$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142852097/0/3138302e37392e3139322e302f31382d3234203d3e203137343239.roa File: 3138302e37392e3139322e302f31382d3234203d3e203137343239.roa (raw, json) Hash identifier: XQ6hh97t4X+q4fZCloFGY/QRvEt669K9zLjS+QJ64Co= Subject key identifier: 43:CF:87:2D:A8:AC:D5:8F:75:8C:70:D7:23:01:25:F5:80:AF:7E:29 Certificate issuer: /CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Certificate serial: 76D6764BB50959AB9DD3648A5C4F7961251B6F72 Authority key identifier: CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/3138302e37392e3139322e302f31382d3234203d3e203137343239.roa Signing time: Mon 13 Apr 2026 03:31:36 +0000 ROA not before: Mon 13 Apr 2026 03:26:36 +0000 ROA not after: Mon 12 Apr 2027 03:31:36 +0000 asID: 17429 IP address blocks: 180.79.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 04:55:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:d6:76:4b:b5:09:59:ab:9d:d3:64:8a:5c:4f:79:61:25:1b:6f:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Validity Not Before: Apr 13 03:26:36 2026 GMT Not After : Apr 12 03:31:36 2027 GMT Subject: CN=43CF872DA8ACD58F758C70D7230125F580AF7E29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:07:0c:60:96:b1:c9:ff:01:1c:9f:c1:bd:3b: c3:0c:da:fc:69:92:e2:53:a0:cb:f6:03:5a:c8:42: 9d:72:64:8d:d8:30:5c:29:33:81:be:b3:c0:af:73: 33:b2:9b:d1:7c:3a:c3:56:3d:f4:6f:57:8c:98:e2: e8:98:bc:38:6b:00:b1:c8:c1:c1:4b:f6:85:6e:e9: da:6a:45:cf:2d:7d:99:6d:cc:bf:b4:38:2b:59:7f: 3e:cd:0b:85:32:ba:5e:0d:3e:fa:ab:27:d4:e4:42: 20:a1:1c:84:5e:b6:49:33:53:60:24:39:45:90:ce: 54:de:5d:ba:ac:0e:e2:69:23:07:84:6f:c0:33:c8: bc:68:46:1d:93:4f:c1:34:cd:0e:24:5e:5c:e3:1c: 1e:27:81:0d:ce:04:c9:fb:99:be:5f:6e:d4:42:59: 20:04:f0:31:63:53:cb:64:ee:3a:51:9d:56:a2:2a: 9e:60:fb:bf:1c:21:0e:a9:ce:6c:89:94:bf:2c:19: 5a:63:2f:82:aa:dc:75:12:b4:49:11:21:40:2c:65: 54:a1:05:96:bb:4f:ed:e0:54:bf:d8:6f:5a:57:ec: fc:bd:6c:c7:dd:09:5c:97:a5:39:4a:4a:17:eb:4f: 85:43:38:5b:f3:e6:e9:4a:bc:cb:a8:04:22:5a:a9: a0:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:CF:87:2D:A8:AC:D5:8F:75:8C:70:D7:23:01:25:F5:80:AF:7E:29 X509v3 Authority Key Identifier: keyid:CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/3138302e37392e3139322e302f31382d3234203d3e203137343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.79.192.0/18 Signature Algorithm: sha256WithRSAEncryption 2a:eb:01:e4:5a:0b:8c:93:fd:13:65:93:69:0b:b8:08:aa:8d: 2e:10:fe:a6:a2:81:2d:e2:d0:da:3d:c1:df:c0:93:d8:b1:55: 08:3a:03:97:7e:28:4a:38:4d:6c:0a:49:12:98:8e:9c:c7:50: 63:a4:34:0a:80:6c:7f:d6:cc:f5:0c:f7:01:b9:86:c8:20:59: 3a:b8:c1:1d:b6:b4:e2:27:7b:a8:6a:a1:21:12:58:bd:f5:6e: 2a:9e:4d:77:e5:08:94:ab:34:91:20:aa:ea:c7:52:47:fb:fd: 53:57:c0:99:29:e4:88:67:b5:3f:92:d1:ba:bc:fc:a5:bc:a3: c7:01:36:c3:ee:5a:65:2e:60:d4:74:63:09:96:21:6c:ee:d2: ff:57:eb:1b:71:b8:82:05:0f:cb:e3:bd:49:9f:41:ce:f7:8a: 13:f7:3c:9e:9f:7a:8d:9b:03:c3:bd:5d:86:0a:f0:76:79:50: 35:7d:45:73:91:fe:8e:58:bb:30:80:e3:98:52:a8:06:b7:4f: 1b:38:1a:c2:68:25:97:3c:36:8d:bc:80:45:52:35:e3:75:81: 7b:4d:59:68:17:3a:1a:31:f6:54:f8:47:9d:4e:d4:bc:d4:33: 34:b8:b0:4c:df:34:25:c2:74:82:ea:99:91:dd:c8:d9:88:23: 5e:e0:a0:83 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUdtZ2S7UJWaud02SKXE95YSUbb3IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3 MjE5QjU5NDAeFw0yNjA0MTMwMzI2MzZaFw0yNzA0MTIwMzMxMzZaMDMxMTAvBgNV BAMTKDQzQ0Y4NzJEQThBQ0Q1OEY3NThDNzBENzIzMDEyNUY1ODBBRjdFMjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/BwxglrHJ/wEcn8G9O8MM2vxp kuJToMv2A1rIQp1yZI3YMFwpM4G+s8CvczOym9F8OsNWPfRvV4yY4uiYvDhrALHI wcFL9oVu6dpqRc8tfZltzL+0OCtZfz7NC4Uyul4NPvqrJ9TkQiChHIRetkkzU2Ak OUWQzlTeXbqsDuJpIweEb8AzyLxoRh2TT8E0zQ4kXlzjHB4ngQ3OBMn7mb5fbtRC WSAE8DFjU8tk7jpRnVaiKp5g+78cIQ6pzmyJlL8sGVpjL4Kq3HUStEkRIUAsZVSh BZa7T+3gVL/Yb1pX7Py9bMfdCVyXpTlKShfrT4VDOFvz5ulKvMuoBCJaqaBnAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUQ8+HLais1Y91jHDXIwEl9YCvfikwHwYDVR0j BBgwFoAUzyFM3txYSzsBD8Om0NPbiXIZtZQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjg1MjA5Ny8wL0NGMjE0Q0RFREM1ODRCM0IwMTBGQzNBNkQwRDNE Qjg5NzIxOUI1OTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3MjE5QjU5NC5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3NDU2MDE0Mjg1MjA5Ny8wLzMxMzgzMDJlMzcz OTJlMzEzOTMyMmUzMDJmMzEzODJkMzIzNDIwM2QzZTIwMzEzNzM0MzIzOS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEBrRPwDANBgkqhkiG9w0BAQsFAAOCAQEAKusB5FoLjJP9E2WTaQu4CKqN LhD+pqKBLeLQ2j3B38CT2LFVCDoDl34oSjhNbApJEpiOnMdQY6Q0CoBsf9bM9Qz3 AbmGyCBZOrjBHba04id7qGqhIRJYvfVuKp5Nd+UIlKs0kSCq6sdSR/v9U1fAmSnk iGe1P5LRurz8pbyjxwE2w+5aZS5g1HRjCZYhbO7S/1frG3G4ggUPy+O9SZ9BzveK E/c8np96jZsDw71dhgrwdnlQNX1Fc5H+jli7MIDjmFKoBrdPGzgawmgllzw2jbyA RVI143WBe01ZaBc6GjH2VPhHnU7UvNQzNLiwTN80JcJ0guqZkd3I2YgjXuCggw== -----END CERTIFICATE-----Generated at Mon Apr 13 15:20:49 2026 by rpki-client