$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582330346864641/0/3131392e3136312e3134362e302f32342d3234203d3e203633363331.roa File: 3131392e3136312e3134362e302f32342d3234203d3e203633363331.roa (raw, json) Hash identifier: OABa4cNuqzmJY4gHN33EpjQDWN7uNzrp8aMvvXUl78s= Subject key identifier: 01:D0:6A:D7:D9:4D:A6:72:C8:19:EB:59:EB:FF:CB:DE:B3:A1:93:B1 Certificate issuer: /CN=D9EB5C6DC17682949F5243587DA38740C3EEA953 Certificate serial: 72DF3CC9FB2EE823FBCFDE267809DD162A391331 Authority key identifier: D9:EB:5C:6D:C1:76:82:94:9F:52:43:58:7D:A3:87:40:C3:EE:A9:53 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D9EB5C6DC17682949F5243587DA38740C3EEA953.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582330346864641/0/3131392e3136312e3134362e302f32342d3234203d3e203633363331.roa Signing time: Thu 16 Apr 2026 07:09:24 +0000 ROA not before: Thu 16 Apr 2026 07:04:24 +0000 ROA not after: Thu 15 Apr 2027 07:09:24 +0000 asID: 63631 IP address blocks: 119.161.146.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582330346864641/0/D9EB5C6DC17682949F5243587DA38740C3EEA953.crl rsync://rpki-rps.cnnic.cn/repo/A1065582330346864641/0/D9EB5C6DC17682949F5243587DA38740C3EEA953.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D9EB5C6DC17682949F5243587DA38740C3EEA953.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 08:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:df:3c:c9:fb:2e:e8:23:fb:cf:de:26:78:09:dd:16:2a:39:13:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D9EB5C6DC17682949F5243587DA38740C3EEA953 Validity Not Before: Apr 16 07:04:24 2026 GMT Not After : Apr 15 07:09:24 2027 GMT Subject: CN=01D06AD7D94DA672C819EB59EBFFCBDEB3A193B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:00:c0:d3:a4:a2:6a:8d:9a:8c:09:0d:5e:0c: 17:08:1f:b3:f5:d3:da:87:d4:79:2f:a2:22:62:4e: db:26:e2:93:c3:8d:18:85:83:b6:6f:cf:c4:1b:7d: 05:5e:d0:fc:37:86:fb:04:03:7b:bc:ce:1c:87:08: be:69:af:31:2b:64:13:70:40:64:e7:6f:99:5f:e9: c3:01:2d:43:bd:60:d5:bc:eb:4c:ec:34:d0:04:93: 1b:08:ce:0d:de:37:b2:c1:8b:a1:ba:d4:c9:c9:58: 98:96:5f:17:be:78:f1:5e:c3:c1:a1:6f:df:57:f8: cb:3e:0d:47:c5:40:21:fa:16:4a:94:20:f9:73:32: 9f:05:07:02:f2:b8:eb:e2:52:bd:c9:77:25:f3:01: 7b:80:5e:b4:93:f7:52:a5:86:1d:6a:dd:19:4b:ab: 9e:a3:c9:2d:37:09:d1:0f:e9:ef:cc:15:72:f8:a9: 43:de:85:a0:01:89:ec:6b:79:ab:e0:78:e7:92:11: d2:cf:50:c0:06:af:a9:46:fd:e9:a6:66:29:78:8e: ac:92:83:24:19:4e:0a:b1:1c:74:b6:38:07:ad:2c: bc:df:0d:ff:45:38:b9:3a:17:12:c3:cd:1f:eb:87: 52:47:fe:40:c5:3b:ae:0d:eb:75:f7:ac:ff:88:73: aa:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:D0:6A:D7:D9:4D:A6:72:C8:19:EB:59:EB:FF:CB:DE:B3:A1:93:B1 X509v3 Authority Key Identifier: keyid:D9:EB:5C:6D:C1:76:82:94:9F:52:43:58:7D:A3:87:40:C3:EE:A9:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346864641/0/D9EB5C6DC17682949F5243587DA38740C3EEA953.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D9EB5C6DC17682949F5243587DA38740C3EEA953.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346864641/0/3131392e3136312e3134362e302f32342d3234203d3e203633363331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.161.146.0/24 Signature Algorithm: sha256WithRSAEncryption 88:d5:42:81:ae:4c:de:17:cb:19:e2:96:3f:06:57:6a:62:0e: ff:13:1c:25:a0:5f:d4:d3:05:8c:a7:87:40:86:f9:b5:bc:e7: b7:96:c9:a3:0a:c4:03:33:1e:a2:de:47:26:8a:c6:92:d6:f5: 21:df:db:4e:f3:8c:3a:d3:30:45:f8:51:a7:16:13:1d:a9:0f: f2:b9:44:6d:b8:4c:98:b0:db:eb:41:2d:cf:9c:07:3e:29:46: 92:1e:b9:c4:6b:e3:4c:47:08:ad:7f:43:8f:d7:1b:8f:62:28: 4c:49:c2:27:83:26:02:aa:f3:76:76:60:fc:3e:e6:6e:18:99: 14:16:c7:8b:f8:11:0d:e1:49:28:ae:88:14:20:de:b0:de:58: e1:22:58:76:54:6f:76:07:ec:fe:ef:43:c8:48:20:a8:e0:1e: b0:36:70:3b:25:86:e8:21:6c:15:7e:44:9d:a6:02:e2:97:a2: 2f:dc:dd:bf:50:3a:ea:1b:09:62:d1:56:44:75:0e:c7:33:df: b6:15:5f:39:16:97:64:26:1c:26:f0:92:9c:db:be:53:25:d0: 7f:49:18:01:ab:d7:22:40:31:90:e7:27:e1:ab:5e:94:de:1b: 26:1c:93:7f:96:13:c4:a7:46:1e:30:07:03:4a:9d:21:9c:f7: fb:f4:da:5b -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUct88yfsu6CP7z94meAndFio5EzEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDlFQjVDNkRDMTc2ODI5NDlGNTI0MzU4N0RBMzg3NDBD M0VFQTk1MzAeFw0yNjA0MTYwNzA0MjRaFw0yNzA0MTUwNzA5MjRaMDMxMTAvBgNV BAMTKDAxRDA2QUQ3RDk0REE2NzJDODE5RUI1OUVCRkZDQkRFQjNBMTkzQjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPAMDTpKJqjZqMCQ1eDBcIH7P1 09qH1HkvoiJiTtsm4pPDjRiFg7Zvz8QbfQVe0Pw3hvsEA3u8zhyHCL5przErZBNw QGTnb5lf6cMBLUO9YNW860zsNNAEkxsIzg3eN7LBi6G61MnJWJiWXxe+ePFew8Gh b99X+Ms+DUfFQCH6FkqUIPlzMp8FBwLyuOviUr3JdyXzAXuAXrST91Klhh1q3RlL q56jyS03CdEP6e/MFXL4qUPehaABiexreavgeOeSEdLPUMAGr6lG/emmZil4jqyS gyQZTgqxHHS2OAetLLzfDf9FOLk6FxLDzR/rh1JH/kDFO64N63X3rP+Ic6qHAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUAdBq19lNpnLIGetZ6//L3rOhk7EwHwYDVR0j BBgwFoAU2etcbcF2gpSfUkNYfaOHQMPuqVMwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4MjMzMDM0Njg2NDY0MS8wL0Q5RUI1QzZEQzE3NjgyOTQ5RjUyNDM1ODdEQTM4 NzQwQzNFRUE5NTMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRDlFQjVDNkRDMTc2ODI5NDlGNTI0MzU4N0RBMzg3NDBDM0VFQTk1My5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1ODIzMzAzNDY4NjQ2NDEvMC8zMTMxMzkyZTMx MzYzMTJlMzEzNDM2MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzYzMzM2MzMzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAHehkjANBgkqhkiG9w0BAQsFAAOCAQEAiNVCga5M3hfLGeKWPwZX amIO/xMcJaBf1NMFjKeHQIb5tbznt5bJowrEAzMeot5HJorGktb1Id/bTvOMOtMw RfhRpxYTHakP8rlEbbhMmLDb60Etz5wHPilGkh65xGvjTEcIrX9Dj9cbj2IoTEnC J4MmAqrzdnZg/D7mbhiZFBbHi/gRDeFJKK6IFCDesN5Y4SJYdlRvdgfs/u9DyEgg qOAesDZwOyWG6CFsFX5EnaYC4peiL9zdv1A66hsJYtFWRHUOxzPfthVfORaXZCYc JvCSnNu+UyXQf0kYAavXIkAxkOcn4atelN4bJhyTf5YTxKdGHjAHA0qdIZz3+/Ta Ww== -----END CERTIFICATE-----Generated at Fri Apr 17 21:21:03 2026 by rpki-client