$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142852097/0/312e39302e302e302f31382d3234203d3e203137343239.roa File: 312e39302e302e302f31382d3234203d3e203137343239.roa (raw, json) Hash identifier: aHnaUt7T5NVd38iUNsFOjMn1fLDC4AyaOmh6qWr8sNM= Subject key identifier: DB:8A:A8:F2:04:FC:9E:95:42:3B:EA:10:11:E8:E0:84:50:66:86:B9 Certificate issuer: /CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Certificate serial: 7F1B8B7C8FD628A1EAB96201C7341913D8D5EBA3 Authority key identifier: CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/312e39302e302e302f31382d3234203d3e203137343239.roa Signing time: Mon 13 Apr 2026 03:25:14 +0000 ROA not before: Mon 13 Apr 2026 03:20:14 +0000 ROA not after: Mon 12 Apr 2027 03:25:14 +0000 asID: 17429 IP address blocks: 1.90.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 04:55:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:1b:8b:7c:8f:d6:28:a1:ea:b9:62:01:c7:34:19:13:d8:d5:eb:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Validity Not Before: Apr 13 03:20:14 2026 GMT Not After : Apr 12 03:25:14 2027 GMT Subject: CN=DB8AA8F204FC9E95423BEA1011E8E084506686B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:98:16:8f:a8:27:d3:33:2f:40:16:ce:e8:3e: c1:f6:fb:16:07:fd:b8:95:e2:12:d0:1d:76:0e:36: f5:b2:38:3f:96:f2:67:a3:46:4a:d3:05:e0:d7:b9: cb:1e:8a:80:1d:2f:10:f0:9d:95:c1:5c:0f:9c:c1: 12:c5:2d:63:f6:6e:dc:67:bf:27:d9:92:ff:ed:bb: ff:85:ce:6d:05:4d:ed:f9:12:ce:a7:3e:e2:57:71: 4e:f2:14:a5:10:cb:d6:f0:cd:99:9a:23:50:a2:07: 2b:4b:03:aa:09:6e:62:99:80:67:f9:77:33:c2:7d: 76:e8:93:c0:7e:5b:12:db:e6:65:44:0f:28:5b:73: 32:44:4f:aa:f5:88:f5:6c:63:c9:4d:47:e4:b9:0a: 54:0b:77:1a:94:da:ff:61:02:7d:db:88:8f:07:af: ce:81:15:45:62:8a:37:23:0f:13:d7:9d:b7:2c:a0: 5d:21:43:95:85:3a:e7:f7:00:e7:f6:89:ed:56:7c: 76:36:dd:5b:eb:fa:16:70:13:86:16:bb:1b:64:9b: d7:81:9d:0b:51:b2:92:fa:cc:cd:3d:ee:e1:42:fe: 1b:9c:80:06:ad:02:6f:2c:f5:ff:6d:2a:1c:d8:dd: 26:c9:41:09:34:bc:30:a6:79:05:14:d9:e9:6d:51: 1a:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:8A:A8:F2:04:FC:9E:95:42:3B:EA:10:11:E8:E0:84:50:66:86:B9 X509v3 Authority Key Identifier: keyid:CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/312e39302e302e302f31382d3234203d3e203137343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 1.90.0.0/18 Signature Algorithm: sha256WithRSAEncryption 90:d9:cb:1e:8f:dc:28:b3:bf:43:89:94:3d:67:8f:a2:e3:bc: 38:9e:c9:89:0a:51:8b:c5:b3:95:93:ce:7b:77:f3:de:a0:e3: 0f:d8:c1:01:6e:4f:cf:c9:93:45:7b:55:ba:4d:15:e0:20:f2: 13:52:73:c7:0b:f5:f5:b0:2c:cb:1e:74:ce:40:19:a7:db:90: d3:c6:31:45:1b:98:60:e0:31:1d:fb:b1:17:1a:99:fe:c9:be: f9:77:11:aa:ba:6b:0a:14:7c:a1:49:f6:ef:e3:31:41:b1:3a: c3:f8:9a:6a:ef:7d:27:0d:fe:d9:a1:92:b2:fb:5b:7a:ee:60: ef:dd:c6:13:05:11:17:19:b9:f2:8f:63:47:b5:26:05:5d:67: ce:47:8d:76:c6:1d:fa:fb:69:44:19:6e:5c:88:ea:78:fa:1e: 91:4f:8c:36:e1:f9:66:e5:56:b7:72:4f:0c:d9:2f:bb:f5:8e: b6:56:ca:5b:ce:e5:74:23:71:d6:88:b5:80:50:33:23:9f:11: d9:d2:f2:d9:92:01:be:b1:4b:41:55:86:be:df:85:47:d8:16: 03:ad:f3:c9:ef:a2:86:9b:31:72:d5:1e:f4:c9:d6:40:b5:39: 46:22:a3:b5:e4:43:f2:d5:0d:3a:c3:06:3b:b7:3b:f7:96:19: ce:1b:f7:d4 -----BEGIN CERTIFICATE----- MIIFATCCA+mgAwIBAgIUfxuLfI/WKKHquWIBxzQZE9jV66MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3 MjE5QjU5NDAeFw0yNjA0MTMwMzIwMTRaFw0yNzA0MTIwMzI1MTRaMDMxMTAvBgNV BAMTKERCOEFBOEYyMDRGQzlFOTU0MjNCRUExMDExRThFMDg0NTA2Njg2QjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5mBaPqCfTMy9AFs7oPsH2+xYH /biV4hLQHXYONvWyOD+W8mejRkrTBeDXucseioAdLxDwnZXBXA+cwRLFLWP2btxn vyfZkv/tu/+Fzm0FTe35Es6nPuJXcU7yFKUQy9bwzZmaI1CiBytLA6oJbmKZgGf5 dzPCfXbok8B+WxLb5mVEDyhbczJET6r1iPVsY8lNR+S5ClQLdxqU2v9hAn3biI8H r86BFUViijcjDxPXnbcsoF0hQ5WFOuf3AOf2ie1WfHY23Vvr+hZwE4YWuxtkm9eB nQtRspL6zM097uFC/hucgAatAm8s9f9tKhzY3SbJQQk0vDCmeQUU2eltURp1AgMB AAGjggILMIICBzAdBgNVHQ4EFgQU24qo8gT8npVCO+oQEejghFBmhrkwHwYDVR0j BBgwFoAUzyFM3txYSzsBD8Om0NPbiXIZtZQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjg1MjA5Ny8wL0NGMjE0Q0RFREM1ODRCM0IwMTBGQzNBNkQwRDNE Qjg5NzIxOUI1OTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3MjE5QjU5NC5jZXIw gYQGCCsGAQUFBwELBHgwdjB0BggrBgEFBQcwC4ZocnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc0NTYwMTQyODUyMDk3LzAvMzEyZTM5MzAyZTMw MmUzMDJmMzEzODJkMzIzNDIwM2QzZTIwMzEzNzM0MzIzOS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBgFa ADANBgkqhkiG9w0BAQsFAAOCAQEAkNnLHo/cKLO/Q4mUPWePouO8OJ7JiQpRi8Wz lZPOe3fz3qDjD9jBAW5Pz8mTRXtVuk0V4CDyE1Jzxwv19bAsyx50zkAZp9uQ08Yx RRuYYOAxHfuxFxqZ/sm++XcRqrprChR8oUn27+MxQbE6w/iaau99Jw3+2aGSsvtb eu5g793GEwURFxm58o9jR7UmBV1nzkeNdsYd+vtpRBluXIjqePoekU+MNuH5ZuVW t3JPDNkvu/WOtlbKW87ldCNx1oi1gFAzI58R2dLy2ZIBvrFLQVWGvt+FR9gWA63z ye+ihpsxctUe9MnWQLU5RiKjteRD8tUNOsMGO7c795YZzhv31A== -----END CERTIFICATE-----Generated at Mon Apr 13 12:23:26 2026 by rpki-client