$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199947812867/0/3231312e3135352e32342e302f32312d3231203d3e20313334373733.roa File: 3231312e3135352e32342e302f32312d3231203d3e20313334373733.roa (raw, json) Hash identifier: X2d7GezgOHktmjCCbLKea/Jkjpb4m/hVfHk2jcNs1uo= Subject key identifier: F6:D2:EA:DD:BE:CA:5A:F3:A4:61:C0:6C:28:A6:9F:C9:74:C2:4A:3E Certificate issuer: /CN=F329F518724FAC695E33F5C78532CBF56BF4243D Certificate serial: 06CF711C1681D651D695BC2E1BC3C54C82946E7E Authority key identifier: F3:29:F5:18:72:4F:AC:69:5E:33:F5:C7:85:32:CB:F5:6B:F4:24:3D Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/F329F518724FAC695E33F5C78532CBF56BF4243D.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199947812867/0/3231312e3135352e32342e302f32312d3231203d3e20313334373733.roa Signing time: Tue 14 Apr 2026 03:20:50 +0000 ROA not before: Tue 14 Apr 2026 03:15:50 +0000 ROA not after: Tue 13 Apr 2027 03:20:50 +0000 asID: 134773 IP address blocks: 211.155.24.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199947812867/0/F329F518724FAC695E33F5C78532CBF56BF4243D.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199947812867/0/F329F518724FAC695E33F5C78532CBF56BF4243D.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/F329F518724FAC695E33F5C78532CBF56BF4243D.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 08:55:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:cf:71:1c:16:81:d6:51:d6:95:bc:2e:1b:c3:c5:4c:82:94:6e:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F329F518724FAC695E33F5C78532CBF56BF4243D Validity Not Before: Apr 14 03:15:50 2026 GMT Not After : Apr 13 03:20:50 2027 GMT Subject: CN=F6D2EADDBECA5AF3A461C06C28A69FC974C24A3E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:7d:de:5d:ad:79:fd:00:3e:07:03:aa:07:a6: e5:a5:54:6b:fd:66:b0:8e:1f:4c:2a:e5:71:e0:50: ac:b4:e9:5f:53:e0:b3:48:3a:c0:76:24:25:15:0b: b6:08:d1:72:59:fa:d2:e7:4b:58:44:1f:bf:0a:0b: 6f:b7:f7:92:11:21:28:1c:6d:60:09:7d:4a:98:df: e7:ca:24:78:08:f7:7a:c3:b4:fe:ea:a7:7c:82:f4: 71:a4:a5:28:d9:b8:03:7a:6c:cb:7d:0e:d1:b2:b8: fc:bb:88:b5:6d:06:2e:a3:ee:8b:8c:2b:c5:f1:7a: 73:86:b2:2e:41:65:bd:d0:61:e2:3f:af:f3:2c:84: ea:1a:97:59:93:58:2f:06:35:73:43:76:a9:48:b9: 1b:9d:5d:d0:f4:37:cf:96:7a:03:78:cf:88:92:bb: a6:34:04:e8:8d:e1:ad:b9:e9:a5:f4:15:4a:15:58: 41:83:85:65:f9:bd:0c:ec:33:f5:e8:7d:e2:31:1f: 6e:60:93:bc:08:e5:b2:6f:d3:2e:47:a1:4b:bc:d5: 0f:de:5a:3b:f6:54:2c:ab:d4:ee:3f:45:e3:0c:bb: 80:9f:fa:e7:36:bc:22:d2:14:c4:89:d0:53:d4:06: 72:9d:e3:e5:be:67:8b:fc:be:4f:ff:49:d9:76:c6: a3:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:D2:EA:DD:BE:CA:5A:F3:A4:61:C0:6C:28:A6:9F:C9:74:C2:4A:3E X509v3 Authority Key Identifier: keyid:F3:29:F5:18:72:4F:AC:69:5E:33:F5:C7:85:32:CB:F5:6B:F4:24:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947812867/0/F329F518724FAC695E33F5C78532CBF56BF4243D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/F329F518724FAC695E33F5C78532CBF56BF4243D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947812867/0/3231312e3135352e32342e302f32312d3231203d3e20313334373733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 211.155.24.0/21 Signature Algorithm: sha256WithRSAEncryption 68:f4:56:47:ce:3d:19:95:41:ec:67:38:c3:36:8d:fa:b7:6e: 14:19:d6:16:ce:d8:70:4c:74:c4:0b:a5:74:3c:db:96:b5:a6: ac:03:b3:62:10:e8:b0:1b:bf:fa:b5:3c:b6:9f:d2:bf:bc:94: 74:c0:59:1f:f8:02:12:f3:65:3d:81:99:07:12:c8:09:b4:ac: 2f:3f:be:b9:0e:ba:0e:4d:18:01:15:38:7f:66:28:7b:63:16: 7b:45:a8:d0:31:6b:40:40:4d:66:16:95:1c:5e:f7:ef:6e:e1: 41:fa:0f:9c:6c:3c:11:bf:99:ad:11:37:1b:ee:5c:e1:15:d0: c4:aa:9f:4e:6e:37:55:6a:c6:aa:1f:42:7a:2a:71:0d:5e:06: a1:19:d7:96:6b:ec:4e:36:8d:30:4c:a1:2a:ea:c5:b9:39:97: 4a:af:b3:48:87:86:2a:10:e0:b8:1c:bd:19:57:f7:a4:58:bd: 5e:be:87:82:af:4c:f3:41:14:7d:45:50:e8:51:97:4a:f3:52: b2:c4:18:ef:ac:a3:00:4b:56:1c:67:0f:7f:7f:a3:d1:8c:9c: ea:47:6e:c2:63:15:dc:81:f5:a8:3b:61:59:b7:29:c0:c8:bf: 5d:7d:4f:3f:5b:07:34:a6:a5:c6:33:65:6b:e2:e1:9e:c8:0b: 9c:b8:b7:b1 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUBs9xHBaB1lHWlbwuG8PFTIKUbn4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjMyOUY1MTg3MjRGQUM2OTVFMzNGNUM3ODUzMkNCRjU2 QkY0MjQzRDAeFw0yNjA0MTQwMzE1NTBaFw0yNzA0MTMwMzIwNTBaMDMxMTAvBgNV BAMTKEY2RDJFQUREQkVDQTVBRjNBNDYxQzA2QzI4QTY5RkM5NzRDMjRBM0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKfd5drXn9AD4HA6oHpuWlVGv9 ZrCOH0wq5XHgUKy06V9T4LNIOsB2JCUVC7YI0XJZ+tLnS1hEH78KC2+395IRISgc bWAJfUqY3+fKJHgI93rDtP7qp3yC9HGkpSjZuAN6bMt9DtGyuPy7iLVtBi6j7ouM K8XxenOGsi5BZb3QYeI/r/MshOoal1mTWC8GNXNDdqlIuRudXdD0N8+WegN4z4iS u6Y0BOiN4a256aX0FUoVWEGDhWX5vQzsM/XofeIxH25gk7wI5bJv0y5HoUu81Q/e Wjv2VCyr1O4/ReMMu4Cf+uc2vCLSFMSJ0FPUBnKd4+W+Z4v8vk//Sdl2xqP7AgMB AAGjggIXMIICEzAdBgNVHQ4EFgQU9tLq3b7KWvOkYcBsKKafyXTCSj4wHwYDVR0j BBgwFoAU8yn1GHJPrGleM/XHhTLL9Wv0JD0wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0NzgxMjg2Ny8wL0YzMjlGNTE4NzI0RkFDNjk1RTMzRjVDNzg1MzJD QkY1NkJGNDI0M0QuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRjMyOUY1MTg3MjRGQUM2OTVFMzNGNUM3ODUzMkNCRjU2QkY0MjQzRC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzYxOTk5NDc4MTI4NjcvMC8zMjMxMzEyZTMx MzUzNTJlMzIzNDJlMzAyZjMyMzEyZDMyMzEyMDNkM2UyMDMxMzMzNDM3MzczMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEA9ObGDANBgkqhkiG9w0BAQsFAAOCAQEAaPRWR849GZVB7Gc4wzaN +rduFBnWFs7YcEx0xAuldDzblrWmrAOzYhDosBu/+rU8tp/Sv7yUdMBZH/gCEvNl PYGZBxLICbSsLz++uQ66Dk0YARU4f2Yoe2MWe0Wo0DFrQEBNZhaVHF73727hQfoP nGw8Eb+ZrRE3G+5c4RXQxKqfTm43VWrGqh9CeipxDV4GoRnXlmvsTjaNMEyhKurF uTmXSq+zSIeGKhDguBy9GVf3pFi9Xr6Hgq9M80EUfUVQ6FGXSvNSssQY76yjAEtW HGcPf3+j0Yyc6kduwmMV3IH1qDthWbcpwMi/XX1PP1sHNKalxjNla+LhnsgLnLi3 sQ== -----END CERTIFICATE-----Generated at Fri Apr 17 17:28:54 2026 by rpki-client