$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579796714749953/0/3232302e3233312e3132382e302f31392d3139203d3e20313334373734.roa File: 3232302e3233312e3132382e302f31392d3139203d3e20313334373734.roa (raw, json) Hash identifier: KB4kEp+hbkXe+MaaY+P4anNDYi18HHg4smAZf4IaeH8= Subject key identifier: AB:49:53:7E:59:0F:1F:68:5D:92:4C:6C:FC:01:8C:12:ED:BE:42:0C Certificate issuer: /CN=9B87DFEBDCCDA813116988D4421B088404578168 Certificate serial: 0800A2FE3F1BD26E8D3F54ABB5B3DF8A51B57B00 Authority key identifier: 9B:87:DF:EB:DC:CD:A8:13:11:69:88:D4:42:1B:08:84:04:57:81:68 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9B87DFEBDCCDA813116988D4421B088404578168.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579796714749953/0/3232302e3233312e3132382e302f31392d3139203d3e20313334373734.roa Signing time: Thu 09 Apr 2026 08:13:33 +0000 ROA not before: Thu 09 Apr 2026 08:08:33 +0000 ROA not after: Thu 08 Apr 2027 08:13:33 +0000 asID: 134774 IP address blocks: 220.231.128.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579796714749953/0/9B87DFEBDCCDA813116988D4421B088404578168.crl rsync://rpki-rps.cnnic.cn/repo/A1065579796714749953/0/9B87DFEBDCCDA813116988D4421B088404578168.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9B87DFEBDCCDA813116988D4421B088404578168.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 02:02:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:00:a2:fe:3f:1b:d2:6e:8d:3f:54:ab:b5:b3:df:8a:51:b5:7b:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9B87DFEBDCCDA813116988D4421B088404578168 Validity Not Before: Apr 9 08:08:33 2026 GMT Not After : Apr 8 08:13:33 2027 GMT Subject: CN=AB49537E590F1F685D924C6CFC018C12EDBE420C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:9c:ea:3c:2e:3b:c6:37:8b:ba:2b:64:fb:33: 4d:17:9e:26:9d:75:7a:d5:ca:cf:00:8d:77:01:bc: 17:76:1b:6f:77:68:0d:01:e8:cc:ba:f6:9c:c3:fa: b3:fe:cf:cb:d9:cc:f0:c7:04:8b:d4:24:43:72:0c: 72:c5:35:8d:f5:4c:ec:f5:89:e6:b4:cf:6e:54:b2: 0d:1a:dd:38:e1:9b:64:29:af:3c:84:57:33:42:4b: a9:f0:56:c2:8d:fd:e8:cb:89:ae:31:d5:d3:8a:b4: 1d:5e:09:65:71:f6:d9:62:ee:53:6f:b1:08:d2:41: e4:78:7b:69:11:93:8a:9f:df:c0:0b:87:6d:e3:68: 46:cd:31:76:cd:91:cf:a6:90:0a:69:44:5e:89:d2: b3:25:f0:6f:98:c9:57:0e:47:6e:d5:b7:25:9c:b7: af:3e:f3:ea:35:8c:6b:bb:62:b0:41:9f:17:73:55: 9b:7f:20:e3:d2:43:b2:8d:4e:6e:d6:c6:26:32:24: 02:f0:00:81:37:96:be:ab:c8:9c:5e:6f:c9:5b:8b: 8d:8b:a9:9e:d3:d1:09:8f:0a:0b:6f:65:a7:0d:63: 70:9f:53:92:ad:af:c0:08:93:3a:87:ea:63:47:6a: d2:4c:06:d0:f9:4b:10:55:78:fb:a5:48:19:c7:0b: 79:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:49:53:7E:59:0F:1F:68:5D:92:4C:6C:FC:01:8C:12:ED:BE:42:0C X509v3 Authority Key Identifier: keyid:9B:87:DF:EB:DC:CD:A8:13:11:69:88:D4:42:1B:08:84:04:57:81:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579796714749953/0/9B87DFEBDCCDA813116988D4421B088404578168.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9B87DFEBDCCDA813116988D4421B088404578168.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579796714749953/0/3232302e3233312e3132382e302f31392d3139203d3e20313334373734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 220.231.128.0/19 Signature Algorithm: sha256WithRSAEncryption 6f:c9:62:16:30:05:f3:78:1c:6b:93:4f:3c:aa:cc:9a:51:c3: 3f:d2:6a:26:e3:d2:2e:46:9b:1a:9c:b4:b5:e9:5f:05:d9:c6: c5:a1:81:c2:ae:ac:3d:cb:38:11:21:b5:98:3a:be:bb:50:7c: 84:3e:c7:81:9c:91:c3:52:87:ec:02:5c:81:50:5a:2f:10:9e: 03:7b:75:60:f1:a0:20:cb:0d:01:2f:8c:a3:8a:de:a1:58:3e: 2f:3d:7a:c1:ff:b8:72:20:92:e4:19:a0:52:9d:34:13:82:2d: b6:25:fb:c4:3b:fe:ea:1b:bd:37:a4:ce:e5:47:99:57:ba:0b: db:7e:49:4c:6c:a8:0e:b6:82:af:1d:1f:65:43:19:a8:db:94: c2:fc:34:3b:5e:98:c6:ae:f9:0f:e6:c6:65:bf:cf:80:0b:56: c9:1a:07:a5:ea:f1:cb:45:c9:76:8d:6d:d5:46:76:b9:2e:61: 14:f3:31:dd:9f:cc:4b:e5:28:73:1f:2c:57:69:24:1c:0e:74: 08:f1:0d:ba:58:5c:5f:a6:de:c4:b5:c5:ac:01:ca:89:76:26: 28:7a:f7:74:44:07:8c:1a:a5:04:3a:b3:db:ba:97:b4:73:b6: 15:5b:fb:6e:3d:c6:b1:c0:cf:60:cb:82:67:3e:7e:3f:fc:37: 36:99:fe:f3 -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUCACi/j8b0m6NP1SrtbPfilG1ewAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUI4N0RGRUJEQ0NEQTgxMzExNjk4OEQ0NDIxQjA4ODQw NDU3ODE2ODAeFw0yNjA0MDkwODA4MzNaFw0yNzA0MDgwODEzMzNaMDMxMTAvBgNV BAMTKEFCNDk1MzdFNTkwRjFGNjg1RDkyNEM2Q0ZDMDE4QzEyRURCRTQyMEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+nOo8LjvGN4u6K2T7M00Xniad dXrVys8AjXcBvBd2G293aA0B6My69pzD+rP+z8vZzPDHBIvUJENyDHLFNY31TOz1 iea0z25Usg0a3Tjhm2QprzyEVzNCS6nwVsKN/ejLia4x1dOKtB1eCWVx9tli7lNv sQjSQeR4e2kRk4qf38ALh23jaEbNMXbNkc+mkAppRF6J0rMl8G+YyVcOR27VtyWc t68+8+o1jGu7YrBBnxdzVZt/IOPSQ7KNTm7WxiYyJALwAIE3lr6ryJxeb8lbi42L qZ7T0QmPCgtvZacNY3CfU5Ktr8AIkzqH6mNHatJMBtD5SxBVePulSBnHC3k9AgMB AAGjggIaMIICFjAdBgNVHQ4EFgQUq0lTflkPH2hdkkxs/AGMEu2+QgwwHwYDVR0j BBgwFoAUm4ff69zNqBMRaYjUQhsIhARXgWgwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTc5NjcxNDc0OTk1My8wLzlCODdERkVCRENDREE4MTMxMTY5ODhENDQyMUIw ODg0MDQ1NzgxNjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOUI4N0RGRUJEQ0NEQTgxMzExNjk4OEQ0NDIxQjA4ODQwNDU3ODE2OC5jZXIw gZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMDY1NTc5Nzk2NzE0NzQ5OTUzLzAvMzIzMjMwMmUz MjMzMzEyZTMxMzIzODJlMzAyZjMxMzkyZDMxMzkyMDNkM2UyMDMxMzMzNDM3Mzcz NC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEBdzngDANBgkqhkiG9w0BAQsFAAOCAQEAb8liFjAF83gca5NP PKrMmlHDP9JqJuPSLkabGpy0telfBdnGxaGBwq6sPcs4ESG1mDq+u1B8hD7HgZyR w1KH7AJcgVBaLxCeA3t1YPGgIMsNAS+Mo4reoVg+Lz16wf+4ciCS5BmgUp00E4It tiX7xDv+6hu9N6TO5UeZV7oL235JTGyoDraCrx0fZUMZqNuUwvw0O16Yxq75D+bG Zb/PgAtWyRoHperxy0XJdo1t1UZ2uS5hFPMx3Z/MS+Uocx8sV2kkHA50CPENulhc X6bexLXFrAHKiXYmKHr3dEQHjBqlBDqz27qXtHO2FVv7bj3GscDPYMuCZz5+P/w3 Npn+8w== -----END CERTIFICATE-----Generated at Mon Apr 13 15:31:17 2026 by rpki-client