$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065577241947602945/1/3135382e3134302e3235322e302f32322d3234203d3e203535393936.roa File: 3135382e3134302e3235322e302f32322d3234203d3e203535393936.roa (raw, json) Hash identifier: ULObT7tTc9jva9EphYgKiJVcA/we8vdXzu8555O8v2k= Subject key identifier: CA:BA:B0:19:0B:DE:BB:12:EE:1B:C9:1A:69:F3:9C:BF:F0:F6:B9:21 Certificate issuer: /CN=855381EC93CF009732540F616E4905D544D838C8 Certificate serial: 421DC933FE9C19C5521F1E1C3D23699D26DD6DF2 Authority key identifier: 85:53:81:EC:93:CF:00:97:32:54:0F:61:6E:49:05:D5:44:D8:38:C8 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/855381EC93CF009732540F616E4905D544D838C8.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/1/3135382e3134302e3235322e302f32322d3234203d3e203535393936.roa Signing time: Fri 17 Apr 2026 02:01:39 +0000 ROA not before: Fri 17 Apr 2026 01:56:39 +0000 ROA not after: Fri 16 Apr 2027 02:01:39 +0000 asID: 55996 IP address blocks: 158.140.252.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/1/855381EC93CF009732540F616E4905D544D838C8.crl rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/1/855381EC93CF009732540F616E4905D544D838C8.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/855381EC93CF009732540F616E4905D544D838C8.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 04:54:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:1d:c9:33:fe:9c:19:c5:52:1f:1e:1c:3d:23:69:9d:26:dd:6d:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=855381EC93CF009732540F616E4905D544D838C8 Validity Not Before: Apr 17 01:56:39 2026 GMT Not After : Apr 16 02:01:39 2027 GMT Subject: CN=CABAB0190BDEBB12EE1BC91A69F39CBFF0F6B921 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:35:d5:a3:8d:eb:e2:c1:15:d6:c9:cf:0c:40: 6c:a9:e7:ae:fa:7f:53:4e:7d:1f:9f:1d:13:50:e1: 9a:94:f3:7e:d1:8c:db:ed:02:e0:79:da:49:94:d2: 0b:04:2d:c1:c4:19:c0:62:4a:aa:12:66:74:55:7e: 92:c6:4f:43:4c:46:95:a7:45:b1:00:ee:95:70:c4: 2a:ea:32:a7:f1:b6:7f:bc:9f:bb:dd:8c:26:c9:44: a2:7c:15:e4:7c:14:93:84:f6:b5:6d:b6:74:44:08: 26:16:c0:62:b4:c7:ec:9b:60:ee:be:68:89:74:5a: 6a:65:6a:36:ee:b8:51:d5:4f:e1:15:90:f5:95:20: dd:ce:db:a5:1e:61:d9:58:54:2f:88:85:0e:5c:19: b6:d5:56:8e:bf:9b:02:45:e2:a3:60:1b:cf:06:7a: f0:59:61:8b:c2:37:4e:03:8a:81:d8:75:64:23:fb: 53:65:e6:4b:dc:c7:78:6e:9f:ac:3d:0c:95:db:b2: 71:7b:33:33:6f:f1:48:f3:bb:ac:10:20:37:5f:75: 26:93:41:51:29:ae:0b:8c:06:cc:b1:48:3d:f8:79: c7:21:19:b4:50:ef:41:af:8a:66:8a:64:dd:24:33: f3:61:6c:d3:bf:5c:b3:67:a3:09:c5:85:3d:4b:c5: 0e:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:BA:B0:19:0B:DE:BB:12:EE:1B:C9:1A:69:F3:9C:BF:F0:F6:B9:21 X509v3 Authority Key Identifier: keyid:85:53:81:EC:93:CF:00:97:32:54:0F:61:6E:49:05:D5:44:D8:38:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/1/855381EC93CF009732540F616E4905D544D838C8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/855381EC93CF009732540F616E4905D544D838C8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/1/3135382e3134302e3235322e302f32322d3234203d3e203535393936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.252.0/22 Signature Algorithm: sha256WithRSAEncryption 87:05:45:66:e4:94:23:aa:fe:50:8e:54:aa:eb:d4:27:c6:5b: a7:06:ca:aa:5a:43:09:a3:2f:eb:cf:a2:ec:a2:c8:b9:52:bf: 0e:02:30:c0:bf:a0:f8:03:1e:39:4a:92:5d:ef:de:6a:08:bf: 36:09:f5:46:89:e7:c1:7a:c3:7a:f0:95:fe:9d:2a:4e:b5:63: d8:5e:82:13:9a:df:87:26:e6:8c:9e:7d:52:fc:34:c1:67:14: 5d:c1:93:99:4b:a9:91:ac:89:b1:e7:8b:12:9f:0e:a0:0d:00: 9a:e9:68:27:5a:7d:c1:f5:cb:55:70:3d:45:6e:3f:6d:44:91: 1b:eb:7d:f6:08:14:5e:2e:01:38:90:a1:34:b6:ea:3d:a7:b4: 3d:d8:c6:fa:da:9c:70:97:c2:f7:14:4f:ec:12:30:ae:79:ba: 24:37:91:98:bb:fa:7a:14:8d:1e:a5:0c:23:26:d6:6c:1e:c2: 88:6a:52:b3:a2:ff:c5:f7:82:92:b1:23:f2:13:1a:18:9c:08: 99:99:85:58:94:c8:48:2b:5f:42:cc:57:44:92:e6:0e:f4:62: 83:ab:61:56:3c:f4:85:25:53:d4:7e:f5:44:df:79:e4:c4:91: 41:5a:78:dd:d8:1c:43:47:cb:c3:8a:57:72:56:01:68:0d:ff: ce:88:79:29 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUQh3JM/6cGcVSHx4cPSNpnSbdbfIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODU1MzgxRUM5M0NGMDA5NzMyNTQwRjYxNkU0OTA1RDU0 NEQ4MzhDODAeFw0yNjA0MTcwMTU2MzlaFw0yNzA0MTYwMjAxMzlaMDMxMTAvBgNV BAMTKENBQkFCMDE5MEJERUJCMTJFRTFCQzkxQTY5RjM5Q0JGRjBGNkI5MjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmNdWjjeviwRXWyc8MQGyp5676 f1NOfR+fHRNQ4ZqU837RjNvtAuB52kmU0gsELcHEGcBiSqoSZnRVfpLGT0NMRpWn RbEA7pVwxCrqMqfxtn+8n7vdjCbJRKJ8FeR8FJOE9rVttnRECCYWwGK0x+ybYO6+ aIl0WmplajbuuFHVT+EVkPWVIN3O26UeYdlYVC+IhQ5cGbbVVo6/mwJF4qNgG88G evBZYYvCN04DioHYdWQj+1Nl5kvcx3hun6w9DJXbsnF7MzNv8Ujzu6wQIDdfdSaT QVEprguMBsyxSD34ecchGbRQ70GvimaKZN0kM/NhbNO/XLNnownFhT1LxQ7HAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUyrqwGQveuxLuG8kaafOcv/D2uSEwHwYDVR0j BBgwFoAUhVOB7JPPAJcyVA9hbkkF1UTYOMgwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NzI0MTk0NzYwMjk0NS8xLzg1NTM4MUVDOTNDRjAwOTczMjU0MEY2MTZFNDkw NUQ1NDREODM4QzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvODU1MzgxRUM5M0NGMDA5NzMyNTQwRjYxNkU0OTA1RDU0NEQ4MzhDOC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzcyNDE5NDc2MDI5NDUvMS8zMTM1MzgyZTMx MzQzMDJlMzIzNTMyMmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzUzNTM5MzkzNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAp6M/DANBgkqhkiG9w0BAQsFAAOCAQEAhwVFZuSUI6r+UI5UquvU J8ZbpwbKqlpDCaMv68+i7KLIuVK/DgIwwL+g+AMeOUqSXe/eagi/Ngn1RonnwXrD evCV/p0qTrVj2F6CE5rfhybmjJ59Uvw0wWcUXcGTmUupkayJseeLEp8OoA0Amulo J1p9wfXLVXA9RW4/bUSRG+t99ggUXi4BOJChNLbqPae0PdjG+tqccJfC9xRP7BIw rnm6JDeRmLv6ehSNHqUMIybWbB7CiGpSs6L/xfeCkrEj8hMaGJwImZmFWJTISCtf QsxXRJLmDvRig6thVjz0hSVT1H71RN955MSRQVp43dgcQ0fLw4pXclYBaA3/zoh5 KQ== -----END CERTIFICATE-----Generated at Fri Apr 17 21:12:24 2026 by rpki-client