$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142852097/0/312e39312e302e302f31362d3234203d3e203137343239.roa File: 312e39312e302e302f31362d3234203d3e203137343239.roa (raw, json) Hash identifier: Lb9sklgs09wp+luCdwXXuY2uSrKosjmCbdx3SXNMUg8= Subject key identifier: 4F:FC:73:B4:0D:76:58:01:CC:53:61:FF:C7:0A:A8:64:2D:71:56:B5 Certificate issuer: /CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Certificate serial: 62BF804DBD011571662129AD587A4A05C732FDA7 Authority key identifier: CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/312e39312e302e302f31362d3234203d3e203137343239.roa Signing time: Mon 13 Apr 2026 03:25:15 +0000 ROA not before: Mon 13 Apr 2026 03:20:15 +0000 ROA not after: Mon 12 Apr 2027 03:25:15 +0000 asID: 17429 IP address blocks: 1.91.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 04:55:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:bf:80:4d:bd:01:15:71:66:21:29:ad:58:7a:4a:05:c7:32:fd:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Validity Not Before: Apr 13 03:20:15 2026 GMT Not After : Apr 12 03:25:15 2027 GMT Subject: CN=4FFC73B40D765801CC5361FFC70AA8642D7156B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:eb:95:ad:78:05:38:dc:5d:d6:1e:0d:03:a3: a1:5b:88:10:e1:a4:f2:3c:1a:09:e7:3d:55:3a:de: 94:d1:0d:71:c0:a8:30:7c:1a:6c:57:43:2c:67:50: 30:8b:ab:9a:ba:e0:d1:18:46:95:ae:db:41:d8:bd: 29:c5:4d:0f:19:d6:43:fe:fb:09:5e:67:fe:b3:60: c1:fc:77:7e:da:f4:2e:c6:f9:dd:05:87:e1:2a:82: ff:16:50:1d:e2:ec:ac:5c:d1:02:48:18:94:e4:0f: 76:84:2d:50:8a:61:d1:83:5e:20:bc:5f:26:77:a7: ee:ce:b2:99:7c:b6:a6:1b:3c:3f:36:32:7c:3f:61: e2:5f:82:cf:b2:bd:2e:b2:24:78:75:90:d9:40:5b: a5:ef:ec:c2:26:69:12:51:77:86:2e:ef:fc:7c:c5: 37:b8:8a:43:52:24:ef:61:86:66:f3:23:33:0e:d8: c4:fb:bb:6b:61:5e:b5:a4:b9:b7:64:b1:b7:a8:de: f5:e7:a1:9f:98:5e:99:5c:f3:54:3e:f9:77:31:72: 18:46:80:92:e9:fe:59:34:39:9e:28:e7:aa:21:23: 8b:9d:52:6f:d7:29:c7:51:76:0b:d4:a1:ef:89:47: 72:9b:e8:ce:ac:e5:6b:ce:10:9c:63:14:68:ac:55: 6e:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:FC:73:B4:0D:76:58:01:CC:53:61:FF:C7:0A:A8:64:2D:71:56:B5 X509v3 Authority Key Identifier: keyid:CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/312e39312e302e302f31362d3234203d3e203137343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 1.91.0.0/16 Signature Algorithm: sha256WithRSAEncryption 5d:5c:2c:f0:42:4f:a3:cd:a6:39:bb:f0:70:f6:65:69:b0:c4: b5:ef:50:44:c1:ee:ea:eb:d4:89:f6:ea:87:44:de:cf:e2:8c: f9:44:24:0a:1c:e2:71:e0:04:aa:47:08:c9:6c:c2:4d:b1:45: 54:d7:97:ce:b1:1c:76:2b:44:1e:c8:57:4c:b4:d4:11:a9:9c: f2:33:92:d3:91:ff:16:3f:c4:5a:d9:8b:bf:6d:1b:a2:1d:ea: 9a:89:f7:13:4f:6b:8a:42:81:59:6a:a9:74:f4:78:2b:18:7f: 81:fa:5c:f7:d0:09:e1:ca:15:ba:88:3a:3b:27:87:93:c3:8d: 67:20:b3:ae:c2:73:8c:5e:82:06:02:0f:8b:ea:1d:d3:87:ae: 9d:6b:c2:85:97:be:9a:e8:64:ad:f8:d7:a7:cf:c2:9b:b0:30: 7f:a2:ec:49:80:2f:7c:2c:7b:2b:b3:7f:17:75:87:1f:3a:54: f9:7e:75:59:eb:17:f0:41:d3:bc:44:cd:cd:9a:05:5f:0d:c4: 76:b8:cc:0a:cc:87:83:f3:be:54:90:19:90:e7:8b:98:ce:ac: e7:c6:72:0f:0b:b8:13:73:03:ab:f4:7f:f4:d0:26:97:3d:42: 78:93:86:89:e0:a0:bf:4a:29:c6:b5:22:60:82:b7:4b:b5:ea: a7:ff:62:42 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgIUYr+ATb0BFXFmISmtWHpKBccy/acwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3 MjE5QjU5NDAeFw0yNjA0MTMwMzIwMTVaFw0yNzA0MTIwMzI1MTVaMDMxMTAvBgNV BAMTKDRGRkM3M0I0MEQ3NjU4MDFDQzUzNjFGRkM3MEFBODY0MkQ3MTU2QjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCy65WteAU43F3WHg0Do6FbiBDh pPI8GgnnPVU63pTRDXHAqDB8GmxXQyxnUDCLq5q64NEYRpWu20HYvSnFTQ8Z1kP+ +wleZ/6zYMH8d37a9C7G+d0Fh+Eqgv8WUB3i7Kxc0QJIGJTkD3aELVCKYdGDXiC8 XyZ3p+7Ospl8tqYbPD82Mnw/YeJfgs+yvS6yJHh1kNlAW6Xv7MImaRJRd4Yu7/x8 xTe4ikNSJO9hhmbzIzMO2MT7u2thXrWkubdksbeo3vXnoZ+YXplc81Q++XcxchhG gJLp/lk0OZ4o56ohI4udUm/XKcdRdgvUoe+JR3Kb6M6s5WvOEJxjFGisVW4VAgMB AAGjggIKMIICBjAdBgNVHQ4EFgQUT/xztA12WAHMU2H/xwqoZC1xVrUwHwYDVR0j BBgwFoAUzyFM3txYSzsBD8Om0NPbiXIZtZQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjg1MjA5Ny8wL0NGMjE0Q0RFREM1ODRCM0IwMTBGQzNBNkQwRDNE Qjg5NzIxOUI1OTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3MjE5QjU5NC5jZXIw gYQGCCsGAQUFBwELBHgwdjB0BggrBgEFBQcwC4ZocnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc0NTYwMTQyODUyMDk3LzAvMzEyZTM5MzEyZTMw MmUzMDJmMzEzNjJkMzIzNDIwM2QzZTIwMzEzNzM0MzIzOS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAAFb MA0GCSqGSIb3DQEBCwUAA4IBAQBdXCzwQk+jzaY5u/Bw9mVpsMS171BEwe7q69SJ 9uqHRN7P4oz5RCQKHOJx4ASqRwjJbMJNsUVU15fOsRx2K0QeyFdMtNQRqZzyM5LT kf8WP8Ra2Yu/bRuiHeqaifcTT2uKQoFZaql09HgrGH+B+lz30AnhyhW6iDo7J4eT w41nILOuwnOMXoIGAg+L6h3Th66da8KFl76a6GSt+Nenz8KbsDB/ouxJgC98LHsr s38XdYcfOlT5fnVZ6xfwQdO8RM3NmgVfDcR2uMwKzIeD875UkBmQ54uYzqznxnIP C7gTcwOr9H/00CaXPUJ4k4aJ4KC/SinGtSJggrdLteqn/2JC -----END CERTIFICATE-----Generated at Mon Apr 13 12:23:24 2026 by rpki-client