$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142852097/0/3130312e3234332e3132382e302f31382d3234203d3e203137343239.roa File: 3130312e3234332e3132382e302f31382d3234203d3e203137343239.roa (raw, json) Hash identifier: RDQew/i4c+SSzdC1nFrOAeJpMO6Fo9UlCbOCahJStQY= Subject key identifier: E7:EF:4E:6D:48:6F:51:5A:EE:46:FA:B4:F5:5A:84:6B:A4:61:FF:46 Certificate issuer: /CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Certificate serial: 2B924769E72C2D0F18881A53366D838403B41538 Authority key identifier: CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/3130312e3234332e3132382e302f31382d3234203d3e203137343239.roa Signing time: Mon 13 Apr 2026 03:30:08 +0000 ROA not before: Mon 13 Apr 2026 03:25:08 +0000 ROA not after: Mon 12 Apr 2027 03:30:08 +0000 asID: 17429 IP address blocks: 101.243.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 04:55:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:92:47:69:e7:2c:2d:0f:18:88:1a:53:36:6d:83:84:03:b4:15:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Validity Not Before: Apr 13 03:25:08 2026 GMT Not After : Apr 12 03:30:08 2027 GMT Subject: CN=E7EF4E6D486F515AEE46FAB4F55A846BA461FF46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:90:5c:7e:d4:23:b8:c0:c2:79:58:d4:49:4a: 7e:11:ba:36:c1:68:39:41:57:e8:72:93:77:e7:df: d5:b4:e0:b9:37:2a:91:c6:81:d8:29:40:65:0e:7e: 78:22:fb:e9:45:53:d3:84:6b:0d:4e:01:08:29:07: ca:7f:f3:81:ac:e8:aa:21:35:fe:d5:25:93:0e:e5: 69:b9:bb:bb:59:da:db:f5:9d:05:a3:bc:b4:d8:be: 56:2f:a7:8f:a1:8c:a0:29:07:e8:15:ee:62:f4:87: 29:9f:65:fe:64:10:e1:72:d1:f3:b3:82:5a:a7:ae: 6a:4c:dc:e3:37:78:b1:77:37:12:6e:a3:8c:7d:63: b8:41:67:0e:ff:2d:7f:c9:b0:95:33:b0:72:10:3a: 12:ab:dd:81:b1:ee:f8:c1:44:64:ef:3a:b4:5f:ab: 82:01:48:74:9d:54:37:28:b8:b0:14:e5:52:a6:02: 02:a4:6c:e2:5f:0d:1a:aa:ea:82:18:dd:c1:36:95: 71:7a:c9:a5:dc:94:c9:0d:fc:c5:68:19:d7:5b:d0: a2:2a:24:83:4c:0a:f8:32:d5:10:a8:f2:df:65:d1: 85:1e:ce:f5:44:90:06:86:60:8a:c6:08:d0:51:b9: 1d:0f:d1:36:fe:78:45:79:56:df:74:43:e7:69:5c: 8d:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:EF:4E:6D:48:6F:51:5A:EE:46:FA:B4:F5:5A:84:6B:A4:61:FF:46 X509v3 Authority Key Identifier: keyid:CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/3130312e3234332e3132382e302f31382d3234203d3e203137343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.243.128.0/18 Signature Algorithm: sha256WithRSAEncryption 65:07:75:fc:64:27:1d:38:0b:dc:0c:9d:04:fa:fe:54:77:71: 33:55:32:89:a4:e3:bf:3c:6f:67:95:20:74:4b:2a:b6:96:cb: 7a:8b:cc:a1:fd:1d:df:60:de:b4:57:12:f4:e2:ea:43:1f:80: 77:ed:6e:11:a7:95:3e:5c:38:70:c6:6a:41:80:13:ce:0c:d9: 07:c5:ca:46:0d:3f:af:c2:cb:f3:75:c1:64:9c:99:41:ea:30: fc:db:e1:55:aa:94:dc:e6:6b:c6:21:31:86:1c:a4:c4:0b:26: c8:a8:97:90:17:ec:00:38:08:1b:72:f0:76:67:f9:0d:0a:3b: d2:e6:65:40:28:04:d0:46:c7:a9:b6:c7:f5:e1:51:16:31:51: 08:36:0d:03:39:08:6f:0b:e2:4d:e8:5a:9c:b4:ca:77:9c:5c: 27:da:d8:1b:45:96:b3:8d:a8:ef:89:17:1a:ae:e8:49:f0:f7: 94:b6:c5:e8:31:e9:9c:f6:e2:f5:5c:83:93:ed:6f:47:2f:df: bc:2a:7b:e1:75:ac:cf:93:be:c9:b8:11:94:ba:5f:b8:f7:7b: 43:f1:9c:d8:6c:09:5a:97:de:18:e7:fd:28:fd:89:58:6a:70: 74:8c:b2:ef:e6:ed:a2:66:90:e6:fd:c6:e0:cc:0f:ff:37:f8: 82:ad:bf:90 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUK5JHaecsLQ8YiBpTNm2DhAO0FTgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3 MjE5QjU5NDAeFw0yNjA0MTMwMzI1MDhaFw0yNzA0MTIwMzMwMDhaMDMxMTAvBgNV BAMTKEU3RUY0RTZENDg2RjUxNUFFRTQ2RkFCNEY1NUE4NDZCQTQ2MUZGNDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqkFx+1CO4wMJ5WNRJSn4RujbB aDlBV+hyk3fn39W04Lk3KpHGgdgpQGUOfngi++lFU9OEaw1OAQgpB8p/84Gs6Koh Nf7VJZMO5Wm5u7tZ2tv1nQWjvLTYvlYvp4+hjKApB+gV7mL0hymfZf5kEOFy0fOz glqnrmpM3OM3eLF3NxJuo4x9Y7hBZw7/LX/JsJUzsHIQOhKr3YGx7vjBRGTvOrRf q4IBSHSdVDcouLAU5VKmAgKkbOJfDRqq6oIY3cE2lXF6yaXclMkN/MVoGddb0KIq JINMCvgy1RCo8t9l0YUezvVEkAaGYIrGCNBRuR0P0Tb+eEV5Vt90Q+dpXI3FAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQU5+9ObUhvUVruRvq09VqEa6Rh/0YwHwYDVR0j BBgwFoAUzyFM3txYSzsBD8Om0NPbiXIZtZQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjg1MjA5Ny8wL0NGMjE0Q0RFREM1ODRCM0IwMTBGQzNBNkQwRDNE Qjg5NzIxOUI1OTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3MjE5QjU5NC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzQ1NjAxNDI4NTIwOTcvMC8zMTMwMzEyZTMy MzQzMzJlMzEzMjM4MmUzMDJmMzEzODJkMzIzNDIwM2QzZTIwMzEzNzM0MzIzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEBmXzgDANBgkqhkiG9w0BAQsFAAOCAQEAZQd1/GQnHTgL3AydBPr+ VHdxM1UyiaTjvzxvZ5UgdEsqtpbLeovMof0d32DetFcS9OLqQx+Ad+1uEaeVPlw4 cMZqQYATzgzZB8XKRg0/r8LL83XBZJyZQeow/NvhVaqU3OZrxiExhhykxAsmyKiX kBfsADgIG3Lwdmf5DQo70uZlQCgE0EbHqbbH9eFRFjFRCDYNAzkIbwviTehanLTK d5xcJ9rYG0WWs42o74kXGq7oSfD3lLbF6DHpnPbi9VyDk+1vRy/fvCp74XWsz5O+ ybgRlLpfuPd7Q/Gc2GwJWpfeGOf9KP2JWGpwdIyy7+btomaQ5v3G4MwP/zf4gq2/ kA== -----END CERTIFICATE-----Generated at Mon Apr 13 12:24:33 2026 by rpki-client