$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065588553129525251/0/3130312e3233322e33362e302f32322d3234203d3e203632333837.roa File: 3130312e3233322e33362e302f32322d3234203d3e203632333837.roa (raw, json) Hash identifier: sTkKVt9iW4CD/CCmJGDYq7RmYRYZ1OMtKL4nyypAeuE= Subject key identifier: 5A:D4:EA:B3:AC:17:FA:B4:2C:05:14:A2:E8:5E:3F:F3:78:5C:7B:04 Certificate issuer: /CN=E893434A32058DAFE9758FDA7B36659444C9EF8E Certificate serial: 3A9A9D4EB177535F324A4F7F62E50F4A72726419 Authority key identifier: E8:93:43:4A:32:05:8D:AF:E9:75:8F:DA:7B:36:65:94:44:C9:EF:8E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/3130312e3233322e33362e302f32322d3234203d3e203632333837.roa Signing time: Tue 24 Feb 2026 03:11:01 +0000 ROA not before: Tue 24 Feb 2026 03:06:01 +0000 ROA not after: Tue 23 Feb 2027 03:11:01 +0000 asID: 62387 IP address blocks: 101.232.36.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.crl rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 04:07:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:9a:9d:4e:b1:77:53:5f:32:4a:4f:7f:62:e5:0f:4a:72:72:64:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E893434A32058DAFE9758FDA7B36659444C9EF8E Validity Not Before: Feb 24 03:06:01 2026 GMT Not After : Feb 23 03:11:01 2027 GMT Subject: CN=5AD4EAB3AC17FAB42C0514A2E85E3FF3785C7B04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:64:af:6f:ad:5b:7b:8c:b8:96:92:bd:71:ff: 3b:15:4c:32:be:ea:42:6c:34:6f:0c:52:61:c1:17: d0:50:e8:f6:89:6b:f5:88:bb:2c:38:24:29:9a:1a: 15:a2:7c:58:b5:ff:59:cb:01:e4:5c:8f:17:78:aa: f5:41:ac:c6:38:a1:6e:21:f6:f2:70:d0:68:fe:bb: 91:11:06:c8:a4:70:79:61:45:0a:8b:2b:2c:40:19: db:f5:d8:e0:c2:58:78:34:82:bd:70:7f:2f:8b:93: 1e:a4:5e:88:d0:6e:f0:03:39:e3:8d:a9:3a:c4:4f: 42:15:fd:66:ad:bc:91:51:c8:6a:7a:3a:27:57:36: ef:63:aa:9f:00:7b:ec:7a:f0:09:4e:7d:5a:55:9d: dd:9a:c3:ec:8a:f1:50:10:d6:41:97:13:94:67:91: a4:78:b0:85:eb:75:f5:18:52:aa:2c:e9:97:b4:22: 8e:60:dc:2a:0c:d4:db:22:f7:92:6a:1d:c3:89:59: 2b:40:d3:e5:0b:00:7c:d5:81:84:f1:94:cc:c9:fd: d0:eb:f6:60:09:47:9e:db:b5:37:5b:69:84:f9:b9: 24:ed:39:c7:31:b8:7f:bc:0c:8c:8e:be:e1:3d:ba: 84:5d:37:63:a9:3d:c5:5b:4e:ae:3c:b3:89:b3:7f: 5f:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:D4:EA:B3:AC:17:FA:B4:2C:05:14:A2:E8:5E:3F:F3:78:5C:7B:04 X509v3 Authority Key Identifier: keyid:E8:93:43:4A:32:05:8D:AF:E9:75:8F:DA:7B:36:65:94:44:C9:EF:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/3130312e3233322e33362e302f32322d3234203d3e203632333837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.232.36.0/22 Signature Algorithm: sha256WithRSAEncryption 1d:fd:65:d4:c2:ed:f6:66:c1:dd:4c:c1:c4:d1:37:b8:06:30: 85:35:ee:b6:a5:8e:10:bc:4b:a2:1c:55:da:82:d7:fa:14:47: a8:99:af:60:6b:b8:17:ee:29:36:ce:6c:7f:c0:be:e9:ca:f0: 69:8c:e1:23:12:33:d2:d7:f4:47:3b:3e:9a:bf:6a:cb:79:01: 42:dd:d1:73:06:7a:eb:fa:f4:f5:ec:b6:f4:6d:d6:6e:78:fd: 74:08:d3:d4:7d:0c:a5:84:cc:3a:a4:13:05:b3:bf:9a:59:67: a6:c5:18:e3:b0:ee:76:7e:b9:c2:d8:28:fc:6e:b9:e9:0e:bf: b4:ca:6d:2b:96:73:d8:0a:b0:0d:3e:60:55:f3:85:58:45:6a: 10:5f:e2:18:f9:ba:67:25:b7:4c:39:06:6b:fa:d2:5b:ec:7b: cd:27:7a:13:e8:47:62:87:25:a0:82:57:d7:10:c6:6c:94:64: 0d:14:ea:cb:e5:7d:e1:a4:5c:f8:04:22:fa:d8:03:5b:cb:a2: d3:25:42:d9:85:40:d2:80:b2:44:e1:6b:db:25:d4:81:fe:81: bf:ef:27:1e:70:60:33:10:7a:3e:bd:bc:68:64:68:df:f4:68: a5:f8:85:7b:52:b9:19:64:cc:9b:f6:18:f2:2f:54:08:9f:19: 9a:6e:ae:42 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUOpqdTrF3U18ySk9/YuUPSnJyZBkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTg5MzQzNEEzMjA1OERBRkU5NzU4RkRBN0IzNjY1OTQ0 NEM5RUY4RTAeFw0yNjAyMjQwMzA2MDFaFw0yNzAyMjMwMzExMDFaMDMxMTAvBgNV BAMTKDVBRDRFQUIzQUMxN0ZBQjQyQzA1MTRBMkU4NUUzRkYzNzg1QzdCMDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcZK9vrVt7jLiWkr1x/zsVTDK+ 6kJsNG8MUmHBF9BQ6PaJa/WIuyw4JCmaGhWifFi1/1nLAeRcjxd4qvVBrMY4oW4h 9vJw0Gj+u5ERBsikcHlhRQqLKyxAGdv12ODCWHg0gr1wfy+Lkx6kXojQbvADOeON qTrET0IV/WatvJFRyGp6OidXNu9jqp8Ae+x68AlOfVpVnd2aw+yK8VAQ1kGXE5Rn kaR4sIXrdfUYUqos6Ze0Io5g3CoM1Nsi95JqHcOJWStA0+ULAHzVgYTxlMzJ/dDr 9mAJR57btTdbaYT5uSTtOccxuH+8DIyOvuE9uoRdN2OpPcVbTq48s4mzf18LAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUWtTqs6wX+rQsBRSi6F4/83hcewQwHwYDVR0j BBgwFoAU6JNDSjIFja/pdY/aezZllETJ744wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4ODU1MzEyOTUyNTI1MS8wL0U4OTM0MzRBMzIwNThEQUZFOTc1OEZEQTdCMzY2 NTk0NDRDOUVGOEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRTg5MzQzNEEzMjA1OERBRkU5NzU4RkRBN0IzNjY1OTQ0NEM5RUY4RS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU4ODU1MzEyOTUyNTI1MS8wLzMxMzAzMTJlMzIz MzMyMmUzMzM2MmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzYzMjMzMzgzNy5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAmXoJDANBgkqhkiG9w0BAQsFAAOCAQEAHf1l1MLt9mbB3UzBxNE3uAYw hTXutqWOELxLohxV2oLX+hRHqJmvYGu4F+4pNs5sf8C+6crwaYzhIxIz0tf0Rzs+ mr9qy3kBQt3RcwZ66/r09ey29G3Wbnj9dAjT1H0MpYTMOqQTBbO/mllnpsUY47Du dn65wtgo/G656Q6/tMptK5Zz2AqwDT5gVfOFWEVqEF/iGPm6ZyW3TDkGa/rSW+x7 zSd6E+hHYocloIJX1xDGbJRkDRTqy+V94aRc+AQi+tgDW8ui0yVC2YVA0oCyROFr 2yXUgf6Bv+8nHnBgMxB6Pr28aGRo3/RopfiFe1K5GWTMm/YY8i9UCJ8Zmm6uQg== -----END CERTIFICATE-----Generated at Mon Mar 2 20:53:05 2026 by rpki-client