$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142852097/0/312e38382e302e302f31382d3234203d3e203137343239.roa File: 312e38382e302e302f31382d3234203d3e203137343239.roa (raw, json) Hash identifier: 0AkFgNrOpiF1/Kam6AC+tRLFNEx19LgdjvcKou/pww4= Subject key identifier: 6F:57:6E:0B:04:9B:0C:6F:44:C0:1F:B8:A0:7E:FA:31:0B:79:8F:1B Certificate issuer: /CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Certificate serial: 31471761FC2D22340DE0BF481CDFEE72621497D2 Authority key identifier: CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/312e38382e302e302f31382d3234203d3e203137343239.roa Signing time: Mon 13 Apr 2026 03:25:15 +0000 ROA not before: Mon 13 Apr 2026 03:20:15 +0000 ROA not after: Mon 12 Apr 2027 03:25:15 +0000 asID: 17429 IP address blocks: 1.88.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 04:55:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:47:17:61:fc:2d:22:34:0d:e0:bf:48:1c:df:ee:72:62:14:97:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Validity Not Before: Apr 13 03:20:15 2026 GMT Not After : Apr 12 03:25:15 2027 GMT Subject: CN=6F576E0B049B0C6F44C01FB8A07EFA310B798F1B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:eb:f9:dc:4b:02:ed:ba:ac:64:d9:3e:e1:f1: 5a:00:ba:49:4b:c1:cc:3d:12:59:b5:28:bf:9e:c9: 8b:4d:27:11:b4:ff:4d:37:14:0b:43:22:54:d5:d3: db:34:dd:e3:7e:79:6a:ce:df:c2:8d:96:69:5c:34: e6:0d:fd:c4:eb:a8:7e:cd:46:fa:9c:66:60:3b:48: d7:fb:35:2d:f1:f6:e9:9d:90:8d:31:67:69:76:2e: e6:51:f9:17:a9:c7:02:36:be:1c:36:69:9a:c9:ee: 93:72:db:27:c2:e3:38:ca:7c:b8:fb:4c:ad:ae:85: e4:92:0e:a5:22:d6:b8:d9:ed:c0:0a:9b:0f:7d:5e: 12:6d:f0:f8:f9:44:f3:e9:a5:11:8c:d2:41:98:20: d2:b5:91:0e:7f:45:67:5b:0e:da:0e:1a:57:c5:27: 73:96:8d:77:18:51:5b:4b:2a:db:87:b0:c2:c4:ca: d0:2f:0a:cd:f6:c4:f3:93:f2:44:87:35:f7:00:aa: a3:b6:7c:4b:e7:42:5b:53:e7:7b:0d:59:80:62:ea: d5:11:f9:a8:fc:62:38:08:46:4c:52:33:0f:86:65: fc:35:be:6e:1b:7c:3a:c9:c8:29:85:da:34:1d:b2: 1b:b6:97:8e:cb:0e:0d:04:d0:65:5f:4a:01:0a:86: 76:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:57:6E:0B:04:9B:0C:6F:44:C0:1F:B8:A0:7E:FA:31:0B:79:8F:1B X509v3 Authority Key Identifier: keyid:CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/312e38382e302e302f31382d3234203d3e203137343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 1.88.0.0/18 Signature Algorithm: sha256WithRSAEncryption 7a:a9:25:11:90:94:3e:22:05:f0:ae:05:f4:28:67:84:a1:21: f5:38:2f:83:3a:65:77:41:25:74:a5:7b:a3:35:6b:3d:a3:72: 1e:3f:59:30:24:98:fe:38:e5:2f:4c:a7:bc:b7:8b:68:b9:f9: 27:6c:73:31:2d:ea:0c:87:fc:f7:14:06:25:c1:5a:6c:78:9e: 75:14:20:6f:2f:1e:ec:73:88:1c:67:80:ab:86:47:ab:e6:9b: e1:52:73:4c:86:60:ad:68:60:5a:02:6f:ae:86:98:74:1c:2b: ce:8d:1d:ea:d9:7a:c8:2d:ab:2a:4d:00:17:7a:aa:c6:0a:0c: fc:24:16:5b:51:8e:ba:6e:c0:99:e0:52:aa:7a:48:4c:27:53: b4:1b:54:c3:8a:53:97:91:54:45:59:81:59:42:04:a7:ee:47: fb:6e:3f:61:2c:c2:6d:b2:4d:8d:f9:7d:ce:c9:1b:90:78:fc: b4:69:41:e0:80:25:94:04:55:dd:bb:b9:32:b7:b5:49:37:cd: ef:dc:8d:42:d3:c2:58:3c:da:a1:22:02:2d:16:00:b9:53:91: 91:d4:2c:e3:18:46:44:3b:0d:3d:ed:c9:f5:c5:2f:59:d9:3b: 1b:41:f6:03:15:c3:dd:5c:d7:90:6b:75:42:c8:80:ae:a4:fa: 5f:56:06:44 -----BEGIN CERTIFICATE----- MIIFATCCA+mgAwIBAgIUMUcXYfwtIjQN4L9IHN/ucmIUl9IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3 MjE5QjU5NDAeFw0yNjA0MTMwMzIwMTVaFw0yNzA0MTIwMzI1MTVaMDMxMTAvBgNV BAMTKDZGNTc2RTBCMDQ5QjBDNkY0NEMwMUZCOEEwN0VGQTMxMEI3OThGMUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDM6/ncSwLtuqxk2T7h8VoAuklL wcw9Elm1KL+eyYtNJxG0/003FAtDIlTV09s03eN+eWrO38KNlmlcNOYN/cTrqH7N RvqcZmA7SNf7NS3x9umdkI0xZ2l2LuZR+RepxwI2vhw2aZrJ7pNy2yfC4zjKfLj7 TK2uheSSDqUi1rjZ7cAKmw99XhJt8Pj5RPPppRGM0kGYINK1kQ5/RWdbDtoOGlfF J3OWjXcYUVtLKtuHsMLEytAvCs32xPOT8kSHNfcAqqO2fEvnQltT53sNWYBi6tUR +aj8YjgIRkxSMw+GZfw1vm4bfDrJyCmF2jQdshu2l47LDg0E0GVfSgEKhnanAgMB AAGjggILMIICBzAdBgNVHQ4EFgQUb1duCwSbDG9EwB+4oH76MQt5jxswHwYDVR0j BBgwFoAUzyFM3txYSzsBD8Om0NPbiXIZtZQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjg1MjA5Ny8wL0NGMjE0Q0RFREM1ODRCM0IwMTBGQzNBNkQwRDNE Qjg5NzIxOUI1OTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3MjE5QjU5NC5jZXIw gYQGCCsGAQUFBwELBHgwdjB0BggrBgEFBQcwC4ZocnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc0NTYwMTQyODUyMDk3LzAvMzEyZTM4MzgyZTMw MmUzMDJmMzEzODJkMzIzNDIwM2QzZTIwMzEzNzM0MzIzOS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBgFY ADANBgkqhkiG9w0BAQsFAAOCAQEAeqklEZCUPiIF8K4F9ChnhKEh9Tgvgzpld0El dKV7ozVrPaNyHj9ZMCSY/jjlL0ynvLeLaLn5J2xzMS3qDIf89xQGJcFabHiedRQg by8e7HOIHGeAq4ZHq+ab4VJzTIZgrWhgWgJvroaYdBwrzo0d6tl6yC2rKk0AF3qq xgoM/CQWW1GOum7AmeBSqnpITCdTtBtUw4pTl5FURVmBWUIEp+5H+24/YSzCbbJN jfl9zskbkHj8tGlB4IAllARV3bu5Mre1STfN79yNQtPCWDzaoSICLRYAuVORkdQs 4xhGRDsNPe3J9cUvWdk7G0H2AxXD3VzXkGt1QsiArqT6X1YGRA== -----END CERTIFICATE-----Generated at Mon Apr 13 12:23:24 2026 by rpki-client