$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142852097/0/3138302e37382e302e302f31382d3234203d3e203137343239.roa File: 3138302e37382e302e302f31382d3234203d3e203137343239.roa (raw, json) Hash identifier: vbv5ImjG1b8zdt8cN10Z7UogoA3o2gY7TYbgGlMU+wc= Subject key identifier: 74:1B:19:E8:86:C1:67:0E:FC:0A:AF:5B:AC:C2:04:37:0B:FB:60:66 Certificate issuer: /CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Certificate serial: 57F5DBB1B360248D04AE1819EBC5D7F80460EAAE Authority key identifier: CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/3138302e37382e302e302f31382d3234203d3e203137343239.roa Signing time: Mon 13 Apr 2026 03:31:36 +0000 ROA not before: Mon 13 Apr 2026 03:26:36 +0000 ROA not after: Mon 12 Apr 2027 03:31:36 +0000 asID: 17429 IP address blocks: 180.78.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 04:55:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:f5:db:b1:b3:60:24:8d:04:ae:18:19:eb:c5:d7:f8:04:60:ea:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Validity Not Before: Apr 13 03:26:36 2026 GMT Not After : Apr 12 03:31:36 2027 GMT Subject: CN=741B19E886C1670EFC0AAF5BACC204370BFB6066 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:0f:b6:23:02:ad:2e:59:ba:fd:23:b3:a4:73: e6:82:d5:a4:48:1e:f7:e5:4a:e0:df:44:7f:8d:35: 79:a8:27:dd:1c:69:55:2e:92:ea:a8:b2:c6:fe:0a: 66:0c:39:9d:c6:0c:f6:9b:12:fc:25:2b:3d:47:65: 70:bc:89:c0:8f:3c:cc:4c:4d:90:69:1d:3f:d9:9b: 39:ed:db:19:9c:27:73:a1:4a:9a:51:a1:b6:97:21: 0f:be:67:ec:8f:df:e0:d3:4a:71:d5:61:53:3a:b0: 05:69:e4:91:82:fe:16:6b:4c:22:99:9e:da:35:7a: 5d:1e:bf:7d:f3:f7:cb:0f:10:e9:fe:b6:e8:6c:53: 31:c2:21:e4:e2:f3:9c:df:35:23:d2:0d:ba:ed:9a: 8e:80:cf:a6:90:d1:c2:b2:f5:36:51:03:e3:53:ba: 73:9c:89:fe:a4:0d:88:e4:66:8e:f9:29:d6:0b:3b: 11:98:07:51:ee:c3:6a:62:56:a6:10:4a:78:99:f0: 1f:b2:b2:9f:47:3c:4d:0f:44:1b:63:c9:b7:9e:38: 54:fb:50:55:df:9d:98:d8:d4:76:56:42:00:99:f4: a5:0c:78:05:f6:24:c0:cc:09:28:83:0e:92:62:ce: 53:ae:d6:79:e8:3a:19:f6:2b:b9:5e:2f:11:eb:fe: cc:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:1B:19:E8:86:C1:67:0E:FC:0A:AF:5B:AC:C2:04:37:0B:FB:60:66 X509v3 Authority Key Identifier: keyid:CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/3138302e37382e302e302f31382d3234203d3e203137343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.78.0.0/18 Signature Algorithm: sha256WithRSAEncryption 49:2d:d1:2d:c0:cd:08:db:3a:76:0d:9a:20:bb:3f:18:ba:1d: bf:d9:2d:e3:c5:a4:1e:76:25:4c:3f:5b:22:e3:93:14:27:0a: b7:f3:59:62:8a:dc:f4:46:d7:fd:3b:b4:0b:f7:a6:df:7d:16: 50:ba:ad:08:ca:fe:1e:6a:3a:06:60:a7:aa:69:4b:b0:a8:51: a4:c3:15:a6:fc:e9:1a:06:ef:6f:58:7c:51:c7:12:48:4c:c3: d5:72:dd:a6:48:11:dc:d4:53:53:a6:ff:95:43:b9:8b:08:73: 01:99:7c:dd:ca:9f:41:aa:e1:80:8d:06:59:3a:9b:3f:89:99: 9a:04:3b:45:f2:13:22:59:e5:c0:fd:51:c4:e6:ab:40:7a:c2: b7:bd:bf:a8:62:75:77:2f:ae:d4:8d:55:cc:e4:43:19:1c:ff: b8:f0:4f:58:39:07:57:25:b2:a4:ec:db:d5:4c:67:b7:4f:24: 3f:7c:23:6c:7d:d0:6d:88:b7:c6:e6:dd:3f:55:86:d7:e0:8a: 40:a2:19:4a:e9:f3:8a:41:6b:2f:65:64:92:7c:8b:64:cf:27: 44:d6:37:a9:a9:8c:f0:7e:92:4a:07:b0:e6:27:28:86:4e:4f: 6b:f9:58:70:30:ec:b9:b0:18:51:b5:be:1e:36:8a:46:42:75: 8f:84:18:b0 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUV/XbsbNgJI0ErhgZ68XX+ARg6q4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3 MjE5QjU5NDAeFw0yNjA0MTMwMzI2MzZaFw0yNzA0MTIwMzMxMzZaMDMxMTAvBgNV BAMTKDc0MUIxOUU4ODZDMTY3MEVGQzBBQUY1QkFDQzIwNDM3MEJGQjYwNjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDED7YjAq0uWbr9I7Okc+aC1aRI HvflSuDfRH+NNXmoJ90caVUukuqossb+CmYMOZ3GDPabEvwlKz1HZXC8icCPPMxM TZBpHT/Zmznt2xmcJ3OhSppRobaXIQ++Z+yP3+DTSnHVYVM6sAVp5JGC/hZrTCKZ nto1el0ev33z98sPEOn+tuhsUzHCIeTi85zfNSPSDbrtmo6Az6aQ0cKy9TZRA+NT unOcif6kDYjkZo75KdYLOxGYB1Huw2piVqYQSniZ8B+ysp9HPE0PRBtjybeeOFT7 UFXfnZjY1HZWQgCZ9KUMeAX2JMDMCSiDDpJizlOu1nnoOhn2K7leLxHr/szxAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUdBsZ6IbBZw78Cq9brMIENwv7YGYwHwYDVR0j BBgwFoAUzyFM3txYSzsBD8Om0NPbiXIZtZQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjg1MjA5Ny8wL0NGMjE0Q0RFREM1ODRCM0IwMTBGQzNBNkQwRDNE Qjg5NzIxOUI1OTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3MjE5QjU5NC5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc0NTYwMTQyODUyMDk3LzAvMzEzODMwMmUzNzM4 MmUzMDJlMzAyZjMxMzgyZDMyMzQyMDNkM2UyMDMxMzczNDMyMzkucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAa0TgAwDQYJKoZIhvcNAQELBQADggEBAEkt0S3AzQjbOnYNmiC7Pxi6Hb/ZLePF pB52JUw/WyLjkxQnCrfzWWKK3PRG1/07tAv3pt99FlC6rQjK/h5qOgZgp6ppS7Co UaTDFab86RoG729YfFHHEkhMw9Vy3aZIEdzUU1Om/5VDuYsIcwGZfN3Kn0Gq4YCN Blk6mz+JmZoEO0XyEyJZ5cD9UcTmq0B6wre9v6hidXcvrtSNVczkQxkc/7jwT1g5 B1clsqTs29VMZ7dPJD98I2x90G2It8bm3T9VhtfgikCiGUrp84pBay9lZJJ8i2TP J0TWN6mpjPB+kkoHsOYnKIZOT2v5WHAw7LmwGFG1vh42ikZCdY+EGLA= -----END CERTIFICATE-----Generated at Mon Apr 13 12:24:20 2026 by rpki-client