$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142852097/0/3231392e3233372e3132382e302f31392d3234203d3e203137343239.roa File: 3231392e3233372e3132382e302f31392d3234203d3e203137343239.roa (raw, json) Hash identifier: eGkm+Bm9OXGYBMnBjdYbXhGnEIwSqUqUSItIu2/r5ok= Subject key identifier: 40:98:89:38:18:13:54:B6:81:81:81:21:F8:D9:1B:42:20:F7:E2:81 Certificate issuer: /CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Certificate serial: 1A0FAB0BCBF28E4FFF0520FBEA84906BE886850B Authority key identifier: CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/3231392e3233372e3132382e302f31392d3234203d3e203137343239.roa Signing time: Mon 13 Apr 2026 03:36:02 +0000 ROA not before: Mon 13 Apr 2026 03:31:02 +0000 ROA not after: Mon 12 Apr 2027 03:36:02 +0000 asID: 17429 IP address blocks: 219.237.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 04:55:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:0f:ab:0b:cb:f2:8e:4f:ff:05:20:fb:ea:84:90:6b:e8:86:85:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Validity Not Before: Apr 13 03:31:02 2026 GMT Not After : Apr 12 03:36:02 2027 GMT Subject: CN=40988938181354B681818121F8D91B4220F7E281 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:c6:aa:a9:f4:8e:01:5a:6c:84:c8:09:41:66: de:20:f0:e1:c6:9a:bc:31:1a:ff:90:d2:1c:74:36: a4:d2:7b:e4:2d:04:1b:42:fb:a9:af:70:2e:86:3d: 63:25:43:ae:44:8b:61:8c:0d:07:67:2d:fd:eb:39: 1e:a8:01:fb:46:13:17:08:5a:7d:34:55:8d:1f:3b: ba:28:10:a3:7c:73:cb:90:cc:c5:ec:97:ff:36:7f: 58:0c:22:ed:be:d3:eb:9c:04:a1:86:74:0a:64:2f: fe:05:df:ea:09:3b:92:5e:e5:d1:13:93:4c:b9:b4: 58:8e:b0:e1:83:84:a8:c0:97:5d:86:d0:d3:11:d8: bb:8b:a7:5c:6c:26:e0:33:ae:a4:43:d0:50:b1:9e: be:a9:46:d4:35:e3:4d:ad:56:ff:45:1e:23:06:0b: e6:25:3b:18:50:40:7a:dc:8c:6d:64:46:43:99:fd: 67:3c:36:1b:ae:63:fc:61:05:47:b6:4a:3a:ca:b7: fa:68:5a:a6:17:f2:8d:62:20:17:88:8b:58:17:a0: 56:0d:7f:8a:8c:5a:2b:db:78:b5:2b:b0:bd:09:23: 93:49:fb:2b:b4:fd:fd:7b:a2:9c:36:2b:57:23:c7: 89:06:7c:ca:b7:9d:a1:2a:87:78:1f:a8:d2:b3:ce: 90:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:98:89:38:18:13:54:B6:81:81:81:21:F8:D9:1B:42:20:F7:E2:81 X509v3 Authority Key Identifier: keyid:CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/3231392e3233372e3132382e302f31392d3234203d3e203137343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 219.237.128.0/19 Signature Algorithm: sha256WithRSAEncryption 64:3a:0a:5e:e4:ce:c3:0f:00:8f:3b:ac:a0:42:e4:b6:1b:d0: 5b:9d:1b:5a:02:30:9d:a4:5c:14:fc:02:5d:b6:dc:e6:1c:45: db:b4:58:1a:35:12:f3:74:b3:8a:9d:43:fb:21:be:8f:76:f9: a3:dd:a6:f8:5d:16:48:2b:65:b4:5d:de:84:b4:e8:5b:ea:77: f4:33:3f:c0:2a:b7:27:76:2d:d7:fa:16:0f:f6:95:ce:d5:44: 30:34:8f:1b:bc:0a:cf:bf:eb:d5:b5:e5:54:6a:f7:84:5d:54: 2a:32:63:40:40:64:27:47:d4:9a:f2:3b:d4:eb:ea:52:65:bd: f7:43:e3:98:1f:fc:a3:72:60:01:ff:e0:0f:a6:1c:ff:a6:c1: 9e:70:99:53:b4:96:b4:6c:30:ee:23:37:c0:4a:5c:6c:57:fa: ff:bb:0c:bd:13:f0:1e:e6:9c:fe:e1:8a:a1:d7:e1:88:f1:c9: 72:58:9a:95:03:cc:f3:49:98:14:41:b3:12:99:f4:63:43:bd: 16:56:ef:9e:cd:70:15:f4:77:0a:72:e2:5c:f0:36:75:5b:bf: 82:71:d8:88:d3:72:d1:00:d9:f3:c8:4d:87:50:6a:ac:d0:22: ee:c2:eb:6b:b7:f3:e2:7a:0f:5b:ce:27:0d:f4:b7:59:5e:65: eb:9f:f8:41 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUGg+rC8vyjk//BSD76oSQa+iGhQswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3 MjE5QjU5NDAeFw0yNjA0MTMwMzMxMDJaFw0yNzA0MTIwMzM2MDJaMDMxMTAvBgNV BAMTKDQwOTg4OTM4MTgxMzU0QjY4MTgxODEyMUY4RDkxQjQyMjBGN0UyODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxxqqp9I4BWmyEyAlBZt4g8OHG mrwxGv+Q0hx0NqTSe+QtBBtC+6mvcC6GPWMlQ65Ei2GMDQdnLf3rOR6oAftGExcI Wn00VY0fO7ooEKN8c8uQzMXsl/82f1gMIu2+0+ucBKGGdApkL/4F3+oJO5Je5dET k0y5tFiOsOGDhKjAl12G0NMR2LuLp1xsJuAzrqRD0FCxnr6pRtQ1402tVv9FHiMG C+YlOxhQQHrcjG1kRkOZ/Wc8NhuuY/xhBUe2SjrKt/poWqYX8o1iIBeIi1gXoFYN f4qMWivbeLUrsL0JI5NJ+yu0/f17opw2K1cjx4kGfMq3naEqh3gfqNKzzpD7AgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUQJiJOBgTVLaBgYEh+NkbQiD34oEwHwYDVR0j BBgwFoAUzyFM3txYSzsBD8Om0NPbiXIZtZQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjg1MjA5Ny8wL0NGMjE0Q0RFREM1ODRCM0IwMTBGQzNBNkQwRDNE Qjg5NzIxOUI1OTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3MjE5QjU5NC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzQ1NjAxNDI4NTIwOTcvMC8zMjMxMzkyZTMy MzMzNzJlMzEzMjM4MmUzMDJmMzEzOTJkMzIzNDIwM2QzZTIwMzEzNzM0MzIzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEBdvtgDANBgkqhkiG9w0BAQsFAAOCAQEAZDoKXuTOww8AjzusoELk thvQW50bWgIwnaRcFPwCXbbc5hxF27RYGjUS83Szip1D+yG+j3b5o92m+F0WSCtl tF3ehLToW+p39DM/wCq3J3Yt1/oWD/aVztVEMDSPG7wKz7/r1bXlVGr3hF1UKjJj QEBkJ0fUmvI71OvqUmW990PjmB/8o3JgAf/gD6Yc/6bBnnCZU7SWtGww7iM3wEpc bFf6/7sMvRPwHuac/uGKodfhiPHJclialQPM80mYFEGzEpn0Y0O9Flbvns1wFfR3 CnLiXPA2dVu/gnHYiNNy0QDZ88hNh1BqrNAi7sLra7fz4noPW84nDfS3WV5l65/4 QQ== -----END CERTIFICATE-----Generated at Mon Apr 13 12:24:26 2026 by rpki-client