$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142852097/0/3130312e3234302e302e302f31382d3234203d3e203137343239.roa File: 3130312e3234302e302e302f31382d3234203d3e203137343239.roa (raw, json) Hash identifier: qb2udgdOO6KUYUCCPsIkIT2kqgRfbLMTy+OBHpVD0EY= Subject key identifier: 64:15:1F:E8:A6:BD:F6:54:94:11:60:5D:78:63:9C:FF:F0:9C:05:3B Certificate issuer: /CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Certificate serial: 2043FCF9FDCAEF59E723791015CC4C2AFF794B14 Authority key identifier: CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/3130312e3234302e302e302f31382d3234203d3e203137343239.roa Signing time: Mon 13 Apr 2026 03:30:09 +0000 ROA not before: Mon 13 Apr 2026 03:25:09 +0000 ROA not after: Mon 12 Apr 2027 03:30:09 +0000 asID: 17429 IP address blocks: 101.240.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 04:55:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:43:fc:f9:fd:ca:ef:59:e7:23:79:10:15:cc:4c:2a:ff:79:4b:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Validity Not Before: Apr 13 03:25:09 2026 GMT Not After : Apr 12 03:30:09 2027 GMT Subject: CN=64151FE8A6BDF6549411605D78639CFFF09C053B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:3d:d8:55:7f:98:2d:87:19:11:47:32:95:03: 99:b0:f1:46:a2:d6:61:76:1a:0e:d7:ae:b9:37:f9: b0:e9:ed:44:12:97:59:29:7d:df:3f:e0:12:b9:ce: 75:87:58:bc:32:22:d8:b0:4c:61:e1:83:c6:25:37: e2:37:ed:2c:12:7d:ed:7e:ef:6a:a2:ed:44:ff:08: a4:94:50:cf:9a:bf:2b:9c:da:e9:70:3b:fc:da:5a: 2b:fa:2f:ac:a9:96:98:16:61:d7:9e:15:b0:30:70: be:f6:d8:2b:a8:2e:ba:81:14:50:81:47:8a:d7:16: b8:e3:fa:12:06:2f:92:64:09:87:03:82:9d:a0:50: 4a:67:fa:38:a2:a7:aa:42:26:82:40:f0:05:f4:71: 8e:b7:18:32:e4:a0:c2:f7:4e:41:99:01:68:65:09: a5:7f:b6:fb:a4:6b:4e:d9:10:4a:1f:69:6b:31:74: dd:f3:7e:57:4d:5a:0b:92:e9:5f:6b:2b:1b:4c:e9: f9:ca:bd:2d:32:e2:94:b5:a5:f9:64:45:6b:28:79: bc:f3:64:fa:94:69:b7:3a:3f:54:0f:55:ca:07:12: 1f:30:9e:12:1a:1d:c5:44:ae:4e:21:b1:70:d5:7a: c1:31:c4:14:b5:84:ff:6f:72:6c:c1:b8:54:56:05: 9c:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:15:1F:E8:A6:BD:F6:54:94:11:60:5D:78:63:9C:FF:F0:9C:05:3B X509v3 Authority Key Identifier: keyid:CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/3130312e3234302e302e302f31382d3234203d3e203137343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.240.0.0/18 Signature Algorithm: sha256WithRSAEncryption 30:a7:22:89:87:f5:f8:a5:8c:5c:84:f3:60:da:ea:b2:fc:e9: 5d:61:ab:86:3a:02:17:72:71:f6:8e:dd:4c:c0:6d:a6:f7:ac: 22:c9:c7:ec:a8:15:54:7d:de:e2:b1:2b:f6:3c:90:59:63:ef: c5:69:e4:31:98:80:f7:7b:6e:e7:41:d3:aa:08:3b:5e:51:70: e6:c9:1c:34:b2:59:72:07:1b:ab:f0:51:0f:44:d2:f8:d9:0e: 07:8a:b4:ba:68:3e:28:1e:f2:90:88:77:4e:90:12:bb:8f:c9: 7b:b6:dc:f6:4a:ec:a7:eb:bb:32:fe:b5:f2:70:6c:80:fd:bb: b1:42:24:77:96:6b:95:ee:d8:9b:6e:48:6f:84:1c:a4:ea:fa: d1:fc:95:cd:b4:7a:d6:1e:fc:f5:75:67:59:ad:99:f2:e4:a8: ee:37:52:54:91:b9:41:a5:56:c5:81:2d:48:52:ef:30:0d:80: 34:c3:4c:b3:e0:3b:d0:0b:c7:0b:89:ab:47:72:e0:68:e6:3b: cc:c4:30:04:70:9a:d8:6e:ab:9d:38:75:28:0a:ba:5a:fe:b4: 1a:17:42:d0:91:16:df:f4:cc:cc:a9:4e:ed:a0:38:8b:fa:69: df:b6:e5:b2:55:3f:47:9a:f6:4a:8d:9d:ec:9c:dd:cc:11:8e: 30:f8:1f:27 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUIEP8+f3K71nnI3kQFcxMKv95SxQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3 MjE5QjU5NDAeFw0yNjA0MTMwMzI1MDlaFw0yNzA0MTIwMzMwMDlaMDMxMTAvBgNV BAMTKDY0MTUxRkU4QTZCREY2NTQ5NDExNjA1RDc4NjM5Q0ZGRjA5QzA1M0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDePdhVf5gthxkRRzKVA5mw8Uai 1mF2Gg7Xrrk3+bDp7UQSl1kpfd8/4BK5znWHWLwyItiwTGHhg8YlN+I37SwSfe1+ 72qi7UT/CKSUUM+avyuc2ulwO/zaWiv6L6yplpgWYdeeFbAwcL722CuoLrqBFFCB R4rXFrjj+hIGL5JkCYcDgp2gUEpn+jiip6pCJoJA8AX0cY63GDLkoML3TkGZAWhl CaV/tvuka07ZEEofaWsxdN3zfldNWguS6V9rKxtM6fnKvS0y4pS1pflkRWsoebzz ZPqUabc6P1QPVcoHEh8wnhIaHcVErk4hsXDVesExxBS1hP9vcmzBuFRWBZylAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUZBUf6Ka99lSUEWBdeGOc//CcBTswHwYDVR0j BBgwFoAUzyFM3txYSzsBD8Om0NPbiXIZtZQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjg1MjA5Ny8wL0NGMjE0Q0RFREM1ODRCM0IwMTBGQzNBNkQwRDNE Qjg5NzIxOUI1OTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3MjE5QjU5NC5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc0NTYwMTQyODUyMDk3LzAvMzEzMDMxMmUzMjM0 MzAyZTMwMmUzMDJmMzEzODJkMzIzNDIwM2QzZTIwMzEzNzM0MzIzOS5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBmXwADANBgkqhkiG9w0BAQsFAAOCAQEAMKciiYf1+KWMXITzYNrqsvzpXWGr hjoCF3Jx9o7dTMBtpvesIsnH7KgVVH3e4rEr9jyQWWPvxWnkMZiA93tu50HTqgg7 XlFw5skcNLJZcgcbq/BRD0TS+NkOB4q0umg+KB7ykIh3TpASu4/Je7bc9krsp+u7 Mv618nBsgP27sUIkd5Zrle7Ym25Ib4QcpOr60fyVzbR61h789XVnWa2Z8uSo7jdS VJG5QaVWxYEtSFLvMA2ANMNMs+A70AvHC4mrR3LgaOY7zMQwBHCa2G6rnTh1KAq6 Wv60GhdC0JEW3/TMzKlO7aA4i/pp37blslU/R5r2So2d7JzdzBGOMPgfJw== -----END CERTIFICATE-----Generated at Mon Apr 13 13:53:24 2026 by rpki-client