$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579796714749953/0/3231312e3135342e3133362e302f32312d3231203d3e20313334373734.roa File: 3231312e3135342e3133362e302f32312d3231203d3e20313334373734.roa (raw, json) Hash identifier: OgdyQ/JS8xXM/RF+AvHWqKuVyR9gZ3jtQSciVUtvCjU= Subject key identifier: 15:6D:DB:14:FE:67:50:75:61:AF:6C:8C:94:F2:ED:9C:C5:6A:4F:49 Certificate issuer: /CN=9B87DFEBDCCDA813116988D4421B088404578168 Certificate serial: 23FF9D4D8EBBAEA031530ECE1063620BB15161E3 Authority key identifier: 9B:87:DF:EB:DC:CD:A8:13:11:69:88:D4:42:1B:08:84:04:57:81:68 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9B87DFEBDCCDA813116988D4421B088404578168.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579796714749953/0/3231312e3135342e3133362e302f32312d3231203d3e20313334373734.roa Signing time: Thu 09 Apr 2026 08:13:33 +0000 ROA not before: Thu 09 Apr 2026 08:08:33 +0000 ROA not after: Thu 08 Apr 2027 08:13:33 +0000 asID: 134774 IP address blocks: 211.154.136.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579796714749953/0/9B87DFEBDCCDA813116988D4421B088404578168.crl rsync://rpki-rps.cnnic.cn/repo/A1065579796714749953/0/9B87DFEBDCCDA813116988D4421B088404578168.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9B87DFEBDCCDA813116988D4421B088404578168.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 02:02:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:ff:9d:4d:8e:bb:ae:a0:31:53:0e:ce:10:63:62:0b:b1:51:61:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9B87DFEBDCCDA813116988D4421B088404578168 Validity Not Before: Apr 9 08:08:33 2026 GMT Not After : Apr 8 08:13:33 2027 GMT Subject: CN=156DDB14FE67507561AF6C8C94F2ED9CC56A4F49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:82:ca:d5:cc:f4:83:0f:00:cb:49:33:ae:4c: f6:e1:5e:1d:b1:9c:45:c0:de:08:fb:a7:7e:5e:16: c7:6d:8b:a6:95:07:b0:05:3a:2e:24:35:1e:91:34: 8f:57:f7:2e:f3:9e:84:91:dd:eb:11:0a:32:40:62: ff:a9:f9:bb:87:40:01:b2:75:0d:f9:1f:31:21:b3: 6d:4b:46:73:39:59:a8:60:16:13:f9:c8:0f:5a:dc: c8:8b:94:85:32:4f:75:f6:34:82:ee:aa:4a:75:fb: f6:6b:e6:97:7f:02:e3:88:50:31:84:9b:21:df:9c: 5f:e1:d9:80:04:ba:60:a9:23:67:67:49:82:c2:e0: be:12:83:0c:4a:7a:23:fd:d7:96:a8:53:be:75:e2: 2c:e2:64:f1:2c:30:9b:bb:22:16:88:5b:d0:ee:4e: df:df:8d:9e:17:24:f9:f5:39:c4:cf:53:21:1d:8a: 81:c5:dd:a2:31:76:33:b8:50:94:39:ec:8e:2f:29: e6:38:af:c7:b7:10:af:5e:6d:96:30:fd:34:c8:99: 84:81:ad:d0:22:67:f5:6a:c0:bf:44:ee:83:ba:10: 57:6d:e0:ae:55:79:e4:29:07:35:78:5f:15:a7:3e: bc:2b:44:84:a7:ab:cc:56:42:68:a9:84:75:fc:95: 62:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:6D:DB:14:FE:67:50:75:61:AF:6C:8C:94:F2:ED:9C:C5:6A:4F:49 X509v3 Authority Key Identifier: keyid:9B:87:DF:EB:DC:CD:A8:13:11:69:88:D4:42:1B:08:84:04:57:81:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579796714749953/0/9B87DFEBDCCDA813116988D4421B088404578168.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9B87DFEBDCCDA813116988D4421B088404578168.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579796714749953/0/3231312e3135342e3133362e302f32312d3231203d3e20313334373734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 211.154.136.0/21 Signature Algorithm: sha256WithRSAEncryption a0:71:73:73:64:8a:c5:ac:28:6c:e4:c2:ce:3d:67:c6:9a:93: 8a:e9:a7:e5:e5:a9:33:a6:7b:e0:ec:9c:63:a1:cc:29:e8:b0: 2b:ee:44:65:2d:f3:a2:29:cd:53:34:50:76:23:22:4c:1e:ca: 4f:86:25:65:6f:df:b8:00:72:b1:b6:5d:9a:83:6b:08:91:11: c8:1b:20:b6:6e:93:dd:b0:0e:13:1a:d9:0d:4e:20:0a:b2:57: 78:3f:4f:16:bf:f9:3f:81:7d:0b:8d:7a:90:f3:70:f0:22:d1: 98:50:df:c9:2d:e0:5b:56:0b:1a:b9:e6:ac:6d:10:fa:8d:95: 6e:b2:36:f0:a1:c0:e1:b4:c5:8d:ae:85:f7:b2:9e:0b:45:3f: c8:93:9f:33:94:82:ed:26:3a:cb:2f:72:32:19:c7:3e:7d:75: 45:24:97:07:e2:f8:b7:62:1a:95:b5:2d:7a:e1:5d:c2:72:9b: af:2d:a6:65:37:0d:c7:7b:0c:d2:7f:12:89:81:04:a3:e2:55: fb:a2:1d:c0:38:fd:f9:d6:ab:ad:dd:6b:46:b9:27:32:72:d9: b2:3c:13:7f:8d:b1:8b:3d:a0:23:9e:c3:fd:33:78:fd:2b:de: 8e:d7:90:16:42:b6:ef:a9:c6:b0:b1:96:50:df:74:1e:63:06: c0:a6:05:ab -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUI/+dTY67rqAxUw7OEGNiC7FRYeMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUI4N0RGRUJEQ0NEQTgxMzExNjk4OEQ0NDIxQjA4ODQw NDU3ODE2ODAeFw0yNjA0MDkwODA4MzNaFw0yNzA0MDgwODEzMzNaMDMxMTAvBgNV BAMTKDE1NkREQjE0RkU2NzUwNzU2MUFGNkM4Qzk0RjJFRDlDQzU2QTRGNDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVgsrVzPSDDwDLSTOuTPbhXh2x nEXA3gj7p35eFsdti6aVB7AFOi4kNR6RNI9X9y7znoSR3esRCjJAYv+p+buHQAGy dQ35HzEhs21LRnM5WahgFhP5yA9a3MiLlIUyT3X2NILuqkp1+/Zr5pd/AuOIUDGE myHfnF/h2YAEumCpI2dnSYLC4L4SgwxKeiP915aoU7514iziZPEsMJu7IhaIW9Du Tt/fjZ4XJPn1OcTPUyEdioHF3aIxdjO4UJQ57I4vKeY4r8e3EK9ebZYw/TTImYSB rdAiZ/VqwL9E7oO6EFdt4K5VeeQpBzV4XxWnPrwrRISnq8xWQmiphHX8lWK7AgMB AAGjggIaMIICFjAdBgNVHQ4EFgQUFW3bFP5nUHVhr2yMlPLtnMVqT0kwHwYDVR0j BBgwFoAUm4ff69zNqBMRaYjUQhsIhARXgWgwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTc5NjcxNDc0OTk1My8wLzlCODdERkVCRENDREE4MTMxMTY5ODhENDQyMUIw ODg0MDQ1NzgxNjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOUI4N0RGRUJEQ0NEQTgxMzExNjk4OEQ0NDIxQjA4ODQwNDU3ODE2OC5jZXIw gZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMDY1NTc5Nzk2NzE0NzQ5OTUzLzAvMzIzMTMxMmUz MTM1MzQyZTMxMzMzNjJlMzAyZjMyMzEyZDMyMzEyMDNkM2UyMDMxMzMzNDM3Mzcz NC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEA9OaiDANBgkqhkiG9w0BAQsFAAOCAQEAoHFzc2SKxawobOTC zj1nxpqTiumn5eWpM6Z74OycY6HMKeiwK+5EZS3zoinNUzRQdiMiTB7KT4YlZW/f uABysbZdmoNrCJERyBsgtm6T3bAOExrZDU4gCrJXeD9PFr/5P4F9C416kPNw8CLR mFDfyS3gW1YLGrnmrG0Q+o2VbrI28KHA4bTFja6F97KeC0U/yJOfM5SC7SY6yy9y MhnHPn11RSSXB+L4t2IalbUteuFdwnKbry2mZTcNx3sM0n8SiYEEo+JV+6IdwDj9 +darrd1rRrknMnLZsjwTf42xiz2gI57D/TN4/SvejteQFkK276nGsLGWUN90HmMG wKYFqw== -----END CERTIFICATE-----Generated at Mon Apr 13 15:31:43 2026 by rpki-client