$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142852097/0/312e39302e3132382e302f31382d3234203d3e203137343239.roa File: 312e39302e3132382e302f31382d3234203d3e203137343239.roa (raw, json) Hash identifier: jpe+ltEgM+SuYk1lWIcFiMz6vunJWWPbOhIOnp66mjU= Subject key identifier: CD:BF:B3:39:92:BB:C8:4C:EB:72:BF:0F:AB:DD:C6:72:55:44:9F:63 Certificate issuer: /CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Certificate serial: 675885434C5899A3564C712FA6E73A0E22EF312E Authority key identifier: CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/312e39302e3132382e302f31382d3234203d3e203137343239.roa Signing time: Mon 13 Apr 2026 03:25:15 +0000 ROA not before: Mon 13 Apr 2026 03:20:15 +0000 ROA not after: Mon 12 Apr 2027 03:25:15 +0000 asID: 17429 IP address blocks: 1.90.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 04:55:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:58:85:43:4c:58:99:a3:56:4c:71:2f:a6:e7:3a:0e:22:ef:31:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Validity Not Before: Apr 13 03:20:15 2026 GMT Not After : Apr 12 03:25:15 2027 GMT Subject: CN=CDBFB33992BBC84CEB72BF0FABDDC67255449F63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:62:31:05:56:3e:ef:ef:4d:9c:d0:33:a3:e1: 8e:1d:1b:33:05:54:98:ea:0f:e0:29:91:8d:c4:c0: ef:3c:94:06:b6:98:bc:dd:bf:55:e7:c0:6c:57:6e: d1:4e:88:50:f0:94:3c:ce:20:ed:a7:36:73:e7:87: 1c:c0:7c:31:43:8f:09:73:90:c0:79:66:ac:d4:19: c6:83:f4:0b:32:2b:88:93:57:0c:35:24:bb:c5:ba: e2:12:6f:bd:dd:7b:c0:e9:fc:10:4a:d8:d9:86:95: 2c:c6:8a:fb:d4:a4:d0:eb:ff:82:6e:0f:d2:15:90: b3:37:a7:d6:19:ca:66:57:88:cc:dd:a4:05:bd:ee: 06:ac:3c:3e:3f:85:f2:d9:b5:f8:35:ee:10:95:14: 02:f6:04:0f:96:37:43:03:37:79:2a:0b:d7:c6:14: c1:11:e4:ce:c7:22:c1:71:81:0a:50:bf:08:41:a9: 85:8b:74:fc:a2:0a:3a:33:f6:14:6e:02:19:b6:2d: 07:9e:86:db:2e:fc:c1:87:1f:8e:ca:12:dc:3d:fe: 12:b5:42:77:bd:c5:f8:59:8c:6f:dc:2d:c0:4f:5e: b1:14:c9:80:87:26:a1:7c:b5:bc:a7:18:5b:9e:3d: a6:28:b0:50:d6:44:d6:c1:3a:7f:9a:c9:b6:4d:a2: ea:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:BF:B3:39:92:BB:C8:4C:EB:72:BF:0F:AB:DD:C6:72:55:44:9F:63 X509v3 Authority Key Identifier: keyid:CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/312e39302e3132382e302f31382d3234203d3e203137343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 1.90.128.0/18 Signature Algorithm: sha256WithRSAEncryption 15:47:6e:29:67:21:21:8c:43:96:80:17:e2:df:94:d4:8c:40: a2:15:20:e5:5c:21:53:6a:ed:75:35:6f:7c:58:d7:3a:3b:72: 29:2b:90:8a:a3:09:77:e2:e8:36:e2:bf:41:ff:af:32:4f:1b: 26:ab:8a:1e:2a:ac:25:84:75:1f:24:61:9c:60:05:f0:27:68: a3:89:dc:bd:a7:42:c6:4e:07:89:49:2d:9b:e4:43:d2:93:74: 9b:18:17:aa:b7:52:96:db:14:1f:90:16:eb:1c:dc:b6:ce:eb: b9:d3:ee:24:a8:bb:6e:4b:93:ad:a0:ad:4e:da:bc:fe:70:f9: 20:e7:6d:b2:90:4d:38:c5:7c:fa:90:a5:79:da:77:87:4b:22: cc:95:d3:5e:33:bb:f4:c9:da:fe:2b:2a:0a:24:6f:d2:82:06: f5:68:1c:aa:5a:4f:ff:22:36:4f:93:91:08:a1:b3:94:69:8b: 4d:68:c9:4e:43:10:1e:95:41:6c:6f:f4:dd:20:9f:f0:96:86: a8:c0:30:2c:d7:55:3e:da:2c:90:75:7b:d0:3a:4d:83:6c:6e: 0c:20:24:b0:a7:55:3e:7f:8e:b1:64:48:60:4a:d9:92:12:22: 35:eb:99:73:df:d7:e8:f2:63:76:c6:6b:89:5c:6f:19:5f:a3: 52:27:07:9d -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUZ1iFQ0xYmaNWTHEvpuc6DiLvMS4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3 MjE5QjU5NDAeFw0yNjA0MTMwMzIwMTVaFw0yNzA0MTIwMzI1MTVaMDMxMTAvBgNV BAMTKENEQkZCMzM5OTJCQkM4NENFQjcyQkYwRkFCRERDNjcyNTU0NDlGNjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsYjEFVj7v702c0DOj4Y4dGzMF VJjqD+ApkY3EwO88lAa2mLzdv1XnwGxXbtFOiFDwlDzOIO2nNnPnhxzAfDFDjwlz kMB5ZqzUGcaD9AsyK4iTVww1JLvFuuISb73de8Dp/BBK2NmGlSzGivvUpNDr/4Ju D9IVkLM3p9YZymZXiMzdpAW97gasPD4/hfLZtfg17hCVFAL2BA+WN0MDN3kqC9fG FMER5M7HIsFxgQpQvwhBqYWLdPyiCjoz9hRuAhm2LQeehtsu/MGHH47KEtw9/hK1 Qne9xfhZjG/cLcBPXrEUyYCHJqF8tbynGFuePaYosFDWRNbBOn+aybZNoupjAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUzb+zOZK7yEzrcr8Pq93GclVEn2MwHwYDVR0j BBgwFoAUzyFM3txYSzsBD8Om0NPbiXIZtZQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjg1MjA5Ny8wL0NGMjE0Q0RFREM1ODRCM0IwMTBGQzNBNkQwRDNE Qjg5NzIxOUI1OTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3MjE5QjU5NC5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc0NTYwMTQyODUyMDk3LzAvMzEyZTM5MzAyZTMx MzIzODJlMzAyZjMxMzgyZDMyMzQyMDNkM2UyMDMxMzczNDMyMzkucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAYBWoAwDQYJKoZIhvcNAQELBQADggEBABVHbilnISGMQ5aAF+LflNSMQKIVIOVc IVNq7XU1b3xY1zo7cikrkIqjCXfi6Dbiv0H/rzJPGyarih4qrCWEdR8kYZxgBfAn aKOJ3L2nQsZOB4lJLZvkQ9KTdJsYF6q3UpbbFB+QFusc3LbO67nT7iSou25Lk62g rU7avP5w+SDnbbKQTTjFfPqQpXnad4dLIsyV014zu/TJ2v4rKgokb9KCBvVoHKpa T/8iNk+TkQihs5Rpi01oyU5DEB6VQWxv9N0gn/CWhqjAMCzXVT7aLJB1e9A6TYNs bgwgJLCnVT5/jrFkSGBK2ZISIjXrmXPf1+jyY3bGa4lcbxlfo1InB50= -----END CERTIFICATE-----Generated at Mon Apr 13 12:24:17 2026 by rpki-client