$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1068363599790997506/0/3131342e36372e36342e302f31382d3234203d3e2034383131.roa File: 3131342e36372e36342e302f31382d3234203d3e2034383131.roa (raw, json) Hash identifier: ZCEAAjxsjl4pbQayJ8oWRLGA8vzbVnVrjMCqQO8Nvew= Subject key identifier: 25:43:87:70:81:3D:9C:0D:C5:94:23:15:97:30:5B:28:75:29:38:24 Certificate issuer: /CN=D6805DB309057612CC9272CB2C85BA6CB0D389E5 Certificate serial: 194A4BC9529B5B8FCB99BDF7D5DE01C7B0C51536 Authority key identifier: D6:80:5D:B3:09:05:76:12:CC:92:72:CB:2C:85:BA:6C:B0:D3:89:E5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D6805DB309057612CC9272CB2C85BA6CB0D389E5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/3131342e36372e36342e302f31382d3234203d3e2034383131.roa Signing time: Thu 09 Apr 2026 06:22:52 +0000 ROA not before: Thu 09 Apr 2026 06:17:52 +0000 ROA not after: Thu 08 Apr 2027 06:22:52 +0000 asID: 4811 IP address blocks: 114.67.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/D6805DB309057612CC9272CB2C85BA6CB0D389E5.crl rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/D6805DB309057612CC9272CB2C85BA6CB0D389E5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D6805DB309057612CC9272CB2C85BA6CB0D389E5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 12:36:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:4a:4b:c9:52:9b:5b:8f:cb:99:bd:f7:d5:de:01:c7:b0:c5:15:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D6805DB309057612CC9272CB2C85BA6CB0D389E5 Validity Not Before: Apr 9 06:17:52 2026 GMT Not After : Apr 8 06:22:52 2027 GMT Subject: CN=25438770813D9C0DC594231597305B2875293824 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:35:8d:fc:28:a2:9c:ff:08:28:1b:08:e0:5b: bb:a9:ad:38:e8:4d:31:cc:da:7a:38:f8:42:a9:fe: 22:60:5d:6c:02:a9:9a:cc:07:84:68:f2:6c:ff:85: e1:0d:c4:a6:fa:3e:b3:85:cd:5a:42:ee:46:7c:62: 6a:59:8f:09:af:ba:28:68:ef:c2:09:af:de:39:56: 71:a9:a1:69:5b:9d:71:70:5e:55:e4:81:7a:9e:b9: 95:b5:ae:8f:55:3f:4e:f5:63:1e:b4:e1:5d:66:9c: 62:40:56:85:7b:16:e4:15:70:40:d8:aa:1d:33:f0: 62:bc:0a:a9:cc:ca:ba:9c:a5:a9:62:52:5e:90:aa: 24:c6:d2:61:43:72:8b:b1:8e:5f:c5:8b:f4:4a:f1: 83:06:61:89:a5:fe:37:dd:c3:dc:b9:79:7e:f6:8d: dc:4b:a3:83:93:89:34:82:03:2b:6d:d3:a6:33:f1: 3f:00:2a:a2:8f:b0:e9:e1:04:19:96:4c:90:93:02: 9f:02:76:a8:4f:3d:23:c7:a6:cd:5f:29:b1:87:d5: 0b:63:8c:af:97:fa:7c:10:85:60:36:a4:28:5a:59: fb:58:cc:a6:26:b4:4d:32:3d:5d:63:71:58:6c:56: 94:64:a2:33:dd:f2:8a:ab:f1:e3:cc:dc:b5:95:ec: be:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:43:87:70:81:3D:9C:0D:C5:94:23:15:97:30:5B:28:75:29:38:24 X509v3 Authority Key Identifier: keyid:D6:80:5D:B3:09:05:76:12:CC:92:72:CB:2C:85:BA:6C:B0:D3:89:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/D6805DB309057612CC9272CB2C85BA6CB0D389E5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D6805DB309057612CC9272CB2C85BA6CB0D389E5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/3131342e36372e36342e302f31382d3234203d3e2034383131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.67.64.0/18 Signature Algorithm: sha256WithRSAEncryption ab:22:ec:46:e5:69:aa:23:34:c4:be:57:19:cb:ed:02:4b:d4: af:03:0d:5b:10:59:d3:6a:b9:49:af:3d:93:a6:b7:0c:75:6b: 36:84:ef:01:da:4b:5a:98:66:e2:60:cc:48:a0:e1:ab:7e:b8: 52:8a:20:42:5e:1d:f7:06:fd:81:d9:a4:2d:67:3d:96:ab:66: e6:09:41:4e:0f:4e:2a:8b:8d:ff:16:c4:78:cb:c4:e9:25:33: ad:68:67:c9:b6:29:bf:46:76:1f:50:20:68:ce:09:3e:48:fb: c5:64:31:f0:02:44:15:b9:13:6b:00:36:35:bf:93:f9:ab:32: 44:3f:92:de:f6:c5:28:f1:96:f6:0f:c5:9f:3b:6d:f7:11:67: 49:8f:61:25:97:af:50:16:52:ca:4e:4a:31:0a:a8:6f:e3:38: 3f:b8:09:32:0b:c1:4f:3c:08:d9:0b:06:1d:3a:2d:2d:2e:11: 1e:07:dc:8b:cd:3b:d5:11:e9:32:12:60:29:14:66:30:23:a5: 9f:bd:12:2c:d8:1d:2f:40:6a:7c:77:bc:32:58:bd:e8:2b:2f: 7a:a4:ae:be:54:c3:5b:a0:06:56:bc:8e:fe:e6:04:a3:24:58: 2c:66:ba:78:74:5a:c4:bf:85:5e:53:6e:c3:c4:29:14:16:5a: 2f:ea:c0:a1 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUGUpLyVKbW4/Lmb331d4Bx7DFFTYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDY4MDVEQjMwOTA1NzYxMkNDOTI3MkNCMkM4NUJBNkNC MEQzODlFNTAeFw0yNjA0MDkwNjE3NTJaFw0yNzA0MDgwNjIyNTJaMDMxMTAvBgNV BAMTKDI1NDM4NzcwODEzRDlDMERDNTk0MjMxNTk3MzA1QjI4NzUyOTM4MjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeNY38KKKc/wgoGwjgW7uprTjo TTHM2no4+EKp/iJgXWwCqZrMB4Ro8mz/heENxKb6PrOFzVpC7kZ8YmpZjwmvuiho 78IJr945VnGpoWlbnXFwXlXkgXqeuZW1ro9VP071Yx604V1mnGJAVoV7FuQVcEDY qh0z8GK8CqnMyrqcpaliUl6QqiTG0mFDcouxjl/Fi/RK8YMGYYml/jfdw9y5eX72 jdxLo4OTiTSCAytt06Yz8T8AKqKPsOnhBBmWTJCTAp8CdqhPPSPHps1fKbGH1Qtj jK+X+nwQhWA2pChaWftYzKYmtE0yPV1jcVhsVpRkojPd8oqr8ePM3LWV7L7tAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUJUOHcIE9nA3FlCMVlzBbKHUpOCQwHwYDVR0j BBgwFoAU1oBdswkFdhLMknLLLIW6bLDTieUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 ODM2MzU5OTc5MDk5NzUwNi8wL0Q2ODA1REIzMDkwNTc2MTJDQzkyNzJDQjJDODVC QTZDQjBEMzg5RTUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRDY4MDVEQjMwOTA1NzYxMkNDOTI3MkNCMkM4NUJBNkNCMEQzODlFNS5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY4MzYzNTk5NzkwOTk3NTA2LzAvMzEzMTM0MmUzNjM3 MmUzNjM0MmUzMDJmMzEzODJkMzIzNDIwM2QzZTIwMzQzODMxMzEucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAZyQ0AwDQYJKoZIhvcNAQELBQADggEBAKsi7EblaaojNMS+VxnL7QJL1K8DDVsQ WdNquUmvPZOmtwx1azaE7wHaS1qYZuJgzEig4at+uFKKIEJeHfcG/YHZpC1nPZar ZuYJQU4PTiqLjf8WxHjLxOklM61oZ8m2Kb9Gdh9QIGjOCT5I+8VkMfACRBW5E2sA NjW/k/mrMkQ/kt72xSjxlvYPxZ87bfcRZ0mPYSWXr1AWUspOSjEKqG/jOD+4CTIL wU88CNkLBh06LS0uER4H3IvNO9UR6TISYCkUZjAjpZ+9EizYHS9Aanx3vDJYvegr L3qkrr5Uw1ugBla8jv7mBKMkWCxmunh0WsS/hV5TbsPEKRQWWi/qwKE= -----END CERTIFICATE-----Generated at Mon Apr 13 15:24:02 2026 by rpki-client