$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579796714749953/0/3232302e3233312e3139322e302f31392d3139203d3e20313334373734.roa File: 3232302e3233312e3139322e302f31392d3139203d3e20313334373734.roa (raw, json) Hash identifier: l8wLZP9XNh0NTjXqX+FDVXEdmYTncKNZvcGwf4xorA8= Subject key identifier: A1:55:C8:50:50:2C:68:3A:DC:25:D5:D2:43:E5:2F:A5:B8:2B:04:F9 Certificate issuer: /CN=9B87DFEBDCCDA813116988D4421B088404578168 Certificate serial: 41DC6761C88101489D876729F4CE898520383452 Authority key identifier: 9B:87:DF:EB:DC:CD:A8:13:11:69:88:D4:42:1B:08:84:04:57:81:68 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9B87DFEBDCCDA813116988D4421B088404578168.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579796714749953/0/3232302e3233312e3139322e302f31392d3139203d3e20313334373734.roa Signing time: Thu 09 Apr 2026 08:13:33 +0000 ROA not before: Thu 09 Apr 2026 08:08:33 +0000 ROA not after: Thu 08 Apr 2027 08:13:33 +0000 asID: 134774 IP address blocks: 220.231.192.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579796714749953/0/9B87DFEBDCCDA813116988D4421B088404578168.crl rsync://rpki-rps.cnnic.cn/repo/A1065579796714749953/0/9B87DFEBDCCDA813116988D4421B088404578168.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9B87DFEBDCCDA813116988D4421B088404578168.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 02:02:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:dc:67:61:c8:81:01:48:9d:87:67:29:f4:ce:89:85:20:38:34:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9B87DFEBDCCDA813116988D4421B088404578168 Validity Not Before: Apr 9 08:08:33 2026 GMT Not After : Apr 8 08:13:33 2027 GMT Subject: CN=A155C850502C683ADC25D5D243E52FA5B82B04F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:c3:24:68:bb:f0:7c:cd:e2:7e:b8:b9:12:49: a7:92:ef:c0:ef:54:77:54:c2:16:e0:4f:76:8e:61: 15:d6:b9:20:59:3a:ef:b5:09:b0:ee:e5:4c:0b:d3: 5a:f4:04:dd:a4:82:51:41:64:58:fb:46:30:a3:ae: 42:5e:e8:d0:5d:de:74:a8:1c:82:1c:b4:06:0d:53: 84:a2:fd:55:b2:d0:53:58:7f:42:37:61:6c:4a:28: 78:54:82:e1:2f:ea:ea:20:30:d1:22:48:28:96:ec: ce:ed:7a:27:29:46:f1:84:8d:fd:fa:77:7b:15:62: 3a:bc:fa:8c:37:ed:45:d6:cc:d0:de:67:86:9a:bd: fe:0d:98:17:29:a0:f1:1f:a5:cb:1d:cf:c5:69:f1: 83:c7:69:74:40:cb:39:52:11:df:5a:e0:27:53:6e: c5:77:99:69:2a:a1:e2:ef:55:84:07:0b:a1:6d:d2: 84:f3:61:cf:87:1e:d8:0d:46:dd:11:c6:94:6e:a8: f4:18:ac:3c:a2:9c:e3:60:5b:35:db:7f:c1:7a:13: bd:ca:92:82:19:51:44:dd:bd:23:e0:a3:79:74:3a: 05:b8:22:73:49:78:27:fc:2f:7b:46:c6:c6:f4:c9: 1e:d4:e9:5b:5b:68:b2:a2:f7:63:f9:da:44:e4:ef: 79:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:55:C8:50:50:2C:68:3A:DC:25:D5:D2:43:E5:2F:A5:B8:2B:04:F9 X509v3 Authority Key Identifier: keyid:9B:87:DF:EB:DC:CD:A8:13:11:69:88:D4:42:1B:08:84:04:57:81:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579796714749953/0/9B87DFEBDCCDA813116988D4421B088404578168.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9B87DFEBDCCDA813116988D4421B088404578168.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579796714749953/0/3232302e3233312e3139322e302f31392d3139203d3e20313334373734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 220.231.192.0/19 Signature Algorithm: sha256WithRSAEncryption 3b:88:77:36:5a:36:a0:8b:1e:03:9c:05:e3:4e:f1:3d:09:95: 82:e1:f1:02:9f:ab:ac:a7:3b:a8:85:14:1e:79:a7:a5:b1:75: 3c:68:ca:04:18:42:4a:e3:52:48:5a:48:92:e9:82:71:15:2c: dd:06:e9:70:ea:9e:54:1d:b7:05:f2:22:63:5d:85:ed:25:c3: 52:50:d2:77:87:8e:cd:24:06:43:10:40:e7:33:c0:72:5d:65: d7:eb:1b:eb:d9:d6:cd:71:5f:83:23:d7:a0:34:a4:ea:96:a0: af:31:d5:98:96:3f:5c:75:60:fb:22:1f:e6:55:93:46:31:d7: e4:c2:b8:e1:28:75:ab:3d:c5:1b:2b:d7:a3:50:2f:0a:dd:29: 50:72:1e:94:06:cb:51:be:72:68:f4:83:5c:5c:01:e1:2c:b2: 2a:7f:4c:5d:6b:d8:40:13:0d:7e:e4:e8:72:bd:ac:52:2c:9b: 04:af:af:aa:dd:55:be:4a:7d:7e:1a:8d:3d:ad:0c:e3:27:39: e1:b0:95:31:f7:8d:86:3a:49:3e:7b:05:a4:80:7a:64:89:3f: f4:0d:54:43:fe:2b:da:fd:b4:44:5c:f6:e5:87:f9:1d:de:c4: 86:99:c0:40:9d:5d:41:00:f3:82:9d:12:29:12:d4:76:1f:04: 4c:15:60:55 -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUQdxnYciBAUidh2cp9M6JhSA4NFIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUI4N0RGRUJEQ0NEQTgxMzExNjk4OEQ0NDIxQjA4ODQw NDU3ODE2ODAeFw0yNjA0MDkwODA4MzNaFw0yNzA0MDgwODEzMzNaMDMxMTAvBgNV BAMTKEExNTVDODUwNTAyQzY4M0FEQzI1RDVEMjQzRTUyRkE1QjgyQjA0RjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcwyRou/B8zeJ+uLkSSaeS78Dv VHdUwhbgT3aOYRXWuSBZOu+1CbDu5UwL01r0BN2kglFBZFj7RjCjrkJe6NBd3nSo HIIctAYNU4Si/VWy0FNYf0I3YWxKKHhUguEv6uogMNEiSCiW7M7teicpRvGEjf36 d3sVYjq8+ow37UXWzNDeZ4aavf4NmBcpoPEfpcsdz8Vp8YPHaXRAyzlSEd9a4CdT bsV3mWkqoeLvVYQHC6Ft0oTzYc+HHtgNRt0RxpRuqPQYrDyinONgWzXbf8F6E73K koIZUUTdvSPgo3l0OgW4InNJeCf8L3tGxsb0yR7U6VtbaLKi92P52kTk73mnAgMB AAGjggIaMIICFjAdBgNVHQ4EFgQUoVXIUFAsaDrcJdXSQ+UvpbgrBPkwHwYDVR0j BBgwFoAUm4ff69zNqBMRaYjUQhsIhARXgWgwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTc5NjcxNDc0OTk1My8wLzlCODdERkVCRENDREE4MTMxMTY5ODhENDQyMUIw ODg0MDQ1NzgxNjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOUI4N0RGRUJEQ0NEQTgxMzExNjk4OEQ0NDIxQjA4ODQwNDU3ODE2OC5jZXIw gZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMDY1NTc5Nzk2NzE0NzQ5OTUzLzAvMzIzMjMwMmUz MjMzMzEyZTMxMzkzMjJlMzAyZjMxMzkyZDMxMzkyMDNkM2UyMDMxMzMzNDM3Mzcz NC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEBdznwDANBgkqhkiG9w0BAQsFAAOCAQEAO4h3Nlo2oIseA5wF 407xPQmVguHxAp+rrKc7qIUUHnmnpbF1PGjKBBhCSuNSSFpIkumCcRUs3QbpcOqe VB23BfIiY12F7SXDUlDSd4eOzSQGQxBA5zPAcl1l1+sb69nWzXFfgyPXoDSk6pag rzHVmJY/XHVg+yIf5lWTRjHX5MK44Sh1qz3FGyvXo1AvCt0pUHIelAbLUb5yaPSD XFwB4SyyKn9MXWvYQBMNfuTocr2sUiybBK+vqt1Vvkp9fhqNPa0M4yc54bCVMfeN hjpJPnsFpIB6ZIk/9A1UQ/4r2v20RFz25Yf5Hd7EhpnAQJ1dQQDzgp0SKRLUdh8E TBVgVQ== -----END CERTIFICATE-----Generated at Mon Apr 13 15:31:17 2026 by rpki-client