$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142852097/0/3130312e3234332e302e302f31382d3234203d3e203137343239.roa File: 3130312e3234332e302e302f31382d3234203d3e203137343239.roa (raw, json) Hash identifier: ydnpEr7Bi/U0xj3Tsze+I4JKBquQ1xh1wM39512ydDM= Subject key identifier: 2A:CD:80:4A:72:74:BB:01:06:82:C0:10:15:03:77:DF:FB:9F:63:D6 Certificate issuer: /CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Certificate serial: 2A64E3EF92B2C19CF80D6E1678BBBBB303A2F6 Authority key identifier: CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/3130312e3234332e302e302f31382d3234203d3e203137343239.roa Signing time: Mon 13 Apr 2026 03:30:09 +0000 ROA not before: Mon 13 Apr 2026 03:25:09 +0000 ROA not after: Mon 12 Apr 2027 03:30:09 +0000 asID: 17429 IP address blocks: 101.243.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 04:55:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:64:e3:ef:92:b2:c1:9c:f8:0d:6e:16:78:bb:bb:b3:03:a2:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Validity Not Before: Apr 13 03:25:09 2026 GMT Not After : Apr 12 03:30:09 2027 GMT Subject: CN=2ACD804A7274BB010682C010150377DFFB9F63D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:2d:4f:ea:19:79:3c:ab:f9:eb:99:dc:b7:ba: a8:d2:2c:fc:4b:4a:c1:0d:d3:23:e5:99:9a:16:c6: 10:9b:bf:b1:f8:26:ef:82:08:29:2c:6d:e0:26:a3: 4b:50:5b:a8:d8:da:26:ab:0d:f6:3e:bb:32:87:54: 4e:4c:a8:b2:87:b0:17:ae:2e:09:90:25:e8:f2:31: 80:9b:69:4b:1e:e7:82:42:0f:a2:32:ed:56:6a:2d: a0:92:73:3b:55:83:de:5d:8e:7d:72:b5:56:31:c6: 3d:21:e9:59:5d:e3:98:62:b8:f4:ce:95:e1:c2:2d: 42:32:3d:d7:cd:4b:8a:b7:24:ac:ab:3c:e6:8d:f8: ee:43:e5:14:d2:8f:86:32:7e:9e:08:c2:27:3c:ae: d8:d8:6d:50:ab:8c:37:e3:51:45:24:b4:1b:72:9d: 19:77:31:f9:0a:88:7f:db:a2:26:d8:38:5a:96:33: b3:c6:34:83:b0:d4:dc:31:9e:74:9e:15:db:0b:39: 46:b1:22:56:c5:94:f2:4a:f3:62:4e:c7:8a:bf:25: 8a:2f:3f:9f:fd:44:f8:57:57:a7:a0:25:c5:03:29: fe:30:f9:df:ef:17:d0:d0:e0:d8:5a:99:81:a6:41: af:2f:26:46:60:89:88:34:ff:a8:9c:d8:e6:fc:41: df:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:CD:80:4A:72:74:BB:01:06:82:C0:10:15:03:77:DF:FB:9F:63:D6 X509v3 Authority Key Identifier: keyid:CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/3130312e3234332e302e302f31382d3234203d3e203137343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.243.0.0/18 Signature Algorithm: sha256WithRSAEncryption 01:05:81:62:71:55:b5:ad:7a:38:3a:f2:ef:88:8f:43:8e:68: c7:c0:d1:a5:10:f1:e2:61:bd:51:72:eb:c4:67:c9:9c:e0:15: 1e:2b:a2:d4:83:0c:9f:f6:33:f2:1e:b0:82:5d:ff:b5:6d:b7: 22:7a:af:5f:3d:26:0d:91:5d:76:21:7e:44:1a:bb:62:78:5d: dd:e5:22:fc:2c:59:1e:02:b0:25:d5:05:4b:5f:dd:76:6e:01: 34:a7:2d:32:41:6e:48:a5:db:8c:03:42:d6:28:75:f6:fb:a7: a3:71:53:71:56:9f:7d:e8:df:e7:ef:72:32:a2:d2:71:85:89: 4c:98:df:31:27:12:74:a0:67:b9:cd:4d:77:83:fc:8c:5a:12: 1f:7e:3c:c6:f6:e3:08:10:2f:b4:4b:ae:93:af:10:e1:cc:af: da:af:2d:f8:6d:f1:09:f4:6f:50:51:73:a4:c3:d6:a1:3e:37: b6:dd:cb:c0:19:2a:d5:2e:ce:24:82:34:0a:d8:82:43:33:26: dd:c8:46:b2:6f:15:c4:23:43:d5:f8:89:a9:ec:9b:87:49:32: 99:72:3d:76:93:4e:b3:33:b4:0c:37:4f:18:6a:05:a6:2e:7e: 92:bf:94:1f:2e:c1:c0:3a:4b:04:68:ac:27:5d:57:9d:1e:4f: c1:37:82:fa -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgITKmTj75KywZz4DW4WeLu7swOi9jANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEyhDRjIxNENERURDNTg0QjNCMDEwRkMzQTZEMEQzREI4OTcy MTlCNTk0MB4XDTI2MDQxMzAzMjUwOVoXDTI3MDQxMjAzMzAwOVowMzExMC8GA1UE AxMoMkFDRDgwNEE3Mjc0QkIwMTA2ODJDMDEwMTUwMzc3REZGQjlGNjNENjCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKwtT+oZeTyr+euZ3Le6qNIs/EtK wQ3TI+WZmhbGEJu/sfgm74IIKSxt4CajS1BbqNjaJqsN9j67ModUTkyosoewF64u CZAl6PIxgJtpSx7ngkIPojLtVmotoJJzO1WD3l2OfXK1VjHGPSHpWV3jmGK49M6V 4cItQjI9181LirckrKs85o347kPlFNKPhjJ+ngjCJzyu2NhtUKuMN+NRRSS0G3Kd GXcx+QqIf9uiJtg4WpYzs8Y0g7DU3DGedJ4V2ws5RrEiVsWU8krzYk7Hir8lii8/ n/1E+FdXp6AlxQMp/jD53+8X0NDg2FqZgaZBry8mRmCJiDT/qJzY5vxB318CAwEA AaOCAhEwggINMB0GA1UdDgQWBBQqzYBKcnS7AQaCwBAVA3ff+59j1jAfBgNVHSME GDAWgBTPIUze3FhLOwEPw6bQ09uJchm1lDAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0f BGwwajBooGagZIZicnN5bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDY1 NTc0NTYwMTQyODUyMDk3LzAvQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RC ODk3MjE5QjU5NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3lu YzovL3Jwa2ktcnBzLmNubmljLmNuL3JlcG8vQTEwNTUzOTA3NzUwOTA2NzU3MTUv MS9DRjIxNENERURDNTg0QjNCMDEwRkMzQTZEMEQzREI4OTcyMTlCNTk0LmNlcjCB igYIKwYBBQUHAQsEfjB8MHoGCCsGAQUFBzALhm5yc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU1NzQ1NjAxNDI4NTIwOTcvMC8zMTMwMzEyZTMyMzQz MzJlMzAyZTMwMmYzMTM4MmQzMjM0MjAzZDNlMjAzMTM3MzQzMjM5LnJvYTAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQGZfMAMA0GCSqGSIb3DQEBCwUAA4IBAQABBYFicVW1rXo4OvLviI9DjmjHwNGl EPHiYb1RcuvEZ8mc4BUeK6LUgwyf9jPyHrCCXf+1bbcieq9fPSYNkV12IX5EGrti eF3d5SL8LFkeArAl1QVLX912bgE0py0yQW5IpduMA0LWKHX2+6ejcVNxVp996N/n 73IyotJxhYlMmN8xJxJ0oGe5zU13g/yMWhIffjzG9uMIEC+0S66TrxDhzK/ary34 bfEJ9G9QUXOkw9ahPje23cvAGSrVLs4kgjQK2IJDMybdyEaybxXEI0PV+Imp7JuH STKZcj12k06zM7QMN08YagWmLn6Sv5QfLsHAOksEaKwnXVedHk/BN4L6 -----END CERTIFICATE-----Generated at Mon Apr 13 13:53:28 2026 by rpki-client