$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065887644090630145/0/3132302e37362e302e302f31342d3234203d3e203337393633.roa File: 3132302e37362e302e302f31342d3234203d3e203337393633.roa (raw, json) Hash identifier: Rh9B7yk0RWee/ttvw6MySqtyh6i0ION+3cEYdZQ5oGo= Subject key identifier: ED:2A:47:E9:5F:15:CB:DE:65:8E:44:1F:17:5F:1E:E8:7B:DD:4C:43 Certificate issuer: /CN=B3CAFB59F10B03AD2106E8215DBB903F157D0C8E Certificate serial: 755201C442136D88277FAEB3C18231467D04330F Authority key identifier: B3:CA:FB:59:F1:0B:03:AD:21:06:E8:21:5D:BB:90:3F:15:7D:0C:8E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/3132302e37362e302e302f31342d3234203d3e203337393633.roa Signing time: Wed 22 Apr 2026 02:23:10 +0000 ROA not before: Wed 22 Apr 2026 02:18:10 +0000 ROA not after: Wed 21 Apr 2027 02:23:10 +0000 asID: 37963 IP address blocks: 120.76.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.crl rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 06:19:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:52:01:c4:42:13:6d:88:27:7f:ae:b3:c1:82:31:46:7d:04:33:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B3CAFB59F10B03AD2106E8215DBB903F157D0C8E Validity Not Before: Apr 22 02:18:10 2026 GMT Not After : Apr 21 02:23:10 2027 GMT Subject: CN=ED2A47E95F15CBDE658E441F175F1EE87BDD4C43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:27:35:2d:bf:92:4d:19:48:1f:b2:6a:bb:ba: ed:5a:01:69:bd:96:aa:78:fc:7b:40:7e:b3:2a:f1: cf:ac:15:11:7f:93:e9:09:a9:d9:1d:42:6c:f9:c1: 65:86:20:84:48:65:18:83:84:f0:a7:64:fe:3a:4a: 2d:00:96:7e:73:a2:bd:83:5f:18:94:1a:84:8a:ff: 15:34:c9:a3:4c:5a:d4:86:65:87:9d:4b:e6:d4:13: 97:64:7a:ab:46:c8:a6:5b:cb:d0:f0:3f:4e:4a:dc: fc:17:db:d8:71:3e:8e:a9:d0:fc:82:f6:ac:88:62: af:30:05:f8:fe:bf:26:90:a0:f3:2a:c5:64:81:76: 3d:a2:74:79:2c:52:07:eb:da:6b:49:5d:fc:7a:47: f4:01:1f:b6:bc:cc:7e:48:81:e3:54:81:58:78:d7: e5:17:13:ba:39:2f:b4:9b:cd:8c:eb:bc:d3:51:35: 6d:85:ef:f8:40:1b:2d:4b:de:15:d9:d9:5e:2d:06: cf:31:12:cc:b2:48:44:cb:87:7a:20:98:98:71:46: 12:88:f2:c1:92:f9:f8:40:e6:f8:b7:6c:7b:00:09: 37:f5:48:aa:6c:79:e7:58:7b:76:f8:9b:6b:b8:60: b0:e8:b0:41:65:bb:cd:99:9b:e1:7f:d1:04:9d:8e: 5b:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:2A:47:E9:5F:15:CB:DE:65:8E:44:1F:17:5F:1E:E8:7B:DD:4C:43 X509v3 Authority Key Identifier: keyid:B3:CA:FB:59:F1:0B:03:AD:21:06:E8:21:5D:BB:90:3F:15:7D:0C:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/3132302e37362e302e302f31342d3234203d3e203337393633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 120.76.0.0/14 Signature Algorithm: sha256WithRSAEncryption ae:68:f7:45:fc:a1:95:4e:d0:c9:8d:50:35:16:3e:07:55:45: ac:2c:9f:b5:fe:14:f6:8a:f0:d7:65:0d:17:71:30:4e:21:6b: b7:d6:f2:f6:ce:93:ae:53:07:4c:e5:60:99:c6:fb:cd:87:98: aa:20:bb:d0:36:f3:6a:84:53:73:49:6e:ae:95:97:7d:e0:42: b1:f7:89:0d:ac:47:70:d2:92:7a:07:fa:e1:6d:86:37:f1:25: a9:2b:2f:73:b2:6b:86:f8:95:c5:b7:37:97:f9:2b:30:74:79: 34:26:9e:f7:45:55:8f:3c:b2:3c:b0:1f:09:0b:92:69:cf:ab: 2a:de:bc:5d:a2:8e:e6:bb:bb:20:13:fd:83:31:0a:a3:df:e1: 2a:a4:dd:e4:af:f7:16:31:8d:eb:3c:56:4b:68:53:46:d0:6f: 35:9d:25:b7:1f:90:e7:97:81:0b:03:3c:c4:29:87:f8:11:a7: a4:d1:72:9a:e7:2f:7f:56:6c:48:9b:dc:ec:e5:79:7f:4c:b7: 8e:ab:7f:fe:e8:a2:75:91:19:6c:c6:d8:a4:5b:40:3a:26:92: 05:8d:6e:6a:7f:09:bb:d5:2c:69:10:93:d9:a6:1f:bc:2c:cf: 24:1f:a5:e1:5e:ea:a1:9a:38:2e:18:02:c3:07:8b:bf:41:12: 81:ee:57:97 -----BEGIN CERTIFICATE----- MIIFBDCCA+ygAwIBAgIUdVIBxEITbYgnf66zwYIxRn0EMw8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjNDQUZCNTlGMTBCMDNBRDIxMDZFODIxNURCQjkwM0Yx NTdEMEM4RTAeFw0yNjA0MjIwMjE4MTBaFw0yNzA0MjEwMjIzMTBaMDMxMTAvBgNV BAMTKEVEMkE0N0U5NUYxNUNCREU2NThFNDQxRjE3NUYxRUU4N0JERDRDNDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZJzUtv5JNGUgfsmq7uu1aAWm9 lqp4/HtAfrMq8c+sFRF/k+kJqdkdQmz5wWWGIIRIZRiDhPCnZP46Si0Aln5zor2D XxiUGoSK/xU0yaNMWtSGZYedS+bUE5dkeqtGyKZby9DwP05K3PwX29hxPo6p0PyC 9qyIYq8wBfj+vyaQoPMqxWSBdj2idHksUgfr2mtJXfx6R/QBH7a8zH5IgeNUgVh4 1+UXE7o5L7SbzYzrvNNRNW2F7/hAGy1L3hXZ2V4tBs8xEsyySETLh3ogmJhxRhKI 8sGS+fhA5vi3bHsACTf1SKpseedYe3b4m2u4YLDosEFlu82Zm+F/0QSdjltpAgMB AAGjggIOMIICCjAdBgNVHQ4EFgQU7SpH6V8Vy95ljkQfF18e6HvdTEMwHwYDVR0j BBgwFoAUs8r7WfELA60hBughXbuQPxV9DI4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTg4NzY0NDA5MDYzMDE0NS8wL0IzQ0FGQjU5RjEwQjAzQUQyMTA2RTgyMTVEQkI5 MDNGMTU3RDBDOEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQjNDQUZCNTlGMTBCMDNBRDIxMDZFODIxNURCQjkwM0YxNTdEMEM4RS5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1ODg3NjQ0MDkwNjMwMTQ1LzAvMzEzMjMwMmUzNzM2 MmUzMDJlMzAyZjMxMzQyZDMyMzQyMDNkM2UyMDMzMzczOTM2MzMucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD AwJ4TDANBgkqhkiG9w0BAQsFAAOCAQEArmj3RfyhlU7QyY1QNRY+B1VFrCyftf4U 9orw12UNF3EwTiFrt9by9s6TrlMHTOVgmcb7zYeYqiC70DbzaoRTc0lurpWXfeBC sfeJDaxHcNKSegf64W2GN/ElqSsvc7JrhviVxbc3l/krMHR5NCae90VVjzyyPLAf CQuSac+rKt68XaKO5ru7IBP9gzEKo9/hKqTd5K/3FjGN6zxWS2hTRtBvNZ0ltx+Q 55eBCwM8xCmH+BGnpNFymucvf1ZsSJvc7OV5f0y3jqt//uiidZEZbMbYpFtAOiaS BY1uan8Ju9UsaRCT2aYfvCzPJB+l4V7qoZo4LhgCwweLv0ESge5Xlw== -----END CERTIFICATE-----Generated at Wed Apr 22 06:40:55 2026 by rpki-client