$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3231382e3234392e3135372e302f32342d3234203d3e2034383038.roa File: 3231382e3234392e3135372e302f32342d3234203d3e2034383038.roa (raw, json) Hash identifier: ULiXq0P4h50y3yyc1tfBQzR6eeZAy2XuiYT7gOcjO/I= Subject key identifier: 19:C6:AD:83:7B:49:F1:16:83:94:6B:92:D4:F3:3A:E1:AC:20:79:E2 Certificate issuer: /CN=AE487B72C4F38EA548F6721BB60B773705BD9515 Certificate serial: 29BEEE9DE2F8D51E1B750C82B118682A3EDF3609 Authority key identifier: AE:48:7B:72:C4:F3:8E:A5:48:F6:72:1B:B6:0B:77:37:05:BD:95:15 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3231382e3234392e3135372e302f32342d3234203d3e2034383038.roa Signing time: Tue 21 Apr 2026 06:26:41 +0000 ROA not before: Tue 21 Apr 2026 06:21:41 +0000 ROA not after: Tue 20 Apr 2027 06:26:41 +0000 asID: 4808 IP address blocks: 218.249.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 00:03:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:be:ee:9d:e2:f8:d5:1e:1b:75:0c:82:b1:18:68:2a:3e:df:36:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AE487B72C4F38EA548F6721BB60B773705BD9515 Validity Not Before: Apr 21 06:21:41 2026 GMT Not After : Apr 20 06:26:41 2027 GMT Subject: CN=19C6AD837B49F11683946B92D4F33AE1AC2079E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:98:4e:b2:ee:17:bc:16:af:96:31:b1:d3:0a: f0:da:7c:06:b6:2d:80:65:50:b4:9f:da:f7:96:ae: a0:c7:a0:52:24:e6:d7:e9:7e:27:96:74:3e:11:76: e5:22:b2:92:f2:4f:13:b9:59:5c:c1:26:a6:a0:d8: f4:3c:f9:2c:3b:8e:4a:3a:e1:dc:47:59:5d:e9:a8: 73:2e:a6:de:1c:85:e5:d8:7f:95:53:96:f5:5c:7c: d6:b6:ba:c4:69:f0:e9:f0:96:53:dd:20:b9:7c:62: a6:ff:86:8a:e9:f5:e0:e0:93:14:65:6e:55:f8:3d: c8:a8:72:27:ea:0b:39:39:f1:a7:21:05:1f:89:af: f7:39:d0:e0:71:1b:a0:38:1e:36:f3:80:42:21:dd: 13:74:b0:8c:95:08:32:a0:2b:ec:c9:6a:74:81:65: 19:82:c0:ed:95:fb:3f:b1:38:c1:95:35:14:7d:28: bf:de:ba:d2:1a:2c:8b:e7:26:1e:aa:51:35:6e:9e: 0e:0b:9b:21:74:a0:0b:b8:9d:a4:be:aa:49:e0:cf: ab:5a:fc:43:7a:d4:29:50:98:7b:2d:7e:ca:09:87: 4b:8c:36:4c:d0:0f:81:de:96:27:2c:c8:75:33:ff: 18:39:0c:60:bb:be:d9:e8:46:ed:de:31:dd:4f:9e: 5f:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:C6:AD:83:7B:49:F1:16:83:94:6B:92:D4:F3:3A:E1:AC:20:79:E2 X509v3 Authority Key Identifier: keyid:AE:48:7B:72:C4:F3:8E:A5:48:F6:72:1B:B6:0B:77:37:05:BD:95:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3231382e3234392e3135372e302f32342d3234203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 218.249.157.0/24 Signature Algorithm: sha256WithRSAEncryption 56:e3:50:7e:64:ce:53:f5:18:69:f3:a0:2b:a2:b2:98:c2:5a: 93:b5:bb:c9:9c:12:8c:fd:fb:12:f6:b9:7d:29:aa:31:bb:73: 00:0c:3f:92:b6:39:aa:66:0f:b3:78:cf:03:4e:17:f6:1b:d1: c6:d6:92:43:47:c2:ef:52:25:05:d4:cb:35:33:57:23:f5:6b: 60:17:df:b4:fb:47:56:5b:4a:3c:64:a0:b7:e6:3b:f6:02:9b: dc:be:0d:17:bc:60:43:93:33:6f:5c:ad:fe:54:43:e0:3f:98: 4b:02:bd:1b:a3:1e:27:2a:cd:6a:87:45:4b:88:9f:9c:80:2b: 29:f4:b8:1a:6e:c7:b4:a4:41:3e:5b:ce:bd:e2:64:06:9f:52: 54:95:4f:85:cc:31:7d:a8:b2:f7:92:ea:19:f2:5b:fe:13:94: 6f:49:fe:17:12:f0:5d:77:db:13:d9:9b:05:26:fe:86:aa:95: 14:68:72:70:97:f5:bd:44:89:4c:23:9e:44:79:15:30:be:81: 54:b4:16:74:fc:d6:d8:d5:33:76:1d:07:a5:81:80:8f:97:f9: 99:53:1f:9a:cc:8b:55:a3:05:9b:9e:fa:47:88:49:1f:a9:bc: 54:3b:e8:91:e8:38:29:c1:72:43:60:98:3a:98:83:01:4f:60: 5a:be:10:34 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUKb7uneL41R4bdQyCsRhoKj7fNgkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUU0ODdCNzJDNEYzOEVBNTQ4RjY3MjFCQjYwQjc3Mzcw NUJEOTUxNTAeFw0yNjA0MjEwNjIxNDFaFw0yNzA0MjAwNjI2NDFaMDMxMTAvBgNV BAMTKDE5QzZBRDgzN0I0OUYxMTY4Mzk0NkI5MkQ0RjMzQUUxQUMyMDc5RTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtmE6y7he8Fq+WMbHTCvDafAa2 LYBlULSf2veWrqDHoFIk5tfpfieWdD4RduUispLyTxO5WVzBJqag2PQ8+Sw7jko6 4dxHWV3pqHMupt4cheXYf5VTlvVcfNa2usRp8OnwllPdILl8Yqb/horp9eDgkxRl blX4PciocifqCzk58achBR+Jr/c50OBxG6A4HjbzgEIh3RN0sIyVCDKgK+zJanSB ZRmCwO2V+z+xOMGVNRR9KL/eutIaLIvnJh6qUTVung4LmyF0oAu4naS+qkngz6ta /EN61ClQmHstfsoJh0uMNkzQD4HelicsyHUz/xg5DGC7vtnoRu3eMd1Pnl8vAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUGcatg3tJ8RaDlGuS1PM64awgeeIwHwYDVR0j BBgwFoAUrkh7csTzjqVI9nIbtgt3NwW9lRUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0Nzk0MzkzOS8wL0FFNDg3QjcyQzRGMzhFQTU0OEY2NzIxQkI2MEI3 NzM3MDVCRDk1MTUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQUU0ODdCNzJDNEYzOEVBNTQ4RjY3MjFCQjYwQjc3MzcwNUJEOTUxNS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3NjE5OTk0Nzk0MzkzOS8wLzMyMzEzODJlMzIz NDM5MmUzMTM1MzcyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNDM4MzAzOC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEANr5nTANBgkqhkiG9w0BAQsFAAOCAQEAVuNQfmTOU/UYafOgK6KymMJa k7W7yZwSjP37Eva5fSmqMbtzAAw/krY5qmYPs3jPA04X9hvRxtaSQ0fC71IlBdTL NTNXI/VrYBfftPtHVltKPGSgt+Y79gKb3L4NF7xgQ5Mzb1yt/lRD4D+YSwK9G6Me JyrNaodFS4ifnIArKfS4Gm7HtKRBPlvOveJkBp9SVJVPhcwxfaiy95LqGfJb/hOU b0n+FxLwXXfbE9mbBSb+hqqVFGhycJf1vUSJTCOeRHkVML6BVLQWdPzW2NUzdh0H pYGAj5f5mVMfmsyLVaMFm576R4hJH6m8VDvokeg4KcFyQ2CYOpiDAU9gWr4QNA== -----END CERTIFICATE-----Generated at Mon Apr 27 14:21:43 2026 by rpki-client