$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095890985226862595/0/AS133119.roa File: AS133119.roa (raw, json) Hash identifier: eK5ANOG/6zPQIXqZeCr7hNr+CsoVjQVEJAsqA4zjgb0= Subject key identifier: 71:65:0C:AE:BD:19:2B:58:E9:E0:D2:A9:EC:10:9A:EA:46:BD:C0:F1 Certificate issuer: /CN=91C6B644DD6D84839ED120FBC00984D60495C8C4 Certificate serial: 772194A88862F4EA2B907DEC70DF2AD5DAAE47EC Authority key identifier: 91:C6:B6:44:DD:6D:84:83:9E:D1:20:FB:C0:09:84:D6:04:95:C8:C4 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/91C6B644DD6D84839ED120FBC00984D60495C8C4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095890985226862595/0/AS133119.roa Signing time: Mon 08 Jun 2026 09:03:46 +0000 ROA not before: Mon 08 Jun 2026 08:58:46 +0000 ROA not after: Mon 07 Jun 2027 09:03:46 +0000 asID: 133119 IP address blocks: 101.36.128.0/17 maxlen: 17 122.14.192.0/18 maxlen: 18 123.58.96.0/19 maxlen: 19 2401:be00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095890985226862595/0/91C6B644DD6D84839ED120FBC00984D60495C8C4.crl rsync://rpki-rps.cnnic.cn/repo/A1095890985226862595/0/91C6B644DD6D84839ED120FBC00984D60495C8C4.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/91C6B644DD6D84839ED120FBC00984D60495C8C4.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Jun 2026 00:55:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:21:94:a8:88:62:f4:ea:2b:90:7d:ec:70:df:2a:d5:da:ae:47:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91C6B644DD6D84839ED120FBC00984D60495C8C4 Validity Not Before: Jun 8 08:58:46 2026 GMT Not After : Jun 7 09:03:46 2027 GMT Subject: CN=71650CAEBD192B58E9E0D2A9EC109AEA46BDC0F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:0d:12:62:b1:13:47:19:2c:e8:5a:8e:4f:60: 70:1e:bf:39:fc:54:a2:ab:d7:48:ab:90:33:0d:27: eb:3f:1e:3b:a5:bd:84:06:bd:08:d2:73:b4:39:b6: 14:7a:cc:19:d3:7e:1a:57:57:57:f4:c1:e3:bc:e0: 86:9c:11:4e:6c:20:80:35:12:a4:c5:ee:db:f4:a5: 3b:10:47:ff:2f:60:fe:e2:bb:36:d3:7c:21:7e:85: 1e:d6:82:fb:37:14:aa:95:4b:57:2d:fc:fc:55:9b: a8:94:24:f6:85:dc:68:a3:94:2c:12:dd:40:35:9e: de:9c:21:b2:8f:68:45:1f:52:10:f7:f8:59:bc:9f: ea:1a:e1:8a:d7:78:dd:2a:16:8b:6e:18:4b:1b:92: dd:95:8e:f2:f0:43:d3:77:3e:47:85:6c:f6:8b:7c: 3d:04:b7:36:27:01:1b:4f:ce:c4:b5:4a:46:f7:e0: c5:d2:01:64:f3:24:df:3b:26:e3:e8:7b:1e:da:2b: ea:f3:27:dc:dd:a2:4c:1e:ba:35:47:e8:5a:4f:a8: 42:2e:47:ba:64:79:94:0d:0e:5d:f2:94:ab:9d:79: f6:91:3b:1e:66:5a:8f:53:1c:3f:c0:3e:32:31:42: 63:98:d7:82:d4:5c:7b:03:d8:27:d0:4f:d9:21:ed: 40:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:65:0C:AE:BD:19:2B:58:E9:E0:D2:A9:EC:10:9A:EA:46:BD:C0:F1 X509v3 Authority Key Identifier: keyid:91:C6:B6:44:DD:6D:84:83:9E:D1:20:FB:C0:09:84:D6:04:95:C8:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095890985226862595/0/91C6B644DD6D84839ED120FBC00984D60495C8C4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/91C6B644DD6D84839ED120FBC00984D60495C8C4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095890985226862595/0/AS133119.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.36.128.0/17 122.14.192.0/18 123.58.96.0/19 IPv6: 2401:be00::/48 Signature Algorithm: sha256WithRSAEncryption 7c:d1:d2:be:3a:2a:b1:79:d9:4a:67:c5:5a:7b:b5:b2:4f:8a: 85:38:02:83:73:52:f3:f4:c2:87:86:28:ec:c1:ae:79:e8:73: 8d:d1:41:71:94:ae:07:25:4b:d5:8f:35:72:9f:6b:ad:e7:38: 11:03:1d:2c:9f:95:74:d9:4b:f7:c9:ec:2a:54:2f:e7:ce:a1: d6:4b:82:6a:ae:59:1c:13:c5:64:f1:16:0d:57:8b:82:70:27: b1:ac:f3:60:1c:27:75:ba:38:6d:48:a4:4b:ae:70:30:7d:48: 08:f8:a5:b4:6c:a9:f7:24:1a:b2:06:68:df:b5:a6:0a:6e:97: 75:e3:be:1e:e7:0e:51:79:84:d2:24:59:9f:9a:76:ea:cb:45: 91:17:ca:a9:85:51:91:72:b6:89:09:e9:95:33:2b:ab:07:0a: e1:40:ba:e1:60:e5:e8:ed:77:c1:c3:24:c9:92:cb:d3:dd:99: 7f:a2:e6:14:1e:43:b7:51:12:32:9a:4f:fd:b9:66:c2:18:82: be:60:e0:58:85:cf:e9:51:62:aa:6a:3b:3c:d7:fc:be:63:55: 33:00:25:37:f2:f6:ca:7c:aa:50:35:16:ac:ce:d8:4e:9e:7e: d5:47:dd:a1:1e:b3:96:ee:dc:f5:39:b1:b4:15:a4:f2:d4:ec: 50:39:a1:19 -----BEGIN CERTIFICATE----- MIIE9zCCA9+gAwIBAgIUdyGUqIhi9OorkH3scN8q1dquR+wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTFDNkI2NDRERDZEODQ4MzlFRDEyMEZCQzAwOTg0RDYw NDk1QzhDNDAeFw0yNjA2MDgwODU4NDZaFw0yNzA2MDcwOTAzNDZaMDMxMTAvBgNV BAMTKDcxNjUwQ0FFQkQxOTJCNThFOUUwRDJBOUVDMTA5QUVBNDZCREMwRjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCUDRJisRNHGSzoWo5PYHAevzn8 VKKr10irkDMNJ+s/HjulvYQGvQjSc7Q5thR6zBnTfhpXV1f0weO84IacEU5sIIA1 EqTF7tv0pTsQR/8vYP7iuzbTfCF+hR7Wgvs3FKqVS1ct/PxVm6iUJPaF3GijlCwS 3UA1nt6cIbKPaEUfUhD3+Fm8n+oa4YrXeN0qFotuGEsbkt2VjvLwQ9N3PkeFbPaL fD0EtzYnARtPzsS1Skb34MXSAWTzJN87JuPoex7aK+rzJ9zdokweujVH6FpPqEIu R7pkeZQNDl3ylKudefaROx5mWo9THD/APjIxQmOY14LUXHsD2CfQT9kh7UBdAgMB AAGjggIBMIIB/TAdBgNVHQ4EFgQUcWUMrr0ZK1jp4NKp7BCa6ka9wPEwHwYDVR0j BBgwFoAUkca2RN1thIOe0SD7wAmE1gSVyMQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTg5MDk4NTIyNjg2MjU5NS8wLzkxQzZCNjQ0REQ2RDg0ODM5RUQxMjBGQkMwMDk4 NEQ2MDQ5NUM4QzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTFDNkI2NDRERDZEODQ4MzlFRDEyMEZCQzAwOTg0RDYwNDk1QzhDNC5jZXIw XgYIKwYBBQUHAQsEUjBQME4GCCsGAQUFBzALhkJyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwOTU4OTA5ODUyMjY4NjI1OTUvMC9BUzEzMzExOS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA8BggrBgEFBQcBBwEB/wQtMCswGAQC AAEwEgMEB2UkgAMEBnoOwAMEBXs6YDAPBAIAAjAJAwcAJAG+AAAAMA0GCSqGSIb3 DQEBCwUAA4IBAQB80dK+OiqxedlKZ8Vae7WyT4qFOAKDc1Lz9MKHhijswa556HON 0UFxlK4HJUvVjzVyn2ut5zgRAx0sn5V02Uv3yewqVC/nzqHWS4JqrlkcE8Vk8RYN V4uCcCexrPNgHCd1ujhtSKRLrnAwfUgI+KW0bKn3JBqyBmjftaYKbpd1474e5w5R eYTSJFmfmnbqy0WRF8qphVGRcraJCemVMyurBwrhQLrhYOXo7XfBwyTJksvT3Zl/ ouYUHkO3URIymk/9uWbCGIK+YOBYhc/pUWKqajs81/y+Y1UzACU38vbKfKpQNRas zthOnn7VR92hHrOW7tz1ObG0FaTy1OxQOaEZ -----END CERTIFICATE-----Generated at Wed Jun 17 09:17:18 2026 by rpki-client