$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1109645952957874197/0/3231312e3134342e3131392e302f32342d3234203d3e203137373735.roa File: 3231312e3134342e3131392e302f32342d3234203d3e203137373735.roa (raw, json) Hash identifier: vuA2bQZj00tqX9285/k38Xkhirz66JX+W+jHsIpAw9Q= Subject key identifier: 33:FF:73:7B:3A:B5:6A:A1:21:E1:A7:B7:0B:CF:4A:27:73:CF:26:8F Certificate issuer: /CN=54B31AC409DB052FD501B70509D854CCE7B08A0B Certificate serial: 714E30A5D476E658C7C4240F483FDEADA7A2FD05 Authority key identifier: 54:B3:1A:C4:09:DB:05:2F:D5:01:B7:05:09:D8:54:CC:E7:B0:8A:0B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/54B31AC409DB052FD501B70509D854CCE7B08A0B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1109645952957874197/0/3231312e3134342e3131392e302f32342d3234203d3e203137373735.roa Signing time: Wed 10 Jun 2026 07:03:02 +0000 ROA not before: Wed 10 Jun 2026 06:58:02 +0000 ROA not after: Wed 09 Jun 2027 07:03:02 +0000 asID: 17775 IP address blocks: 211.144.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1109645952957874197/0/54B31AC409DB052FD501B70509D854CCE7B08A0B.crl rsync://rpki-rps.cnnic.cn/repo/A1109645952957874197/0/54B31AC409DB052FD501B70509D854CCE7B08A0B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/54B31AC409DB052FD501B70509D854CCE7B08A0B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 23:36:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:4e:30:a5:d4:76:e6:58:c7:c4:24:0f:48:3f:de:ad:a7:a2:fd:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=54B31AC409DB052FD501B70509D854CCE7B08A0B Validity Not Before: Jun 10 06:58:02 2026 GMT Not After : Jun 9 07:03:02 2027 GMT Subject: CN=33FF737B3AB56AA121E1A7B70BCF4A2773CF268F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:4c:49:fd:f1:ac:b1:d9:b1:a6:0b:88:ef:45: 2b:48:e2:cf:88:03:7e:40:13:be:c0:0b:87:69:b0: 80:d6:5f:13:e5:7e:c3:01:15:db:73:4f:d7:9d:9c: bc:e9:32:44:42:f4:91:2f:57:22:7e:b1:bd:80:81: 7e:12:50:28:b0:5a:47:1d:bd:24:c4:a2:2a:1f:fc: d8:cb:46:54:9e:9e:b9:05:89:7b:12:d6:7a:9f:ba: ff:d8:ee:71:19:1c:c9:16:db:c4:f1:37:47:7a:59: 52:26:86:7e:3d:38:39:3e:61:52:5a:e0:17:d3:da: 22:01:26:6e:78:b1:62:d4:50:fc:90:c8:db:af:0e: f2:96:75:da:2e:0b:fb:49:a4:21:ee:5f:51:f6:b4: 30:78:47:b5:21:a8:44:12:6c:7e:f1:d5:b5:c7:a0: 55:2b:7d:e9:c9:c7:68:98:cc:66:75:30:ac:cc:24: a1:0e:bc:b6:6b:ba:b3:e4:e5:3d:ec:ca:b8:33:60: 0a:36:5c:7e:08:97:1b:91:63:26:55:dc:2e:5a:be: 54:ba:78:f6:ed:9b:de:47:01:c9:d7:cd:2b:d8:c2: 8a:6c:2a:d1:cc:32:46:7c:a0:67:a8:e8:1e:a9:41: 11:e7:b6:77:fb:b5:02:d5:63:63:c4:47:26:f6:72: 9c:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:FF:73:7B:3A:B5:6A:A1:21:E1:A7:B7:0B:CF:4A:27:73:CF:26:8F X509v3 Authority Key Identifier: keyid:54:B3:1A:C4:09:DB:05:2F:D5:01:B7:05:09:D8:54:CC:E7:B0:8A:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1109645952957874197/0/54B31AC409DB052FD501B70509D854CCE7B08A0B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/54B31AC409DB052FD501B70509D854CCE7B08A0B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1109645952957874197/0/3231312e3134342e3131392e302f32342d3234203d3e203137373735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 211.144.119.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:79:24:cc:03:92:56:3e:b3:0b:f1:06:20:22:91:53:3f:3c: d9:d2:78:33:e4:1f:d7:9b:31:0e:b7:cd:e4:6c:c4:3a:fe:e8: 7f:b9:1d:29:56:9b:9e:b6:59:05:8b:4a:2b:fa:31:eb:1e:02: 8a:a5:86:ca:64:09:3b:ab:b8:e4:10:30:ba:5f:8d:e8:f7:d4: 1d:42:b3:3c:24:87:29:25:65:14:d3:31:8b:b4:ac:a4:5a:21: 80:35:18:16:3b:82:07:07:fe:9a:fe:76:2d:66:dc:50:46:d7: d0:7e:e9:f6:a3:b6:8c:7e:82:ab:82:04:44:c9:5c:71:c0:f2: b7:17:1d:1c:a2:97:d1:23:32:ee:ac:77:24:b3:08:a0:70:22: 14:a9:89:a4:93:02:b6:9b:c8:1b:ec:8c:3f:3c:31:d2:55:83: 55:0a:04:5a:bc:ef:cd:6e:48:9d:9d:d4:2e:0d:c6:0a:35:d9: 7f:88:3e:73:f9:f6:98:98:41:fe:86:d1:71:c2:7f:39:f7:21: 66:77:bc:47:ff:c9:e2:00:e1:c3:87:c4:8f:77:af:cd:7a:0a: 03:2a:c1:74:5c:10:19:60:96:27:5c:00:b6:7b:a3:09:a9:46: 77:55:09:7e:2e:8f:4b:61:43:03:7a:ba:e2:ae:01:f9:4a:76: 37:8e:dc:67 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUcU4wpdR25ljHxCQPSD/eraei/QUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTRCMzFBQzQwOURCMDUyRkQ1MDFCNzA1MDlEODU0Q0NF N0IwOEEwQjAeFw0yNjA2MTAwNjU4MDJaFw0yNzA2MDkwNzAzMDJaMDMxMTAvBgNV BAMTKDMzRkY3MzdCM0FCNTZBQTEyMUUxQTdCNzBCQ0Y0QTI3NzNDRjI2OEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwTEn98ayx2bGmC4jvRStI4s+I A35AE77AC4dpsIDWXxPlfsMBFdtzT9ednLzpMkRC9JEvVyJ+sb2AgX4SUCiwWkcd vSTEoiof/NjLRlSenrkFiXsS1nqfuv/Y7nEZHMkW28TxN0d6WVImhn49ODk+YVJa 4BfT2iIBJm54sWLUUPyQyNuvDvKWddouC/tJpCHuX1H2tDB4R7UhqEQSbH7x1bXH oFUrfenJx2iYzGZ1MKzMJKEOvLZrurPk5T3syrgzYAo2XH4IlxuRYyZV3C5avlS6 ePbtm95HAcnXzSvYwopsKtHMMkZ8oGeo6B6pQRHntnf7tQLVY2PERyb2cpxzAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUM/9zezq1aqEh4ae3C89KJ3PPJo8wHwYDVR0j BBgwFoAUVLMaxAnbBS/VAbcFCdhUzOewigswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw OTY0NTk1Mjk1Nzg3NDE5Ny8wLzU0QjMxQUM0MDlEQjA1MkZENTAxQjcwNTA5RDg1 NENDRTdCMDhBMEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTRCMzFBQzQwOURCMDUyRkQ1MDFCNzA1MDlEODU0Q0NFN0IwOEEwQi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTExMDk2NDU5NTI5NTc4NzQxOTcvMC8zMjMxMzEyZTMx MzQzNDJlMzEzMTM5MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzNzM3MzczNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEANOQdzANBgkqhkiG9w0BAQsFAAOCAQEAW3kkzAOSVj6zC/EGICKR Uz882dJ4M+Qf15sxDrfN5GzEOv7of7kdKVabnrZZBYtKK/ox6x4CiqWGymQJO6u4 5BAwul+N6PfUHUKzPCSHKSVlFNMxi7SspFohgDUYFjuCBwf+mv52LWbcUEbX0H7p 9qO2jH6Cq4IERMlcccDytxcdHKKX0SMy7qx3JLMIoHAiFKmJpJMCtpvIG+yMPzwx 0lWDVQoEWrzvzW5InZ3ULg3GCjXZf4g+c/n2mJhB/obRccJ/OfchZne8R//J4gDh w4fEj3evzXoKAyrBdFwQGWCWJ1wAtnujCalGd1UJfi6PS2FDA3q64q4B+Up2N47c Zw== -----END CERTIFICATE-----Generated at Sun Jun 14 11:05:59 2026 by rpki-client