$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142852097/0/3138302e37382e3132382e302f31382d3234203d3e203137343239.roa File: 3138302e37382e3132382e302f31382d3234203d3e203137343239.roa (raw, json) Hash identifier: /ZrH+fcxOTETlmJ/zuF4N5Sf9K2JAF6ImmxTnTOMddQ= Subject key identifier: 39:4C:CE:35:BB:F3:D9:3C:05:1F:89:B1:4B:8F:C3:DF:EF:70:62:48 Certificate issuer: /CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Certificate serial: 6E01B5541BA94EB24171DCD1A1A5395EB8E9FDEA Authority key identifier: CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/3138302e37382e3132382e302f31382d3234203d3e203137343239.roa Signing time: Mon 13 Apr 2026 03:31:36 +0000 ROA not before: Mon 13 Apr 2026 03:26:36 +0000 ROA not after: Mon 12 Apr 2027 03:31:36 +0000 asID: 17429 IP address blocks: 180.78.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 04:55:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:01:b5:54:1b:a9:4e:b2:41:71:dc:d1:a1:a5:39:5e:b8:e9:fd:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Validity Not Before: Apr 13 03:26:36 2026 GMT Not After : Apr 12 03:31:36 2027 GMT Subject: CN=394CCE35BBF3D93C051F89B14B8FC3DFEF706248 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:6c:28:cb:07:2b:1a:50:7d:48:b3:f5:ae:98: 2c:45:f2:fb:9a:29:47:86:42:2f:32:56:d6:85:6a: 4d:27:e8:58:21:bc:de:c1:f0:58:38:76:f6:ad:0b: 36:90:ed:c5:bb:75:ac:d6:a6:56:2f:89:bd:52:8f: 84:b2:84:cd:1b:b7:c2:2a:2c:25:e1:d2:3d:49:f0: 7d:cb:85:b9:01:80:67:b5:4f:3b:78:0c:ed:61:06: 6b:f6:2f:fd:6e:1e:f0:61:0d:43:bd:3a:e1:f6:6d: bb:50:f4:32:9f:6e:de:89:4c:1f:83:a2:0e:5e:85: fc:0e:4b:7d:fd:91:25:b7:88:7f:49:14:d1:1b:ba: 46:7f:19:07:ae:df:3a:73:6e:42:09:83:fe:03:35: cd:2c:ba:13:7e:49:2e:7d:9e:b9:0a:f3:74:67:f9: 42:87:ba:b3:c8:bd:3e:7e:82:43:5b:87:a4:9d:b4: 76:1e:13:be:a6:84:4a:3e:5d:3c:96:42:6e:0c:9a: a2:28:49:b3:cc:30:f1:79:58:1b:05:a5:19:d7:fb: 0b:21:42:48:e8:ab:4b:66:b9:8e:2e:1f:ed:7a:33: da:cf:e7:85:29:e0:1b:1b:2b:08:3e:81:c9:d2:8c: 98:18:82:7a:47:6f:61:3f:74:df:73:f7:34:57:b3: 72:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:4C:CE:35:BB:F3:D9:3C:05:1F:89:B1:4B:8F:C3:DF:EF:70:62:48 X509v3 Authority Key Identifier: keyid:CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/3138302e37382e3132382e302f31382d3234203d3e203137343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.78.128.0/18 Signature Algorithm: sha256WithRSAEncryption c1:9a:5f:ef:5d:9b:09:6f:2e:af:16:c4:56:5b:b5:d5:b9:a5: 72:43:28:5c:6d:2f:ef:ab:ae:81:b1:29:fd:25:52:d1:b8:c4: ec:5e:fb:5e:b7:19:47:3a:b6:64:5a:e5:64:fa:24:57:ca:3f: 10:3f:b5:bd:9a:98:7f:a5:62:bb:21:3f:32:66:53:7c:87:a9: a0:8a:3d:32:32:26:0f:a1:4f:cf:a7:5f:25:54:33:68:3d:f3: a6:b1:6d:2c:e7:3f:61:75:7f:5a:1c:87:ae:39:ad:94:1c:96: 3d:c7:9e:c9:21:9b:0f:32:35:fb:27:20:08:44:48:b9:d8:55: 6e:a1:cd:b3:ac:c1:6f:5f:07:4f:26:b8:80:c0:2d:54:16:1d: c2:ff:f6:a2:3a:52:1e:a3:c2:17:b0:3c:24:14:d7:1a:16:cf: 80:0d:83:fb:84:7b:b8:56:35:7e:f8:fa:76:3b:ca:e8:8a:e8: ba:d6:b9:f1:d5:37:16:de:9e:68:17:d8:e6:3d:1f:b6:65:b8: 92:42:af:46:72:d4:4b:ee:65:84:82:38:0d:e0:ad:81:59:ae: d2:e3:6c:16:c5:05:5f:6c:8b:b2:76:81:cf:d3:b9:81:e8:b3: f3:14:0e:ee:b7:2b:7b:f9:a0:89:6f:6c:6c:c9:69:c8:de:e1: 59:fb:34:51 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUbgG1VBupTrJBcdzRoaU5Xrjp/eowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3 MjE5QjU5NDAeFw0yNjA0MTMwMzI2MzZaFw0yNzA0MTIwMzMxMzZaMDMxMTAvBgNV BAMTKDM5NENDRTM1QkJGM0Q5M0MwNTFGODlCMTRCOEZDM0RGRUY3MDYyNDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzbCjLBysaUH1Is/WumCxF8vua KUeGQi8yVtaFak0n6FghvN7B8Fg4dvatCzaQ7cW7dazWplYvib1Sj4SyhM0bt8Iq LCXh0j1J8H3LhbkBgGe1Tzt4DO1hBmv2L/1uHvBhDUO9OuH2bbtQ9DKfbt6JTB+D og5ehfwOS339kSW3iH9JFNEbukZ/GQeu3zpzbkIJg/4DNc0suhN+SS59nrkK83Rn +UKHurPIvT5+gkNbh6SdtHYeE76mhEo+XTyWQm4MmqIoSbPMMPF5WBsFpRnX+wsh Qkjoq0tmuY4uH+16M9rP54Up4BsbKwg+gcnSjJgYgnpHb2E/dN9z9zRXs3KtAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUOUzONbvz2TwFH4mxS4/D3+9wYkgwHwYDVR0j BBgwFoAUzyFM3txYSzsBD8Om0NPbiXIZtZQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjg1MjA5Ny8wL0NGMjE0Q0RFREM1ODRCM0IwMTBGQzNBNkQwRDNE Qjg5NzIxOUI1OTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3MjE5QjU5NC5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3NDU2MDE0Mjg1MjA5Ny8wLzMxMzgzMDJlMzcz ODJlMzEzMjM4MmUzMDJmMzEzODJkMzIzNDIwM2QzZTIwMzEzNzM0MzIzOS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEBrROgDANBgkqhkiG9w0BAQsFAAOCAQEAwZpf712bCW8urxbEVlu11bml ckMoXG0v76uugbEp/SVS0bjE7F77XrcZRzq2ZFrlZPokV8o/ED+1vZqYf6ViuyE/ MmZTfIepoIo9MjImD6FPz6dfJVQzaD3zprFtLOc/YXV/WhyHrjmtlByWPceeySGb DzI1+ycgCERIudhVbqHNs6zBb18HTya4gMAtVBYdwv/2ojpSHqPCF7A8JBTXGhbP gA2D+4R7uFY1fvj6djvK6Irouta58dU3Ft6eaBfY5j0ftmW4kkKvRnLUS+5lhII4 DeCtgVmu0uNsFsUFX2yLsnaBz9O5geiz8xQO7rcre/mgiW9sbMlpyN7hWfs0UQ== -----END CERTIFICATE-----Generated at Mon Apr 13 13:53:23 2026 by rpki-client