$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065588553129525251/0/3132342e34322e3132382e302f32322d3234203d3e20333939313338.roa File: 3132342e34322e3132382e302f32322d3234203d3e20333939313338.roa (raw, json) Hash identifier: Vezsjm2nsCleqU7ggWKnP3nKtWgjbAfTLLyfTneK3So= Subject key identifier: 2A:BE:67:1D:6A:D1:5D:4A:38:80:B4:79:C8:1C:B7:6F:D1:94:EF:2F Certificate issuer: /CN=E893434A32058DAFE9758FDA7B36659444C9EF8E Certificate serial: 5C64648E67E8498E24445437C11032593C60CA3C Authority key identifier: E8:93:43:4A:32:05:8D:AF:E9:75:8F:DA:7B:36:65:94:44:C9:EF:8E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/3132342e34322e3132382e302f32322d3234203d3e20333939313338.roa Signing time: Wed 28 Jan 2026 07:45:58 +0000 ROA not before: Wed 28 Jan 2026 07:40:58 +0000 ROA not after: Wed 27 Jan 2027 07:45:58 +0000 asID: 399138 IP address blocks: 124.42.128.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.crl rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 04:07:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:64:64:8e:67:e8:49:8e:24:44:54:37:c1:10:32:59:3c:60:ca:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E893434A32058DAFE9758FDA7B36659444C9EF8E Validity Not Before: Jan 28 07:40:58 2026 GMT Not After : Jan 27 07:45:58 2027 GMT Subject: CN=2ABE671D6AD15D4A3880B479C81CB76FD194EF2F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:17:d5:fb:ea:db:2d:59:3d:43:c8:51:c4:8d: f3:68:dc:1c:f5:d6:66:9f:69:d3:46:b9:4c:59:e0: 38:7f:29:90:7a:51:e0:6f:31:98:d2:8d:17:dd:23: a6:52:f2:b4:da:22:c8:26:b0:e6:c3:68:9f:2a:81: 66:df:ed:40:87:ad:e2:4b:c1:93:01:29:63:25:14: a3:70:00:4d:16:02:83:e2:01:58:40:42:55:7c:6d: 5b:1f:4e:96:a9:cc:0d:c1:60:ec:ba:7d:90:c2:50: b2:1f:25:c5:61:47:97:51:c4:83:b1:eb:89:d7:3b: 8d:a8:a9:64:38:31:f2:e1:7d:a7:d1:17:54:fb:7e: d6:44:14:f5:58:fe:fa:96:e4:3f:1b:fe:d4:73:9e: 18:d6:47:5a:ed:a0:c8:63:e8:9f:65:28:04:e0:7d: 49:1b:82:2a:17:24:95:83:c4:4c:65:0a:35:da:cb: fb:f3:c1:b0:fd:b4:01:11:d7:d3:5e:4a:11:24:6e: 01:83:0f:05:ae:56:20:f5:d8:29:2f:52:cc:db:38: 30:2d:f9:02:a5:97:31:46:c5:39:61:f9:0d:28:4e: 82:8c:31:fc:b0:bd:ca:7e:5f:63:c8:e8:dc:b7:08: 31:11:cb:76:82:a5:75:88:03:9e:f2:27:86:6f:47: 0a:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:BE:67:1D:6A:D1:5D:4A:38:80:B4:79:C8:1C:B7:6F:D1:94:EF:2F X509v3 Authority Key Identifier: keyid:E8:93:43:4A:32:05:8D:AF:E9:75:8F:DA:7B:36:65:94:44:C9:EF:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/3132342e34322e3132382e302f32322d3234203d3e20333939313338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 124.42.128.0/22 Signature Algorithm: sha256WithRSAEncryption 20:17:ca:1c:1c:fb:4e:b9:d0:4d:48:f9:c6:ac:b7:ef:87:47: 0b:3c:8a:e3:db:8c:0e:0b:68:5b:5d:13:99:6c:31:62:fb:d4: c6:7f:83:b5:cc:92:b0:48:39:e1:7d:6d:2e:e4:44:45:50:d2: 24:dc:b6:f6:13:74:04:9a:e3:fc:30:94:ae:35:2c:ab:d6:84: 13:60:b0:52:d1:9b:63:0b:a9:1d:a4:92:c5:fb:06:8c:93:4b: 52:cc:a7:89:d2:c1:ba:90:d2:0d:da:d4:cc:c2:51:e9:a4:8e: ff:8e:a1:56:d1:98:44:5c:99:e0:60:2f:7f:02:f0:f6:8d:30: 37:0f:44:36:49:f6:5c:06:56:db:98:30:a0:1b:9c:72:0f:95: d9:08:2e:80:78:8b:24:3c:b1:10:74:af:d8:11:29:54:5f:5a: 8c:5c:d7:cb:dd:35:b5:a2:d1:9e:87:e1:fb:ac:c0:8a:e6:10: b6:89:19:05:c9:01:a5:e0:60:d5:d3:bc:ef:4b:88:90:56:e7: 97:f2:12:39:e5:00:fc:74:1d:93:9d:dd:d6:57:7c:81:37:4c: 97:6e:5e:9b:ef:8e:77:33:7d:31:eb:0e:dd:6e:52:b7:fc:ca: 03:f8:07:95:57:06:ea:04:a5:d7:dd:84:45:e6:7e:96:f6:5c: 69:94:08:e2 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUXGRkjmfoSY4kRFQ3wRAyWTxgyjwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTg5MzQzNEEzMjA1OERBRkU5NzU4RkRBN0IzNjY1OTQ0 NEM5RUY4RTAeFw0yNjAxMjgwNzQwNThaFw0yNzAxMjcwNzQ1NThaMDMxMTAvBgNV BAMTKDJBQkU2NzFENkFEMTVENEEzODgwQjQ3OUM4MUNCNzZGRDE5NEVGMkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDF9X76tstWT1DyFHEjfNo3Bz1 1mafadNGuUxZ4Dh/KZB6UeBvMZjSjRfdI6ZS8rTaIsgmsObDaJ8qgWbf7UCHreJL wZMBKWMlFKNwAE0WAoPiAVhAQlV8bVsfTpapzA3BYOy6fZDCULIfJcVhR5dRxIOx 64nXO42oqWQ4MfLhfafRF1T7ftZEFPVY/vqW5D8b/tRznhjWR1rtoMhj6J9lKATg fUkbgioXJJWDxExlCjXay/vzwbD9tAER19NeShEkbgGDDwWuViD12CkvUszbODAt +QKllzFGxTlh+Q0oToKMMfywvcp+X2PI6Ny3CDERy3aCpXWIA57yJ4ZvRwrTAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUKr5nHWrRXUo4gLR5yBy3b9GU7y8wHwYDVR0j BBgwFoAU6JNDSjIFja/pdY/aezZllETJ744wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4ODU1MzEyOTUyNTI1MS8wL0U4OTM0MzRBMzIwNThEQUZFOTc1OEZEQTdCMzY2 NTk0NDRDOUVGOEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRTg5MzQzNEEzMjA1OERBRkU5NzU4RkRBN0IzNjY1OTQ0NEM5RUY4RS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1ODg1NTMxMjk1MjUyNTEvMC8zMTMyMzQyZTM0 MzIyZTMxMzIzODJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDMzMzkzOTMxMzMzOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAnwqgDANBgkqhkiG9w0BAQsFAAOCAQEAIBfKHBz7TrnQTUj5xqy3 74dHCzyK49uMDgtoW10TmWwxYvvUxn+DtcySsEg54X1tLuRERVDSJNy29hN0BJrj /DCUrjUsq9aEE2CwUtGbYwupHaSSxfsGjJNLUsynidLBupDSDdrUzMJR6aSO/46h VtGYRFyZ4GAvfwLw9o0wNw9ENkn2XAZW25gwoBuccg+V2QgugHiLJDyxEHSv2BEp VF9ajFzXy901taLRnofh+6zAiuYQtokZBckBpeBg1dO870uIkFbnl/ISOeUA/HQd k53d1ld8gTdMl25em++OdzN9MesO3W5St/zKA/gHlVcG6gSl192EReZ+lvZcaZQI 4g== -----END CERTIFICATE-----Generated at Mon Mar 2 13:44:34 2026 by rpki-client