$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579796714749953/0/3230332e38362e382e302f32312d3231203d3e20313334373734.roa File: 3230332e38362e382e302f32312d3231203d3e20313334373734.roa (raw, json) Hash identifier: A144V149IKn6Qi4/x1M+8pUQxQS7O0ZGJx1jG+EHdHk= Subject key identifier: E0:19:48:31:31:C3:8A:30:F0:43:F8:29:DC:E6:23:20:26:40:8C:5D Certificate issuer: /CN=9B87DFEBDCCDA813116988D4421B088404578168 Certificate serial: 47C0FDDB9C9FAA4DD976FC1A7B0CD0A54EC5318F Authority key identifier: 9B:87:DF:EB:DC:CD:A8:13:11:69:88:D4:42:1B:08:84:04:57:81:68 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9B87DFEBDCCDA813116988D4421B088404578168.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579796714749953/0/3230332e38362e382e302f32312d3231203d3e20313334373734.roa Signing time: Thu 09 Apr 2026 08:13:33 +0000 ROA not before: Thu 09 Apr 2026 08:08:33 +0000 ROA not after: Thu 08 Apr 2027 08:13:33 +0000 asID: 134774 IP address blocks: 203.86.8.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579796714749953/0/9B87DFEBDCCDA813116988D4421B088404578168.crl rsync://rpki-rps.cnnic.cn/repo/A1065579796714749953/0/9B87DFEBDCCDA813116988D4421B088404578168.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9B87DFEBDCCDA813116988D4421B088404578168.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 02:02:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:c0:fd:db:9c:9f:aa:4d:d9:76:fc:1a:7b:0c:d0:a5:4e:c5:31:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9B87DFEBDCCDA813116988D4421B088404578168 Validity Not Before: Apr 9 08:08:33 2026 GMT Not After : Apr 8 08:13:33 2027 GMT Subject: CN=E019483131C38A30F043F829DCE6232026408C5D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:4e:d5:38:97:89:76:ec:ee:60:24:5c:f5:78: 9d:1a:38:ca:67:48:5e:ea:eb:55:69:a7:73:63:78: 2c:5d:36:dd:48:0d:b8:d6:08:2a:a3:b9:e5:eb:e0: 34:69:43:e4:75:2f:57:75:b8:65:78:7f:ad:f3:c1: 70:17:08:b6:3c:17:69:9f:49:e6:cc:fd:08:e8:18: b2:31:cf:9b:35:66:15:58:73:7a:08:95:bd:6e:e0: 4e:e4:bd:f0:1a:ac:ce:3d:7f:11:13:6e:9f:9c:92: 3e:a3:b8:b5:19:84:ed:b6:0c:dd:4b:d6:01:94:9b: 3d:7c:ff:ff:e6:8f:13:65:81:7e:11:6e:d2:f9:8c: bf:8f:9b:db:fa:20:a7:ed:41:ba:bf:1e:4d:8e:f1: e0:66:5e:a9:0b:7a:86:27:18:51:e0:fa:8c:db:48: ec:f5:f2:15:19:cd:7c:f0:4c:c0:10:97:47:e3:d7: 4b:b1:05:82:46:41:a5:c9:4a:63:94:ee:1c:15:43: dd:c6:d5:4a:4e:d6:23:ea:75:c2:71:61:0a:c8:60: 7d:28:2b:12:3c:ae:d2:3e:e8:8a:c7:29:00:e7:ea: 53:c6:e8:44:b7:b6:94:89:db:39:b9:17:40:cf:80: bf:6f:95:be:f0:2e:00:ac:22:36:cd:7d:58:94:4d: 4a:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:19:48:31:31:C3:8A:30:F0:43:F8:29:DC:E6:23:20:26:40:8C:5D X509v3 Authority Key Identifier: keyid:9B:87:DF:EB:DC:CD:A8:13:11:69:88:D4:42:1B:08:84:04:57:81:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579796714749953/0/9B87DFEBDCCDA813116988D4421B088404578168.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9B87DFEBDCCDA813116988D4421B088404578168.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579796714749953/0/3230332e38362e382e302f32312d3231203d3e20313334373734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.86.8.0/21 Signature Algorithm: sha256WithRSAEncryption 9a:db:b1:11:13:16:c2:6c:eb:1e:e7:17:f8:e3:52:67:a7:12: 68:42:07:16:77:e5:ac:a8:44:6d:57:eb:04:d2:fe:28:f8:c8: 19:82:48:51:11:3a:e3:44:35:b1:92:8f:a1:62:9c:3b:b0:4f: 34:4d:fb:f8:47:d9:17:ff:6e:76:c6:79:df:20:3a:bf:d9:78: 36:c3:fa:46:bf:0d:98:5b:58:56:56:8f:75:ce:c1:73:08:7e: 59:a9:0e:10:00:cf:d5:ae:98:0f:be:b9:3b:69:e8:98:67:d6: b2:47:2b:72:a7:23:22:86:ff:b3:3e:bb:09:71:eb:b6:74:b0: 55:ca:af:ce:5e:0a:b7:6c:7d:6b:4f:06:91:86:a2:4f:e9:cf: 7a:33:f6:c0:1a:40:0f:50:54:85:22:dc:8f:10:e2:7e:0b:78: f0:d8:24:33:7a:42:3a:5f:6b:5a:5b:e6:5c:04:27:a3:ff:34: ec:85:76:b4:19:d1:2e:91:55:c6:68:d2:4f:36:cd:af:f0:25: 13:4d:bb:1b:69:66:f4:1a:59:ca:a4:22:d6:d1:50:62:41:51: ee:7a:6b:c3:4d:20:7c:7e:ce:51:45:93:67:95:2b:d5:84:3c: 76:14:4f:17:99:cb:d2:c8:01:92:ea:0f:22:2a:bf:62:29:b1: 28:45:02:44 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUR8D925yfqk3ZdvwaewzQpU7FMY8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUI4N0RGRUJEQ0NEQTgxMzExNjk4OEQ0NDIxQjA4ODQw NDU3ODE2ODAeFw0yNjA0MDkwODA4MzNaFw0yNzA0MDgwODEzMzNaMDMxMTAvBgNV BAMTKEUwMTk0ODMxMzFDMzhBMzBGMDQzRjgyOURDRTYyMzIwMjY0MDhDNUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCJTtU4l4l27O5gJFz1eJ0aOMpn SF7q61Vpp3NjeCxdNt1IDbjWCCqjueXr4DRpQ+R1L1d1uGV4f63zwXAXCLY8F2mf SebM/QjoGLIxz5s1ZhVYc3oIlb1u4E7kvfAarM49fxETbp+ckj6juLUZhO22DN1L 1gGUmz18///mjxNlgX4RbtL5jL+Pm9v6IKftQbq/Hk2O8eBmXqkLeoYnGFHg+ozb SOz18hUZzXzwTMAQl0fj10uxBYJGQaXJSmOU7hwVQ93G1UpO1iPqdcJxYQrIYH0o KxI8rtI+6IrHKQDn6lPG6ES3tpSJ2zm5F0DPgL9vlb7wLgCsIjbNfViUTUq7AgMB AAGjggIRMIICDTAdBgNVHQ4EFgQU4BlIMTHDijDwQ/gp3OYjICZAjF0wHwYDVR0j BBgwFoAUm4ff69zNqBMRaYjUQhsIhARXgWgwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTc5NjcxNDc0OTk1My8wLzlCODdERkVCRENDREE4MTMxMTY5ODhENDQyMUIw ODg0MDQ1NzgxNjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOUI4N0RGRUJEQ0NEQTgxMzExNjk4OEQ0NDIxQjA4ODQwNDU3ODE2OC5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc5Nzk2NzE0NzQ5OTUzLzAvMzIzMDMzMmUzODM2 MmUzODJlMzAyZjMyMzEyZDMyMzEyMDNkM2UyMDMxMzMzNDM3MzczNC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEA8tWCDANBgkqhkiG9w0BAQsFAAOCAQEAmtuxERMWwmzrHucX+ONSZ6cSaEIH FnflrKhEbVfrBNL+KPjIGYJIURE640Q1sZKPoWKcO7BPNE37+EfZF/9udsZ53yA6 v9l4NsP6Rr8NmFtYVlaPdc7Bcwh+WakOEADP1a6YD765O2nomGfWskcrcqcjIob/ sz67CXHrtnSwVcqvzl4Kt2x9a08GkYaiT+nPejP2wBpAD1BUhSLcjxDifgt48Ngk M3pCOl9rWlvmXAQno/807IV2tBnRLpFVxmjSTzbNr/AlE027G2lm9BpZyqQi1tFQ YkFR7nprw00gfH7OUUWTZ5Ur1YQ8dhRPF5nL0sgBkuoPIiq/YimxKEUCRA== -----END CERTIFICATE-----Generated at Mon Apr 13 15:30:58 2026 by rpki-client