$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065588553129525251/0/3132342e34322e3134342e302f32322d3234203d3e20333939343638.roa File: 3132342e34322e3134342e302f32322d3234203d3e20333939343638.roa (raw, json) Hash identifier: SdlRWipoKWLjfI9FQSk/SCRyL8mhnpksMysC4H0OkRg= Subject key identifier: 85:9D:A4:57:49:1D:75:6B:D5:54:93:8E:B3:28:F2:82:EF:EE:AC:CA Certificate issuer: /CN=E893434A32058DAFE9758FDA7B36659444C9EF8E Certificate serial: 5FD7B7F2475372CFE1B37DD553EB24264845DD0E Authority key identifier: E8:93:43:4A:32:05:8D:AF:E9:75:8F:DA:7B:36:65:94:44:C9:EF:8E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/3132342e34322e3134342e302f32322d3234203d3e20333939343638.roa Signing time: Thu 12 Feb 2026 07:39:00 +0000 ROA not before: Thu 12 Feb 2026 07:34:00 +0000 ROA not after: Thu 11 Feb 2027 07:39:00 +0000 asID: 399468 IP address blocks: 124.42.144.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.crl rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 04:07:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:d7:b7:f2:47:53:72:cf:e1:b3:7d:d5:53:eb:24:26:48:45:dd:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E893434A32058DAFE9758FDA7B36659444C9EF8E Validity Not Before: Feb 12 07:34:00 2026 GMT Not After : Feb 11 07:39:00 2027 GMT Subject: CN=859DA457491D756BD554938EB328F282EFEEACCA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:22:59:9b:81:1b:40:56:c6:43:89:f4:51:5d: c4:e4:16:68:6b:8d:98:d0:1d:99:d8:53:23:4a:ca: 3e:aa:b7:e5:9c:da:08:cd:b2:ba:18:b4:96:3e:23: 3e:56:ce:ef:73:3e:0a:f6:d9:84:ea:2b:77:59:00: 13:0a:1a:3b:d2:d9:c8:2e:57:0e:8a:ad:00:fa:1d: 4b:99:cb:82:e2:53:b9:7d:10:8f:17:f3:bd:2f:4f: f0:c6:67:c9:73:91:98:ca:c8:b0:20:f0:e3:da:20: 39:ec:19:79:74:4e:30:ab:15:40:c7:25:37:0b:5f: bf:4b:81:cc:5f:39:97:0b:1c:79:4c:5b:c0:80:7f: 04:c8:d2:7f:09:e5:1b:39:de:34:d4:4e:3a:de:42: 2b:e9:1e:84:a9:a3:f4:ce:7a:eb:0c:e8:fb:62:75: a4:73:81:bf:1f:43:c6:f8:2d:de:87:fb:b6:ba:99: 46:f0:80:e4:78:ea:16:8a:2c:7c:fd:c6:04:24:55: c3:28:4c:46:0f:2f:c4:f4:5d:eb:94:2f:c2:11:8d: 14:64:54:b8:2f:e3:21:c2:f2:08:41:78:00:ef:61: 4f:d5:f0:81:08:5e:e1:cd:26:a7:f6:32:54:c9:72: 0f:22:f8:da:17:59:79:40:35:d5:55:ca:73:8a:77: 3c:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:9D:A4:57:49:1D:75:6B:D5:54:93:8E:B3:28:F2:82:EF:EE:AC:CA X509v3 Authority Key Identifier: keyid:E8:93:43:4A:32:05:8D:AF:E9:75:8F:DA:7B:36:65:94:44:C9:EF:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/3132342e34322e3134342e302f32322d3234203d3e20333939343638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 124.42.144.0/22 Signature Algorithm: sha256WithRSAEncryption 1a:b5:e2:da:ae:5b:bc:33:bb:9c:ac:d9:b8:7f:97:3f:cb:7e: f8:4f:5b:6f:9d:f1:4b:27:fc:a8:76:e8:4a:eb:92:30:3f:c9: 18:29:ad:42:b8:eb:00:54:68:db:7c:bf:7e:83:3f:07:46:f3: 5c:5e:6a:cd:e8:68:fe:2f:d3:a6:ab:10:41:5f:ca:78:46:57: b7:25:41:ba:f4:bf:65:0e:aa:37:83:cb:b8:b8:87:15:6c:8d: 76:45:a1:e6:f1:80:4a:13:84:57:37:28:46:df:36:7e:f9:c6: 25:23:4f:13:48:ef:14:82:bb:0d:5d:5f:32:d4:07:6c:c8:83: 23:ff:3a:6d:e1:57:90:51:91:8b:58:fe:92:e4:b1:eb:5b:55: e9:ab:c1:93:92:8b:47:b9:fb:57:5d:6b:bd:c9:37:62:0f:b1: 8b:9f:95:fa:c4:1b:f2:d7:7b:ab:9c:a9:09:52:9c:9f:0c:8a: 2a:f6:d8:f8:ca:fd:62:d8:dc:61:2e:3b:ab:45:9c:b8:7b:84: 89:91:36:07:e2:51:0f:94:0a:a0:bd:e0:7a:5e:ea:d3:46:32: 02:50:90:6d:90:6a:7c:79:5d:3f:fb:be:19:9f:90:33:29:10: c7:f1:67:41:d4:8d:45:89:df:5c:9e:bd:e2:05:9b:de:f2:c1: c3:62:19:f5 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUX9e38kdTcs/hs33VU+skJkhF3Q4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTg5MzQzNEEzMjA1OERBRkU5NzU4RkRBN0IzNjY1OTQ0 NEM5RUY4RTAeFw0yNjAyMTIwNzM0MDBaFw0yNzAyMTEwNzM5MDBaMDMxMTAvBgNV BAMTKDg1OURBNDU3NDkxRDc1NkJENTU0OTM4RUIzMjhGMjgyRUZFRUFDQ0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKIlmbgRtAVsZDifRRXcTkFmhr jZjQHZnYUyNKyj6qt+Wc2gjNsroYtJY+Iz5Wzu9zPgr22YTqK3dZABMKGjvS2cgu Vw6KrQD6HUuZy4LiU7l9EI8X870vT/DGZ8lzkZjKyLAg8OPaIDnsGXl0TjCrFUDH JTcLX79LgcxfOZcLHHlMW8CAfwTI0n8J5Rs53jTUTjreQivpHoSpo/TOeusM6Pti daRzgb8fQ8b4Ld6H+7a6mUbwgOR46haKLHz9xgQkVcMoTEYPL8T0XeuUL8IRjRRk VLgv4yHC8ghBeADvYU/V8IEIXuHNJqf2MlTJcg8i+NoXWXlANdVVynOKdzzfAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUhZ2kV0kddWvVVJOOsyjygu/urMowHwYDVR0j BBgwFoAU6JNDSjIFja/pdY/aezZllETJ744wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4ODU1MzEyOTUyNTI1MS8wL0U4OTM0MzRBMzIwNThEQUZFOTc1OEZEQTdCMzY2 NTk0NDRDOUVGOEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRTg5MzQzNEEzMjA1OERBRkU5NzU4RkRBN0IzNjY1OTQ0NEM5RUY4RS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1ODg1NTMxMjk1MjUyNTEvMC8zMTMyMzQyZTM0 MzIyZTMxMzQzNDJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDMzMzkzOTM0MzYzOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAnwqkDANBgkqhkiG9w0BAQsFAAOCAQEAGrXi2q5bvDO7nKzZuH+X P8t++E9bb53xSyf8qHboSuuSMD/JGCmtQrjrAFRo23y/foM/B0bzXF5qzeho/i/T pqsQQV/KeEZXtyVBuvS/ZQ6qN4PLuLiHFWyNdkWh5vGAShOEVzcoRt82fvnGJSNP E0jvFIK7DV1fMtQHbMiDI/86beFXkFGRi1j+kuSx61tV6avBk5KLR7n7V11rvck3 Yg+xi5+V+sQb8td7q5ypCVKcnwyKKvbY+Mr9YtjcYS47q0WcuHuEiZE2B+JRD5QK oL3gel7q00YyAlCQbZBqfHldP/u+GZ+QMykQx/FnQdSNRYnfXJ694gWb3vLBw2IZ 9Q== -----END CERTIFICATE-----Generated at Mon Mar 2 15:46:10 2026 by rpki-client