$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142852097/0/3130312e3234302e3132382e302f31382d3234203d3e203137343239.roa File: 3130312e3234302e3132382e302f31382d3234203d3e203137343239.roa (raw, json) Hash identifier: tgYBCwKMUAmaERPg/vubHgjeyx+X+9gj80gdXk8WpL8= Subject key identifier: E2:2D:A4:A5:49:C4:6E:1C:59:07:4A:18:65:57:C3:7F:EB:BD:ED:09 Certificate issuer: /CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Certificate serial: 2B886E2896F2E696909084F78FB13C43ABE1E1D6 Authority key identifier: CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/3130312e3234302e3132382e302f31382d3234203d3e203137343239.roa Signing time: Mon 13 Apr 2026 03:30:09 +0000 ROA not before: Mon 13 Apr 2026 03:25:09 +0000 ROA not after: Mon 12 Apr 2027 03:30:09 +0000 asID: 17429 IP address blocks: 101.240.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 04:55:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:88:6e:28:96:f2:e6:96:90:90:84:f7:8f:b1:3c:43:ab:e1:e1:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Validity Not Before: Apr 13 03:25:09 2026 GMT Not After : Apr 12 03:30:09 2027 GMT Subject: CN=E22DA4A549C46E1C59074A186557C37FEBBDED09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:38:40:4d:8d:0b:ce:12:30:95:40:87:b4:50: 55:ea:c2:b2:4a:91:c8:50:0d:36:f0:6f:3b:ef:02: 87:78:ae:b7:33:f5:08:d6:aa:d8:ad:2d:87:df:5d: 67:e1:a0:b9:96:9f:ab:6d:b9:4b:95:c6:c2:90:45: bf:f0:38:71:9b:cb:24:c8:3c:5e:8e:cc:58:ce:d0: dd:4d:98:5e:c9:21:9d:e5:8b:c1:ee:2d:2a:7f:e3: d1:79:26:75:2e:8f:b0:42:b4:d0:05:c6:e8:f3:8a: 07:54:5a:d7:d2:0d:3b:8a:fe:a1:16:6b:0c:7d:65: 1c:b1:43:92:03:38:b6:75:4b:ae:78:38:98:f3:77: fb:90:69:60:77:fd:a5:1a:44:3b:5e:1f:97:1d:6d: b4:84:da:2f:00:34:cf:7a:ea:6a:cc:65:fa:84:c1: ea:a4:f9:99:d1:ba:65:0b:7f:20:4f:07:ef:28:d1: 4a:00:76:72:d2:5c:48:3a:cd:cc:41:51:bc:fe:ba: 03:74:cf:b4:90:74:d6:72:b0:cb:b5:8d:a7:2c:86: a6:3e:37:c5:8f:69:2e:3f:7d:66:7a:c0:f0:58:85: dc:08:25:11:76:c2:ed:9e:88:c9:9a:5b:06:75:77: a9:56:0e:07:2f:2b:63:46:72:e6:50:ae:ec:9f:bb: 44:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:2D:A4:A5:49:C4:6E:1C:59:07:4A:18:65:57:C3:7F:EB:BD:ED:09 X509v3 Authority Key Identifier: keyid:CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/3130312e3234302e3132382e302f31382d3234203d3e203137343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.240.128.0/18 Signature Algorithm: sha256WithRSAEncryption 89:35:92:ed:6a:80:f9:9f:27:70:a9:2d:f3:87:4a:17:2d:5e: f2:54:7d:74:64:37:b7:6c:6f:1f:62:a3:db:c7:1a:fd:29:23: 39:31:92:3b:1f:ec:ab:31:bd:4f:e4:19:86:70:aa:57:43:84: 9d:99:0f:44:ff:c0:26:ce:bf:40:98:82:03:01:0f:67:c8:9a: a0:08:16:52:df:32:3d:f2:0d:54:47:1a:44:37:c5:81:d6:5f: f6:21:87:e1:8a:93:43:2f:35:ae:ca:68:3c:8a:13:c5:93:78: 5a:7e:ae:22:09:c1:0c:97:bf:ad:06:f9:f4:d6:fe:d4:9b:12: ea:80:f7:82:52:79:a9:5b:81:64:59:4f:51:c0:09:19:03:3c: 9c:f1:01:25:79:ef:c0:33:0b:aa:c4:3b:38:7d:c1:8d:4b:3b: 90:f1:3a:f9:a7:91:84:9a:2d:89:8f:4b:0b:86:d9:58:09:f3: 1e:94:d6:82:4b:2b:8b:8c:be:97:72:6d:95:ea:92:79:4b:76: 06:f2:67:53:79:c7:af:72:7e:a0:e4:64:ec:6e:ba:8b:7e:55: 72:36:28:c6:e8:9d:fb:36:34:4e:eb:4e:2c:8b:02:0a:ef:5d: 9e:5f:64:59:fb:d3:d4:17:d4:78:16:c8:3e:e1:72:aa:b6:47: 9a:6d:de:46 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUK4huKJby5paQkIT3j7E8Q6vh4dYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3 MjE5QjU5NDAeFw0yNjA0MTMwMzI1MDlaFw0yNzA0MTIwMzMwMDlaMDMxMTAvBgNV BAMTKEUyMkRBNEE1NDlDNDZFMUM1OTA3NEExODY1NTdDMzdGRUJCREVEMDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGOEBNjQvOEjCVQIe0UFXqwrJK kchQDTbwbzvvAod4rrcz9QjWqtitLYffXWfhoLmWn6ttuUuVxsKQRb/wOHGbyyTI PF6OzFjO0N1NmF7JIZ3li8HuLSp/49F5JnUuj7BCtNAFxujzigdUWtfSDTuK/qEW awx9ZRyxQ5IDOLZ1S654OJjzd/uQaWB3/aUaRDteH5cdbbSE2i8ANM966mrMZfqE weqk+ZnRumULfyBPB+8o0UoAdnLSXEg6zcxBUbz+ugN0z7SQdNZysMu1jacshqY+ N8WPaS4/fWZ6wPBYhdwIJRF2wu2eiMmaWwZ1d6lWDgcvK2NGcuZQruyfu0QhAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQU4i2kpUnEbhxZB0oYZVfDf+u97QkwHwYDVR0j BBgwFoAUzyFM3txYSzsBD8Om0NPbiXIZtZQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjg1MjA5Ny8wL0NGMjE0Q0RFREM1ODRCM0IwMTBGQzNBNkQwRDNE Qjg5NzIxOUI1OTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3MjE5QjU5NC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzQ1NjAxNDI4NTIwOTcvMC8zMTMwMzEyZTMy MzQzMDJlMzEzMjM4MmUzMDJmMzEzODJkMzIzNDIwM2QzZTIwMzEzNzM0MzIzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEBmXwgDANBgkqhkiG9w0BAQsFAAOCAQEAiTWS7WqA+Z8ncKkt84dK Fy1e8lR9dGQ3t2xvH2Kj28ca/SkjOTGSOx/sqzG9T+QZhnCqV0OEnZkPRP/AJs6/ QJiCAwEPZ8iaoAgWUt8yPfINVEcaRDfFgdZf9iGH4YqTQy81rspoPIoTxZN4Wn6u IgnBDJe/rQb59Nb+1JsS6oD3glJ5qVuBZFlPUcAJGQM8nPEBJXnvwDMLqsQ7OH3B jUs7kPE6+aeRhJotiY9LC4bZWAnzHpTWgksri4y+l3JtleqSeUt2BvJnU3nHr3J+ oORk7G66i35VcjYoxuid+zY0TutOLIsCCu9dnl9kWfvT1BfUeBbIPuFyqrZHmm3e Rg== -----END CERTIFICATE-----Generated at Mon Apr 13 12:24:32 2026 by rpki-client