$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199948468227/0/3131332e31382e39362e302f32312d3231203d3e2039383038.roa File: 3131332e31382e39362e302f32312d3231203d3e2039383038.roa (raw, json) Hash identifier: iCZ13LdMCPsgPGenpU0yejivjXbu4w697cmHXIMKfvM= Subject key identifier: 53:84:F3:84:55:F3:C6:9D:AB:F2:C3:E9:12:30:5C:02:50:AD:A0:5A Certificate issuer: /CN=373B103C68D9B84455801815E437C49839794406 Certificate serial: 6749DF69C5AC72E52FC6B7E095F71AAE82762450 Authority key identifier: 37:3B:10:3C:68:D9:B8:44:55:80:18:15:E4:37:C4:98:39:79:44:06 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/373B103C68D9B84455801815E437C49839794406.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199948468227/0/3131332e31382e39362e302f32312d3231203d3e2039383038.roa Signing time: Fri 17 Apr 2026 08:52:43 +0000 ROA not before: Fri 17 Apr 2026 08:47:43 +0000 ROA not after: Fri 16 Apr 2027 08:52:43 +0000 asID: 9808 IP address blocks: 113.18.96.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199948468227/0/373B103C68D9B84455801815E437C49839794406.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199948468227/0/373B103C68D9B84455801815E437C49839794406.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/373B103C68D9B84455801815E437C49839794406.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 11:25:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:49:df:69:c5:ac:72:e5:2f:c6:b7:e0:95:f7:1a:ae:82:76:24:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=373B103C68D9B84455801815E437C49839794406 Validity Not Before: Apr 17 08:47:43 2026 GMT Not After : Apr 16 08:52:43 2027 GMT Subject: CN=5384F38455F3C69DABF2C3E912305C0250ADA05A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:18:15:bf:72:58:0c:f3:70:74:86:82:26:fe: 7d:eb:9a:a9:98:fd:e7:37:f9:2b:c3:72:72:a9:42: 33:61:04:b4:f1:be:1b:06:60:c7:77:cc:ed:36:33: 5f:d1:c4:b5:00:1c:ec:35:5f:8b:c6:f0:8a:e6:a4: 0d:05:61:a3:ad:0a:cd:50:e6:89:54:94:7a:1f:d7: c4:04:16:1a:c4:cb:50:df:43:90:d0:31:a1:ce:73: c9:00:92:59:51:79:1e:e2:70:a0:70:f1:6e:ea:e4: 0f:d7:81:ea:68:20:21:d3:87:1b:e9:13:ff:f6:e7: 82:cf:47:ef:bd:fb:0d:2a:a0:18:0d:8b:45:23:62: 59:e5:aa:76:66:64:94:3a:b9:7c:66:47:a5:be:89: d9:2b:5e:49:5b:ff:c7:9f:f1:cb:d2:1f:5f:93:63: f3:7f:4e:83:f4:cc:14:9a:df:f9:ce:c0:4f:17:fe: 56:dd:0a:21:16:82:2c:99:03:84:cd:ba:bb:27:d5: f7:bb:d8:41:76:20:e4:e1:b7:5e:4b:11:b9:8a:a3: 21:ac:dc:96:9b:1b:cf:eb:85:1c:38:73:de:e9:f0: 87:df:b0:07:df:16:48:3d:01:ef:22:19:0b:90:a4: c6:d1:e5:c8:ee:99:7e:6b:03:57:99:8d:21:77:58: 33:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:84:F3:84:55:F3:C6:9D:AB:F2:C3:E9:12:30:5C:02:50:AD:A0:5A X509v3 Authority Key Identifier: keyid:37:3B:10:3C:68:D9:B8:44:55:80:18:15:E4:37:C4:98:39:79:44:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948468227/0/373B103C68D9B84455801815E437C49839794406.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/373B103C68D9B84455801815E437C49839794406.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948468227/0/3131332e31382e39362e302f32312d3231203d3e2039383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 113.18.96.0/21 Signature Algorithm: sha256WithRSAEncryption a2:32:49:8e:6f:79:90:52:71:8c:5a:b7:4d:35:f4:3f:e0:3a: 8f:d0:3f:40:08:be:5c:da:c7:76:0c:e6:e2:3e:44:02:15:1b: 18:46:78:0a:7b:f0:95:d1:24:02:49:19:05:ca:e9:83:34:d0: 89:d2:a7:4c:ed:65:91:33:a6:58:5e:0e:01:68:e5:20:91:52: 60:57:fd:8a:d2:bc:98:8f:27:25:88:b5:50:a8:5a:13:79:93: 77:db:2f:c8:7c:dd:9f:45:53:93:b3:86:72:9b:03:12:b7:ce: 43:f9:a8:6e:c7:4a:9b:85:16:76:cf:0a:f8:19:fc:65:89:f3: ee:4a:6f:9c:c4:03:ba:0e:6a:b3:88:50:8e:e8:3d:2a:f2:c7: 06:98:df:a1:d0:0d:c7:68:10:cf:48:b8:9e:e1:e3:ff:f4:9c: a7:35:02:e2:d8:04:f9:96:b7:4a:e8:92:9c:4f:01:21:e2:14: 78:13:18:bd:c5:75:14:16:93:90:e6:c0:74:04:67:6e:de:e6: 5a:2f:31:3a:bc:0d:2f:a3:8e:79:54:29:f9:28:a4:54:4f:35: 1b:f8:4b:21:ca:43:8f:cb:19:c7:5a:f9:37:4b:77:e8:ec:25: 65:ce:89:ec:f2:c3:e6:11:a3:92:7d:04:fa:8b:4b:e9:d6:6d: 70:e1:5b:46 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUZ0nfacWscuUvxrfglfcaroJ2JFAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzczQjEwM0M2OEQ5Qjg0NDU1ODAxODE1RTQzN0M0OTgz OTc5NDQwNjAeFw0yNjA0MTcwODQ3NDNaFw0yNzA0MTYwODUyNDNaMDMxMTAvBgNV BAMTKDUzODRGMzg0NTVGM0M2OURBQkYyQzNFOTEyMzA1QzAyNTBBREEwNUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKGBW/clgM83B0hoIm/n3rmqmY /ec3+SvDcnKpQjNhBLTxvhsGYMd3zO02M1/RxLUAHOw1X4vG8IrmpA0FYaOtCs1Q 5olUlHof18QEFhrEy1DfQ5DQMaHOc8kAkllReR7icKBw8W7q5A/XgepoICHThxvp E//254LPR++9+w0qoBgNi0UjYlnlqnZmZJQ6uXxmR6W+idkrXklb/8ef8cvSH1+T Y/N/ToP0zBSa3/nOwE8X/lbdCiEWgiyZA4TNursn1fe72EF2IOTht15LEbmKoyGs 3JabG8/rhRw4c97p8IffsAffFkg9Ae8iGQuQpMbR5cjumX5rA1eZjSF3WDNJAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUU4TzhFXzxp2r8sPpEjBcAlCtoFowHwYDVR0j BBgwFoAUNzsQPGjZuERVgBgV5DfEmDl5RAYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0ODQ2ODIyNy8wLzM3M0IxMDNDNjhEOUI4NDQ1NTgwMTgxNUU0MzdD NDk4Mzk3OTQ0MDYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMzczQjEwM0M2OEQ5Qjg0NDU1ODAxODE1RTQzN0M0OTgzOTc5NDQwNi5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc2MTk5OTQ4NDY4MjI3LzAvMzEzMTMzMmUzMTM4 MmUzOTM2MmUzMDJmMzIzMTJkMzIzMTIwM2QzZTIwMzkzODMwMzgucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BANxEmAwDQYJKoZIhvcNAQELBQADggEBAKIySY5veZBScYxat0019D/gOo/QP0AI vlzax3YM5uI+RAIVGxhGeAp78JXRJAJJGQXK6YM00InSp0ztZZEzplheDgFo5SCR UmBX/YrSvJiPJyWItVCoWhN5k3fbL8h83Z9FU5OzhnKbAxK3zkP5qG7HSpuFFnbP CvgZ/GWJ8+5Kb5zEA7oOarOIUI7oPSryxwaY36HQDcdoEM9IuJ7h4//0nKc1AuLY BPmWt0rokpxPASHiFHgTGL3FdRQWk5DmwHQEZ27e5lovMTq8DS+jjnlUKfkopFRP NRv4SyHKQ4/LGcda+TdLd+jsJWXOiezyw+YRo5J9BPqLS+nWbXDhW0Y= -----END CERTIFICATE-----Generated at Fri Apr 17 16:28:51 2026 by rpki-client