$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065887644090630145/0/3132302e32342e302e302f31342d3234203d3e203337393633.roa File: 3132302e32342e302e302f31342d3234203d3e203337393633.roa (raw, json) Hash identifier: JTo7Z0/h3QhoSCqjDWuPGZuPAJPMgo9fPkO3OFeblz0= Subject key identifier: 84:24:57:57:82:40:7B:C2:ED:0E:8E:86:A4:2B:4C:A4:C0:51:DA:A4 Certificate issuer: /CN=B3CAFB59F10B03AD2106E8215DBB903F157D0C8E Certificate serial: 46F0D9989572CF0A39EFDF754BF63B9388063F14 Authority key identifier: B3:CA:FB:59:F1:0B:03:AD:21:06:E8:21:5D:BB:90:3F:15:7D:0C:8E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/3132302e32342e302e302f31342d3234203d3e203337393633.roa Signing time: Mon 20 Apr 2026 08:36:48 +0000 ROA not before: Mon 20 Apr 2026 08:31:48 +0000 ROA not after: Mon 19 Apr 2027 08:36:48 +0000 asID: 37963 IP address blocks: 120.24.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.crl rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 04:30:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:f0:d9:98:95:72:cf:0a:39:ef:df:75:4b:f6:3b:93:88:06:3f:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B3CAFB59F10B03AD2106E8215DBB903F157D0C8E Validity Not Before: Apr 20 08:31:48 2026 GMT Not After : Apr 19 08:36:48 2027 GMT Subject: CN=8424575782407BC2ED0E8E86A42B4CA4C051DAA4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:91:64:89:04:a3:c6:ec:23:5b:31:4d:f3:ff: 7a:eb:ff:d7:d1:c9:65:dd:8d:ae:25:27:73:24:27: 96:af:d7:34:8c:95:b4:eb:33:8d:d2:b2:47:e4:23: f2:be:8e:1f:a8:ae:e9:c5:33:02:00:44:6b:87:12: ad:f0:06:08:0d:40:3d:01:a7:73:32:a9:81:ee:2c: 52:e8:28:58:af:7f:4c:84:32:b7:d3:32:15:43:02: a7:fe:d0:ff:cf:e1:7e:9f:15:94:97:ee:77:23:35: c9:93:06:46:6c:63:8c:35:58:24:c0:20:4e:69:d8: 08:23:12:43:52:a6:3e:b3:3f:c3:72:d3:38:0b:87: 8b:f0:b9:34:2e:1f:94:61:a3:e6:b9:47:1c:de:59: 58:76:d0:00:5b:6c:4f:98:6e:09:a0:ab:de:55:72: 9e:91:57:89:c2:2e:2d:5d:20:bc:0c:92:d5:bc:b4: 84:cf:58:74:ff:71:46:ff:37:49:a7:ab:28:5d:08: d6:91:89:c0:ca:f9:08:b5:a5:7d:25:ac:f6:31:e8: f5:d9:c2:8a:bb:ba:12:7c:61:04:e0:e7:12:6b:29: ea:59:57:60:89:3a:9a:28:40:71:b2:cf:b1:a5:1d: b0:f1:e0:b3:20:83:0d:59:9e:f4:73:24:42:23:34: d2:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:24:57:57:82:40:7B:C2:ED:0E:8E:86:A4:2B:4C:A4:C0:51:DA:A4 X509v3 Authority Key Identifier: keyid:B3:CA:FB:59:F1:0B:03:AD:21:06:E8:21:5D:BB:90:3F:15:7D:0C:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/3132302e32342e302e302f31342d3234203d3e203337393633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 120.24.0.0/14 Signature Algorithm: sha256WithRSAEncryption 3e:11:24:ca:c4:1f:49:f2:f5:2e:a3:a0:16:f0:54:c2:a3:e4: 57:26:d6:2f:7a:68:e9:ed:91:1c:52:0c:5d:26:ac:1d:5b:e5: 9b:e3:b5:76:2e:be:55:70:2b:aa:3d:c2:f4:16:60:fc:62:48: 10:ce:35:f7:30:89:71:46:d2:c9:e1:65:8c:74:9c:92:b1:ca: ee:62:58:d1:09:79:83:16:a3:40:ae:28:f5:cf:f9:7f:b0:00: d7:c7:f3:30:50:be:19:18:5b:93:61:65:a6:3b:3d:f9:06:7d: 29:dc:3a:fe:d2:ca:99:c4:b9:f6:24:2f:86:cd:34:3a:d6:0e: 8c:c5:d6:c9:46:6f:a7:27:dc:b8:e6:d1:eb:74:50:a7:ea:ef: 6a:f0:ac:58:52:c9:bb:5c:95:eb:36:ed:f5:7d:82:a6:14:01: 3a:f0:d7:f9:25:f4:42:12:9a:62:20:e2:52:ef:bd:b9:98:8f: de:3f:d3:aa:0a:9d:9a:fe:6f:d7:51:a0:8d:48:50:57:99:80: 1a:5a:ff:5d:01:a6:7b:a1:d8:ea:5f:d7:48:19:7d:79:1a:21: 41:95:9c:0b:21:e2:34:95:5f:da:89:54:98:5f:cb:8a:49:d2: e0:e4:d1:1c:7c:0b:be:81:9a:7f:5b:f4:97:eb:5a:fc:55:c8: 1e:6e:5d:52 -----BEGIN CERTIFICATE----- MIIFBDCCA+ygAwIBAgIURvDZmJVyzwo57991S/Y7k4gGPxQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjNDQUZCNTlGMTBCMDNBRDIxMDZFODIxNURCQjkwM0Yx NTdEMEM4RTAeFw0yNjA0MjAwODMxNDhaFw0yNzA0MTkwODM2NDhaMDMxMTAvBgNV BAMTKDg0MjQ1NzU3ODI0MDdCQzJFRDBFOEU4NkE0MkI0Q0E0QzA1MURBQTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9kWSJBKPG7CNbMU3z/3rr/9fR yWXdja4lJ3MkJ5av1zSMlbTrM43SskfkI/K+jh+orunFMwIARGuHEq3wBggNQD0B p3MyqYHuLFLoKFivf0yEMrfTMhVDAqf+0P/P4X6fFZSX7ncjNcmTBkZsY4w1WCTA IE5p2AgjEkNSpj6zP8Ny0zgLh4vwuTQuH5Rho+a5RxzeWVh20ABbbE+Ybgmgq95V cp6RV4nCLi1dILwMktW8tITPWHT/cUb/N0mnqyhdCNaRicDK+Qi1pX0lrPYx6PXZ woq7uhJ8YQTg5xJrKepZV2CJOpooQHGyz7GlHbDx4LMggw1ZnvRzJEIjNNIlAgMB AAGjggIOMIICCjAdBgNVHQ4EFgQUhCRXV4JAe8LtDo6GpCtMpMBR2qQwHwYDVR0j BBgwFoAUs8r7WfELA60hBughXbuQPxV9DI4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTg4NzY0NDA5MDYzMDE0NS8wL0IzQ0FGQjU5RjEwQjAzQUQyMTA2RTgyMTVEQkI5 MDNGMTU3RDBDOEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQjNDQUZCNTlGMTBCMDNBRDIxMDZFODIxNURCQjkwM0YxNTdEMEM4RS5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1ODg3NjQ0MDkwNjMwMTQ1LzAvMzEzMjMwMmUzMjM0 MmUzMDJlMzAyZjMxMzQyZDMyMzQyMDNkM2UyMDMzMzczOTM2MzMucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD AwJ4GDANBgkqhkiG9w0BAQsFAAOCAQEAPhEkysQfSfL1LqOgFvBUwqPkVybWL3po 6e2RHFIMXSasHVvlm+O1di6+VXArqj3C9BZg/GJIEM419zCJcUbSyeFljHSckrHK 7mJY0Ql5gxajQK4o9c/5f7AA18fzMFC+GRhbk2Flpjs9+QZ9Kdw6/tLKmcS59iQv hs00OtYOjMXWyUZvpyfcuObR63RQp+rvavCsWFLJu1yV6zbt9X2CphQBOvDX+SX0 QhKaYiDiUu+9uZiP3j/Tqgqdmv5v11GgjUhQV5mAGlr/XQGme6HY6l/XSBl9eRoh QZWcCyHiNJVf2olUmF/LiknS4OTRHHwLvoGaf1v0l+ta/FXIHm5dUg== -----END CERTIFICATE-----Generated at Wed Apr 22 06:40:55 2026 by rpki-client