$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142852097/0/312e38392e3132382e302f31382d3234203d3e203137343239.roa File: 312e38392e3132382e302f31382d3234203d3e203137343239.roa (raw, json) Hash identifier: /jW3R0Xk/BCfGVAftNa8GeuSRioF8IgdXSoOW34SXHY= Subject key identifier: 42:0D:A7:E1:C3:63:AB:DB:79:F5:13:4C:F7:5F:FF:DC:C2:5E:7F:E8 Certificate issuer: /CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Certificate serial: 4082E388ED32DCE974CD7ECB72D3A5791F192D05 Authority key identifier: CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/312e38392e3132382e302f31382d3234203d3e203137343239.roa Signing time: Mon 13 Apr 2026 03:25:15 +0000 ROA not before: Mon 13 Apr 2026 03:20:15 +0000 ROA not after: Mon 12 Apr 2027 03:25:15 +0000 asID: 17429 IP address blocks: 1.89.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 04:55:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:82:e3:88:ed:32:dc:e9:74:cd:7e:cb:72:d3:a5:79:1f:19:2d:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Validity Not Before: Apr 13 03:20:15 2026 GMT Not After : Apr 12 03:25:15 2027 GMT Subject: CN=420DA7E1C363ABDB79F5134CF75FFFDCC25E7FE8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:56:9f:68:65:be:4c:9c:89:b0:57:8f:44:80: 44:f2:7b:1a:c7:e2:21:ea:b0:d1:b9:28:a8:7e:5b: bb:18:e8:b1:ab:ad:36:c7:42:26:48:2c:b0:f5:8c: a9:dd:e6:9b:ba:eb:35:68:0a:85:8b:45:47:ff:15: 58:e7:eb:a8:ea:d1:f2:09:51:40:9a:bd:86:13:fd: 2e:d0:c6:38:ba:3d:4b:a7:18:53:f4:be:86:c9:2a: a4:d7:e2:31:f2:e8:10:2d:46:0d:6f:c8:6c:b6:98: 3c:dc:67:03:1c:b3:1f:f2:49:cb:7f:b7:8e:89:bb: d3:97:ca:fa:f5:5a:e8:e0:a6:37:57:52:fb:de:9f: 42:8d:fc:c1:29:31:18:1f:18:d6:94:0c:8c:fc:d6: ed:17:dd:07:a3:91:0a:93:53:f7:71:be:a1:47:06: f1:ee:24:d8:bf:39:37:a3:c3:ba:83:b2:d0:63:6a: f7:10:d9:24:af:5b:dd:ca:5f:02:f6:b9:dd:8b:ff: 82:eb:9c:02:f6:4b:89:59:bb:db:a5:63:90:a7:65: 09:e5:d8:08:8e:ee:38:24:81:f1:64:a4:71:9a:47: af:c9:18:bb:4e:3a:79:e7:63:5d:a4:7d:13:a8:db: 84:51:78:95:73:8b:5f:01:78:05:2e:80:3d:c3:ed: 9c:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:0D:A7:E1:C3:63:AB:DB:79:F5:13:4C:F7:5F:FF:DC:C2:5E:7F:E8 X509v3 Authority Key Identifier: keyid:CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/312e38392e3132382e302f31382d3234203d3e203137343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 1.89.128.0/18 Signature Algorithm: sha256WithRSAEncryption 60:64:2b:9a:a9:8d:0c:3d:57:c7:50:66:f0:93:78:6e:7f:8a: ac:30:c5:26:3c:6a:ad:bc:8a:e0:84:7f:61:30:b1:9c:66:49: c7:37:fb:5f:cd:4f:2e:14:b3:74:c9:fb:4a:3c:2d:31:84:28: 76:bf:de:1d:7f:64:6b:f9:64:6c:6f:0a:9d:57:82:0f:02:f8: d6:70:6d:20:d6:df:60:43:ed:39:cd:df:91:24:5c:5c:0e:c2: 77:98:fb:79:02:df:0e:e2:7d:24:8e:05:ea:17:01:db:4b:af: 10:be:aa:f8:5a:48:14:4f:5a:b8:cb:9e:92:c1:50:11:db:78: 13:df:48:1d:1b:49:f9:d5:9e:b4:65:73:ac:f8:94:21:c4:98: fb:8d:f5:8f:a4:8c:dd:b0:9d:c8:e7:80:a6:d8:57:3c:bb:5f: 0d:e0:c2:6a:ad:3c:a8:05:5c:b7:07:8f:fc:1c:4a:af:88:45: 00:22:39:0e:77:a2:0f:bf:8e:d7:17:5d:61:7b:be:44:3f:5c: 61:3d:d7:fd:19:9c:c4:a5:46:67:d0:eb:ef:39:a4:ed:17:71: 6b:c5:40:49:ef:1a:8e:02:01:68:a7:d8:30:d6:89:a6:05:c9: 0d:71:2c:88:9d:03:9c:c4:27:54:9f:1e:f7:c8:2c:8a:43:fb: d7:14:ed:91 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUQILjiO0y3Ol0zX7LctOleR8ZLQUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3 MjE5QjU5NDAeFw0yNjA0MTMwMzIwMTVaFw0yNzA0MTIwMzI1MTVaMDMxMTAvBgNV BAMTKDQyMERBN0UxQzM2M0FCREI3OUY1MTM0Q0Y3NUZGRkRDQzI1RTdGRTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxVp9oZb5MnImwV49EgETyexrH 4iHqsNG5KKh+W7sY6LGrrTbHQiZILLD1jKnd5pu66zVoCoWLRUf/FVjn66jq0fIJ UUCavYYT/S7Qxji6PUunGFP0vobJKqTX4jHy6BAtRg1vyGy2mDzcZwMcsx/ySct/ t46Ju9OXyvr1WujgpjdXUvven0KN/MEpMRgfGNaUDIz81u0X3QejkQqTU/dxvqFH BvHuJNi/OTejw7qDstBjavcQ2SSvW93KXwL2ud2L/4LrnAL2S4lZu9ulY5CnZQnl 2AiO7jgkgfFkpHGaR6/JGLtOOnnnY12kfROo24RReJVzi18BeAUugD3D7Zz7AgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUQg2n4cNjq9t59RNM91//3MJef+gwHwYDVR0j BBgwFoAUzyFM3txYSzsBD8Om0NPbiXIZtZQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjg1MjA5Ny8wL0NGMjE0Q0RFREM1ODRCM0IwMTBGQzNBNkQwRDNE Qjg5NzIxOUI1OTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3MjE5QjU5NC5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc0NTYwMTQyODUyMDk3LzAvMzEyZTM4MzkyZTMx MzIzODJlMzAyZjMxMzgyZDMyMzQyMDNkM2UyMDMxMzczNDMyMzkucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAYBWYAwDQYJKoZIhvcNAQELBQADggEBAGBkK5qpjQw9V8dQZvCTeG5/iqwwxSY8 aq28iuCEf2EwsZxmScc3+1/NTy4Us3TJ+0o8LTGEKHa/3h1/ZGv5ZGxvCp1Xgg8C +NZwbSDW32BD7TnN35EkXFwOwneY+3kC3w7ifSSOBeoXAdtLrxC+qvhaSBRPWrjL npLBUBHbeBPfSB0bSfnVnrRlc6z4lCHEmPuN9Y+kjN2wncjngKbYVzy7Xw3gwmqt PKgFXLcHj/wcSq+IRQAiOQ53og+/jtcXXWF7vkQ/XGE91/0ZnMSlRmfQ6+85pO0X cWvFQEnvGo4CAWin2DDWiaYFyQ1xLIidA5zEJ1SfHvfILIpD+9cU7ZE= -----END CERTIFICATE-----Generated at Mon Apr 13 12:24:10 2026 by rpki-client