$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142852097/0/3138302e37372e3132382e302f31382d3234203d3e203137343239.roa File: 3138302e37372e3132382e302f31382d3234203d3e203137343239.roa (raw, json) Hash identifier: JADhigYWetFAEijpjqVHBq4Gk7PN/rHXI+13xgVNHtg= Subject key identifier: 05:71:47:26:25:C4:9A:D0:64:E5:40:2F:D5:B6:C3:B5:CB:69:80:FE Certificate issuer: /CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Certificate serial: 3C50F2EB2F0240224749F058A450B2E189F2E874 Authority key identifier: CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/3138302e37372e3132382e302f31382d3234203d3e203137343239.roa Signing time: Mon 13 Apr 2026 03:31:36 +0000 ROA not before: Mon 13 Apr 2026 03:26:36 +0000 ROA not after: Mon 12 Apr 2027 03:31:36 +0000 asID: 17429 IP address blocks: 180.77.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 04:55:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:50:f2:eb:2f:02:40:22:47:49:f0:58:a4:50:b2:e1:89:f2:e8:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Validity Not Before: Apr 13 03:26:36 2026 GMT Not After : Apr 12 03:31:36 2027 GMT Subject: CN=0571472625C49AD064E5402FD5B6C3B5CB6980FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:43:19:01:86:ed:ea:7d:e8:c5:21:ea:60:6e: 52:d9:6a:dd:a0:06:d8:f2:bd:ff:ce:05:0d:b7:13: a0:72:0f:64:5e:da:8f:47:52:be:7c:a0:02:b3:f5: 0f:01:0b:4d:e6:b4:c2:ac:de:a0:39:d7:ee:a9:0f: 8b:46:97:f5:44:f0:d6:04:7f:45:3a:36:d5:b8:0b: 73:3e:7f:00:0d:a3:1a:5a:66:1f:52:4a:20:18:2f: bf:6a:68:4e:32:25:a3:d5:aa:d2:df:17:d2:d4:91: 8e:69:f6:84:ee:3b:c2:38:23:5b:cd:69:f1:7e:d7: 26:0d:b3:74:24:91:a0:a2:65:3e:00:44:ae:62:16: d0:46:69:04:2c:e6:1a:cc:64:ae:5f:2b:d9:8e:20: 67:db:1a:54:48:13:93:b0:f3:3f:29:13:75:31:ad: 69:d9:cb:72:4b:a6:fd:e1:a6:5d:c2:28:bd:18:e1: 3e:c9:50:27:b1:ee:93:13:22:83:5f:32:cd:71:7d: 1f:ef:2c:3c:8b:07:77:41:a3:74:81:20:00:42:ae: a4:6f:bf:cf:f7:a2:ab:4a:dc:5d:c8:e4:a1:c2:c9: 59:08:5c:6b:40:2f:7a:57:26:6b:7e:88:2a:9d:6c: 8a:10:9a:02:45:fd:58:30:37:34:bb:ba:50:db:74: ea:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:71:47:26:25:C4:9A:D0:64:E5:40:2F:D5:B6:C3:B5:CB:69:80:FE X509v3 Authority Key Identifier: keyid:CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/3138302e37372e3132382e302f31382d3234203d3e203137343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.77.128.0/18 Signature Algorithm: sha256WithRSAEncryption 52:9b:a3:05:80:50:75:25:76:9d:11:81:53:ac:b3:67:22:c7: 9e:67:9f:14:1a:15:91:27:0b:af:e3:9e:a8:9c:08:39:39:9a: c6:e7:e8:1f:3a:88:73:76:c0:11:f6:ab:26:f3:a8:b2:3d:13: 09:cd:bc:08:06:33:0d:dd:65:c7:f7:f5:3a:2c:36:85:05:68: 89:84:f7:81:01:2b:70:dc:1b:d1:6e:60:7e:f7:5f:69:4d:ed: 1a:af:63:e0:74:8a:cb:aa:1d:b1:d6:cf:dc:80:c8:67:3d:ad: c6:46:ff:f2:d2:6a:da:99:3c:58:26:f5:69:da:2c:b5:ab:6c: 98:dc:3e:ca:07:ce:19:64:84:03:9d:62:1e:54:01:cd:4d:47: 5e:bf:64:77:4f:07:58:ba:1f:67:a4:5d:f7:19:11:d8:ec:a1: e9:f9:6d:01:41:d4:c0:d5:77:af:32:16:21:29:fd:79:bb:a6: ae:9b:ca:28:b4:83:40:5f:bc:c5:6a:3f:ee:94:7d:b4:e9:05: 23:d2:ac:9d:16:bd:00:b5:4b:55:c6:1b:f4:cf:d3:be:d4:aa: 37:16:ed:04:1f:3a:8a:49:ff:9d:10:7f:bb:88:24:12:2c:de: 78:fb:c3:74:78:58:71:8d:64:9d:72:6c:eb:50:72:f5:af:c4: d1:62:c7:b0 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUPFDy6y8CQCJHSfBYpFCy4Yny6HQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3 MjE5QjU5NDAeFw0yNjA0MTMwMzI2MzZaFw0yNzA0MTIwMzMxMzZaMDMxMTAvBgNV BAMTKDA1NzE0NzI2MjVDNDlBRDA2NEU1NDAyRkQ1QjZDM0I1Q0I2OTgwRkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoQxkBhu3qfejFIepgblLZat2g Btjyvf/OBQ23E6ByD2Re2o9HUr58oAKz9Q8BC03mtMKs3qA51+6pD4tGl/VE8NYE f0U6NtW4C3M+fwANoxpaZh9SSiAYL79qaE4yJaPVqtLfF9LUkY5p9oTuO8I4I1vN afF+1yYNs3QkkaCiZT4ARK5iFtBGaQQs5hrMZK5fK9mOIGfbGlRIE5Ow8z8pE3Ux rWnZy3JLpv3hpl3CKL0Y4T7JUCex7pMTIoNfMs1xfR/vLDyLB3dBo3SBIABCrqRv v8/3oqtK3F3I5KHCyVkIXGtAL3pXJmt+iCqdbIoQmgJF/VgwNzS7ulDbdOr3AgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUBXFHJiXEmtBk5UAv1bbDtctpgP4wHwYDVR0j BBgwFoAUzyFM3txYSzsBD8Om0NPbiXIZtZQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjg1MjA5Ny8wL0NGMjE0Q0RFREM1ODRCM0IwMTBGQzNBNkQwRDNE Qjg5NzIxOUI1OTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3MjE5QjU5NC5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3NDU2MDE0Mjg1MjA5Ny8wLzMxMzgzMDJlMzcz NzJlMzEzMjM4MmUzMDJmMzEzODJkMzIzNDIwM2QzZTIwMzEzNzM0MzIzOS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEBrRNgDANBgkqhkiG9w0BAQsFAAOCAQEAUpujBYBQdSV2nRGBU6yzZyLH nmefFBoVkScLr+OeqJwIOTmaxufoHzqIc3bAEfarJvOosj0TCc28CAYzDd1lx/f1 Oiw2hQVoiYT3gQErcNwb0W5gfvdfaU3tGq9j4HSKy6odsdbP3IDIZz2txkb/8tJq 2pk8WCb1adostatsmNw+ygfOGWSEA51iHlQBzU1HXr9kd08HWLofZ6Rd9xkR2Oyh 6fltAUHUwNV3rzIWISn9ebumrpvKKLSDQF+8xWo/7pR9tOkFI9KsnRa9ALVLVcYb 9M/TvtSqNxbtBB86ikn/nRB/u4gkEizeePvDdHhYcY1knXJs61By9a/E0WLHsA== -----END CERTIFICATE-----Generated at Mon Apr 13 12:24:10 2026 by rpki-client