$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1109645952957874197/0/3230332e39352e312e302f32342d3234203d3e203137373735.roa File: 3230332e39352e312e302f32342d3234203d3e203137373735.roa (raw, json) Hash identifier: KC5/qz63fkP53fYOel/6opVKaaZhQNnbXgPCRoY0+EU= Subject key identifier: AA:0A:3B:B9:55:EB:64:F5:5B:01:04:DF:A9:A7:7A:0D:A3:62:93:81 Certificate issuer: /CN=54B31AC409DB052FD501B70509D854CCE7B08A0B Certificate serial: 2FEB197BCC81FEEEAC26136E89569F7F2117FEF3 Authority key identifier: 54:B3:1A:C4:09:DB:05:2F:D5:01:B7:05:09:D8:54:CC:E7:B0:8A:0B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/54B31AC409DB052FD501B70509D854CCE7B08A0B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1109645952957874197/0/3230332e39352e312e302f32342d3234203d3e203137373735.roa Signing time: Wed 10 Jun 2026 07:07:43 +0000 ROA not before: Wed 10 Jun 2026 07:02:43 +0000 ROA not after: Wed 09 Jun 2027 07:07:43 +0000 asID: 17775 IP address blocks: 203.95.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1109645952957874197/0/54B31AC409DB052FD501B70509D854CCE7B08A0B.crl rsync://rpki-rps.cnnic.cn/repo/A1109645952957874197/0/54B31AC409DB052FD501B70509D854CCE7B08A0B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/54B31AC409DB052FD501B70509D854CCE7B08A0B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 16:02:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:eb:19:7b:cc:81:fe:ee:ac:26:13:6e:89:56:9f:7f:21:17:fe:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=54B31AC409DB052FD501B70509D854CCE7B08A0B Validity Not Before: Jun 10 07:02:43 2026 GMT Not After : Jun 9 07:07:43 2027 GMT Subject: CN=AA0A3BB955EB64F55B0104DFA9A77A0DA3629381 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:fc:35:93:08:34:93:25:65:6b:6a:b2:99:65: 5c:00:99:4c:17:f2:cd:4a:a7:ba:62:f2:0a:08:4f: e0:76:cf:5d:c2:90:c9:0c:aa:dc:26:1c:4f:80:d6: 9e:aa:4a:6b:ed:e5:bb:77:33:4b:81:ea:68:a1:9e: ba:3d:fc:c6:aa:ee:5d:7e:c0:92:aa:ab:e2:92:91: f7:18:b7:19:12:95:76:02:b7:88:33:0c:10:ca:a5: fd:a3:13:4e:a5:4b:55:7a:8e:78:a2:e2:0f:51:23: 97:88:05:48:6a:a6:ab:c9:9d:1a:c8:dd:c3:2d:cd: 3b:33:82:6b:0d:39:39:d2:82:53:8d:d9:d9:8c:47: df:f4:84:6a:34:04:2a:1d:5b:a3:0c:f7:e6:56:3b: b6:f4:63:3d:06:6d:c8:f0:a1:d4:27:4b:5c:db:f8: fb:e8:af:f1:d4:1e:86:fe:27:56:75:ce:bc:ef:60: 09:cf:af:be:38:54:19:bf:f9:7f:84:64:aa:e1:0e: 7c:7a:cb:f8:a4:c4:fd:a6:d6:fa:72:75:d4:74:61: 75:d7:1b:0a:09:1b:79:b2:15:18:1e:95:bd:97:9f: 46:f9:f4:34:7b:34:cb:5a:6b:ca:19:51:23:4a:9c: 79:de:21:b3:89:46:50:ab:f2:27:bf:bf:ad:3b:20: 80:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:0A:3B:B9:55:EB:64:F5:5B:01:04:DF:A9:A7:7A:0D:A3:62:93:81 X509v3 Authority Key Identifier: keyid:54:B3:1A:C4:09:DB:05:2F:D5:01:B7:05:09:D8:54:CC:E7:B0:8A:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1109645952957874197/0/54B31AC409DB052FD501B70509D854CCE7B08A0B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/54B31AC409DB052FD501B70509D854CCE7B08A0B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1109645952957874197/0/3230332e39352e312e302f32342d3234203d3e203137373735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.95.1.0/24 Signature Algorithm: sha256WithRSAEncryption 17:82:c8:5d:ee:cb:0b:90:21:47:5f:a4:c5:14:99:c5:b5:65: 79:fa:de:ac:6e:06:b4:28:5e:9d:6f:7b:6c:1e:d0:cc:2a:48: 52:f7:83:71:78:ba:c4:20:04:87:b8:f2:14:30:c9:9c:c5:10: 65:13:a3:b7:8e:0e:b3:75:64:be:b4:7b:b4:ca:a2:77:08:dc: b4:73:ce:9b:e9:13:36:55:6b:15:ee:9c:cf:ad:95:fa:91:8d: 50:42:bb:6a:e9:b4:1c:3c:5c:92:3a:5c:90:d4:30:e3:f9:aa: 96:9d:fc:9c:4e:29:b1:8f:a1:68:02:30:e6:74:f1:fc:c9:ba: 13:e0:53:0f:b5:f7:8d:12:ee:0f:ae:f1:1a:07:55:36:c3:57: 0a:ff:94:01:dd:8f:3e:36:7a:5b:12:9e:e4:74:02:bb:44:20: 68:c3:00:7f:be:77:1f:ae:88:3b:d6:8a:c0:21:2f:8a:a3:45: 6b:26:48:a2:8d:d0:e2:fd:93:ec:cf:e3:7c:a5:f6:46:4f:93: 0b:f3:d3:1c:a9:14:39:96:10:b4:5d:87:49:f6:3c:ea:24:b3: 0e:48:4c:54:9f:08:19:9a:d0:c5:a0:c3:b8:08:18:9f:08:6f: 8b:5a:b2:61:f7:a4:3b:b3:cc:e9:2f:8b:9c:50:32:31:db:13: 13:5e:bf:61 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUL+sZe8yB/u6sJhNuiVaffyEX/vMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTRCMzFBQzQwOURCMDUyRkQ1MDFCNzA1MDlEODU0Q0NF N0IwOEEwQjAeFw0yNjA2MTAwNzAyNDNaFw0yNzA2MDkwNzA3NDNaMDMxMTAvBgNV BAMTKEFBMEEzQkI5NTVFQjY0RjU1QjAxMDRERkE5QTc3QTBEQTM2MjkzODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2/DWTCDSTJWVrarKZZVwAmUwX 8s1Kp7pi8goIT+B2z13CkMkMqtwmHE+A1p6qSmvt5bt3M0uB6mihnro9/Maq7l1+ wJKqq+KSkfcYtxkSlXYCt4gzDBDKpf2jE06lS1V6jnii4g9RI5eIBUhqpqvJnRrI 3cMtzTszgmsNOTnSglON2dmMR9/0hGo0BCodW6MM9+ZWO7b0Yz0GbcjwodQnS1zb +Pvor/HUHob+J1Z1zrzvYAnPr744VBm/+X+EZKrhDnx6y/ikxP2m1vpyddR0YXXX GwoJG3myFRgelb2Xn0b59DR7NMtaa8oZUSNKnHneIbOJRlCr8ie/v607IIDlAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUqgo7uVXrZPVbAQTfqad6DaNik4EwHwYDVR0j BBgwFoAUVLMaxAnbBS/VAbcFCdhUzOewigswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw OTY0NTk1Mjk1Nzg3NDE5Ny8wLzU0QjMxQUM0MDlEQjA1MkZENTAxQjcwNTA5RDg1 NENDRTdCMDhBMEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTRCMzFBQzQwOURCMDUyRkQ1MDFCNzA1MDlEODU0Q0NFN0IwOEEwQi5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTA5NjQ1OTUyOTU3ODc0MTk3LzAvMzIzMDMzMmUzOTM1 MmUzMTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzczNzM3MzUucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BADLXwEwDQYJKoZIhvcNAQELBQADggEBABeCyF3uywuQIUdfpMUUmcW1ZXn63qxu BrQoXp1ve2we0MwqSFL3g3F4usQgBIe48hQwyZzFEGUTo7eODrN1ZL60e7TKoncI 3LRzzpvpEzZVaxXunM+tlfqRjVBCu2rptBw8XJI6XJDUMOP5qpad/JxOKbGPoWgC MOZ08fzJuhPgUw+1940S7g+u8RoHVTbDVwr/lAHdjz42elsSnuR0ArtEIGjDAH++ dx+uiDvWisAhL4qjRWsmSKKN0OL9k+zP43yl9kZPkwvz0xypFDmWELRdh0n2POok sw5ITFSfCBma0MWgw7gIGJ8Ib4tasmH3pDuzzOkvi5xQMjHbExNev2E= -----END CERTIFICATE-----Generated at Sun Jun 14 08:31:56 2026 by rpki-client