$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199947812867/0/3231312e3134372e3232342e302f32302d3230203d3e20313334373733.roa File: 3231312e3134372e3232342e302f32302d3230203d3e20313334373733.roa (raw, json) Hash identifier: sBR1o9PrHvln4h4aU+iUdKEdY5prerugFXs9dJok4rU= Subject key identifier: A5:2D:68:DE:8C:E6:E7:58:8D:83:06:0E:38:12:4F:DD:C0:A9:34:D8 Certificate issuer: /CN=F329F518724FAC695E33F5C78532CBF56BF4243D Certificate serial: 4097D93CC57FCC5549FA2858D708B4A8805CC775 Authority key identifier: F3:29:F5:18:72:4F:AC:69:5E:33:F5:C7:85:32:CB:F5:6B:F4:24:3D Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/F329F518724FAC695E33F5C78532CBF56BF4243D.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199947812867/0/3231312e3134372e3232342e302f32302d3230203d3e20313334373733.roa Signing time: Tue 14 Apr 2026 03:22:09 +0000 ROA not before: Tue 14 Apr 2026 03:17:09 +0000 ROA not after: Tue 13 Apr 2027 03:22:09 +0000 asID: 134773 IP address blocks: 211.147.224.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199947812867/0/F329F518724FAC695E33F5C78532CBF56BF4243D.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199947812867/0/F329F518724FAC695E33F5C78532CBF56BF4243D.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/F329F518724FAC695E33F5C78532CBF56BF4243D.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 08:55:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:97:d9:3c:c5:7f:cc:55:49:fa:28:58:d7:08:b4:a8:80:5c:c7:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F329F518724FAC695E33F5C78532CBF56BF4243D Validity Not Before: Apr 14 03:17:09 2026 GMT Not After : Apr 13 03:22:09 2027 GMT Subject: CN=A52D68DE8CE6E7588D83060E38124FDDC0A934D8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:2d:a6:a7:72:b1:dd:43:5e:9d:75:f5:d7:fb: 28:f4:e9:28:3a:a4:81:ad:f4:6f:34:94:51:f7:64: a2:21:02:8b:3a:36:84:e6:97:37:18:5c:d9:a2:b9: 8c:3b:2e:8a:65:d8:2a:c3:2e:9b:c1:9d:c8:4a:c9: bd:ab:1f:e4:42:67:46:7d:57:1f:c2:a5:5a:8d:e9: b0:6b:a8:e7:67:4f:3f:63:37:b3:c4:12:30:0a:fa: a7:1f:3a:5e:21:e1:2b:bd:91:98:a9:fa:55:c7:f4: ec:3b:50:98:3d:d9:52:94:53:28:53:18:4c:d6:62: b7:fa:2a:e1:1c:df:00:54:37:0d:c2:e3:04:4d:67: 56:f0:cf:97:40:b7:ef:73:a5:11:bd:cc:fb:6b:41: 79:85:07:2e:d5:26:69:aa:ae:4f:04:eb:a3:b9:7f: f3:2b:d4:f9:eb:df:9f:f2:bb:33:4c:3b:ec:1a:78: 8a:37:c3:32:b3:a1:63:28:b9:a4:49:4c:2d:61:45: e9:51:ae:df:d2:04:a9:b7:f5:9f:70:5f:35:8d:40: 07:28:17:46:37:3c:08:7b:0c:f5:63:f7:9f:8a:63: e2:8f:cb:b0:a3:70:37:f8:16:95:da:c9:2c:47:cc: 95:e8:7a:e6:ad:14:5e:1f:8a:e3:ff:bb:65:13:33: 3c:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:2D:68:DE:8C:E6:E7:58:8D:83:06:0E:38:12:4F:DD:C0:A9:34:D8 X509v3 Authority Key Identifier: keyid:F3:29:F5:18:72:4F:AC:69:5E:33:F5:C7:85:32:CB:F5:6B:F4:24:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947812867/0/F329F518724FAC695E33F5C78532CBF56BF4243D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/F329F518724FAC695E33F5C78532CBF56BF4243D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947812867/0/3231312e3134372e3232342e302f32302d3230203d3e20313334373733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 211.147.224.0/20 Signature Algorithm: sha256WithRSAEncryption be:67:9f:a5:8b:8a:f4:91:88:03:b6:4c:d3:90:82:d6:87:e8: 77:fd:66:b4:f4:2d:90:e2:dc:dc:29:48:13:9f:4c:58:d1:67: 2b:98:40:ea:12:d8:a6:25:e7:cc:5b:58:6a:7d:f0:28:8e:24: f9:fb:e3:5c:43:96:6e:b7:92:30:2c:63:33:7d:e4:4f:1a:89: 0b:6e:c9:78:5e:84:53:9d:ff:d8:09:44:f8:e3:46:4b:07:1f: 2c:83:d0:4f:84:6a:dc:a0:4b:89:39:0b:57:13:a2:44:50:ff: b0:2c:df:01:4d:12:f0:9d:60:13:04:a2:be:30:b3:fb:0d:33: 4e:df:81:d1:e8:8c:ea:48:28:d1:2c:26:5b:2f:4e:19:90:7b: e2:3f:a7:9f:2e:c3:7e:75:64:36:26:c5:7f:ff:8f:32:c3:fd: df:d2:2a:86:82:63:24:41:ac:29:f1:b4:b9:87:e0:04:3b:fc: 05:35:39:8f:37:ef:62:76:ae:79:4d:1e:fa:af:15:a4:75:22: fc:84:42:7a:c5:48:2b:ef:0f:cb:94:2d:f7:92:11:cb:03:b9: 11:b9:b2:82:76:d8:3e:39:7e:a8:65:ce:34:70:29:20:6c:95: c3:39:58:eb:0a:47:8b:fc:db:da:f8:c3:88:d1:dd:df:68:ef: 46:fb:ad:ea -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUQJfZPMV/zFVJ+ihY1wi0qIBcx3UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjMyOUY1MTg3MjRGQUM2OTVFMzNGNUM3ODUzMkNCRjU2 QkY0MjQzRDAeFw0yNjA0MTQwMzE3MDlaFw0yNzA0MTMwMzIyMDlaMDMxMTAvBgNV BAMTKEE1MkQ2OERFOENFNkU3NTg4RDgzMDYwRTM4MTI0RkREQzBBOTM0RDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfLaancrHdQ16ddfXX+yj06Sg6 pIGt9G80lFH3ZKIhAos6NoTmlzcYXNmiuYw7Lopl2CrDLpvBnchKyb2rH+RCZ0Z9 Vx/CpVqN6bBrqOdnTz9jN7PEEjAK+qcfOl4h4Su9kZip+lXH9Ow7UJg92VKUUyhT GEzWYrf6KuEc3wBUNw3C4wRNZ1bwz5dAt+9zpRG9zPtrQXmFBy7VJmmqrk8E66O5 f/Mr1Pnr35/yuzNMO+waeIo3wzKzoWMouaRJTC1hRelRrt/SBKm39Z9wXzWNQAco F0Y3PAh7DPVj95+KY+KPy7CjcDf4FpXaySxHzJXoeuatFF4fiuP/u2UTMzxZAgMB AAGjggIaMIICFjAdBgNVHQ4EFgQUpS1o3ozm51iNgwYOOBJP3cCpNNgwHwYDVR0j BBgwFoAU8yn1GHJPrGleM/XHhTLL9Wv0JD0wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0NzgxMjg2Ny8wL0YzMjlGNTE4NzI0RkFDNjk1RTMzRjVDNzg1MzJD QkY1NkJGNDI0M0QuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRjMyOUY1MTg3MjRGQUM2OTVFMzNGNUM3ODUzMkNCRjU2QkY0MjQzRC5jZXIw gZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMDY1NTc2MTk5OTQ3ODEyODY3LzAvMzIzMTMxMmUz MTM0MzcyZTMyMzIzNDJlMzAyZjMyMzAyZDMyMzAyMDNkM2UyMDMxMzMzNDM3Mzcz My5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEBNOT4DANBgkqhkiG9w0BAQsFAAOCAQEAvmefpYuK9JGIA7ZM 05CC1ofod/1mtPQtkOLc3ClIE59MWNFnK5hA6hLYpiXnzFtYan3wKI4k+fvjXEOW breSMCxjM33kTxqJC27JeF6EU53/2AlE+ONGSwcfLIPQT4Rq3KBLiTkLVxOiRFD/ sCzfAU0S8J1gEwSivjCz+w0zTt+B0eiM6kgo0SwmWy9OGZB74j+nny7DfnVkNibF f/+PMsP939IqhoJjJEGsKfG0uYfgBDv8BTU5jzfvYnaueU0e+q8VpHUi/IRCesVI K+8Py5Qt95IRywO5EbmygnbYPjl+qGXONHApIGyVwzlY6wpHi/zb2vjDiNHd32jv Rvut6g== -----END CERTIFICATE-----Generated at Fri Apr 17 17:28:56 2026 by rpki-client