$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582741577334786/0/3230322e3138392e31362e302f32312d3332203d3e20313337363930.roa File: 3230322e3138392e31362e302f32312d3332203d3e20313337363930.roa (raw, json) Hash identifier: Sd84VaUsQyvctKQYEk1GgEnHBSw/rsXH23QoYqTIkY4= Subject key identifier: 65:C2:B7:A8:4B:9B:E8:F0:D4:DF:65:9D:FD:69:AD:53:EC:8E:F2:EE Certificate issuer: /CN=8E80FA24E5DFF3073621050FF18487025A2A5198 Certificate serial: 6CC2DD619A7359D9AA66A1E887F83A64A0FF0E1C Authority key identifier: 8E:80:FA:24:E5:DF:F3:07:36:21:05:0F:F1:84:87:02:5A:2A:51:98 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8E80FA24E5DFF3073621050FF18487025A2A5198.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582741577334786/0/3230322e3138392e31362e302f32312d3332203d3e20313337363930.roa Signing time: Mon 01 Jun 2026 18:13:52 +0000 ROA not before: Mon 01 Jun 2026 18:08:52 +0000 ROA not after: Mon 31 May 2027 18:13:52 +0000 asID: 137690 IP address blocks: 202.189.16.0/21 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582741577334786/0/8E80FA24E5DFF3073621050FF18487025A2A5198.crl rsync://rpki-rps.cnnic.cn/repo/A1065582741577334786/0/8E80FA24E5DFF3073621050FF18487025A2A5198.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8E80FA24E5DFF3073621050FF18487025A2A5198.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 15:08:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:c2:dd:61:9a:73:59:d9:aa:66:a1:e8:87:f8:3a:64:a0:ff:0e:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8E80FA24E5DFF3073621050FF18487025A2A5198 Validity Not Before: Jun 1 18:08:52 2026 GMT Not After : May 31 18:13:52 2027 GMT Subject: CN=65C2B7A84B9BE8F0D4DF659DFD69AD53EC8EF2EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:32:3f:65:92:86:8e:0d:55:9e:92:d1:82:80: bd:cd:e8:37:ad:a4:44:ef:77:57:fa:cf:dc:7c:9a: 83:21:dd:14:e4:df:e1:bf:a5:57:8e:ab:5f:18:f1: 69:cf:21:48:e8:56:3c:07:07:e5:de:a9:63:6d:57: ba:0f:3e:04:02:da:f1:5f:1a:e7:23:78:7c:5e:28: 35:7c:69:8f:88:7d:9d:98:75:02:72:79:cd:5e:c9: 44:de:3e:4b:46:73:d3:62:b4:fd:5c:8b:34:5d:90: f1:0e:7b:b1:ff:66:1e:a0:c7:83:09:22:02:69:c2: 51:1c:e7:96:4e:ac:73:1a:ec:a6:b1:f0:37:21:7b: 4b:9e:f2:41:cd:24:7f:44:67:50:17:b1:d4:0a:ac: dc:68:3b:77:0a:5e:fc:9b:54:60:e3:42:61:95:fd: 5c:c9:b8:43:66:a0:35:b1:45:ab:81:e4:25:dd:b8: 9d:c6:6c:ab:7b:ae:61:88:90:48:99:fc:0f:5c:5e: 0c:c0:5c:1d:f2:6d:19:a5:d4:9b:5a:c8:28:fd:ba: 07:d6:e1:fa:cc:0a:44:7a:10:1b:d1:07:d5:e2:5d: 26:b3:40:b3:0f:33:4e:98:4c:12:64:e9:ae:99:2a: ce:33:9c:58:31:7f:75:e5:0d:61:0d:bb:51:f5:04: 79:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:C2:B7:A8:4B:9B:E8:F0:D4:DF:65:9D:FD:69:AD:53:EC:8E:F2:EE X509v3 Authority Key Identifier: keyid:8E:80:FA:24:E5:DF:F3:07:36:21:05:0F:F1:84:87:02:5A:2A:51:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582741577334786/0/8E80FA24E5DFF3073621050FF18487025A2A5198.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8E80FA24E5DFF3073621050FF18487025A2A5198.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582741577334786/0/3230322e3138392e31362e302f32312d3332203d3e20313337363930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.189.16.0/21 Signature Algorithm: sha256WithRSAEncryption 26:1d:dd:8d:85:e1:83:8a:8f:61:b7:29:81:0a:44:9a:e8:33: ea:8c:b7:6f:10:b7:4f:17:ec:01:7b:27:45:9f:47:76:b0:9e: 03:55:65:25:7a:c3:b5:da:24:26:44:4c:87:ce:5b:2b:21:56: aa:70:25:0d:2a:6f:4a:a6:76:70:08:c9:b5:2c:4d:c9:68:73: 0b:91:ad:23:76:dd:e4:69:d2:01:53:fb:1a:b1:41:77:2f:8c: 30:1a:4e:37:42:98:c2:0a:ad:61:79:c7:0e:38:b9:8b:7d:63: 6e:65:90:e9:ce:65:9b:02:f0:9c:58:71:7f:66:02:6f:ae:fd: 65:1d:27:e3:a3:9e:97:df:bf:1b:af:90:16:e6:e9:49:ea:c7: fe:a7:ed:f4:34:8f:5b:95:9e:e4:22:65:a1:a6:b7:75:be:7a: 2e:0a:dd:1b:21:c8:a0:75:a0:ef:ed:17:9b:b0:5f:6f:31:83: e4:5c:43:51:65:74:a0:21:06:f2:e6:ce:ed:7b:83:b0:e4:96: e8:99:d6:81:65:16:86:b9:bd:d9:89:8c:ab:31:7b:31:43:26: 0f:89:8a:a7:f1:9f:64:9b:e2:2b:d7:b8:f7:11:49:ef:40:58: 8c:49:a0:2b:72:a9:df:43:7a:ac:ea:ad:af:32:42:42:e9:df: 23:ea:ec:41 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUbMLdYZpzWdmqZqHoh/g6ZKD/DhwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEU4MEZBMjRFNURGRjMwNzM2MjEwNTBGRjE4NDg3MDI1 QTJBNTE5ODAeFw0yNjA2MDExODA4NTJaFw0yNzA1MzExODEzNTJaMDMxMTAvBgNV BAMTKDY1QzJCN0E4NEI5QkU4RjBENERGNjU5REZENjlBRDUzRUM4RUYyRUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBMj9lkoaODVWektGCgL3N6Det pETvd1f6z9x8moMh3RTk3+G/pVeOq18Y8WnPIUjoVjwHB+XeqWNtV7oPPgQC2vFf GucjeHxeKDV8aY+IfZ2YdQJyec1eyUTePktGc9NitP1cizRdkPEOe7H/Zh6gx4MJ IgJpwlEc55ZOrHMa7Kax8Dche0ue8kHNJH9EZ1AXsdQKrNxoO3cKXvybVGDjQmGV /VzJuENmoDWxRauB5CXduJ3GbKt7rmGIkEiZ/A9cXgzAXB3ybRml1JtayCj9ugfW 4frMCkR6EBvRB9XiXSazQLMPM06YTBJk6a6ZKs4znFgxf3XlDWENu1H1BHlRAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUZcK3qEub6PDU32Wd/WmtU+yO8u4wHwYDVR0j BBgwFoAUjoD6JOXf8wc2IQUP8YSHAloqUZgwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4Mjc0MTU3NzMzNDc4Ni8wLzhFODBGQTI0RTVERkYzMDczNjIxMDUwRkYxODQ4 NzAyNUEyQTUxOTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOEU4MEZBMjRFNURGRjMwNzM2MjEwNTBGRjE4NDg3MDI1QTJBNTE5OC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1ODI3NDE1NzczMzQ3ODYvMC8zMjMwMzIyZTMx MzgzOTJlMzEzNjJlMzAyZjMyMzEyZDMzMzIyMDNkM2UyMDMxMzMzNzM2MzkzMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEA8q9EDANBgkqhkiG9w0BAQsFAAOCAQEAJh3djYXhg4qPYbcpgQpE mugz6oy3bxC3TxfsAXsnRZ9HdrCeA1VlJXrDtdokJkRMh85bKyFWqnAlDSpvSqZ2 cAjJtSxNyWhzC5GtI3bd5GnSAVP7GrFBdy+MMBpON0KYwgqtYXnHDji5i31jbmWQ 6c5lmwLwnFhxf2YCb679ZR0n46Oel9+/G6+QFubpSerH/qft9DSPW5We5CJloaa3 db56LgrdGyHIoHWg7+0Xm7BfbzGD5FxDUWV0oCEG8ubO7XuDsOSW6JnWgWUWhrm9 2YmMqzF7MUMmD4mKp/GfZJviK9e49xFJ70BYjEmgK3Kp30N6rOqtrzJCQunfI+rs QQ== -----END CERTIFICATE-----Generated at Sun Jun 14 04:12:22 2026 by rpki-client