$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098988489464086530/0/3131382e3234322e302e302f31362d3136203d3e2030.roa File: 3131382e3234322e302e302f31362d3136203d3e2030.roa (raw, json) Hash identifier: mUk74oXYFU6Ae6TtZNwjm0VOpRcUFRFOOIDC/sj+JZU= Subject key identifier: 04:02:1D:AB:89:4C:2B:4C:E7:73:32:FD:CB:C1:3E:9D:17:4E:54:3F Certificate issuer: /CN=A7133A09AC078B101CB7980FE646810280C0D64F Certificate serial: 21BF3D73D47346ACE881C8A1F8812E7D10702BB2 Authority key identifier: A7:13:3A:09:AC:07:8B:10:1C:B7:98:0F:E6:46:81:02:80:C0:D6:4F Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A7133A09AC078B101CB7980FE646810280C0D64F.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098988489464086530/0/3131382e3234322e302e302f31362d3136203d3e2030.roa Signing time: Wed 22 Apr 2026 13:26:15 +0000 ROA not before: Wed 22 Apr 2026 13:21:15 +0000 ROA not after: Wed 21 Apr 2027 13:26:15 +0000 asID: 0 IP address blocks: 118.242.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098988489464086530/0/A7133A09AC078B101CB7980FE646810280C0D64F.crl rsync://rpki-rps.cnnic.cn/repo/A1098988489464086530/0/A7133A09AC078B101CB7980FE646810280C0D64F.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A7133A09AC078B101CB7980FE646810280C0D64F.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 05:16:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:bf:3d:73:d4:73:46:ac:e8:81:c8:a1:f8:81:2e:7d:10:70:2b:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A7133A09AC078B101CB7980FE646810280C0D64F Validity Not Before: Apr 22 13:21:15 2026 GMT Not After : Apr 21 13:26:15 2027 GMT Subject: CN=04021DAB894C2B4CE77332FDCBC13E9D174E543F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:bf:d8:39:25:3a:fc:6e:68:f5:b2:98:1f:15: 20:26:74:74:08:a2:bf:98:63:3f:05:ee:c8:f1:f5: 30:e6:98:40:b6:c8:cb:e8:b7:99:6d:90:83:aa:b5: d8:08:fd:23:7f:2b:ec:9e:c2:23:d0:41:81:d5:6f: 50:fc:c9:21:dd:e1:42:69:0a:ef:49:a4:74:8c:1c: 59:92:88:e2:6d:a0:7d:f8:4f:97:6d:8c:07:d6:98: 3a:18:67:2d:bb:0f:c5:e6:d7:48:dc:e9:88:43:b0: ab:4b:8e:d6:12:2e:27:48:2d:78:a9:d9:11:8e:b5: 86:3a:7e:ad:49:c2:d6:24:8e:af:17:fa:36:e2:70: 26:b4:96:40:59:51:5c:e0:11:cd:54:fe:35:b8:ce: 69:85:e4:e0:39:07:79:23:5c:f6:68:ac:88:35:66: 5d:8c:a3:bf:40:b8:0c:03:dd:dd:fd:0d:ae:2f:7f: e9:85:c8:50:74:49:5d:e8:2b:10:74:37:42:94:86: 17:6b:c5:2b:5e:e4:de:58:c1:90:58:58:9a:93:c3: 80:af:2e:14:99:0b:8e:54:76:de:67:4c:30:7c:90: 34:13:db:f6:5b:bc:5a:c2:4a:7b:7c:67:77:2f:d4: 87:18:dc:6e:bf:30:2c:8b:cf:9f:cb:18:30:35:e3: a7:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:02:1D:AB:89:4C:2B:4C:E7:73:32:FD:CB:C1:3E:9D:17:4E:54:3F X509v3 Authority Key Identifier: keyid:A7:13:3A:09:AC:07:8B:10:1C:B7:98:0F:E6:46:81:02:80:C0:D6:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098988489464086530/0/A7133A09AC078B101CB7980FE646810280C0D64F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A7133A09AC078B101CB7980FE646810280C0D64F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098988489464086530/0/3131382e3234322e302e302f31362d3136203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 118.242.0.0/16 Signature Algorithm: sha256WithRSAEncryption e8:8f:69:0e:08:05:01:50:76:13:cd:7a:d1:85:94:6e:09:71: 7a:5d:17:a0:60:a8:a5:14:41:0f:ca:0f:bd:c8:8d:d4:3a:fd: c8:bc:8d:c2:7c:4d:fe:50:a0:b4:85:0f:55:4e:26:e1:72:dd: 1e:82:1e:50:a3:c5:90:e4:41:11:98:39:c2:5c:32:f1:c2:db: 24:fe:4b:55:61:bb:61:af:16:52:21:9a:e9:c2:ac:26:a5:6c: c3:2e:4c:2f:c4:8c:6e:44:0d:8a:de:89:c2:cf:67:31:b2:97: 3a:45:c6:5f:85:87:97:66:0a:fd:6f:ba:40:df:d6:0e:28:b7: 98:69:c4:68:39:b7:0d:c8:a3:78:0a:9d:3e:b6:45:6d:61:f4: 58:c4:70:ab:71:50:19:31:a3:26:94:d3:e0:91:9f:27:7d:d3: 72:77:f1:18:8e:05:6f:8f:d7:08:a7:58:0b:bb:79:e0:61:e3: e9:5b:d1:35:6a:ec:b8:6f:d3:26:e3:40:80:54:13:af:81:a7: 82:32:c5:03:0f:11:18:58:4d:f8:85:75:7c:6a:37:2e:a3:7e: 13:03:a3:86:f9:8e:b0:6a:4b:12:f5:57:63:52:d6:92:a7:ad: df:09:b4:1e:d0:c7:51:ff:b0:e3:1c:d0:28:6d:ed:ff:87:29: a8:8f:e9:6c -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgIUIb89c9RzRqzogcih+IEufRBwK7IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTcxMzNBMDlBQzA3OEIxMDFDQjc5ODBGRTY0NjgxMDI4 MEMwRDY0RjAeFw0yNjA0MjIxMzIxMTVaFw0yNzA0MjExMzI2MTVaMDMxMTAvBgNV BAMTKDA0MDIxREFCODk0QzJCNENFNzczMzJGRENCQzEzRTlEMTc0RTU0M0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDvv9g5JTr8bmj1spgfFSAmdHQI or+YYz8F7sjx9TDmmEC2yMvot5ltkIOqtdgI/SN/K+yewiPQQYHVb1D8ySHd4UJp Cu9JpHSMHFmSiOJtoH34T5dtjAfWmDoYZy27D8Xm10jc6YhDsKtLjtYSLidILXip 2RGOtYY6fq1JwtYkjq8X+jbicCa0lkBZUVzgEc1U/jW4zmmF5OA5B3kjXPZorIg1 Zl2Mo79AuAwD3d39Da4vf+mFyFB0SV3oKxB0N0KUhhdrxSte5N5YwZBYWJqTw4Cv LhSZC45Udt5nTDB8kDQT2/ZbvFrCSnt8Z3cv1IcY3G6/MCyLz5/LGDA146ehAgMB AAGjggIIMIICBDAdBgNVHQ4EFgQUBAIdq4lMK0znczL9y8E+nRdOVD8wHwYDVR0j BBgwFoAUpxM6CawHixAct5gP5kaBAoDA1k8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODk4ODQ4OTQ2NDA4NjUzMC8wL0E3MTMzQTA5QUMwNzhCMTAxQ0I3OTgwRkU2NDY4 MTAyODBDMEQ2NEYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQTcxMzNBMDlBQzA3OEIxMDFDQjc5ODBGRTY0NjgxMDI4MEMwRDY0Ri5jZXIw gYIGCCsGAQUFBwELBHYwdDByBggrBgEFBQcwC4ZmcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk4OTg4NDg5NDY0MDg2NTMwLzAvMzEzMTM4MmUzMjM0 MzIyZTMwMmUzMDJmMzEzNjJkMzEzNjIwM2QzZTIwMzAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwB28jAN BgkqhkiG9w0BAQsFAAOCAQEA6I9pDggFAVB2E8160YWUbglxel0XoGCopRRBD8oP vciN1Dr9yLyNwnxN/lCgtIUPVU4m4XLdHoIeUKPFkORBEZg5wlwy8cLbJP5LVWG7 Ya8WUiGa6cKsJqVswy5ML8SMbkQNit6Jws9nMbKXOkXGX4WHl2YK/W+6QN/WDii3 mGnEaDm3DcijeAqdPrZFbWH0WMRwq3FQGTGjJpTT4JGfJ33TcnfxGI4Fb4/XCKdY C7t54GHj6VvRNWrsuG/TJuNAgFQTr4GngjLFAw8RGFhN+IV1fGo3LqN+EwOjhvmO sGpLEvVXY1LWkqet3wm0HtDHUf+w4xzQKG3t/4cpqI/pbA== -----END CERTIFICATE-----Generated at Mon Apr 27 10:59:47 2026 by rpki-client