$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142852097/0/312e39302e302e302f31362d3234203d3e203137343239.roa File: 312e39302e302e302f31362d3234203d3e203137343239.roa (raw, json) Hash identifier: WZeuQxKt56F6T+zhcu4/+uY2RV60cnCkHDSpNNZBV1Q= Subject key identifier: 61:4E:2E:DB:90:D3:CF:93:5D:98:66:82:1D:26:BA:74:B2:77:F6:E7 Certificate issuer: /CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Certificate serial: 54046967CA2AD5D7BAC6EBEBB35828CE421A7E43 Authority key identifier: CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/312e39302e302e302f31362d3234203d3e203137343239.roa Signing time: Mon 13 Apr 2026 03:25:15 +0000 ROA not before: Mon 13 Apr 2026 03:20:15 +0000 ROA not after: Mon 12 Apr 2027 03:25:15 +0000 asID: 17429 IP address blocks: 1.90.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 04:55:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:04:69:67:ca:2a:d5:d7:ba:c6:eb:eb:b3:58:28:ce:42:1a:7e:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Validity Not Before: Apr 13 03:20:15 2026 GMT Not After : Apr 12 03:25:15 2027 GMT Subject: CN=614E2EDB90D3CF935D9866821D26BA74B277F6E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:e5:6f:2a:35:cc:8b:5d:3c:63:79:6c:d6:da: d3:d2:07:6f:25:70:b0:8a:29:54:a7:c1:3c:aa:fb: e2:5d:36:b6:86:11:a6:98:f8:db:8c:2b:1e:ad:44: 33:ef:10:23:fc:cd:9f:8a:42:1d:f6:ec:7b:ff:bf: d3:2c:2c:c8:a3:77:9d:43:fa:b3:58:5b:4c:10:d6: 2b:d8:63:c9:bb:fc:c0:6b:d5:eb:1d:fa:b6:23:f5: a5:e9:c4:43:14:97:57:9d:7d:7e:28:77:09:a0:b1: 58:82:cf:b3:71:bf:64:73:da:c6:50:a8:12:1f:46: fc:2d:30:25:50:66:0f:0c:0b:3f:a6:a4:fd:f2:cf: b2:a1:0d:e7:f6:ad:cd:5e:8a:f7:cb:ce:f6:fa:95: 9a:e8:f8:1b:0f:d0:7c:69:81:29:73:3a:36:4d:ce: fb:14:a3:c8:6c:be:3f:23:95:c1:5f:52:6a:3a:fe: 3d:9b:45:c8:f1:d6:7d:9d:15:86:64:13:2e:fc:a1: 83:ff:92:24:5b:3d:82:85:38:5f:e2:0d:4a:91:33: 81:62:fc:24:15:5e:2a:1f:ea:36:d8:8a:34:e1:ce: b2:b3:29:af:9d:a2:80:21:13:29:73:9a:da:d9:13: 46:4c:16:c3:02:70:ac:47:74:9c:4a:fb:18:d3:ad: c8:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:4E:2E:DB:90:D3:CF:93:5D:98:66:82:1D:26:BA:74:B2:77:F6:E7 X509v3 Authority Key Identifier: keyid:CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/312e39302e302e302f31362d3234203d3e203137343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 1.90.0.0/16 Signature Algorithm: sha256WithRSAEncryption 9b:55:ef:69:d1:a1:9f:b6:87:3e:3c:d4:0b:f4:a8:b9:cb:cb: 8f:d6:e7:fd:47:6f:88:47:02:07:71:1a:0b:a5:df:b9:80:26: 42:0f:fe:e4:a1:06:7f:5c:31:90:c7:88:9b:b6:ef:3b:e5:12: 7b:7c:56:75:ad:7a:da:29:bd:63:c7:22:a4:cf:69:a4:d6:7c: de:68:a8:96:d7:ba:bf:03:4d:0a:b3:e5:d3:0d:06:5d:39:58: 91:bb:95:9d:fe:30:d8:ba:71:aa:6e:74:d4:3e:9f:08:99:79: a2:99:c5:76:60:6a:ca:6c:33:bc:d4:8d:59:88:2b:94:5c:87: 0b:fd:d7:9a:49:5c:e8:f4:a2:a4:80:94:e3:22:02:2a:3f:83: 9c:1b:37:fd:f5:3a:ff:24:c0:46:71:72:4f:93:8a:9c:71:34: 9b:83:ab:b8:ea:10:a2:de:02:17:59:ab:5f:ab:a9:b5:fb:2d: 46:6d:0e:44:30:fd:85:c3:d3:93:8f:f6:26:e0:02:96:ca:82: 42:85:08:03:e8:33:d4:7b:3d:ac:3c:3f:3a:ee:c0:64:47:23: 09:bf:12:47:dd:f1:cc:0a:c4:c0:60:6d:31:75:84:18:c3:10: f5:8f:dc:6e:9e:c6:7b:5a:2f:b7:68:f4:f0:7b:a1:8f:d3:af: c8:84:36:61 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgIUVARpZ8oq1de6xuvrs1gozkIafkMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3 MjE5QjU5NDAeFw0yNjA0MTMwMzIwMTVaFw0yNzA0MTIwMzI1MTVaMDMxMTAvBgNV BAMTKDYxNEUyRURCOTBEM0NGOTM1RDk4NjY4MjFEMjZCQTc0QjI3N0Y2RTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDN5W8qNcyLXTxjeWzW2tPSB28l cLCKKVSnwTyq++JdNraGEaaY+NuMKx6tRDPvECP8zZ+KQh327Hv/v9MsLMijd51D +rNYW0wQ1ivYY8m7/MBr1esd+rYj9aXpxEMUl1edfX4odwmgsViCz7Nxv2Rz2sZQ qBIfRvwtMCVQZg8MCz+mpP3yz7KhDef2rc1eivfLzvb6lZro+BsP0HxpgSlzOjZN zvsUo8hsvj8jlcFfUmo6/j2bRcjx1n2dFYZkEy78oYP/kiRbPYKFOF/iDUqRM4Fi /CQVXiof6jbYijThzrKzKa+dooAhEylzmtrZE0ZMFsMCcKxHdJxK+xjTrch5AgMB AAGjggIKMIICBjAdBgNVHQ4EFgQUYU4u25DTz5NdmGaCHSa6dLJ39ucwHwYDVR0j BBgwFoAUzyFM3txYSzsBD8Om0NPbiXIZtZQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjg1MjA5Ny8wL0NGMjE0Q0RFREM1ODRCM0IwMTBGQzNBNkQwRDNE Qjg5NzIxOUI1OTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3MjE5QjU5NC5jZXIw gYQGCCsGAQUFBwELBHgwdjB0BggrBgEFBQcwC4ZocnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc0NTYwMTQyODUyMDk3LzAvMzEyZTM5MzAyZTMw MmUzMDJmMzEzNjJkMzIzNDIwM2QzZTIwMzEzNzM0MzIzOS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAAFa MA0GCSqGSIb3DQEBCwUAA4IBAQCbVe9p0aGftoc+PNQL9Ki5y8uP1uf9R2+IRwIH cRoLpd+5gCZCD/7koQZ/XDGQx4ibtu875RJ7fFZ1rXraKb1jxyKkz2mk1nzeaKiW 17q/A00Ks+XTDQZdOViRu5Wd/jDYunGqbnTUPp8ImXmimcV2YGrKbDO81I1ZiCuU XIcL/deaSVzo9KKkgJTjIgIqP4OcGzf99Tr/JMBGcXJPk4qccTSbg6u46hCi3gIX Watfq6m1+y1GbQ5EMP2Fw9OTj/Ym4AKWyoJChQgD6DPUez2sPD867sBkRyMJvxJH 3fHMCsTAYG0xdYQYwxD1j9xunsZ7Wi+3aPTwe6GP06/IhDZh -----END CERTIFICATE-----Generated at Mon Apr 13 12:23:25 2026 by rpki-client