$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142852097/0/3231382e3234362e3131322e302f32302d3234203d3e203137343239.roa File: 3231382e3234362e3131322e302f32302d3234203d3e203137343239.roa (raw, json) Hash identifier: 7diLkqZcbvY7aB2MKx6wgKnQfJXF7niZjC+9htwOBF0= Subject key identifier: 0F:5F:ED:DB:53:C1:33:35:BD:0D:AD:12:88:0C:6E:15:7B:4F:CE:05 Certificate issuer: /CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Certificate serial: 07ABE472112EB684B838AC83744B9C20D5D220D6 Authority key identifier: CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/3231382e3234362e3131322e302f32302d3234203d3e203137343239.roa Signing time: Mon 13 Apr 2026 03:36:02 +0000 ROA not before: Mon 13 Apr 2026 03:31:02 +0000 ROA not after: Mon 12 Apr 2027 03:36:02 +0000 asID: 17429 IP address blocks: 218.246.112.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 04:55:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:ab:e4:72:11:2e:b6:84:b8:38:ac:83:74:4b:9c:20:d5:d2:20:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Validity Not Before: Apr 13 03:31:02 2026 GMT Not After : Apr 12 03:36:02 2027 GMT Subject: CN=0F5FEDDB53C13335BD0DAD12880C6E157B4FCE05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:94:eb:20:f6:75:a4:42:c9:dd:d9:97:e9:bf: 24:ec:ac:00:2b:cb:b1:37:f6:ce:eb:08:85:4d:c8: 5c:ec:92:3f:e6:3a:fd:f2:c6:f2:dc:87:8d:5a:73: e5:63:af:5c:9c:cb:cd:dd:6b:69:c0:09:ba:86:26: 93:71:9b:68:01:4f:18:94:b9:65:95:8a:6d:e8:9c: 5b:de:a9:7e:61:eb:9d:32:76:d6:44:18:2a:4d:c6: 36:56:55:8c:87:bb:ea:37:bd:a6:ed:bc:5c:76:a1: 23:c0:fd:aa:f5:06:39:75:18:45:10:7a:8f:59:6f: 6d:e9:71:af:37:23:f8:bc:d7:04:dc:9c:45:be:74: 63:b1:07:62:73:56:5c:bb:78:5f:c1:2d:56:8b:99: ae:ac:72:68:d2:74:3a:37:f7:45:64:ab:f1:88:49: 1a:9e:2b:69:52:97:71:00:62:6a:9e:28:d7:1f:8c: 5a:1f:a4:4a:1a:92:96:e7:55:91:e1:0a:84:b3:75: e0:19:0d:4f:61:1c:3e:48:92:e3:82:b9:a1:bb:0f: a6:39:62:f7:24:03:e6:92:60:8b:74:58:7d:59:8d: 65:19:2f:0f:36:a3:2a:07:16:bb:39:29:f4:ff:83: e0:11:d3:aa:d5:09:49:6c:cf:b6:2f:55:eb:b7:4d: 8c:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:5F:ED:DB:53:C1:33:35:BD:0D:AD:12:88:0C:6E:15:7B:4F:CE:05 X509v3 Authority Key Identifier: keyid:CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/3231382e3234362e3131322e302f32302d3234203d3e203137343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 218.246.112.0/20 Signature Algorithm: sha256WithRSAEncryption 11:12:92:e3:ea:df:38:0b:bd:d2:95:da:0a:fa:e3:e8:ae:43: 39:91:8f:d0:5b:f8:a5:c9:53:5b:65:5f:69:01:27:fd:2c:e4: db:46:07:93:24:9f:39:2a:ff:d4:e0:3a:ae:26:38:80:7b:51: a7:0e:53:5f:1a:15:8a:bb:a0:85:29:4f:e0:0c:37:f4:f3:d5: cd:f9:9f:84:2a:80:17:e1:48:08:99:7d:c3:f2:b9:39:e5:06: b1:24:e5:fb:2b:57:85:b1:03:b1:0f:13:e7:64:6d:02:e4:99: 1e:88:a8:00:40:f7:10:b2:56:9f:07:5f:25:11:8f:63:fe:86: 65:86:dc:2b:be:9e:64:43:59:93:25:12:47:8e:6f:4c:b8:3b: b7:fb:a3:53:4b:af:fe:09:f6:cb:c9:04:62:5c:0b:0a:5f:46: 27:59:f1:06:55:a8:40:5a:b5:26:66:94:e1:56:ff:0e:8e:f8: bc:fe:eb:81:76:3d:a1:0e:50:e3:ce:2a:5a:2b:66:88:43:fa: cc:84:06:d6:40:b9:e0:45:97:1d:e9:3a:8c:ed:24:1f:fd:93: 3f:5d:a2:2b:01:ec:f6:e4:a9:84:2b:d8:d3:05:04:b4:07:2a: fc:92:0c:76:7c:05:fb:b2:ef:5d:e5:04:5a:30:0a:c6:da:53: 14:13:bf:4c -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUB6vkchEutoS4OKyDdEucINXSINYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3 MjE5QjU5NDAeFw0yNjA0MTMwMzMxMDJaFw0yNzA0MTIwMzM2MDJaMDMxMTAvBgNV BAMTKDBGNUZFRERCNTNDMTMzMzVCRDBEQUQxMjg4MEM2RTE1N0I0RkNFMDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdlOsg9nWkQsnd2ZfpvyTsrAAr y7E39s7rCIVNyFzskj/mOv3yxvLch41ac+Vjr1ycy83da2nACbqGJpNxm2gBTxiU uWWVim3onFveqX5h650ydtZEGCpNxjZWVYyHu+o3vabtvFx2oSPA/ar1Bjl1GEUQ eo9Zb23pca83I/i81wTcnEW+dGOxB2JzVly7eF/BLVaLma6scmjSdDo390Vkq/GI SRqeK2lSl3EAYmqeKNcfjFofpEoakpbnVZHhCoSzdeAZDU9hHD5IkuOCuaG7D6Y5 YvckA+aSYIt0WH1ZjWUZLw82oyoHFrs5KfT/g+AR06rVCUlsz7YvVeu3TYw3AgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUD1/t21PBMzW9Da0SiAxuFXtPzgUwHwYDVR0j BBgwFoAUzyFM3txYSzsBD8Om0NPbiXIZtZQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjg1MjA5Ny8wL0NGMjE0Q0RFREM1ODRCM0IwMTBGQzNBNkQwRDNE Qjg5NzIxOUI1OTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3MjE5QjU5NC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzQ1NjAxNDI4NTIwOTcvMC8zMjMxMzgyZTMy MzQzNjJlMzEzMTMyMmUzMDJmMzIzMDJkMzIzNDIwM2QzZTIwMzEzNzM0MzIzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEBNr2cDANBgkqhkiG9w0BAQsFAAOCAQEAERKS4+rfOAu90pXaCvrj 6K5DOZGP0Fv4pclTW2VfaQEn/Szk20YHkySfOSr/1OA6riY4gHtRpw5TXxoVirug hSlP4Aw39PPVzfmfhCqAF+FICJl9w/K5OeUGsSTl+ytXhbEDsQ8T52RtAuSZHoio AED3ELJWnwdfJRGPY/6GZYbcK76eZENZkyUSR45vTLg7t/ujU0uv/gn2y8kEYlwL Cl9GJ1nxBlWoQFq1JmaU4Vb/Do74vP7rgXY9oQ5Q484qWitmiEP6zIQG1kC54EWX Hek6jO0kH/2TP12iKwHs9uSphCvY0wUEtAcq/JIMdnwF+7LvXeUEWjAKxtpTFBO/ TA== -----END CERTIFICATE-----Generated at Mon Apr 13 13:56:16 2026 by rpki-client