$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142852097/0/312e39312e36342e302f31382d3234203d3e203137343239.roa File: 312e39312e36342e302f31382d3234203d3e203137343239.roa (raw, json) Hash identifier: RWcbOmQGk+Ebz5aqi2P6sR2F/Rm7xdkk4R+nZCJF5ZQ= Subject key identifier: 3D:26:7E:C3:5C:EE:B9:2C:A7:7B:C3:F7:64:A9:FC:00:C6:73:A4:7B Certificate issuer: /CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Certificate serial: 469B900BC794F4E52630C00A820F44DF8006999A Authority key identifier: CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/312e39312e36342e302f31382d3234203d3e203137343239.roa Signing time: Mon 13 Apr 2026 03:25:15 +0000 ROA not before: Mon 13 Apr 2026 03:20:15 +0000 ROA not after: Mon 12 Apr 2027 03:25:15 +0000 asID: 17429 IP address blocks: 1.91.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 04:55:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:9b:90:0b:c7:94:f4:e5:26:30:c0:0a:82:0f:44:df:80:06:99:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Validity Not Before: Apr 13 03:20:15 2026 GMT Not After : Apr 12 03:25:15 2027 GMT Subject: CN=3D267EC35CEEB92CA77BC3F764A9FC00C673A47B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:6e:31:f9:dd:41:85:fd:df:1b:47:bb:f5:5f: b3:80:8f:49:7b:3d:4d:12:4a:64:d7:69:8d:bf:96: 4c:70:4e:a7:c9:f7:74:1f:63:f1:de:73:a6:ea:30: 64:fd:4a:cb:43:02:ce:e3:02:20:d1:27:1a:02:8a: dd:ec:05:cc:8b:5a:c4:eb:ba:8d:d8:31:85:00:e0: 70:a7:1a:c8:2d:de:ad:e3:f9:cf:df:6c:2e:3f:dc: ad:96:2e:c1:1b:1a:24:4b:cc:33:87:f3:25:72:39: d2:e8:ac:b5:b5:38:72:e0:a0:23:5f:23:1f:43:79: 8e:cf:39:3a:73:fb:b1:53:4d:d9:9b:d8:a1:65:b8: 02:e4:92:3f:24:a0:82:6d:a4:66:eb:a2:b9:ab:10: 02:ba:ea:9f:a4:be:10:e2:25:94:c1:75:10:12:84: 05:03:02:6c:4a:77:35:a5:2f:d9:5d:f8:d0:f7:d6: 80:aa:ab:08:12:7e:0c:51:be:a4:c3:8b:3a:77:1b: 39:3b:65:20:8e:a9:9a:2c:91:1b:ef:12:9a:dd:6d: 66:61:12:be:6c:99:18:8e:ac:96:a8:41:39:77:53: d5:a5:b0:72:4e:84:79:4e:cf:22:96:bb:c1:4d:e0: ee:e9:8f:df:ed:48:9c:b8:8a:00:d5:53:ab:d3:f2: 0e:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:26:7E:C3:5C:EE:B9:2C:A7:7B:C3:F7:64:A9:FC:00:C6:73:A4:7B X509v3 Authority Key Identifier: keyid:CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/312e39312e36342e302f31382d3234203d3e203137343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 1.91.64.0/18 Signature Algorithm: sha256WithRSAEncryption 9c:76:a0:33:a3:e9:b9:fa:43:ac:bf:97:e0:85:68:1c:e3:d1: ef:2a:08:a1:d7:f5:eb:95:45:50:b7:1e:25:68:fb:64:0a:d6: c6:a6:03:c9:61:42:72:31:03:0f:32:5e:9d:13:f9:ce:c5:4c: 8a:2c:85:3e:91:49:f7:46:d1:84:ca:a6:2a:6a:ff:be:e2:7c: 8d:da:05:ab:20:73:ff:73:bb:e3:9a:9d:06:97:32:28:bf:b6: 10:25:ae:33:f0:0e:13:7c:bc:63:85:ee:78:a5:1b:6e:9b:2b: 6d:0e:33:44:91:52:53:b3:1f:a5:c9:8c:04:1a:2b:3e:00:51: be:b5:90:72:aa:24:32:c3:9b:e8:b5:f8:61:d8:ca:f4:1c:d4: 98:84:b1:78:4f:b5:67:a8:b7:20:89:a1:5a:f6:64:dd:1a:be: db:1d:32:78:d6:4e:dd:84:59:25:a4:4b:b1:34:24:82:f8:ca: 66:d1:ab:fb:c0:72:34:da:1f:ea:98:51:2d:56:9e:cc:8a:d4: f2:c9:4e:a1:bc:e4:6e:ce:ea:29:de:dd:6d:48:2f:13:80:cd: 1a:16:0c:a5:68:2b:62:f3:1f:66:64:8c:5f:05:6e:96:1b:92: c8:bc:e4:a1:54:61:67:e1:ae:eb:3f:af:07:93:f1:a2:52:76: bd:95:bc:ee -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgIURpuQC8eU9OUmMMAKgg9E34AGmZowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3 MjE5QjU5NDAeFw0yNjA0MTMwMzIwMTVaFw0yNzA0MTIwMzI1MTVaMDMxMTAvBgNV BAMTKDNEMjY3RUMzNUNFRUI5MkNBNzdCQzNGNzY0QTlGQzAwQzY3M0E0N0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjbjH53UGF/d8bR7v1X7OAj0l7 PU0SSmTXaY2/lkxwTqfJ93QfY/Hec6bqMGT9SstDAs7jAiDRJxoCit3sBcyLWsTr uo3YMYUA4HCnGsgt3q3j+c/fbC4/3K2WLsEbGiRLzDOH8yVyOdLorLW1OHLgoCNf Ix9DeY7POTpz+7FTTdmb2KFluALkkj8koIJtpGbrormrEAK66p+kvhDiJZTBdRAS hAUDAmxKdzWlL9ld+ND31oCqqwgSfgxRvqTDizp3Gzk7ZSCOqZoskRvvEprdbWZh Er5smRiOrJaoQTl3U9WlsHJOhHlOzyKWu8FN4O7pj9/tSJy4igDVU6vT8g5tAgMB AAGjggINMIICCTAdBgNVHQ4EFgQUPSZ+w1zuuSyne8P3ZKn8AMZzpHswHwYDVR0j BBgwFoAUzyFM3txYSzsBD8Om0NPbiXIZtZQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjg1MjA5Ny8wL0NGMjE0Q0RFREM1ODRCM0IwMTBGQzNBNkQwRDNE Qjg5NzIxOUI1OTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3MjE5QjU5NC5jZXIw gYYGCCsGAQUFBwELBHoweDB2BggrBgEFBQcwC4ZqcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc0NTYwMTQyODUyMDk3LzAvMzEyZTM5MzEyZTM2 MzQyZTMwMmYzMTM4MmQzMjM0MjAzZDNlMjAzMTM3MzQzMjM5LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQG AVtAMA0GCSqGSIb3DQEBCwUAA4IBAQCcdqAzo+m5+kOsv5fghWgc49HvKgih1/Xr lUVQtx4laPtkCtbGpgPJYUJyMQMPMl6dE/nOxUyKLIU+kUn3RtGEyqYqav++4nyN 2gWrIHP/c7vjmp0GlzIov7YQJa4z8A4TfLxjhe54pRtumyttDjNEkVJTsx+lyYwE Gis+AFG+tZByqiQyw5votfhh2Mr0HNSYhLF4T7VnqLcgiaFa9mTdGr7bHTJ41k7d hFklpEuxNCSC+Mpm0av7wHI02h/qmFEtVp7MitTyyU6hvORuzuop3t1tSC8TgM0a FgylaCti8x9mZIxfBW6WG5LIvOShVGFn4a7rP68Hk/GiUna9lbzu -----END CERTIFICATE-----Generated at Mon Apr 13 12:24:24 2026 by rpki-client