$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579796714749953/0/3231312e3135342e3132382e302f32312d3231203d3e20313334373734.roa File: 3231312e3135342e3132382e302f32312d3231203d3e20313334373734.roa (raw, json) Hash identifier: LtEKhx6SrMTuU+BHgQuF5pgXy7i9/kGQm1n3exdPLbc= Subject key identifier: 9B:03:94:15:4C:9F:CD:E3:3C:9E:E6:FF:62:0B:02:D0:47:51:AB:28 Certificate issuer: /CN=9B87DFEBDCCDA813116988D4421B088404578168 Certificate serial: 3465E1D220CD5DA3D5D3E469A62281D93343E256 Authority key identifier: 9B:87:DF:EB:DC:CD:A8:13:11:69:88:D4:42:1B:08:84:04:57:81:68 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9B87DFEBDCCDA813116988D4421B088404578168.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579796714749953/0/3231312e3135342e3132382e302f32312d3231203d3e20313334373734.roa Signing time: Thu 09 Apr 2026 08:13:33 +0000 ROA not before: Thu 09 Apr 2026 08:08:33 +0000 ROA not after: Thu 08 Apr 2027 08:13:33 +0000 asID: 134774 IP address blocks: 211.154.128.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579796714749953/0/9B87DFEBDCCDA813116988D4421B088404578168.crl rsync://rpki-rps.cnnic.cn/repo/A1065579796714749953/0/9B87DFEBDCCDA813116988D4421B088404578168.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9B87DFEBDCCDA813116988D4421B088404578168.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 02:02:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:65:e1:d2:20:cd:5d:a3:d5:d3:e4:69:a6:22:81:d9:33:43:e2:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9B87DFEBDCCDA813116988D4421B088404578168 Validity Not Before: Apr 9 08:08:33 2026 GMT Not After : Apr 8 08:13:33 2027 GMT Subject: CN=9B0394154C9FCDE33C9EE6FF620B02D04751AB28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b0:66:ea:b2:c6:c3:4d:69:1e:ec:77:52:3c: 08:69:43:1f:43:81:3f:a4:25:d5:bd:57:d1:52:ca: 84:39:3c:f8:2f:73:a3:49:d0:8f:d5:b2:05:e2:14: da:1b:8d:ba:83:fe:67:a0:ff:f9:ff:f2:a0:b1:de: 67:0b:4c:1f:3f:bb:81:97:50:af:1d:1e:81:ff:3a: 4b:3a:07:58:10:65:50:3f:94:b9:68:d9:db:1e:12: e1:55:b5:d1:e1:2a:10:8a:a1:d3:db:b0:7c:ef:c3: 63:d5:fe:6f:46:3a:fa:24:e2:ec:6d:47:70:f3:bc: 3e:91:31:46:1b:4b:a2:b3:81:aa:c3:c5:d5:d3:79: 8c:48:ca:df:64:4a:05:61:75:40:3e:f1:e9:03:d4: 1f:9d:66:ad:ed:3c:94:a0:df:a6:5e:50:a3:f8:b5: 58:a2:9b:00:5e:a1:7e:72:2a:c6:61:80:12:0f:66: f7:1a:10:0f:e4:03:bb:79:f9:15:ad:17:45:30:c4: d6:ba:4a:6f:d5:4e:74:e9:9e:48:74:7c:a8:7d:06: 8c:7c:2d:7f:84:ad:fa:26:40:0d:df:c9:ce:84:95: 5f:e1:63:82:5c:23:42:c9:14:bf:76:e0:bc:75:df: f4:41:70:a6:49:07:c0:10:49:f3:9c:a5:82:ad:5f: ad:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:03:94:15:4C:9F:CD:E3:3C:9E:E6:FF:62:0B:02:D0:47:51:AB:28 X509v3 Authority Key Identifier: keyid:9B:87:DF:EB:DC:CD:A8:13:11:69:88:D4:42:1B:08:84:04:57:81:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579796714749953/0/9B87DFEBDCCDA813116988D4421B088404578168.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9B87DFEBDCCDA813116988D4421B088404578168.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579796714749953/0/3231312e3135342e3132382e302f32312d3231203d3e20313334373734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 211.154.128.0/21 Signature Algorithm: sha256WithRSAEncryption 8f:1d:f3:d3:ce:23:49:85:bc:42:50:c4:5d:1b:62:c3:72:61: da:d8:91:15:84:6b:9f:5c:37:ff:53:c5:f6:7f:55:d6:2b:36: 3f:37:07:2f:5d:0c:89:34:67:a2:c5:33:15:ae:6e:37:cf:e1: 64:9a:d7:e2:04:4e:ca:a9:ef:14:7a:fa:67:77:13:79:63:c5: 8b:9a:9f:49:5d:98:08:00:57:38:fc:6b:6e:02:cf:60:2a:22: f8:8e:df:f9:f0:d5:c8:a3:55:5d:5d:ff:07:11:58:87:98:c6: 28:d1:39:b7:f4:23:de:4b:d5:5d:ee:07:85:8e:9f:62:50:7a: a4:75:fc:00:02:60:66:20:bc:f2:85:04:df:a3:fd:8d:04:a2: 4e:9c:c3:62:4a:fb:40:d0:87:87:76:60:bd:f1:16:71:7f:bd: 63:3d:11:c8:cf:2f:29:85:90:14:68:f2:12:75:8c:fe:95:e2: 25:f6:f6:c7:81:17:ff:6f:54:8a:82:f7:bb:6a:df:77:d4:8b: 6b:23:7d:7d:2e:65:f4:8f:8e:35:7b:33:e6:1d:d9:b1:37:ff: 22:53:3f:d9:30:24:21:5b:5b:6f:dc:8d:53:8e:f5:a8:11:2b: a0:ce:c3:39:5b:90:c7:8e:c6:2c:9f:b1:10:04:9f:f4:7a:d4: 24:7d:40:74 -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUNGXh0iDNXaPV0+RppiKB2TND4lYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUI4N0RGRUJEQ0NEQTgxMzExNjk4OEQ0NDIxQjA4ODQw NDU3ODE2ODAeFw0yNjA0MDkwODA4MzNaFw0yNzA0MDgwODEzMzNaMDMxMTAvBgNV BAMTKDlCMDM5NDE1NEM5RkNERTMzQzlFRTZGRjYyMEIwMkQwNDc1MUFCMjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBsGbqssbDTWke7HdSPAhpQx9D gT+kJdW9V9FSyoQ5PPgvc6NJ0I/VsgXiFNobjbqD/meg//n/8qCx3mcLTB8/u4GX UK8dHoH/Oks6B1gQZVA/lLlo2dseEuFVtdHhKhCKodPbsHzvw2PV/m9GOvok4uxt R3DzvD6RMUYbS6KzgarDxdXTeYxIyt9kSgVhdUA+8ekD1B+dZq3tPJSg36ZeUKP4 tViimwBeoX5yKsZhgBIPZvcaEA/kA7t5+RWtF0UwxNa6Sm/VTnTpnkh0fKh9Box8 LX+ErfomQA3fyc6ElV/hY4JcI0LJFL924Lx13/RBcKZJB8AQSfOcpYKtX61XAgMB AAGjggIaMIICFjAdBgNVHQ4EFgQUmwOUFUyfzeM8nub/YgsC0EdRqygwHwYDVR0j BBgwFoAUm4ff69zNqBMRaYjUQhsIhARXgWgwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTc5NjcxNDc0OTk1My8wLzlCODdERkVCRENDREE4MTMxMTY5ODhENDQyMUIw ODg0MDQ1NzgxNjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOUI4N0RGRUJEQ0NEQTgxMzExNjk4OEQ0NDIxQjA4ODQwNDU3ODE2OC5jZXIw gZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMDY1NTc5Nzk2NzE0NzQ5OTUzLzAvMzIzMTMxMmUz MTM1MzQyZTMxMzIzODJlMzAyZjMyMzEyZDMyMzEyMDNkM2UyMDMxMzMzNDM3Mzcz NC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEA9OagDANBgkqhkiG9w0BAQsFAAOCAQEAjx3z084jSYW8QlDE XRtiw3Jh2tiRFYRrn1w3/1PF9n9V1is2PzcHL10MiTRnosUzFa5uN8/hZJrX4gRO yqnvFHr6Z3cTeWPFi5qfSV2YCABXOPxrbgLPYCoi+I7f+fDVyKNVXV3/BxFYh5jG KNE5t/Qj3kvVXe4HhY6fYlB6pHX8AAJgZiC88oUE36P9jQSiTpzDYkr7QNCHh3Zg vfEWcX+9Yz0RyM8vKYWQFGjyEnWM/pXiJfb2x4EX/29UioL3u2rfd9SLayN9fS5l 9I+ONXsz5h3ZsTf/IlM/2TAkIVtbb9yNU471qBEroM7DOVuQx47GLJ+xEASf9HrU JH1AdA== -----END CERTIFICATE-----Generated at Mon Apr 13 15:31:42 2026 by rpki-client