$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142852097/0/312e38392e302e302f31382d3234203d3e203137343239.roa File: 312e38392e302e302f31382d3234203d3e203137343239.roa (raw, json) Hash identifier: LIVAyQHA5WelaixS91o+7/9Tqva+sXBJaF9dRFUGNr4= Subject key identifier: BD:A3:1E:4E:06:DB:A5:5F:BE:A9:CC:7F:38:4B:4B:71:C8:83:3F:14 Certificate issuer: /CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Certificate serial: 6DF64E663B77617A5463BD059022F2F8FBD070B9 Authority key identifier: CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/312e38392e302e302f31382d3234203d3e203137343239.roa Signing time: Mon 13 Apr 2026 03:25:15 +0000 ROA not before: Mon 13 Apr 2026 03:20:15 +0000 ROA not after: Mon 12 Apr 2027 03:25:15 +0000 asID: 17429 IP address blocks: 1.89.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 04:55:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:f6:4e:66:3b:77:61:7a:54:63:bd:05:90:22:f2:f8:fb:d0:70:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Validity Not Before: Apr 13 03:20:15 2026 GMT Not After : Apr 12 03:25:15 2027 GMT Subject: CN=BDA31E4E06DBA55FBEA9CC7F384B4B71C8833F14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:1a:05:f9:bf:d8:61:63:6e:96:11:be:b2:73: 0b:92:cc:e8:c0:10:1a:27:dd:01:8d:b5:17:5a:17: 53:67:23:59:30:69:5f:9e:15:e1:29:02:8f:3b:0c: 5a:2f:0e:94:79:c5:b2:87:3b:39:f2:45:ad:f8:10: aa:e1:2a:06:d4:1d:f3:25:19:b1:a6:e3:33:3f:0c: 0f:b8:d5:dc:84:26:6b:be:67:91:7f:83:79:b0:f9: 22:39:fa:a6:ef:79:fa:6d:e1:94:b7:c4:ee:cf:37: 0e:34:3b:61:f0:a5:47:f4:96:28:20:76:7b:33:49: 4e:27:72:10:9b:c6:a2:2b:7a:a3:91:1d:0a:d3:94: 6d:f8:48:15:35:da:21:06:d6:3f:8e:0e:b2:a5:95: 41:d0:28:7f:fb:6a:55:48:d5:b0:26:4c:66:f0:36: 2e:ab:b3:87:84:86:f5:f8:80:a4:da:ac:2e:fa:1d: be:12:96:3f:ff:82:ad:f9:7e:2d:40:60:3d:49:d8: 7c:75:03:92:bd:76:4d:cb:99:41:3d:11:3e:a8:41: c7:dc:9e:e9:56:00:d6:0d:0a:61:2b:3c:09:13:83: e6:c0:b3:f5:57:ea:4a:43:b0:04:29:fb:06:75:b4: 83:fd:55:8a:27:8a:fd:f4:23:c0:b7:c0:15:82:05: 5e:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:A3:1E:4E:06:DB:A5:5F:BE:A9:CC:7F:38:4B:4B:71:C8:83:3F:14 X509v3 Authority Key Identifier: keyid:CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/312e38392e302e302f31382d3234203d3e203137343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 1.89.0.0/18 Signature Algorithm: sha256WithRSAEncryption b9:b3:54:04:70:b6:b3:0d:47:b8:37:5d:3c:30:14:e6:c9:a0: 56:e0:b0:b9:50:ad:6f:a1:4c:3c:3b:c3:b8:45:ee:6f:93:e5: 9a:1c:33:54:25:ae:10:61:45:43:5f:62:f5:1c:e8:78:d7:61: 6e:44:4d:40:33:57:20:be:9d:77:b6:b3:7f:f8:96:86:54:17: ae:4b:a5:86:ee:6e:3e:22:33:23:3a:1a:92:9c:70:2f:1e:e4: 20:05:f9:e7:ec:b1:ee:a8:d7:74:c1:2c:35:12:ee:66:7f:f2: 16:f1:b6:b5:06:c0:86:86:8f:0e:64:5d:45:91:35:4a:ef:69: 1a:25:c5:c8:17:2c:5b:58:14:a9:58:9d:c8:91:9f:cb:c7:68: aa:01:3f:8e:4d:41:95:fc:9b:43:50:60:2a:ab:11:65:80:54: 06:4c:3d:10:b5:96:1e:8a:35:56:50:e6:bc:5d:28:61:92:7b: f9:4a:f5:4c:f1:54:10:fe:ce:3d:d2:e2:7f:10:de:3b:98:49: 44:77:18:be:8b:c0:d0:2c:9d:31:71:06:a0:0c:e1:97:4b:61: 9c:57:c4:73:df:59:98:e5:23:40:15:5d:54:c3:d7:ef:a3:8e: 24:53:00:2f:6e:a2:a7:26:c8:67:26:88:58:34:68:6e:8d:40: 2b:f9:35:33 -----BEGIN CERTIFICATE----- MIIFATCCA+mgAwIBAgIUbfZOZjt3YXpUY70FkCLy+PvQcLkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3 MjE5QjU5NDAeFw0yNjA0MTMwMzIwMTVaFw0yNzA0MTIwMzI1MTVaMDMxMTAvBgNV BAMTKEJEQTMxRTRFMDZEQkE1NUZCRUE5Q0M3RjM4NEI0QjcxQzg4MzNGMTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvGgX5v9hhY26WEb6ycwuSzOjA EBon3QGNtRdaF1NnI1kwaV+eFeEpAo87DFovDpR5xbKHOznyRa34EKrhKgbUHfMl GbGm4zM/DA+41dyEJmu+Z5F/g3mw+SI5+qbvefpt4ZS3xO7PNw40O2HwpUf0ligg dnszSU4nchCbxqIreqORHQrTlG34SBU12iEG1j+ODrKllUHQKH/7alVI1bAmTGbw Ni6rs4eEhvX4gKTarC76Hb4Slj//gq35fi1AYD1J2Hx1A5K9dk3LmUE9ET6oQcfc nulWANYNCmErPAkTg+bAs/VX6kpDsAQp+wZ1tIP9VYoniv30I8C3wBWCBV53AgMB AAGjggILMIICBzAdBgNVHQ4EFgQUvaMeTgbbpV++qcx/OEtLcciDPxQwHwYDVR0j BBgwFoAUzyFM3txYSzsBD8Om0NPbiXIZtZQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjg1MjA5Ny8wL0NGMjE0Q0RFREM1ODRCM0IwMTBGQzNBNkQwRDNE Qjg5NzIxOUI1OTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3MjE5QjU5NC5jZXIw gYQGCCsGAQUFBwELBHgwdjB0BggrBgEFBQcwC4ZocnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc0NTYwMTQyODUyMDk3LzAvMzEyZTM4MzkyZTMw MmUzMDJmMzEzODJkMzIzNDIwM2QzZTIwMzEzNzM0MzIzOS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBgFZ ADANBgkqhkiG9w0BAQsFAAOCAQEAubNUBHC2sw1HuDddPDAU5smgVuCwuVCtb6FM PDvDuEXub5PlmhwzVCWuEGFFQ19i9RzoeNdhbkRNQDNXIL6dd7azf/iWhlQXrkul hu5uPiIzIzoakpxwLx7kIAX55+yx7qjXdMEsNRLuZn/yFvG2tQbAhoaPDmRdRZE1 Su9pGiXFyBcsW1gUqVidyJGfy8doqgE/jk1BlfybQ1BgKqsRZYBUBkw9ELWWHoo1 VlDmvF0oYZJ7+Ur1TPFUEP7OPdLifxDeO5hJRHcYvovA0CydMXEGoAzhl0thnFfE c99ZmOUjQBVdVMPX76OOJFMAL26ipybIZyaIWDRobo1AK/k1Mw== -----END CERTIFICATE-----Generated at Mon Apr 13 12:23:23 2026 by rpki-client