCAQEAQO0omAV4pgWy+/B1YjjX fEuQk+AtG/oJFpBIw0ywGkHPZR5zmQcujvC2OKEUmbE7r7yebWCdloa2XpDAQsjY vRbW7lYcff7vD3RTaLZOxZ7CRk9fkF2K1xMreusxodFJcWUvba32S4KMs39pOv4L G6iPR8MoY/GkGAwZSsRbTpBRE9v6JEqdol+cUSyyItP0jb+VoL0V/2bhkSYFq0yq kWU3AiLdA02+iXgeZ3vX3pQbjOyn2bMFwFWWCkSqggQrY8COZs0KLU86RVNkWvXE fZt/CdjRI83NiACCxh42VW0sl/PgG4WLKDcCUualcE+SA1UZFK2K58FNX6FlBukb Fw== -----END CERTIFICATE-----Generated at Wed May 13 17:25:28 2026 by rpki-client