$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142852097/0/3231392e3233362e302e302f31382d3234203d3e203137343239.roa File: 3231392e3233362e302e302f31382d3234203d3e203137343239.roa (raw, json) Hash identifier: aLPqyyCr59h330q5DDsvLaQsZCMWpIqrxn9MuU95aIo= Subject key identifier: 7C:C1:7B:14:AD:00:DF:A1:70:4C:19:8C:B0:CE:36:13:97:06:16:2E Certificate issuer: /CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Certificate serial: 7E97B6676C930CEA221E279CFB162E2A83614581 Authority key identifier: CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/3231392e3233362e302e302f31382d3234203d3e203137343239.roa Signing time: Mon 13 Apr 2026 03:36:02 +0000 ROA not before: Mon 13 Apr 2026 03:31:02 +0000 ROA not after: Mon 12 Apr 2027 03:36:02 +0000 asID: 17429 IP address blocks: 219.236.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 04:55:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:97:b6:67:6c:93:0c:ea:22:1e:27:9c:fb:16:2e:2a:83:61:45:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Validity Not Before: Apr 13 03:31:02 2026 GMT Not After : Apr 12 03:36:02 2027 GMT Subject: CN=7CC17B14AD00DFA1704C198CB0CE36139706162E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:99:4f:c4:84:6c:f1:6e:fa:03:11:4c:01:fd: 59:72:82:f3:b9:b8:66:b9:b4:50:f0:c9:c0:a8:c4: 7a:2c:5d:62:60:d7:22:46:5e:60:e4:d1:fb:36:18: 3b:10:b1:0a:9b:4e:28:0d:7d:8a:6f:4d:b9:61:9a: 4b:c3:e0:85:93:51:b8:6f:de:1f:3a:55:78:e1:55: 56:06:f6:dc:ea:b1:5b:34:dd:16:6f:6e:e1:49:34: 11:05:82:4a:f7:56:b2:15:92:e6:e1:9c:3d:ff:fd: bb:1a:c0:87:3b:28:ea:da:cf:92:dc:38:6a:55:34: 53:af:e8:1d:d9:76:66:e8:fe:2b:53:23:e3:84:bc: e3:24:52:d1:11:7b:84:a9:42:94:95:c2:14:6f:45: 13:ae:d0:25:d6:7f:54:fc:d6:c1:82:06:2d:58:f1: e0:4c:3e:54:16:b9:b3:4f:e7:f1:d9:63:17:6c:a0: 18:5f:10:e5:cf:fe:7e:38:df:a5:6b:3a:b9:4d:60: e4:66:b2:b5:1f:06:7a:5f:0b:19:d1:c7:9c:9a:1f: 8e:9f:4c:54:fd:ad:ec:09:33:73:8e:01:dc:55:16: 64:e7:d2:91:1f:d7:d3:74:5d:e3:06:10:39:b7:53: 36:ed:79:8c:89:f1:f2:28:c1:08:b6:d3:51:d2:09: 35:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:C1:7B:14:AD:00:DF:A1:70:4C:19:8C:B0:CE:36:13:97:06:16:2E X509v3 Authority Key Identifier: keyid:CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/3231392e3233362e302e302f31382d3234203d3e203137343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 219.236.0.0/18 Signature Algorithm: sha256WithRSAEncryption b7:7d:a9:cf:de:52:3b:42:cf:f6:0c:1f:93:27:1f:9e:e0:3a: b0:0a:81:db:6e:0c:a2:58:fd:6e:d0:f2:b5:c3:d2:ae:84:04: 50:eb:38:b1:34:c1:fc:f7:75:1a:3f:b3:8a:86:e9:e4:08:12: 60:16:3e:87:50:70:74:34:78:e8:69:32:c5:5d:71:f3:2c:17: 1e:90:e2:e7:f4:30:e2:e2:e1:63:55:f0:7c:98:f1:28:32:a0: ae:e3:fc:23:a4:e6:79:3c:34:3b:1c:cb:1e:5f:44:cf:5a:7f: 07:30:94:93:ce:d7:82:f5:e2:58:7d:fd:3d:62:b4:c3:34:48: 28:40:34:01:3e:9d:a1:63:13:a0:5d:cf:25:f2:af:17:05:4d: dd:c8:63:fa:9e:4a:36:94:9b:77:d9:80:d6:ea:f8:1a:3e:a4: ee:16:08:cd:d2:26:c2:00:9b:53:c4:03:ac:a1:ec:45:08:97: f3:65:0c:5d:c5:04:7e:a6:cf:7a:33:13:bd:91:f5:1e:f7:d1: bd:a8:ab:7e:a8:93:4b:88:91:a5:8d:88:c0:57:96:32:f8:e5: 95:4d:c1:9d:40:67:a2:1c:84:76:b3:eb:7e:fd:31:09:67:87: a7:1d:8a:02:cd:c7:e5:ca:a4:66:d1:98:3b:9a:40:cc:ac:f7: f1:36:af:b6 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUfpe2Z2yTDOoiHiec+xYuKoNhRYEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3 MjE5QjU5NDAeFw0yNjA0MTMwMzMxMDJaFw0yNzA0MTIwMzM2MDJaMDMxMTAvBgNV BAMTKDdDQzE3QjE0QUQwMERGQTE3MDRDMTk4Q0IwQ0UzNjEzOTcwNjE2MkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6mU/EhGzxbvoDEUwB/VlygvO5 uGa5tFDwycCoxHosXWJg1yJGXmDk0fs2GDsQsQqbTigNfYpvTblhmkvD4IWTUbhv 3h86VXjhVVYG9tzqsVs03RZvbuFJNBEFgkr3VrIVkubhnD3//bsawIc7KOraz5Lc OGpVNFOv6B3Zdmbo/itTI+OEvOMkUtERe4SpQpSVwhRvRROu0CXWf1T81sGCBi1Y 8eBMPlQWubNP5/HZYxdsoBhfEOXP/n4436VrOrlNYORmsrUfBnpfCxnRx5yaH46f TFT9rewJM3OOAdxVFmTn0pEf19N0XeMGEDm3UzbteYyJ8fIowQi201HSCTUbAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUfMF7FK0A36FwTBmMsM42E5cGFi4wHwYDVR0j BBgwFoAUzyFM3txYSzsBD8Om0NPbiXIZtZQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjg1MjA5Ny8wL0NGMjE0Q0RFREM1ODRCM0IwMTBGQzNBNkQwRDNE Qjg5NzIxOUI1OTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3MjE5QjU5NC5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc0NTYwMTQyODUyMDk3LzAvMzIzMTM5MmUzMjMz MzYyZTMwMmUzMDJmMzEzODJkMzIzNDIwM2QzZTIwMzEzNzM0MzIzOS5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBtvsADANBgkqhkiG9w0BAQsFAAOCAQEAt32pz95SO0LP9gwfkycfnuA6sAqB 224Molj9btDytcPSroQEUOs4sTTB/Pd1Gj+ziobp5AgSYBY+h1BwdDR46GkyxV1x 8ywXHpDi5/Qw4uLhY1XwfJjxKDKgruP8I6TmeTw0OxzLHl9Ez1p/BzCUk87XgvXi WH39PWK0wzRIKEA0AT6doWMToF3PJfKvFwVN3chj+p5KNpSbd9mA1ur4Gj6k7hYI zdImwgCbU8QDrKHsRQiX82UMXcUEfqbPejMTvZH1HvfRvairfqiTS4iRpY2IwFeW MvjllU3BnUBnohyEdrPrfv0xCWeHpx2KAs3H5cqkZtGYO5pAzKz38Tavtg== -----END CERTIFICATE-----Generated at Mon Apr 13 12:24:11 2026 by rpki-client