$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142852097/0/3231392e3233362e3132382e302f31382d3234203d3e203137343239.roa File: 3231392e3233362e3132382e302f31382d3234203d3e203137343239.roa (raw, json) Hash identifier: nLwTYpeYYbtSFkLwmqxA4QiCb9e5C9IqMTSx3qaC6mg= Subject key identifier: 7D:E1:D1:C3:A7:BF:2E:2D:FA:E9:76:36:56:5A:01:A1:C5:22:F0:81 Certificate issuer: /CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Certificate serial: 12B90EEA3147FF7A86D29D2E5D59D16B01C6D992 Authority key identifier: CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/3231392e3233362e3132382e302f31382d3234203d3e203137343239.roa Signing time: Mon 13 Apr 2026 03:36:02 +0000 ROA not before: Mon 13 Apr 2026 03:31:02 +0000 ROA not after: Mon 12 Apr 2027 03:36:02 +0000 asID: 17429 IP address blocks: 219.236.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 04:55:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:b9:0e:ea:31:47:ff:7a:86:d2:9d:2e:5d:59:d1:6b:01:c6:d9:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Validity Not Before: Apr 13 03:31:02 2026 GMT Not After : Apr 12 03:36:02 2027 GMT Subject: CN=7DE1D1C3A7BF2E2DFAE97636565A01A1C522F081 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:88:37:da:4b:4b:0a:38:9e:95:8c:0b:20:e0: f7:6a:85:08:3c:a9:51:d8:b4:4d:82:54:b9:f5:e1: ee:92:9d:47:e1:55:d5:7d:6e:c5:a8:4e:f8:86:32: 7e:71:60:18:f2:2b:f1:23:e9:33:f8:07:2d:43:e2: 42:ac:fe:cc:c0:4c:04:e8:19:73:1a:4e:78:0e:f4: bf:01:22:d7:3e:45:9c:64:47:03:a6:42:13:30:2e: 57:38:0e:1a:c5:5f:2c:29:57:72:a8:5a:06:23:ea: 9c:b4:6c:ae:ec:ab:91:89:61:d4:9b:12:d2:28:48: f9:28:9a:e8:05:8d:56:76:4b:95:ec:ce:a9:89:4c: 11:70:e0:34:8d:16:13:5e:ca:f6:5a:da:c4:b5:cd: 92:8d:66:1b:29:33:5e:11:64:37:b7:b0:25:88:9b: 33:1e:f8:50:e4:7c:4d:cd:89:9e:db:c8:90:ad:f5: fd:10:0f:c9:08:70:cf:49:81:f8:ad:a3:3e:3a:44: 80:85:d3:ee:92:32:a8:53:dc:fc:34:1a:d9:9c:99: db:f4:2e:44:fd:b9:84:1c:e9:fb:70:a3:1d:53:c0: 81:7f:96:52:85:56:c0:0c:b7:55:ac:ad:4e:d5:8f: 7f:7e:89:e5:46:5a:ba:37:b6:f3:ec:47:6a:10:96: 5b:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:E1:D1:C3:A7:BF:2E:2D:FA:E9:76:36:56:5A:01:A1:C5:22:F0:81 X509v3 Authority Key Identifier: keyid:CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/3231392e3233362e3132382e302f31382d3234203d3e203137343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 219.236.128.0/18 Signature Algorithm: sha256WithRSAEncryption bd:04:4a:44:1c:b8:17:a0:16:d6:7a:e1:ee:f0:36:02:5c:3d: d3:d2:f2:4b:19:2c:86:b0:71:c3:d0:88:7c:7e:05:c6:f1:70: 95:45:64:45:06:b2:d8:95:42:bf:c2:0b:0d:34:85:8d:00:78: 8a:35:97:b0:e8:32:8a:3e:d3:59:2b:5d:1e:85:c3:3c:23:70: 04:c7:dc:f7:59:c4:cb:d5:c7:12:a1:f8:aa:a5:fc:4c:12:ab: 67:be:00:3e:aa:7a:f4:8d:18:99:a6:d3:a9:de:3e:4e:8c:68: 9e:d8:b4:3b:12:bb:f2:09:d4:55:7a:8e:d2:5b:9b:40:5c:41: 74:d1:e7:a7:64:2b:ff:20:5d:5c:d0:22:4c:17:87:04:bf:38: 33:0c:23:f3:64:d1:3a:fc:62:ba:2b:f6:c2:63:b8:ab:c9:11: 7d:6b:36:be:9a:e3:f6:d0:ff:f3:7c:42:20:fd:90:af:4b:47: 66:cd:5d:78:ce:94:4d:42:c7:78:fb:1a:9d:0e:c1:8c:b4:b5: 72:0e:8a:bb:96:26:3e:b7:db:f8:99:aa:ad:17:6f:d4:fd:19: 49:50:38:d7:87:18:99:d8:4e:9b:f5:72:77:ce:54:e7:68:47: cf:13:54:09:fd:cf:7c:98:b7:b3:8f:bf:97:6c:83:ec:71:54: 02:d9:8a:e6 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUErkO6jFH/3qG0p0uXVnRawHG2ZIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3 MjE5QjU5NDAeFw0yNjA0MTMwMzMxMDJaFw0yNzA0MTIwMzM2MDJaMDMxMTAvBgNV BAMTKDdERTFEMUMzQTdCRjJFMkRGQUU5NzYzNjU2NUEwMUExQzUyMkYwODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChiDfaS0sKOJ6VjAsg4PdqhQg8 qVHYtE2CVLn14e6SnUfhVdV9bsWoTviGMn5xYBjyK/Ej6TP4By1D4kKs/szATATo GXMaTngO9L8BItc+RZxkRwOmQhMwLlc4DhrFXywpV3KoWgYj6py0bK7sq5GJYdSb EtIoSPkomugFjVZ2S5XszqmJTBFw4DSNFhNeyvZa2sS1zZKNZhspM14RZDe3sCWI mzMe+FDkfE3NiZ7byJCt9f0QD8kIcM9Jgfitoz46RICF0+6SMqhT3Pw0Gtmcmdv0 LkT9uYQc6ftwox1TwIF/llKFVsAMt1WsrU7Vj39+ieVGWro3tvPsR2oQllubAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUfeHRw6e/Li366XY2VloBocUi8IEwHwYDVR0j BBgwFoAUzyFM3txYSzsBD8Om0NPbiXIZtZQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjg1MjA5Ny8wL0NGMjE0Q0RFREM1ODRCM0IwMTBGQzNBNkQwRDNE Qjg5NzIxOUI1OTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3MjE5QjU5NC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzQ1NjAxNDI4NTIwOTcvMC8zMjMxMzkyZTMy MzMzNjJlMzEzMjM4MmUzMDJmMzEzODJkMzIzNDIwM2QzZTIwMzEzNzM0MzIzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEBtvsgDANBgkqhkiG9w0BAQsFAAOCAQEAvQRKRBy4F6AW1nrh7vA2 Alw909LySxkshrBxw9CIfH4FxvFwlUVkRQay2JVCv8ILDTSFjQB4ijWXsOgyij7T WStdHoXDPCNwBMfc91nEy9XHEqH4qqX8TBKrZ74APqp69I0YmabTqd4+Toxonti0 OxK78gnUVXqO0lubQFxBdNHnp2Qr/yBdXNAiTBeHBL84Mwwj82TROvxiuiv2wmO4 q8kRfWs2vprj9tD/83xCIP2Qr0tHZs1deM6UTULHePsanQ7BjLS1cg6Ku5YmPrfb +JmqrRdv1P0ZSVA414cYmdhOm/Vyd85U52hHzxNUCf3PfJi3s4+/l2yD7HFUAtmK 5g== -----END CERTIFICATE-----Generated at Mon Apr 13 13:54:29 2026 by rpki-client