$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142852097/0/3130312e3234312e3139322e302f31382d3234203d3e203137343239.roa File: 3130312e3234312e3139322e302f31382d3234203d3e203137343239.roa (raw, json) Hash identifier: XTMlmXQaj3I+DkUIj96wlsUgnCU61Zq+4f8DFZMfkjg= Subject key identifier: 5E:3F:FA:D9:4A:7C:38:07:55:A8:CA:CF:7A:73:E6:D6:2A:84:3A:F8 Certificate issuer: /CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Certificate serial: 1F6DE9C0093E266E06ACF338C529D6A71E7D0816 Authority key identifier: CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/3130312e3234312e3139322e302f31382d3234203d3e203137343239.roa Signing time: Mon 13 Apr 2026 03:30:08 +0000 ROA not before: Mon 13 Apr 2026 03:25:08 +0000 ROA not after: Mon 12 Apr 2027 03:30:08 +0000 asID: 17429 IP address blocks: 101.241.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 04:55:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:6d:e9:c0:09:3e:26:6e:06:ac:f3:38:c5:29:d6:a7:1e:7d:08:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Validity Not Before: Apr 13 03:25:08 2026 GMT Not After : Apr 12 03:30:08 2027 GMT Subject: CN=5E3FFAD94A7C380755A8CACF7A73E6D62A843AF8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:56:17:cc:2b:67:46:61:3f:43:1e:d9:35:37: 32:fa:12:63:65:4f:b9:92:3b:39:26:fc:89:02:4a: a7:46:61:44:4e:55:b7:3f:43:dd:be:b8:60:7c:b5: 09:fe:f2:40:4d:2d:ad:1c:97:ef:fc:b2:31:3d:c4: 91:29:6d:de:c8:79:01:64:dd:1b:f9:e2:08:0b:0c: e2:69:97:0c:56:02:07:e7:52:75:1d:96:90:56:d6: a8:5d:c6:fc:46:4e:96:a6:46:97:98:1b:8e:d2:19: ac:16:1e:77:8a:1b:fb:d9:ca:88:f9:87:3d:74:2c: 19:d5:69:4a:cb:a4:16:3d:54:ac:f0:6d:85:9b:d4: 2e:b2:93:e3:c1:37:50:a8:56:32:75:7d:88:dd:ff: 77:a7:d7:29:57:6c:69:88:61:99:c4:5c:10:d1:11: cf:d4:72:84:9f:14:7c:2e:f0:fa:fb:22:9b:37:10: 32:9b:87:3d:2e:84:be:44:e6:b4:2a:f9:bf:1b:0d: 89:85:d4:8f:3c:07:8a:3d:ea:81:94:37:2b:10:64: b5:4c:4e:f2:55:83:6b:98:c2:4a:54:91:bf:4f:70: 0c:30:b7:d8:4e:08:49:ce:8b:ea:2e:05:fa:16:ac: 21:5a:18:42:b5:0d:82:c7:81:05:39:77:d9:97:a9: 7f:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:3F:FA:D9:4A:7C:38:07:55:A8:CA:CF:7A:73:E6:D6:2A:84:3A:F8 X509v3 Authority Key Identifier: keyid:CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/3130312e3234312e3139322e302f31382d3234203d3e203137343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.241.192.0/18 Signature Algorithm: sha256WithRSAEncryption 60:86:af:44:6a:80:f5:3e:88:42:d6:6d:51:a5:b2:19:75:64: 69:c2:42:cb:5d:28:8a:87:33:f6:e9:3d:7c:95:74:4f:f4:91: 8b:b3:a4:d9:d1:13:fc:42:cc:9d:2a:70:f7:7f:6f:f2:7a:2f: b0:30:34:a1:7a:3e:36:87:61:e7:16:a3:9e:e3:71:ac:c1:5f: ff:e1:b2:76:5d:85:d7:34:10:4c:3c:45:42:a5:13:85:0b:5f: 36:40:e7:0a:cf:6f:ce:17:51:a4:49:c1:41:dd:e5:a0:ba:37: 19:1d:7c:09:09:0c:c4:1d:8f:f4:64:d4:33:e5:e2:ed:e1:2d: bc:f2:ed:fd:56:b6:67:ab:a9:2f:a8:93:9c:c0:be:43:63:d6: 7a:f9:53:77:e6:33:02:b2:84:ce:a7:46:e1:ff:6f:7b:3b:59: 82:8f:36:c5:9f:ef:2a:04:33:22:4d:57:2c:80:e9:2f:4f:29: 24:80:39:74:42:e6:e6:0e:a5:69:01:37:a7:2f:9a:ae:b5:11: 76:a7:ee:0b:2b:20:76:15:ef:38:b6:5e:74:3a:c8:88:4d:ab: c2:d7:92:d3:f2:4c:71:b3:f2:ec:6b:9b:bf:51:a0:2a:cf:aa: 49:a0:dd:8e:9b:20:60:be:59:c3:c5:85:79:ba:0b:df:8a:9b: a1:15:c5:c5 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUH23pwAk+Jm4GrPM4xSnWpx59CBYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3 MjE5QjU5NDAeFw0yNjA0MTMwMzI1MDhaFw0yNzA0MTIwMzMwMDhaMDMxMTAvBgNV BAMTKDVFM0ZGQUQ5NEE3QzM4MDc1NUE4Q0FDRjdBNzNFNkQ2MkE4NDNBRjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCKVhfMK2dGYT9DHtk1NzL6EmNl T7mSOzkm/IkCSqdGYUROVbc/Q92+uGB8tQn+8kBNLa0cl+/8sjE9xJEpbd7IeQFk 3Rv54ggLDOJplwxWAgfnUnUdlpBW1qhdxvxGTpamRpeYG47SGawWHneKG/vZyoj5 hz10LBnVaUrLpBY9VKzwbYWb1C6yk+PBN1CoVjJ1fYjd/3en1ylXbGmIYZnEXBDR Ec/UcoSfFHwu8Pr7Ips3EDKbhz0uhL5E5rQq+b8bDYmF1I88B4o96oGUNysQZLVM TvJVg2uYwkpUkb9PcAwwt9hOCEnOi+ouBfoWrCFaGEK1DYLHgQU5d9mXqX9xAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUXj/62Up8OAdVqMrPenPm1iqEOvgwHwYDVR0j BBgwFoAUzyFM3txYSzsBD8Om0NPbiXIZtZQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjg1MjA5Ny8wL0NGMjE0Q0RFREM1ODRCM0IwMTBGQzNBNkQwRDNE Qjg5NzIxOUI1OTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3MjE5QjU5NC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzQ1NjAxNDI4NTIwOTcvMC8zMTMwMzEyZTMy MzQzMTJlMzEzOTMyMmUzMDJmMzEzODJkMzIzNDIwM2QzZTIwMzEzNzM0MzIzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEBmXxwDANBgkqhkiG9w0BAQsFAAOCAQEAYIavRGqA9T6IQtZtUaWy GXVkacJCy10oiocz9uk9fJV0T/SRi7Ok2dET/ELMnSpw939v8novsDA0oXo+Nodh 5xajnuNxrMFf/+Gydl2F1zQQTDxFQqUThQtfNkDnCs9vzhdRpEnBQd3loLo3GR18 CQkMxB2P9GTUM+Xi7eEtvPLt/Va2Z6upL6iTnMC+Q2PWevlTd+YzArKEzqdG4f9v eztZgo82xZ/vKgQzIk1XLIDpL08pJIA5dELm5g6laQE3py+arrURdqfuCysgdhXv OLZedDrIiE2rwteS0/JMcbPy7Gubv1GgKs+qSaDdjpsgYL5Zw8WFeboL34qboRXF xQ== -----END CERTIFICATE-----Generated at Mon Apr 13 13:54:25 2026 by rpki-client