$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3231382e3234392e3135382e302f32332d3233203d3e2034383038.roa File: 3231382e3234392e3135382e302f32332d3233203d3e2034383038.roa (raw, json) Hash identifier: 3ceKRIJp9hPJsGZQR1PKEyjoGLwpUcexCGKSojmT1GE= Subject key identifier: 19:48:A6:5C:72:6B:C9:54:D1:6F:9F:B2:00:9C:3E:A0:55:60:D3:36 Certificate issuer: /CN=AE487B72C4F38EA548F6721BB60B773705BD9515 Certificate serial: 629796D6B69BE56D321357668FC4D1273392D84A Authority key identifier: AE:48:7B:72:C4:F3:8E:A5:48:F6:72:1B:B6:0B:77:37:05:BD:95:15 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3231382e3234392e3135382e302f32332d3233203d3e2034383038.roa Signing time: Tue 21 Apr 2026 06:26:42 +0000 ROA not before: Tue 21 Apr 2026 06:21:42 +0000 ROA not after: Tue 20 Apr 2027 06:26:42 +0000 asID: 4808 IP address blocks: 218.249.158.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 00:03:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:97:96:d6:b6:9b:e5:6d:32:13:57:66:8f:c4:d1:27:33:92:d8:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AE487B72C4F38EA548F6721BB60B773705BD9515 Validity Not Before: Apr 21 06:21:42 2026 GMT Not After : Apr 20 06:26:42 2027 GMT Subject: CN=1948A65C726BC954D16F9FB2009C3EA05560D336 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:8b:bb:f9:fc:4d:ff:27:2e:0e:42:93:4a:b5: c4:a5:d5:e1:43:3b:0e:8c:a8:68:a2:39:e9:48:c6: b7:5c:b4:2e:28:09:c9:bd:d7:15:1a:2b:d7:4d:fa: 4d:69:a2:28:c9:7f:c0:41:44:18:fb:fe:2d:c0:04: 33:78:f4:49:4a:33:c3:a3:50:df:aa:3a:49:c5:c1: 99:06:d3:4a:64:fe:d2:4d:0c:2e:f7:17:26:e4:c1: e5:db:40:fe:fa:62:1d:d2:bc:45:4d:f1:b0:85:4d: 22:51:f5:e5:92:55:11:ec:b7:9a:9c:3b:9e:f9:d7: 2f:d4:cf:bf:c2:10:44:5c:19:14:8e:80:b6:16:8a: 65:ae:9a:11:13:85:c0:35:d4:20:b3:c6:89:29:a2: 9b:ac:ef:9c:9e:7d:86:48:20:a3:2e:2c:f8:99:e7: 6a:16:f2:ac:75:a5:75:92:26:11:0e:be:51:c4:bb: 83:3c:f7:65:d4:58:c9:64:25:f6:3d:62:37:14:6d: 7d:a3:78:e4:d1:7a:28:68:a2:bc:ce:d6:bf:c2:ca: fd:ce:fe:0f:98:56:ab:34:54:2a:be:7e:8d:97:ee: 6d:de:48:91:2d:3b:6f:35:9f:07:5c:f9:5c:de:96: 87:74:f3:6d:67:ad:37:73:db:c3:51:2f:72:b8:cf: 40:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:48:A6:5C:72:6B:C9:54:D1:6F:9F:B2:00:9C:3E:A0:55:60:D3:36 X509v3 Authority Key Identifier: keyid:AE:48:7B:72:C4:F3:8E:A5:48:F6:72:1B:B6:0B:77:37:05:BD:95:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3231382e3234392e3135382e302f32332d3233203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 218.249.158.0/23 Signature Algorithm: sha256WithRSAEncryption 3e:bd:c2:45:0b:fd:06:9f:d1:fb:81:c2:4c:de:51:c0:5e:63: 74:0e:82:37:1b:37:7d:cf:35:6c:b6:c3:54:f1:1a:36:3a:e1: f9:5b:4d:a6:3c:c1:57:ff:18:34:91:2c:ff:e8:99:df:91:95: 7f:4f:ce:9c:21:7e:6d:16:a6:c7:ec:de:36:6c:f9:60:60:97: d6:7a:34:61:a6:4b:d2:d2:ef:bd:2f:71:ab:b0:9a:63:92:02: 6c:43:1c:bf:06:0e:eb:8c:3d:4f:91:cd:44:9a:b1:13:06:48: d8:c2:80:63:54:aa:9e:f7:86:c6:12:57:df:23:66:75:53:b1: 6e:4b:60:f4:f7:66:c5:94:bb:31:ed:78:e8:c7:27:51:be:68: 37:04:af:75:30:64:b8:38:2e:d7:c3:ea:24:a2:9d:81:1b:5f: 3c:c0:94:d7:9e:d3:53:81:cf:0f:05:49:19:0c:e4:14:6c:ab: bb:c0:bb:66:43:d6:c6:c3:d6:ad:c0:2b:a2:f9:40:26:c2:a2: 82:e5:eb:e4:8f:5b:8e:74:18:85:4b:4b:ed:3f:32:21:9c:7b: c1:7d:93:63:1a:35:e0:1b:f3:c5:cb:17:25:a5:d2:1b:e6:8c: 5d:d8:f7:c3:11:56:89:a2:94:7b:13:7b:8b:20:9f:eb:e0:97: a9:bc:e3:29 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUYpeW1rab5W0yE1dmj8TRJzOS2EowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUU0ODdCNzJDNEYzOEVBNTQ4RjY3MjFCQjYwQjc3Mzcw NUJEOTUxNTAeFw0yNjA0MjEwNjIxNDJaFw0yNzA0MjAwNjI2NDJaMDMxMTAvBgNV BAMTKDE5NDhBNjVDNzI2QkM5NTREMTZGOUZCMjAwOUMzRUEwNTU2MEQzMzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9i7v5/E3/Jy4OQpNKtcSl1eFD Ow6MqGiiOelIxrdctC4oCcm91xUaK9dN+k1poijJf8BBRBj7/i3ABDN49ElKM8Oj UN+qOknFwZkG00pk/tJNDC73FybkweXbQP76Yh3SvEVN8bCFTSJR9eWSVRHst5qc O5751y/Uz7/CEERcGRSOgLYWimWumhEThcA11CCzxokpopus75yefYZIIKMuLPiZ 52oW8qx1pXWSJhEOvlHEu4M892XUWMlkJfY9YjcUbX2jeOTReihoorzO1r/Cyv3O /g+YVqs0VCq+fo2X7m3eSJEtO281nwdc+Vzelod0821nrTdz28NRL3K4z0DHAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUGUimXHJryVTRb5+yAJw+oFVg0zYwHwYDVR0j BBgwFoAUrkh7csTzjqVI9nIbtgt3NwW9lRUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0Nzk0MzkzOS8wL0FFNDg3QjcyQzRGMzhFQTU0OEY2NzIxQkI2MEI3 NzM3MDVCRDk1MTUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQUU0ODdCNzJDNEYzOEVBNTQ4RjY3MjFCQjYwQjc3MzcwNUJEOTUxNS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3NjE5OTk0Nzk0MzkzOS8wLzMyMzEzODJlMzIz NDM5MmUzMTM1MzgyZTMwMmYzMjMzMmQzMjMzMjAzZDNlMjAzNDM4MzAzOC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAdr5njANBgkqhkiG9w0BAQsFAAOCAQEAPr3CRQv9Bp/R+4HCTN5RwF5j dA6CNxs3fc81bLbDVPEaNjrh+VtNpjzBV/8YNJEs/+iZ35GVf0/OnCF+bRamx+ze Nmz5YGCX1no0YaZL0tLvvS9xq7CaY5ICbEMcvwYO64w9T5HNRJqxEwZI2MKAY1Sq nveGxhJX3yNmdVOxbktg9PdmxZS7Me146McnUb5oNwSvdTBkuDgu18PqJKKdgRtf PMCU157TU4HPDwVJGQzkFGyru8C7ZkPWxsPWrcArovlAJsKiguXr5I9bjnQYhUtL 7T8yIZx7wX2TYxo14BvzxcsXJaXSG+aMXdj3wxFWiaKUexN7iyCf6+CXqbzjKQ== -----END CERTIFICATE-----Generated at Mon Apr 27 14:20:34 2026 by rpki-client