$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142852097/0/312e39302e3139322e302f31382d3234203d3e203137343239.roa File: 312e39302e3139322e302f31382d3234203d3e203137343239.roa (raw, json) Hash identifier: Bo8s0yitNVpbSzxXFA9fwjXT7/8vZmHeeSQSMCiBmQw= Subject key identifier: 0F:FC:E7:76:30:4F:C1:92:D1:30:6F:C2:CB:5C:1C:13:1F:11:85:AE Certificate issuer: /CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Certificate serial: 710126D4D279CDBF2C55F0D90DA671383D270CD2 Authority key identifier: CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/312e39302e3139322e302f31382d3234203d3e203137343239.roa Signing time: Mon 13 Apr 2026 03:25:14 +0000 ROA not before: Mon 13 Apr 2026 03:20:14 +0000 ROA not after: Mon 12 Apr 2027 03:25:14 +0000 asID: 17429 IP address blocks: 1.90.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 04:55:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:01:26:d4:d2:79:cd:bf:2c:55:f0:d9:0d:a6:71:38:3d:27:0c:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Validity Not Before: Apr 13 03:20:14 2026 GMT Not After : Apr 12 03:25:14 2027 GMT Subject: CN=0FFCE776304FC192D1306FC2CB5C1C131F1185AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:42:aa:2f:03:97:ff:21:9c:d9:a0:5a:23:22: 53:07:12:4f:55:e2:74:ca:22:2e:8d:f4:43:7d:03: f8:65:6a:fa:aa:ba:25:a2:92:a6:53:69:9b:b0:1f: fa:47:1c:2e:b3:a3:2f:d0:4b:08:90:d7:72:e1:99: 0e:01:16:70:c1:68:51:d6:0e:15:86:6a:ab:eb:a5: a1:54:82:79:59:9d:a6:a9:aa:e9:7a:8b:80:f1:3a: 69:f6:e4:3b:ea:80:8a:c3:14:ee:21:69:20:d5:69: cc:6f:5d:25:03:28:5e:53:7b:3d:0a:bb:f5:ca:71: 51:7f:8c:3c:f1:03:f4:eb:85:04:31:3c:d1:11:75: c9:f0:a3:47:7d:9c:6a:d1:73:76:f3:cc:ff:34:a9: 95:40:c2:21:3e:c2:4f:3a:54:aa:46:49:f0:22:72: f5:cc:e9:66:4d:76:78:15:fc:24:6b:2e:bd:13:87: 54:ad:76:8e:db:0a:90:18:34:1d:43:33:a7:b4:8d: a8:52:8d:88:10:4c:26:be:91:7b:12:3f:97:4a:16: 8f:2a:9b:d1:fd:7e:06:05:8d:4c:aa:c4:50:9b:bb: 89:c0:7d:5b:35:af:a2:da:ef:83:1e:48:3d:df:5d: fb:e9:57:6a:f4:96:e2:ba:75:dd:78:cf:36:52:2d: 5f:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:FC:E7:76:30:4F:C1:92:D1:30:6F:C2:CB:5C:1C:13:1F:11:85:AE X509v3 Authority Key Identifier: keyid:CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/312e39302e3139322e302f31382d3234203d3e203137343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 1.90.192.0/18 Signature Algorithm: sha256WithRSAEncryption b4:5a:56:c4:3d:9c:f1:28:fc:a6:76:8f:03:3c:a3:7f:93:26: 6e:c4:8b:19:de:9e:77:94:0e:39:a6:46:cc:cf:e8:36:49:df: a4:f4:00:7f:31:3c:a0:41:f4:d2:a5:40:8e:5c:d8:0c:67:5c: ef:0d:f0:7a:5a:1b:79:c4:19:f9:d3:6c:a7:81:72:ef:05:b7: 32:b4:97:05:61:c4:84:5a:9f:ea:37:dd:90:05:f6:c1:a7:21: b3:bd:02:2e:fb:73:bb:34:ea:ae:a8:56:2a:59:2f:8c:40:55: 23:ec:c4:f9:54:81:b6:7a:27:a9:61:52:6d:34:ee:f9:1f:fa: 89:c2:3b:cc:fe:d4:a8:a0:06:3b:f7:14:1b:95:b3:e7:b5:34: 1a:8a:e1:7c:e8:d1:eb:c7:2e:4d:4b:04:6d:4d:08:51:b9:8e: 6a:8d:e8:1e:a6:35:48:3f:67:d6:c0:be:da:ca:fb:dd:76:53: a9:44:fe:ed:d7:54:f1:78:e2:3b:f8:56:1b:6d:4d:a5:2c:33: b6:ad:f6:53:5c:b1:a8:ee:11:53:7c:82:fa:a2:11:84:d5:59: f4:77:f7:29:99:ab:c8:be:b1:c7:33:e5:77:6e:14:e0:bb:98: f7:85:49:1b:6e:b2:2f:b2:d9:86:1e:24:e0:72:f1:48:6e:40: 09:b9:d3:7b -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUcQEm1NJ5zb8sVfDZDaZxOD0nDNIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3 MjE5QjU5NDAeFw0yNjA0MTMwMzIwMTRaFw0yNzA0MTIwMzI1MTRaMDMxMTAvBgNV BAMTKDBGRkNFNzc2MzA0RkMxOTJEMTMwNkZDMkNCNUMxQzEzMUYxMTg1QUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3QqovA5f/IZzZoFojIlMHEk9V 4nTKIi6N9EN9A/hlavqquiWikqZTaZuwH/pHHC6zoy/QSwiQ13LhmQ4BFnDBaFHW DhWGaqvrpaFUgnlZnaapqul6i4DxOmn25DvqgIrDFO4haSDVacxvXSUDKF5Tez0K u/XKcVF/jDzxA/TrhQQxPNERdcnwo0d9nGrRc3bzzP80qZVAwiE+wk86VKpGSfAi cvXM6WZNdngV/CRrLr0Th1Stdo7bCpAYNB1DM6e0jahSjYgQTCa+kXsSP5dKFo8q m9H9fgYFjUyqxFCbu4nAfVs1r6La74MeSD3fXfvpV2r0luK6dd14zzZSLV8vAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUD/zndjBPwZLRMG/Cy1wcEx8Rha4wHwYDVR0j BBgwFoAUzyFM3txYSzsBD8Om0NPbiXIZtZQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjg1MjA5Ny8wL0NGMjE0Q0RFREM1ODRCM0IwMTBGQzNBNkQwRDNE Qjg5NzIxOUI1OTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3MjE5QjU5NC5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc0NTYwMTQyODUyMDk3LzAvMzEyZTM5MzAyZTMx MzkzMjJlMzAyZjMxMzgyZDMyMzQyMDNkM2UyMDMxMzczNDMyMzkucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAYBWsAwDQYJKoZIhvcNAQELBQADggEBALRaVsQ9nPEo/KZ2jwM8o3+TJm7Eixne nneUDjmmRszP6DZJ36T0AH8xPKBB9NKlQI5c2AxnXO8N8HpaG3nEGfnTbKeBcu8F tzK0lwVhxIRan+o33ZAF9sGnIbO9Ai77c7s06q6oVipZL4xAVSPsxPlUgbZ6J6lh Um007vkf+onCO8z+1KigBjv3FBuVs+e1NBqK4Xzo0evHLk1LBG1NCFG5jmqN6B6m NUg/Z9bAvtrK+912U6lE/u3XVPF44jv4VhttTaUsM7at9lNcsajuEVN8gvqiEYTV WfR39ymZq8i+sccz5XduFOC7mPeFSRtusi+y2YYeJOBy8UhuQAm503s= -----END CERTIFICATE-----Generated at Mon Apr 13 12:24:16 2026 by rpki-client