$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3231382e3234392e3135322e302f32322d3232203d3e2034383038.roa File: 3231382e3234392e3135322e302f32322d3232203d3e2034383038.roa (raw, json) Hash identifier: ABVWx1ZWx2cOGLy5P9P4e92AKVazzYyi2hr+XLM1sic= Subject key identifier: 84:23:68:44:5A:E0:5B:B3:DF:38:73:F2:B0:B0:9C:A1:1E:46:59:6D Certificate issuer: /CN=AE487B72C4F38EA548F6721BB60B773705BD9515 Certificate serial: 5B6626869E0403CDB824DC52244E4773FD126D71 Authority key identifier: AE:48:7B:72:C4:F3:8E:A5:48:F6:72:1B:B6:0B:77:37:05:BD:95:15 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3231382e3234392e3135322e302f32322d3232203d3e2034383038.roa Signing time: Tue 21 Apr 2026 06:26:42 +0000 ROA not before: Tue 21 Apr 2026 06:21:42 +0000 ROA not after: Tue 20 Apr 2027 06:26:42 +0000 asID: 4808 IP address blocks: 218.249.152.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 00:03:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:66:26:86:9e:04:03:cd:b8:24:dc:52:24:4e:47:73:fd:12:6d:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AE487B72C4F38EA548F6721BB60B773705BD9515 Validity Not Before: Apr 21 06:21:42 2026 GMT Not After : Apr 20 06:26:42 2027 GMT Subject: CN=842368445AE05BB3DF3873F2B0B09CA11E46596D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:78:8c:e2:0a:e5:64:56:88:52:7f:62:b3:24: 10:b0:da:2a:98:99:36:ec:bd:e4:9e:30:02:05:5a: ed:61:12:6c:d8:b9:f5:6c:0e:fd:71:3d:92:c2:ed: 16:35:4c:68:bc:04:8c:b2:4e:6d:43:91:02:c4:1f: 02:db:16:ff:74:2a:81:ba:f9:0d:57:55:ab:90:4d: 4a:c6:4f:eb:4c:ba:c4:30:55:93:31:0f:f1:c6:d2: c3:54:e7:4f:6a:39:a2:f2:cb:70:97:ca:9b:00:34: 2b:49:89:83:04:e7:34:19:c1:c6:85:db:d3:88:cf: 1a:52:bc:b8:0b:59:e2:ed:68:c5:68:61:da:5d:7e: 32:7c:69:6e:b7:34:37:68:b9:66:11:a3:9e:81:c0: 66:72:4d:de:1c:f7:b8:b1:52:ea:39:15:45:3c:73: 89:cf:9e:c0:c9:70:02:7d:fb:d3:c9:b8:18:07:32: ff:bc:45:2d:05:d0:cd:e3:f4:f5:3b:ab:15:2a:61: c2:49:df:cd:90:7e:36:5e:29:cf:aa:b9:ca:4e:fb: 0e:0e:1f:5f:f1:ca:6f:76:0b:61:d9:cc:78:20:83: 15:c5:18:bc:ba:b0:ff:40:0b:37:93:53:41:41:c0: fe:d5:b6:19:de:86:9c:93:30:3d:9b:ac:e7:39:d7: 52:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:23:68:44:5A:E0:5B:B3:DF:38:73:F2:B0:B0:9C:A1:1E:46:59:6D X509v3 Authority Key Identifier: keyid:AE:48:7B:72:C4:F3:8E:A5:48:F6:72:1B:B6:0B:77:37:05:BD:95:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3231382e3234392e3135322e302f32322d3232203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 218.249.152.0/22 Signature Algorithm: sha256WithRSAEncryption 0f:4d:11:72:21:e6:4f:78:c8:8b:5d:eb:a0:de:d3:d5:d8:be: a0:5a:1c:40:b1:64:55:1d:ab:0e:e9:21:c9:ca:1b:09:b3:20: ed:ee:c2:9a:84:92:3e:91:c9:bd:c4:28:44:03:e1:f9:4c:a4: f9:d2:62:9c:6c:6f:0b:52:74:14:b4:e0:a9:35:1f:7e:49:53: c2:78:6b:9d:7f:b1:20:3b:6e:77:ed:8c:cd:6f:4e:5d:30:f2: 0a:74:72:60:6b:dc:96:9b:76:3d:1c:7c:84:04:dd:86:29:ee: b8:c1:ac:a3:21:c1:af:0d:81:c0:d1:d6:b4:be:5e:e2:4d:be: fc:e7:90:59:4c:d5:4d:c3:6c:29:f2:cd:30:58:ab:f0:57:81: 64:2b:6d:fe:65:c7:c8:5b:b0:67:8b:ca:f8:78:5d:87:66:86: eb:f9:13:9b:22:4f:58:d1:aa:da:c8:a2:a4:19:3f:c8:1d:dd: 63:5d:56:16:33:4c:af:ee:f4:23:5b:3e:eb:d5:7b:a2:22:5a: 72:7e:c8:b1:e8:90:f6:94:f8:f7:65:e1:ba:88:06:02:8c:d1: a1:98:6f:7a:08:6b:3d:0c:34:0e:81:34:17:34:da:77:2a:e9: cc:5b:d9:96:27:6c:43:79:b6:ef:8d:98:6d:c2:13:7a:dd:1f: 7b:9a:19:6c -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUW2Ymhp4EA824JNxSJE5Hc/0SbXEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUU0ODdCNzJDNEYzOEVBNTQ4RjY3MjFCQjYwQjc3Mzcw NUJEOTUxNTAeFw0yNjA0MjEwNjIxNDJaFw0yNzA0MjAwNjI2NDJaMDMxMTAvBgNV BAMTKDg0MjM2ODQ0NUFFMDVCQjNERjM4NzNGMkIwQjA5Q0ExMUU0NjU5NkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCMeIziCuVkVohSf2KzJBCw2iqY mTbsveSeMAIFWu1hEmzYufVsDv1xPZLC7RY1TGi8BIyyTm1DkQLEHwLbFv90KoG6 +Q1XVauQTUrGT+tMusQwVZMxD/HG0sNU509qOaLyy3CXypsANCtJiYME5zQZwcaF 29OIzxpSvLgLWeLtaMVoYdpdfjJ8aW63NDdouWYRo56BwGZyTd4c97ixUuo5FUU8 c4nPnsDJcAJ9+9PJuBgHMv+8RS0F0M3j9PU7qxUqYcJJ382QfjZeKc+qucpO+w4O H1/xym92C2HZzHgggxXFGLy6sP9ACzeTU0FBwP7VthnehpyTMD2brOc511KxAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUhCNoRFrgW7PfOHPysLCcoR5GWW0wHwYDVR0j BBgwFoAUrkh7csTzjqVI9nIbtgt3NwW9lRUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0Nzk0MzkzOS8wL0FFNDg3QjcyQzRGMzhFQTU0OEY2NzIxQkI2MEI3 NzM3MDVCRDk1MTUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQUU0ODdCNzJDNEYzOEVBNTQ4RjY3MjFCQjYwQjc3MzcwNUJEOTUxNS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3NjE5OTk0Nzk0MzkzOS8wLzMyMzEzODJlMzIz NDM5MmUzMTM1MzIyZTMwMmYzMjMyMmQzMjMyMjAzZDNlMjAzNDM4MzAzOC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAtr5mDANBgkqhkiG9w0BAQsFAAOCAQEAD00RciHmT3jIi13roN7T1di+ oFocQLFkVR2rDukhycobCbMg7e7CmoSSPpHJvcQoRAPh+Uyk+dJinGxvC1J0FLTg qTUffklTwnhrnX+xIDtud+2MzW9OXTDyCnRyYGvclpt2PRx8hATdhinuuMGsoyHB rw2BwNHWtL5e4k2+/OeQWUzVTcNsKfLNMFir8FeBZCtt/mXHyFuwZ4vK+Hhdh2aG 6/kTmyJPWNGq2siipBk/yB3dY11WFjNMr+70I1s+69V7oiJacn7IseiQ9pT492Xh uogGAozRoZhveghrPQw0DoE0FzTadyrpzFvZlidsQ3m2742YbcITet0fe5oZbA== -----END CERTIFICATE-----Generated at Mon Apr 27 14:21:13 2026 by rpki-client