$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1109645952957874197/0/3231312e3134342e3130302e302f32342d3234203d3e203137373735.roa File: 3231312e3134342e3130302e302f32342d3234203d3e203137373735.roa (raw, json) Hash identifier: N+Prg3YxEZ2TaEvPHTaglI5wsObXn3UPKiaLZnYw3/M= Subject key identifier: 82:0F:E9:20:0E:39:28:6B:0E:46:0F:D1:3E:C0:C0:9F:2E:61:0C:37 Certificate issuer: /CN=54B31AC409DB052FD501B70509D854CCE7B08A0B Certificate serial: 5B10F332B46EEB63B242F716EC41AA5DA6D02843 Authority key identifier: 54:B3:1A:C4:09:DB:05:2F:D5:01:B7:05:09:D8:54:CC:E7:B0:8A:0B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/54B31AC409DB052FD501B70509D854CCE7B08A0B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1109645952957874197/0/3231312e3134342e3130302e302f32342d3234203d3e203137373735.roa Signing time: Wed 10 Jun 2026 06:56:58 +0000 ROA not before: Wed 10 Jun 2026 06:51:58 +0000 ROA not after: Wed 09 Jun 2027 06:56:58 +0000 asID: 17775 IP address blocks: 211.144.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1109645952957874197/0/54B31AC409DB052FD501B70509D854CCE7B08A0B.crl rsync://rpki-rps.cnnic.cn/repo/A1109645952957874197/0/54B31AC409DB052FD501B70509D854CCE7B08A0B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/54B31AC409DB052FD501B70509D854CCE7B08A0B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 16:02:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:10:f3:32:b4:6e:eb:63:b2:42:f7:16:ec:41:aa:5d:a6:d0:28:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=54B31AC409DB052FD501B70509D854CCE7B08A0B Validity Not Before: Jun 10 06:51:58 2026 GMT Not After : Jun 9 06:56:58 2027 GMT Subject: CN=820FE9200E39286B0E460FD13EC0C09F2E610C37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:23:ed:63:43:2b:4e:b7:b0:8b:ce:1d:27:7f: ca:fa:e3:90:49:81:99:83:12:77:bf:31:3e:5d:76: c2:95:c8:2d:f0:1f:2d:f6:ae:d7:73:27:81:cc:4e: 04:d0:a1:2a:24:07:05:83:40:60:e1:f0:11:e6:d8: 3c:ca:63:d5:7e:c4:26:e7:ad:d2:34:d2:d6:7e:b6: 03:28:b0:5b:5e:57:72:c7:46:0c:07:5b:0d:79:fc: 17:92:46:ed:ed:dc:14:a7:c9:1e:65:c5:6c:fb:3b: cb:73:43:6d:ae:00:11:ca:28:90:c5:ad:ad:f7:75: 32:0d:ef:e5:36:9f:ea:be:81:b8:b5:c1:40:fe:46: 66:da:bb:0b:75:12:b2:27:ec:51:ac:8a:4d:aa:00: a6:6f:a2:90:7b:35:ff:c8:5e:e4:89:9f:4c:e2:b0: 15:80:97:17:24:4e:ab:43:89:d8:88:54:3a:ee:89: a0:20:32:a3:9b:b8:07:48:a0:d4:05:b8:e6:a3:05: f0:ab:86:10:69:ec:00:60:80:8f:b1:6c:0d:e5:89: 1a:bd:bf:f3:f2:07:bb:d1:6a:4f:d0:42:47:da:01: 7b:00:a0:a6:23:b9:00:86:b4:10:eb:19:5e:be:13: 4a:df:58:cb:43:eb:15:86:42:a7:15:5c:64:08:eb: 4c:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:0F:E9:20:0E:39:28:6B:0E:46:0F:D1:3E:C0:C0:9F:2E:61:0C:37 X509v3 Authority Key Identifier: keyid:54:B3:1A:C4:09:DB:05:2F:D5:01:B7:05:09:D8:54:CC:E7:B0:8A:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1109645952957874197/0/54B31AC409DB052FD501B70509D854CCE7B08A0B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/54B31AC409DB052FD501B70509D854CCE7B08A0B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1109645952957874197/0/3231312e3134342e3130302e302f32342d3234203d3e203137373735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 211.144.100.0/24 Signature Algorithm: sha256WithRSAEncryption 66:18:c5:67:e7:d9:3d:06:cd:4c:7c:00:f1:76:bb:3f:54:8b: 02:22:08:d3:63:94:22:6e:09:ab:25:36:d8:b3:f8:cc:09:97: 2e:6e:0f:32:59:58:ef:d8:eb:16:0f:fd:cb:fd:08:07:25:fb: e9:82:17:4c:12:be:a3:3e:ca:bf:f9:fa:b7:c7:92:16:52:c1: 4b:31:65:66:ba:22:52:51:1b:73:56:d5:9e:9e:2c:58:2a:82: 88:a9:4d:4e:06:cb:94:6e:cd:9d:e0:e0:34:82:d2:64:36:8a: cd:70:3e:af:22:43:cf:af:85:10:3c:cd:a1:70:6d:ca:92:a7: 9c:4e:3a:33:09:95:09:74:45:7e:79:8e:93:02:e2:5c:37:d2: bb:7e:a4:37:30:ab:1b:ab:e0:64:b3:8a:7d:63:5d:25:9a:88: 96:63:03:3c:41:b1:04:b5:a4:44:71:d1:44:ab:9c:d1:14:1a: 89:e8:90:6b:50:43:6c:92:58:2f:e5:f5:d6:c7:d1:42:18:b5: ee:74:a5:78:91:43:61:ad:a7:d7:83:22:ec:d5:52:15:d4:5c: f5:94:5a:b7:b3:b9:7c:f2:81:85:41:29:ea:e8:f3:7c:8a:18: 8b:6b:78:9f:4e:f6:47:25:c2:62:b8:36:65:ef:ee:a0:db:c7: f2:61:6f:f3 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUWxDzMrRu62OyQvcW7EGqXabQKEMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTRCMzFBQzQwOURCMDUyRkQ1MDFCNzA1MDlEODU0Q0NF N0IwOEEwQjAeFw0yNjA2MTAwNjUxNThaFw0yNzA2MDkwNjU2NThaMDMxMTAvBgNV BAMTKDgyMEZFOTIwMEUzOTI4NkIwRTQ2MEZEMTNFQzBDMDlGMkU2MTBDMzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjI+1jQytOt7CLzh0nf8r645BJ gZmDEne/MT5ddsKVyC3wHy32rtdzJ4HMTgTQoSokBwWDQGDh8BHm2DzKY9V+xCbn rdI00tZ+tgMosFteV3LHRgwHWw15/BeSRu3t3BSnyR5lxWz7O8tzQ22uABHKKJDF ra33dTIN7+U2n+q+gbi1wUD+Rmbauwt1ErIn7FGsik2qAKZvopB7Nf/IXuSJn0zi sBWAlxckTqtDidiIVDruiaAgMqObuAdIoNQFuOajBfCrhhBp7ABggI+xbA3liRq9 v/PyB7vRak/QQkfaAXsAoKYjuQCGtBDrGV6+E0rfWMtD6xWGQqcVXGQI60wBAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUgg/pIA45KGsORg/RPsDAny5hDDcwHwYDVR0j BBgwFoAUVLMaxAnbBS/VAbcFCdhUzOewigswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw OTY0NTk1Mjk1Nzg3NDE5Ny8wLzU0QjMxQUM0MDlEQjA1MkZENTAxQjcwNTA5RDg1 NENDRTdCMDhBMEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTRCMzFBQzQwOURCMDUyRkQ1MDFCNzA1MDlEODU0Q0NFN0IwOEEwQi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTExMDk2NDU5NTI5NTc4NzQxOTcvMC8zMjMxMzEyZTMx MzQzNDJlMzEzMDMwMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzNzM3MzczNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEANOQZDANBgkqhkiG9w0BAQsFAAOCAQEAZhjFZ+fZPQbNTHwA8Xa7 P1SLAiII02OUIm4JqyU22LP4zAmXLm4PMllY79jrFg/9y/0IByX76YIXTBK+oz7K v/n6t8eSFlLBSzFlZroiUlEbc1bVnp4sWCqCiKlNTgbLlG7NneDgNILSZDaKzXA+ ryJDz6+FEDzNoXBtypKnnE46MwmVCXRFfnmOkwLiXDfSu36kNzCrG6vgZLOKfWNd JZqIlmMDPEGxBLWkRHHRRKuc0RQaieiQa1BDbJJYL+X11sfRQhi17nSleJFDYa2n 14Mi7NVSFdRc9ZRat7O5fPKBhUEp6ujzfIoYi2t4n072RyXCYrg2Ze/uoNvH8mFv 8w== -----END CERTIFICATE-----Generated at Sun Jun 14 09:51:49 2026 by rpki-client