$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142852097/0/3130312e3234322e3139322e302f31382d3234203d3e203137343239.roa File: 3130312e3234322e3139322e302f31382d3234203d3e203137343239.roa (raw, json) Hash identifier: UiSg7xwcywexWT0nsaUgKSGYLAA4CDr7rLrNzrJA3aw= Subject key identifier: DE:2B:FA:C4:2A:3F:12:9B:A7:1C:E4:F7:9A:68:32:93:E2:D4:3C:65 Certificate issuer: /CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Certificate serial: 2C8110B03B5C2AA3F25847BF811BA48AA6C42450 Authority key identifier: CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/3130312e3234322e3139322e302f31382d3234203d3e203137343239.roa Signing time: Mon 13 Apr 2026 03:30:08 +0000 ROA not before: Mon 13 Apr 2026 03:25:08 +0000 ROA not after: Mon 12 Apr 2027 03:30:08 +0000 asID: 17429 IP address blocks: 101.242.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 04:55:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:81:10:b0:3b:5c:2a:a3:f2:58:47:bf:81:1b:a4:8a:a6:c4:24:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Validity Not Before: Apr 13 03:25:08 2026 GMT Not After : Apr 12 03:30:08 2027 GMT Subject: CN=DE2BFAC42A3F129BA71CE4F79A683293E2D43C65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:0b:69:f1:25:15:15:a1:cc:db:49:51:ee:89: 83:c3:93:24:ac:d7:51:66:a2:4c:19:c4:5a:17:fd: cc:a6:5c:d5:7b:3a:b0:2b:72:fb:fe:70:84:f1:dd: c3:ef:02:c0:0d:05:f5:84:25:b8:f6:fc:09:c1:ac: 38:fa:ea:53:15:38:9e:4b:3f:ab:c7:f2:7f:c1:a4: da:70:50:7d:85:23:5b:ea:c3:42:e4:16:f5:ba:72: a4:1d:54:f7:a5:30:e6:c1:dd:96:42:80:5e:0b:55: a2:ac:6d:f7:ee:5a:8f:e2:db:fb:45:c0:8c:14:95: 13:76:f2:cb:75:70:fa:3b:96:a6:a9:a8:6f:5f:67: b6:7d:8a:ab:87:ce:25:6a:1c:96:f3:eb:95:1d:c4: 0e:eb:8f:63:af:90:9a:31:26:87:8d:9c:8c:b7:8d: cd:e8:bf:bc:d5:a6:eb:d2:f7:0c:bf:d5:77:8d:d5: b0:ca:49:50:6e:fd:36:0c:8d:c7:fe:f3:54:e9:d1: 8c:77:d2:a0:54:7e:ab:c6:ad:0a:c4:06:1e:cf:79: ea:c5:1c:d5:6e:68:60:7e:e4:48:67:48:99:80:d1: c4:37:15:ac:7c:23:2c:79:b4:29:66:12:d6:cc:6d: 61:aa:0b:00:39:91:cf:73:4f:4b:05:3a:1f:6c:83: 32:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:2B:FA:C4:2A:3F:12:9B:A7:1C:E4:F7:9A:68:32:93:E2:D4:3C:65 X509v3 Authority Key Identifier: keyid:CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/3130312e3234322e3139322e302f31382d3234203d3e203137343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.242.192.0/18 Signature Algorithm: sha256WithRSAEncryption 4a:39:a7:4f:56:14:5b:a9:29:14:5d:40:83:70:53:79:5f:33: ae:c4:a0:c0:b6:6c:ed:ad:3f:38:af:89:55:b3:20:cc:95:94: 8f:73:a8:04:e3:ad:72:b0:2f:20:e9:d2:51:d6:18:ac:a3:2a: 7d:65:b9:e2:e4:72:36:94:db:91:e3:82:1a:ba:c0:af:ef:19: 52:63:d5:3e:91:86:61:d8:7c:13:64:b4:43:cb:af:63:dd:28: 79:4a:3b:69:fe:6b:12:88:03:3a:7f:f9:44:b7:6d:ba:0b:8b: 00:42:7f:a4:3f:71:94:1f:05:48:73:da:9d:4e:67:25:47:fa: 5b:5b:ae:56:1c:7b:95:de:2a:bb:ee:1d:4d:04:ff:30:df:a3: 6e:cc:4e:46:63:29:d9:6f:9d:28:9c:1d:0d:49:29:62:14:18: 4e:79:01:64:b2:f7:7b:7f:76:ae:b1:06:85:a2:71:e1:3b:01: aa:f4:e8:1d:7d:16:31:07:4b:b1:e5:2b:0f:71:51:7c:96:33: 9b:8a:57:56:ba:c0:c4:c8:2f:24:94:6c:cd:3b:41:07:57:da: 0b:67:36:9b:25:e4:06:23:e5:f6:0d:7f:4e:a2:80:9a:72:34: 0d:2d:a0:01:7e:d1:c4:e7:d0:a6:d2:87:30:60:67:a2:57:42: a6:64:29:d9 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIULIEQsDtcKqPyWEe/gRukiqbEJFAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3 MjE5QjU5NDAeFw0yNjA0MTMwMzI1MDhaFw0yNzA0MTIwMzMwMDhaMDMxMTAvBgNV BAMTKERFMkJGQUM0MkEzRjEyOUJBNzFDRTRGNzlBNjgzMjkzRTJENDNDNjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2C2nxJRUVoczbSVHuiYPDkySs 11FmokwZxFoX/cymXNV7OrArcvv+cITx3cPvAsANBfWEJbj2/AnBrDj66lMVOJ5L P6vH8n/BpNpwUH2FI1vqw0LkFvW6cqQdVPelMObB3ZZCgF4LVaKsbffuWo/i2/tF wIwUlRN28st1cPo7lqapqG9fZ7Z9iquHziVqHJbz65UdxA7rj2OvkJoxJoeNnIy3 jc3ov7zVpuvS9wy/1XeN1bDKSVBu/TYMjcf+81Tp0Yx30qBUfqvGrQrEBh7PeerF HNVuaGB+5EhnSJmA0cQ3Fax8Iyx5tClmEtbMbWGqCwA5kc9zT0sFOh9sgzLrAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQU3iv6xCo/EpunHOT3mmgyk+LUPGUwHwYDVR0j BBgwFoAUzyFM3txYSzsBD8Om0NPbiXIZtZQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjg1MjA5Ny8wL0NGMjE0Q0RFREM1ODRCM0IwMTBGQzNBNkQwRDNE Qjg5NzIxOUI1OTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3MjE5QjU5NC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzQ1NjAxNDI4NTIwOTcvMC8zMTMwMzEyZTMy MzQzMjJlMzEzOTMyMmUzMDJmMzEzODJkMzIzNDIwM2QzZTIwMzEzNzM0MzIzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEBmXywDANBgkqhkiG9w0BAQsFAAOCAQEASjmnT1YUW6kpFF1Ag3BT eV8zrsSgwLZs7a0/OK+JVbMgzJWUj3OoBOOtcrAvIOnSUdYYrKMqfWW54uRyNpTb keOCGrrAr+8ZUmPVPpGGYdh8E2S0Q8uvY90oeUo7af5rEogDOn/5RLdtuguLAEJ/ pD9xlB8FSHPanU5nJUf6W1uuVhx7ld4qu+4dTQT/MN+jbsxORmMp2W+dKJwdDUkp YhQYTnkBZLL3e392rrEGhaJx4TsBqvToHX0WMQdLseUrD3FRfJYzm4pXVrrAxMgv JJRszTtBB1faC2c2myXkBiPl9g1/TqKAmnI0DS2gAX7RxOfQptKHMGBnoldCpmQp 2Q== -----END CERTIFICATE-----Generated at Mon Apr 13 12:24:33 2026 by rpki-client