$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142852097/0/3231392e3233372e3139322e302f31382d3234203d3e203137343239.roa File: 3231392e3233372e3139322e302f31382d3234203d3e203137343239.roa (raw, json) Hash identifier: 4AWfv6zKcYFSsnl0tm3zcHLw7YN4z3RSZQpJDL/gnPI= Subject key identifier: 76:FE:AF:86:17:C5:16:FD:34:DD:32:1F:5A:4D:E4:0C:3B:59:1D:E9 Certificate issuer: /CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Certificate serial: 4F1B04E7D2AA7C567ABBEC433FBF943C0505B7F0 Authority key identifier: CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/3231392e3233372e3139322e302f31382d3234203d3e203137343239.roa Signing time: Mon 13 Apr 2026 03:36:03 +0000 ROA not before: Mon 13 Apr 2026 03:31:03 +0000 ROA not after: Mon 12 Apr 2027 03:36:03 +0000 asID: 17429 IP address blocks: 219.237.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 04:55:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:1b:04:e7:d2:aa:7c:56:7a:bb:ec:43:3f:bf:94:3c:05:05:b7:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Validity Not Before: Apr 13 03:31:03 2026 GMT Not After : Apr 12 03:36:03 2027 GMT Subject: CN=76FEAF8617C516FD34DD321F5A4DE40C3B591DE9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:93:8b:d5:19:a0:cb:39:9d:ec:71:ed:89:ff: c4:37:3e:75:b1:75:54:33:db:f3:f5:e5:7f:35:cf: 5f:4b:dd:6f:5a:83:bd:22:63:40:7e:df:7e:ae:bc: 68:52:0c:70:74:e1:89:82:80:df:a5:2d:ab:92:bc: 1c:c7:fe:bd:76:cc:2b:fa:94:34:1a:24:7c:38:18: 0a:18:60:f1:4d:4a:28:1f:9f:9f:be:8e:0e:2e:0f: f6:1f:73:17:23:1b:44:4f:f9:21:fb:9d:71:a0:81: dc:37:41:9b:27:4d:b6:00:61:7d:8d:55:08:00:93: e2:6e:d2:51:2e:9d:77:0e:66:b2:33:1b:5b:a5:8d: 21:79:24:88:53:77:9f:a6:d2:bc:c7:51:23:b2:6d: 79:34:de:19:de:20:f3:99:0f:73:31:d9:da:ba:b7: 45:bd:52:c0:78:f5:8b:44:10:7a:59:d3:09:88:1f: 58:bc:3e:74:6d:a7:ad:0b:46:ce:3c:f6:dc:b2:21: 9d:ee:26:de:0c:54:c1:da:3a:79:0f:1d:db:b0:b9: 5a:c9:84:cc:83:e5:81:2f:6c:a5:85:3e:15:b5:bc: e9:b2:55:cb:ff:ee:6c:70:95:83:cb:5d:91:bb:12: 61:13:c3:ba:5a:74:4b:31:85:f2:47:ab:2c:dc:fb: 0c:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:FE:AF:86:17:C5:16:FD:34:DD:32:1F:5A:4D:E4:0C:3B:59:1D:E9 X509v3 Authority Key Identifier: keyid:CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/3231392e3233372e3139322e302f31382d3234203d3e203137343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 219.237.192.0/18 Signature Algorithm: sha256WithRSAEncryption 74:0c:1b:4f:f4:32:e9:37:84:ba:c9:5c:58:82:2f:71:33:a0: eb:f9:a4:3c:a6:ad:4b:90:bf:7d:62:7c:bb:c3:52:58:fd:4e: 64:9c:74:78:5b:e8:c0:82:84:f0:42:fc:22:34:29:aa:0c:54: 78:6c:d8:f7:60:4a:91:96:dc:ae:86:3f:86:38:1c:04:6f:21: 9a:ec:5e:09:c5:a6:7f:9b:12:24:47:58:d3:18:ca:8a:1c:5b: b4:74:e1:78:1a:f4:92:b6:57:c9:cc:60:8d:41:d6:0e:92:0a: 6a:3e:ea:86:47:16:91:00:25:9b:cb:74:f9:25:72:7b:4d:e6: ac:f7:d3:66:1c:f1:67:7d:e3:0f:d3:4b:28:69:eb:50:cc:43: 97:e7:1a:7d:2c:fa:68:9a:d7:03:f3:67:b7:95:dc:b1:cf:e0: 81:59:c3:38:20:b7:1e:56:f3:1d:cb:e7:b7:06:54:a0:14:ba: ab:0a:33:99:da:be:ed:d0:bc:eb:d0:68:ba:76:f6:92:be:a8: 8c:e4:97:e6:08:08:c1:af:46:e2:8c:03:47:cc:d5:37:f4:f2: 7d:08:31:ad:a8:0c:35:5b:29:db:83:4f:1c:4f:da:fe:58:97: 56:23:58:41:4c:bf:53:65:e8:88:96:d7:b5:d9:b5:b6:e9:17: 9e:f8:58:cf -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUTxsE59KqfFZ6u+xDP7+UPAUFt/AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3 MjE5QjU5NDAeFw0yNjA0MTMwMzMxMDNaFw0yNzA0MTIwMzM2MDNaMDMxMTAvBgNV BAMTKDc2RkVBRjg2MTdDNTE2RkQzNEREMzIxRjVBNERFNDBDM0I1OTFERTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9k4vVGaDLOZ3sce2J/8Q3PnWx dVQz2/P15X81z19L3W9ag70iY0B+336uvGhSDHB04YmCgN+lLauSvBzH/r12zCv6 lDQaJHw4GAoYYPFNSigfn5++jg4uD/YfcxcjG0RP+SH7nXGggdw3QZsnTbYAYX2N VQgAk+Ju0lEunXcOZrIzG1uljSF5JIhTd5+m0rzHUSOybXk03hneIPOZD3Mx2dq6 t0W9UsB49YtEEHpZ0wmIH1i8PnRtp60LRs489tyyIZ3uJt4MVMHaOnkPHduwuVrJ hMyD5YEvbKWFPhW1vOmyVcv/7mxwlYPLXZG7EmETw7padEsxhfJHqyzc+wwBAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUdv6vhhfFFv003TIfWk3kDDtZHekwHwYDVR0j BBgwFoAUzyFM3txYSzsBD8Om0NPbiXIZtZQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjg1MjA5Ny8wL0NGMjE0Q0RFREM1ODRCM0IwMTBGQzNBNkQwRDNE Qjg5NzIxOUI1OTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3MjE5QjU5NC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzQ1NjAxNDI4NTIwOTcvMC8zMjMxMzkyZTMy MzMzNzJlMzEzOTMyMmUzMDJmMzEzODJkMzIzNDIwM2QzZTIwMzEzNzM0MzIzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEBtvtwDANBgkqhkiG9w0BAQsFAAOCAQEAdAwbT/Qy6TeEuslcWIIv cTOg6/mkPKatS5C/fWJ8u8NSWP1OZJx0eFvowIKE8EL8IjQpqgxUeGzY92BKkZbc roY/hjgcBG8hmuxeCcWmf5sSJEdY0xjKihxbtHTheBr0krZXycxgjUHWDpIKaj7q hkcWkQAlm8t0+SVye03mrPfTZhzxZ33jD9NLKGnrUMxDl+cafSz6aJrXA/Nnt5Xc sc/ggVnDOCC3HlbzHcvntwZUoBS6qwozmdq+7dC869Bounb2kr6ojOSX5ggIwa9G 4owDR8zVN/TyfQgxragMNVsp24NPHE/a/liXViNYQUy/U2XoiJbXtdm1tukXnvhY zw== -----END CERTIFICATE-----Generated at Mon Apr 13 13:54:29 2026 by rpki-client