$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3231382e3234392e3139322e302f31382d3138203d3e2034383038.roa File: 3231382e3234392e3139322e302f31382d3138203d3e2034383038.roa (raw, json) Hash identifier: s7HovHLc58VDjoBm7UvlnPEJOYb3tCL66aPOYWl3Lvc= Subject key identifier: 39:8F:DD:1B:EF:01:C8:D4:7F:76:BE:11:6D:27:CF:4B:15:02:F8:50 Certificate issuer: /CN=AE487B72C4F38EA548F6721BB60B773705BD9515 Certificate serial: 2FE2FC386A8BF7F596A6DA2212D3432208CE4E8B Authority key identifier: AE:48:7B:72:C4:F3:8E:A5:48:F6:72:1B:B6:0B:77:37:05:BD:95:15 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3231382e3234392e3139322e302f31382d3138203d3e2034383038.roa Signing time: Tue 21 Apr 2026 06:26:41 +0000 ROA not before: Tue 21 Apr 2026 06:21:41 +0000 ROA not after: Tue 20 Apr 2027 06:26:41 +0000 asID: 4808 IP address blocks: 218.249.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 00:03:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:e2:fc:38:6a:8b:f7:f5:96:a6:da:22:12:d3:43:22:08:ce:4e:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AE487B72C4F38EA548F6721BB60B773705BD9515 Validity Not Before: Apr 21 06:21:41 2026 GMT Not After : Apr 20 06:26:41 2027 GMT Subject: CN=398FDD1BEF01C8D47F76BE116D27CF4B1502F850 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:22:e8:ba:d2:fb:c9:1a:a9:e2:de:65:10:a5: 18:3d:5d:68:ca:4e:41:92:7d:b4:55:c9:8b:17:6a: ac:98:d5:92:2d:a3:ba:64:f3:e5:d8:b6:d3:f9:c3: 35:7f:c1:c4:34:d4:23:cd:e5:fc:af:4d:da:ac:28: 4d:6c:85:fd:e9:f8:8e:da:75:ce:de:33:0f:1e:f0: ad:ec:ac:e6:14:7f:68:ef:4d:5d:83:30:2e:ec:3b: 82:aa:c2:ea:a7:39:a2:0c:b0:7c:0c:82:0d:c5:db: 34:a0:f9:70:07:78:43:55:24:f3:8b:0b:7b:c1:68: cc:4a:af:d9:6e:06:df:80:f2:6d:dc:63:41:48:6a: 0b:21:0f:1c:3e:b9:8a:c7:b1:5d:d6:d6:d6:ee:e5: 70:84:e6:b5:5a:b1:f6:d8:72:b7:e1:4b:65:b4:12: 6a:9d:5c:c2:a8:be:6d:cb:de:da:06:e8:43:eb:66: 8c:f5:0f:45:9d:8d:1f:ea:31:0d:8c:78:1b:9b:47: 89:a2:2d:42:21:c2:d4:e5:cf:65:56:30:69:36:79: ab:93:7c:56:c9:fd:d7:ac:cb:e6:4a:2c:b1:ef:cf: 51:d7:a4:4a:43:9c:c7:95:df:17:06:9b:d7:24:98: 15:28:00:4d:3d:fc:b4:af:3e:f9:f7:37:40:79:3c: 19:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:8F:DD:1B:EF:01:C8:D4:7F:76:BE:11:6D:27:CF:4B:15:02:F8:50 X509v3 Authority Key Identifier: keyid:AE:48:7B:72:C4:F3:8E:A5:48:F6:72:1B:B6:0B:77:37:05:BD:95:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3231382e3234392e3139322e302f31382d3138203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 218.249.192.0/18 Signature Algorithm: sha256WithRSAEncryption 86:5f:ec:ea:bd:ec:5b:a8:1a:0d:b9:98:87:74:9f:50:21:af: 22:fb:44:8e:fc:67:8d:2d:37:36:56:0e:25:fa:bc:cb:3c:b8: 30:fb:22:bb:03:2b:d3:a7:93:14:35:49:3a:79:bf:dc:18:2e: bd:78:c6:85:08:26:4e:c5:80:ff:0c:10:40:3c:31:8e:21:05: d5:47:4f:0d:40:c5:da:3f:55:a6:dd:97:13:87:4f:b5:fd:99: 09:72:0c:89:42:1b:3c:94:be:f0:cf:61:ed:31:a8:e8:f6:80: 98:47:3a:43:5d:d2:5b:a2:31:61:aa:ec:fd:70:25:23:b2:f2: 5f:50:f6:5c:de:00:39:0e:1b:cc:55:64:01:5e:7d:11:6d:4e: f4:2a:92:bd:78:54:2c:99:df:9a:bb:2f:01:b3:e1:6d:48:ba: 26:6a:40:7f:2f:40:b0:ce:9d:7f:61:b5:26:d6:6e:90:2f:81: 18:1f:cb:51:5b:45:07:42:4d:c5:ea:15:94:2a:1d:bf:2c:6c: 0c:c9:52:98:2f:fb:58:4b:43:9f:3e:44:84:a1:03:9c:da:18: 32:1f:74:5d:87:62:4d:7f:7c:85:7e:e7:20:48:e7:5f:6a:3c: 9f:32:7c:ce:43:9d:ae:ff:8d:c8:8a:0a:3a:6f:68:48:39:f4: 91:50:ff:27 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUL+L8OGqL9/WWptoiEtNDIgjOToswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUU0ODdCNzJDNEYzOEVBNTQ4RjY3MjFCQjYwQjc3Mzcw NUJEOTUxNTAeFw0yNjA0MjEwNjIxNDFaFw0yNzA0MjAwNjI2NDFaMDMxMTAvBgNV BAMTKDM5OEZERDFCRUYwMUM4RDQ3Rjc2QkUxMTZEMjdDRjRCMTUwMkY4NTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgIui60vvJGqni3mUQpRg9XWjK TkGSfbRVyYsXaqyY1ZIto7pk8+XYttP5wzV/wcQ01CPN5fyvTdqsKE1shf3p+I7a dc7eMw8e8K3srOYUf2jvTV2DMC7sO4KqwuqnOaIMsHwMgg3F2zSg+XAHeENVJPOL C3vBaMxKr9luBt+A8m3cY0FIagshDxw+uYrHsV3W1tbu5XCE5rVasfbYcrfhS2W0 EmqdXMKovm3L3toG6EPrZoz1D0WdjR/qMQ2MeBubR4miLUIhwtTlz2VWMGk2eauT fFbJ/desy+ZKLLHvz1HXpEpDnMeV3xcGm9ckmBUoAE09/LSvPvn3N0B5PBm3AgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUOY/dG+8ByNR/dr4RbSfPSxUC+FAwHwYDVR0j BBgwFoAUrkh7csTzjqVI9nIbtgt3NwW9lRUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0Nzk0MzkzOS8wL0FFNDg3QjcyQzRGMzhFQTU0OEY2NzIxQkI2MEI3 NzM3MDVCRDk1MTUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQUU0ODdCNzJDNEYzOEVBNTQ4RjY3MjFCQjYwQjc3MzcwNUJEOTUxNS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3NjE5OTk0Nzk0MzkzOS8wLzMyMzEzODJlMzIz NDM5MmUzMTM5MzIyZTMwMmYzMTM4MmQzMTM4MjAzZDNlMjAzNDM4MzAzOC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEBtr5wDANBgkqhkiG9w0BAQsFAAOCAQEAhl/s6r3sW6gaDbmYh3SfUCGv IvtEjvxnjS03NlYOJfq8yzy4MPsiuwMr06eTFDVJOnm/3BguvXjGhQgmTsWA/wwQ QDwxjiEF1UdPDUDF2j9Vpt2XE4dPtf2ZCXIMiUIbPJS+8M9h7TGo6PaAmEc6Q13S W6IxYars/XAlI7LyX1D2XN4AOQ4bzFVkAV59EW1O9CqSvXhULJnfmrsvAbPhbUi6 JmpAfy9AsM6df2G1JtZukC+BGB/LUVtFB0JNxeoVlCodvyxsDMlSmC/7WEtDnz5E hKEDnNoYMh90XYdiTX98hX7nIEjnX2o8nzJ8zkOdrv+NyIoKOm9oSDn0kVD/Jw== -----END CERTIFICATE-----Generated at Mon Apr 27 14:21:14 2026 by rpki-client