$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579796714749953/0/3232302e3233312e3136302e302f31392d3139203d3e20313334373734.roa File: 3232302e3233312e3136302e302f31392d3139203d3e20313334373734.roa (raw, json) Hash identifier: F0++/gnpODO93cYKFA0Ho+k/V2Io+T3tARmtdXeIkp4= Subject key identifier: 85:11:80:60:DE:E9:03:EB:16:40:07:56:A5:F7:9D:E9:B9:D3:D3:B8 Certificate issuer: /CN=9B87DFEBDCCDA813116988D4421B088404578168 Certificate serial: 1CD05C45867E2D759E34835BF829CEA959886FCE Authority key identifier: 9B:87:DF:EB:DC:CD:A8:13:11:69:88:D4:42:1B:08:84:04:57:81:68 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9B87DFEBDCCDA813116988D4421B088404578168.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579796714749953/0/3232302e3233312e3136302e302f31392d3139203d3e20313334373734.roa Signing time: Thu 09 Apr 2026 08:13:33 +0000 ROA not before: Thu 09 Apr 2026 08:08:33 +0000 ROA not after: Thu 08 Apr 2027 08:13:33 +0000 asID: 134774 IP address blocks: 220.231.160.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579796714749953/0/9B87DFEBDCCDA813116988D4421B088404578168.crl rsync://rpki-rps.cnnic.cn/repo/A1065579796714749953/0/9B87DFEBDCCDA813116988D4421B088404578168.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9B87DFEBDCCDA813116988D4421B088404578168.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 02:02:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:d0:5c:45:86:7e:2d:75:9e:34:83:5b:f8:29:ce:a9:59:88:6f:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9B87DFEBDCCDA813116988D4421B088404578168 Validity Not Before: Apr 9 08:08:33 2026 GMT Not After : Apr 8 08:13:33 2027 GMT Subject: CN=85118060DEE903EB16400756A5F79DE9B9D3D3B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:51:5a:a2:67:27:2e:90:da:be:58:76:cf:a2: 9d:e9:38:a7:61:db:f8:a8:34:b6:67:e1:69:ef:83: 4e:55:de:fa:37:a2:01:cd:6d:ca:91:63:f3:9f:01: 61:eb:9a:b0:c9:58:0a:0f:62:03:54:d3:fa:c4:e0: 0d:b4:e2:a6:39:7d:0b:17:f2:4a:ba:cc:38:96:38: 53:fc:f9:1a:91:2a:24:ab:45:c9:28:f4:67:aa:cc: 20:99:36:39:e0:e2:f9:17:e5:5d:f5:f3:5d:2d:35: f6:2a:13:ef:b6:5e:46:ae:2a:5b:f4:b3:16:d4:ac: d9:72:14:c3:a0:9b:27:b8:4b:9f:8f:5c:37:6e:af: 37:16:68:6f:ee:ec:a2:63:1c:78:fe:de:45:7e:7e: 1b:4a:b0:1b:c6:18:2b:af:5e:90:f2:64:a2:e3:48: 87:1c:2b:d8:5e:3e:1a:ee:a6:06:f7:aa:e8:57:2e: c9:cf:ae:50:ec:88:61:58:19:00:a4:55:49:82:09: ca:c6:56:53:c2:0c:d8:05:89:ca:79:32:34:ab:e9: 6c:06:62:70:ff:8d:c3:4d:f4:69:61:23:aa:f5:65: 73:4f:63:19:66:f1:f0:9b:3f:76:33:42:e0:25:55: c6:d4:f6:ec:e4:5c:d7:20:2a:45:94:fe:a8:27:3e: 24:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:11:80:60:DE:E9:03:EB:16:40:07:56:A5:F7:9D:E9:B9:D3:D3:B8 X509v3 Authority Key Identifier: keyid:9B:87:DF:EB:DC:CD:A8:13:11:69:88:D4:42:1B:08:84:04:57:81:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579796714749953/0/9B87DFEBDCCDA813116988D4421B088404578168.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9B87DFEBDCCDA813116988D4421B088404578168.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579796714749953/0/3232302e3233312e3136302e302f31392d3139203d3e20313334373734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 220.231.160.0/19 Signature Algorithm: sha256WithRSAEncryption 7a:39:e5:49:83:f3:56:e4:ea:20:7a:00:2c:41:dc:bf:0d:80: d5:a9:d2:8a:1c:c6:db:b8:3c:67:43:aa:09:8c:11:d1:dc:54: 63:23:d3:de:a8:7f:ea:49:b6:04:30:e1:77:35:95:6f:a5:cd: 05:cb:ba:31:77:b2:07:41:a5:a3:bc:8f:34:79:14:db:5a:de: c7:3c:cd:d7:ec:93:a6:85:9a:3c:e6:2e:1c:fe:4a:ec:b9:d1: 43:3e:52:6d:ac:34:05:d6:8f:41:91:c4:22:67:94:3f:00:25: 79:68:23:87:b2:4a:cc:1a:c7:d0:c5:2a:18:8b:21:6c:07:64: 4b:90:ab:df:d1:8b:6c:b7:44:e2:80:de:6b:18:aa:82:7d:81: d2:14:32:22:23:ad:74:a7:d5:62:de:21:a3:d3:80:b4:41:cd: 3a:71:c7:3a:66:a9:27:fa:0a:d6:50:fa:b7:0e:e1:3f:94:b3: 3f:13:c7:80:ac:3d:91:e1:8c:b9:d9:44:d1:45:aa:9b:09:0a: 60:0f:56:70:2c:84:d7:12:b1:6d:50:a5:bc:e2:a9:e8:dc:01: 89:fa:3d:a0:f0:9a:dc:ea:05:81:7b:c0:16:d0:47:a3:0f:d2: b0:8f:fc:88:de:df:c6:7c:1c:ac:80:a4:77:74:17:7c:4f:9d: fe:79:6b:61 -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUHNBcRYZ+LXWeNINb+CnOqVmIb84wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUI4N0RGRUJEQ0NEQTgxMzExNjk4OEQ0NDIxQjA4ODQw NDU3ODE2ODAeFw0yNjA0MDkwODA4MzNaFw0yNzA0MDgwODEzMzNaMDMxMTAvBgNV BAMTKDg1MTE4MDYwREVFOTAzRUIxNjQwMDc1NkE1Rjc5REU5QjlEM0QzQjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlUVqiZycukNq+WHbPop3pOKdh 2/ioNLZn4Wnvg05V3vo3ogHNbcqRY/OfAWHrmrDJWAoPYgNU0/rE4A204qY5fQsX 8kq6zDiWOFP8+RqRKiSrRcko9GeqzCCZNjng4vkX5V31810tNfYqE++2XkauKlv0 sxbUrNlyFMOgmye4S5+PXDdurzcWaG/u7KJjHHj+3kV+fhtKsBvGGCuvXpDyZKLj SIccK9hePhrupgb3quhXLsnPrlDsiGFYGQCkVUmCCcrGVlPCDNgFicp5MjSr6WwG YnD/jcNN9GlhI6r1ZXNPYxlm8fCbP3YzQuAlVcbU9uzkXNcgKkWU/qgnPiQVAgMB AAGjggIaMIICFjAdBgNVHQ4EFgQUhRGAYN7pA+sWQAdWpfed6bnT07gwHwYDVR0j BBgwFoAUm4ff69zNqBMRaYjUQhsIhARXgWgwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTc5NjcxNDc0OTk1My8wLzlCODdERkVCRENDREE4MTMxMTY5ODhENDQyMUIw ODg0MDQ1NzgxNjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOUI4N0RGRUJEQ0NEQTgxMzExNjk4OEQ0NDIxQjA4ODQwNDU3ODE2OC5jZXIw gZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMDY1NTc5Nzk2NzE0NzQ5OTUzLzAvMzIzMjMwMmUz MjMzMzEyZTMxMzYzMDJlMzAyZjMxMzkyZDMxMzkyMDNkM2UyMDMxMzMzNDM3Mzcz NC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEBdznoDANBgkqhkiG9w0BAQsFAAOCAQEAejnlSYPzVuTqIHoA LEHcvw2A1anSihzG27g8Z0OqCYwR0dxUYyPT3qh/6km2BDDhdzWVb6XNBcu6MXey B0Glo7yPNHkU21rexzzN1+yTpoWaPOYuHP5K7LnRQz5Sbaw0BdaPQZHEImeUPwAl eWgjh7JKzBrH0MUqGIshbAdkS5Cr39GLbLdE4oDeaxiqgn2B0hQyIiOtdKfVYt4h o9OAtEHNOnHHOmapJ/oK1lD6tw7hP5SzPxPHgKw9keGMudlE0UWqmwkKYA9WcCyE 1xKxbVClvOKp6NwBifo9oPCa3OoFgXvAFtBHow/SsI/8iN7fxnwcrICkd3QXfE+d /nlrYQ== -----END CERTIFICATE-----Generated at Mon Apr 13 15:31:16 2026 by rpki-client