$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142852097/0/3138302e37382e3139322e302f31382d3234203d3e203137343239.roa File: 3138302e37382e3139322e302f31382d3234203d3e203137343239.roa (raw, json) Hash identifier: fSQDMOF4UP5LekpDlyE3sro7aWRYydq2N8ohB3+q7QA= Subject key identifier: 3B:99:0C:7D:56:E5:BC:E4:AB:A4:D7:ED:C5:AD:BB:F1:52:B5:2E:07 Certificate issuer: /CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Certificate serial: 479815D4F30BC45EA6A1FCC4B80797DD0FA3500A Authority key identifier: CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/3138302e37382e3139322e302f31382d3234203d3e203137343239.roa Signing time: Mon 13 Apr 2026 03:31:36 +0000 ROA not before: Mon 13 Apr 2026 03:26:36 +0000 ROA not after: Mon 12 Apr 2027 03:31:36 +0000 asID: 17429 IP address blocks: 180.78.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 04:55:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:98:15:d4:f3:0b:c4:5e:a6:a1:fc:c4:b8:07:97:dd:0f:a3:50:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Validity Not Before: Apr 13 03:26:36 2026 GMT Not After : Apr 12 03:31:36 2027 GMT Subject: CN=3B990C7D56E5BCE4ABA4D7EDC5ADBBF152B52E07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:fc:5a:e1:01:e8:97:b1:21:2d:38:64:9c:bf: fb:d9:11:00:27:20:dc:a8:15:a1:cd:48:62:52:5a: 34:51:fc:b1:47:48:3b:ff:3e:5a:d4:70:01:38:7c: 0e:0e:7d:d0:dd:46:7c:67:32:47:e2:63:9a:d5:7c: df:c7:01:0f:56:15:d6:8f:5d:e9:cd:40:df:34:22: d8:79:76:13:dc:fc:2c:d7:22:10:d1:6c:ec:5d:74: 53:e3:31:b7:83:7a:ef:22:85:f5:68:f5:1e:82:c1: 86:c2:98:1d:40:9c:0c:cb:56:84:51:4a:a5:09:cf: 0a:13:a5:36:82:34:7a:42:58:c1:e0:c7:a8:7d:9c: 51:90:71:38:e5:a5:0c:c8:01:f1:70:09:22:6b:7c: fe:2a:e0:0c:bc:92:ee:db:5e:28:1a:c6:10:ed:f4: d4:04:e1:86:2a:41:f7:c8:03:ad:f1:ce:77:f6:84: a5:1c:90:d2:6a:b4:a9:8e:0b:82:c5:24:a1:c3:5a: 0e:d5:75:7d:42:b2:56:29:5c:e2:06:e0:75:58:92: 56:8e:d5:1c:63:3a:f3:8f:09:35:19:ff:11:7c:ea: 1f:8c:df:89:1e:45:76:5a:25:ca:14:96:70:ef:86: 63:cb:c4:ee:67:99:91:6b:61:7e:40:e5:a0:11:69: f7:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:99:0C:7D:56:E5:BC:E4:AB:A4:D7:ED:C5:AD:BB:F1:52:B5:2E:07 X509v3 Authority Key Identifier: keyid:CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/3138302e37382e3139322e302f31382d3234203d3e203137343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.78.192.0/18 Signature Algorithm: sha256WithRSAEncryption 27:08:89:0a:cd:55:f6:12:c9:6a:6a:a9:7b:06:4e:19:50:a9: 26:83:79:2e:6e:0b:48:e9:9f:16:61:91:62:6e:68:f0:66:d9: dd:13:94:1a:5c:69:c1:fc:4a:76:94:5a:b7:97:e4:f2:0c:ba: 6f:d7:c8:27:a6:a0:ed:0b:ec:72:ae:3e:12:4d:98:cf:a1:73: 1e:82:00:bf:a1:f6:d7:4f:63:9e:32:ac:53:fd:4a:55:47:1c: 23:00:51:49:db:62:9d:f0:ea:fe:c1:e9:9b:9b:5d:39:18:00: 19:1d:64:fb:94:b7:2f:e2:55:21:8f:26:24:75:45:09:79:1d: 6c:1a:e8:08:84:9f:6f:0e:67:71:7a:b9:47:dc:ec:dc:9a:59: ab:76:c8:d1:97:18:dd:95:39:b8:df:1f:0d:8a:93:65:79:1e: 4f:cc:7f:b7:d8:41:03:19:b6:98:9e:79:45:58:50:6e:93:2f: 0a:37:db:d4:47:3f:f0:52:1e:23:f7:ae:bf:ff:44:52:b0:de: c3:c7:30:66:7a:39:82:18:ee:30:ba:07:f1:71:f9:fb:39:d7: 36:93:12:06:da:21:45:18:d1:87:a8:1a:ab:18:46:ac:db:e2: 35:b1:05:a3:7a:8e:4b:3f:18:7e:31:3d:e1:aa:9b:d9:83:59: 45:4a:db:20 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUR5gV1PMLxF6mofzEuAeX3Q+jUAowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3 MjE5QjU5NDAeFw0yNjA0MTMwMzI2MzZaFw0yNzA0MTIwMzMxMzZaMDMxMTAvBgNV BAMTKDNCOTkwQzdENTZFNUJDRTRBQkE0RDdFREM1QURCQkYxNTJCNTJFMDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCV/FrhAeiXsSEtOGScv/vZEQAn INyoFaHNSGJSWjRR/LFHSDv/PlrUcAE4fA4OfdDdRnxnMkfiY5rVfN/HAQ9WFdaP XenNQN80Ith5dhPc/CzXIhDRbOxddFPjMbeDeu8ihfVo9R6CwYbCmB1AnAzLVoRR SqUJzwoTpTaCNHpCWMHgx6h9nFGQcTjlpQzIAfFwCSJrfP4q4Ay8ku7bXigaxhDt 9NQE4YYqQffIA63xznf2hKUckNJqtKmOC4LFJKHDWg7VdX1CslYpXOIG4HVYklaO 1RxjOvOPCTUZ/xF86h+M34keRXZaJcoUlnDvhmPLxO5nmZFrYX5A5aARafeDAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUO5kMfVblvOSrpNftxa278VK1LgcwHwYDVR0j BBgwFoAUzyFM3txYSzsBD8Om0NPbiXIZtZQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjg1MjA5Ny8wL0NGMjE0Q0RFREM1ODRCM0IwMTBGQzNBNkQwRDNE Qjg5NzIxOUI1OTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3MjE5QjU5NC5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3NDU2MDE0Mjg1MjA5Ny8wLzMxMzgzMDJlMzcz ODJlMzEzOTMyMmUzMDJmMzEzODJkMzIzNDIwM2QzZTIwMzEzNzM0MzIzOS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEBrROwDANBgkqhkiG9w0BAQsFAAOCAQEAJwiJCs1V9hLJamqpewZOGVCp JoN5Lm4LSOmfFmGRYm5o8GbZ3ROUGlxpwfxKdpRat5fk8gy6b9fIJ6ag7Qvscq4+ Ek2Yz6FzHoIAv6H2109jnjKsU/1KVUccIwBRSdtinfDq/sHpm5tdORgAGR1k+5S3 L+JVIY8mJHVFCXkdbBroCISfbw5ncXq5R9zs3JpZq3bI0ZcY3ZU5uN8fDYqTZXke T8x/t9hBAxm2mJ55RVhQbpMvCjfb1Ec/8FIeI/euv/9EUrDew8cwZno5ghjuMLoH 8XH5+znXNpMSBtohRRjRh6gaqxhGrNviNbEFo3qOSz8YfjE94aqb2YNZRUrbIA== -----END CERTIFICATE-----Generated at Mon Apr 13 15:19:24 2026 by rpki-client