$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142852097/0/3231382e3234362e39362e302f32302d3234203d3e203137343239.roa File: 3231382e3234362e39362e302f32302d3234203d3e203137343239.roa (raw, json) Hash identifier: lJ5T/G5oT6HrDt8NwR9syeF1jOFT2OWF6HH5PP/yT7Y= Subject key identifier: C5:0D:0D:F3:82:2C:08:43:9C:E4:6F:CB:80:7C:94:A0:CD:AB:E6:47 Certificate issuer: /CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Certificate serial: 53D5EACA61B2D07AC42A0B1408602A50CF0CEA68 Authority key identifier: CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/3231382e3234362e39362e302f32302d3234203d3e203137343239.roa Signing time: Mon 13 Apr 2026 03:36:03 +0000 ROA not before: Mon 13 Apr 2026 03:31:03 +0000 ROA not after: Mon 12 Apr 2027 03:36:03 +0000 asID: 17429 IP address blocks: 218.246.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 04:55:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:d5:ea:ca:61:b2:d0:7a:c4:2a:0b:14:08:60:2a:50:cf:0c:ea:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Validity Not Before: Apr 13 03:31:03 2026 GMT Not After : Apr 12 03:36:03 2027 GMT Subject: CN=C50D0DF3822C08439CE46FCB807C94A0CDABE647 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:1c:ff:62:ae:a6:8f:8c:bb:a9:05:69:0d:80: 87:d8:59:d0:fd:3a:41:04:20:ee:b4:92:23:e0:1e: 5e:a6:d4:43:e2:f7:29:3a:11:6f:74:85:0c:f2:c1: 66:d0:71:11:1b:57:a0:c0:75:a7:6b:78:91:ba:37: d1:81:4f:47:d4:e5:20:06:96:37:6d:92:00:67:c3: a7:4c:46:0c:20:b7:83:bc:da:8a:e5:2c:04:9d:40: 1f:43:62:57:38:ff:63:b6:9b:42:6d:07:0b:71:2d: 05:e0:25:97:84:1f:5c:ef:9a:0f:81:36:28:06:15: 87:b1:be:53:05:33:ab:90:aa:24:51:62:4e:5e:f7: 85:3b:a5:89:94:0b:3a:e5:ef:fe:84:62:40:98:fc: d1:00:0a:be:06:9e:0e:87:07:d5:42:eb:d8:e3:42: fd:19:3d:f0:e8:68:77:0c:92:d8:02:3d:41:71:ae: ec:95:71:2d:ab:7a:3c:e6:2e:6c:c7:4f:ac:7b:a4: 78:83:0d:c3:d4:64:23:ae:20:30:5e:aa:96:c4:3f: 33:73:52:4e:5e:73:65:79:33:e9:c9:49:81:28:31: c0:ac:2e:64:d2:98:87:bd:1e:56:df:22:b3:e8:ab: 21:77:9a:f9:78:d5:35:55:8f:a5:de:d5:24:20:ef: f2:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:0D:0D:F3:82:2C:08:43:9C:E4:6F:CB:80:7C:94:A0:CD:AB:E6:47 X509v3 Authority Key Identifier: keyid:CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/3231382e3234362e39362e302f32302d3234203d3e203137343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 218.246.96.0/20 Signature Algorithm: sha256WithRSAEncryption 3e:ae:8b:17:cd:78:d1:90:b5:1d:c3:71:02:e9:3a:e0:71:cb: f4:17:ee:a4:b4:6d:e9:7f:54:d9:62:b2:5c:8a:65:25:41:f9: ba:42:c4:4f:d5:1c:ba:25:ee:8a:6b:51:f6:99:11:be:fc:32: 86:b9:c2:43:25:72:fd:df:65:7b:a5:31:34:15:ce:fb:d4:23: cf:60:30:e4:b7:23:c1:02:ac:0a:1e:c3:c2:a1:bb:1f:f3:03: df:9f:db:61:1c:95:f5:4f:45:96:11:dd:c2:c1:4a:5c:52:c4: 6b:3b:93:07:1e:3a:61:e3:6c:86:50:af:15:45:68:ef:0e:71: 86:6d:3f:e7:ec:12:53:d0:3b:b5:61:ab:89:d9:74:92:31:7f: 4e:c8:44:2f:43:87:44:53:7d:84:8d:cd:19:a9:ce:61:8b:1b: 3e:57:cd:15:ae:2e:d9:ab:29:60:44:b3:54:be:32:75:fd:8d: a7:81:93:6d:1d:ee:46:7f:6e:6f:5b:52:6e:d5:fd:12:e7:35: 84:9e:79:61:06:2f:38:8d:13:58:5d:db:d0:a8:6c:f5:76:bb: d8:51:64:bf:8c:7d:f2:63:79:b8:60:11:d6:23:e5:a8:e6:6b: 1c:54:9e:1b:4b:72:0c:87:a9:f2:bc:1e:86:24:1c:f2:7b:4a: 37:69:3c:bd -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUU9XqymGy0HrEKgsUCGAqUM8M6mgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3 MjE5QjU5NDAeFw0yNjA0MTMwMzMxMDNaFw0yNzA0MTIwMzM2MDNaMDMxMTAvBgNV BAMTKEM1MEQwREYzODIyQzA4NDM5Q0U0NkZDQjgwN0M5NEEwQ0RBQkU2NDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpHP9irqaPjLupBWkNgIfYWdD9 OkEEIO60kiPgHl6m1EPi9yk6EW90hQzywWbQcREbV6DAdadreJG6N9GBT0fU5SAG ljdtkgBnw6dMRgwgt4O82orlLASdQB9DYlc4/2O2m0JtBwtxLQXgJZeEH1zvmg+B NigGFYexvlMFM6uQqiRRYk5e94U7pYmUCzrl7/6EYkCY/NEACr4Gng6HB9VC69jj Qv0ZPfDoaHcMktgCPUFxruyVcS2rejzmLmzHT6x7pHiDDcPUZCOuIDBeqpbEPzNz Uk5ec2V5M+nJSYEoMcCsLmTSmIe9HlbfIrPoqyF3mvl41TVVj6Xe1SQg7/KTAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUxQ0N84IsCEOc5G/LgHyUoM2r5kcwHwYDVR0j BBgwFoAUzyFM3txYSzsBD8Om0NPbiXIZtZQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjg1MjA5Ny8wL0NGMjE0Q0RFREM1ODRCM0IwMTBGQzNBNkQwRDNE Qjg5NzIxOUI1OTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3MjE5QjU5NC5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3NDU2MDE0Mjg1MjA5Ny8wLzMyMzEzODJlMzIz NDM2MmUzOTM2MmUzMDJmMzIzMDJkMzIzNDIwM2QzZTIwMzEzNzM0MzIzOS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEBNr2YDANBgkqhkiG9w0BAQsFAAOCAQEAPq6LF8140ZC1HcNxAuk64HHL 9BfupLRt6X9U2WKyXIplJUH5ukLET9UcuiXuimtR9pkRvvwyhrnCQyVy/d9le6Ux NBXO+9Qjz2Aw5LcjwQKsCh7DwqG7H/MD35/bYRyV9U9FlhHdwsFKXFLEazuTBx46 YeNshlCvFUVo7w5xhm0/5+wSU9A7tWGridl0kjF/TshEL0OHRFN9hI3NGanOYYsb PlfNFa4u2aspYESzVL4ydf2Np4GTbR3uRn9ub1tSbtX9Euc1hJ55YQYvOI0TWF3b 0Khs9Xa72FFkv4x98mN5uGAR1iPlqOZrHFSeG0tyDIep8rwehiQc8ntKN2k8vQ== -----END CERTIFICATE-----Generated at Mon Apr 13 15:20:54 2026 by rpki-client