$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582330346864641/0/3131392e3136312e3135302e302f32342d3234203d3e203633363331.roa File: 3131392e3136312e3135302e302f32342d3234203d3e203633363331.roa (raw, json) Hash identifier: okNrHQWlAZcM0ybXfs5gjhn4SzMvRZc5F26x1wSUssw= Subject key identifier: 39:23:CA:16:5C:E3:A3:58:4A:62:0D:55:92:11:83:5D:22:E1:37:F8 Certificate issuer: /CN=D9EB5C6DC17682949F5243587DA38740C3EEA953 Certificate serial: 43B8A455B9A418DDD11EFA5C50EFD8B2616B7B36 Authority key identifier: D9:EB:5C:6D:C1:76:82:94:9F:52:43:58:7D:A3:87:40:C3:EE:A9:53 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D9EB5C6DC17682949F5243587DA38740C3EEA953.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582330346864641/0/3131392e3136312e3135302e302f32342d3234203d3e203633363331.roa Signing time: Thu 16 Apr 2026 09:54:49 +0000 ROA not before: Thu 16 Apr 2026 09:49:49 +0000 ROA not after: Thu 15 Apr 2027 09:54:49 +0000 asID: 63631 IP address blocks: 119.161.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582330346864641/0/D9EB5C6DC17682949F5243587DA38740C3EEA953.crl rsync://rpki-rps.cnnic.cn/repo/A1065582330346864641/0/D9EB5C6DC17682949F5243587DA38740C3EEA953.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D9EB5C6DC17682949F5243587DA38740C3EEA953.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 08:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:b8:a4:55:b9:a4:18:dd:d1:1e:fa:5c:50:ef:d8:b2:61:6b:7b:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D9EB5C6DC17682949F5243587DA38740C3EEA953 Validity Not Before: Apr 16 09:49:49 2026 GMT Not After : Apr 15 09:54:49 2027 GMT Subject: CN=3923CA165CE3A3584A620D559211835D22E137F8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:17:cd:c8:46:96:f2:22:cd:dd:95:62:6d:7f: 70:11:c0:61:2b:da:36:d8:ed:57:3f:e2:06:9d:5a: bd:3f:00:d3:e7:6c:e1:bf:62:70:a2:fb:40:f2:73: f1:da:a6:c5:46:2a:92:5b:1e:46:4f:0a:14:5e:eb: 41:e6:6f:27:ce:be:4e:8b:1f:7b:bf:61:2e:f6:66: 4d:59:aa:39:4a:f7:10:e5:03:8e:fa:7a:01:c8:34: e3:1c:5f:cb:70:de:44:e3:c6:d0:fd:29:df:3d:42: 09:b4:7d:5f:a3:ea:5b:c0:2c:e7:76:a0:93:6a:31: 32:79:24:24:ac:62:8f:c4:02:92:46:57:9e:08:9f: 26:10:d7:b7:65:37:d3:e1:41:c6:d9:eb:ee:9f:62: 95:fd:26:d7:74:27:7f:89:60:96:8d:2f:f3:2e:4f: 7a:5d:e4:e2:08:d4:4f:d4:fd:94:e7:55:c4:79:57: fd:46:ff:2a:f1:b8:a7:63:ec:f9:5c:17:bd:45:8b: 12:ae:5d:46:89:af:9d:79:56:af:72:e4:51:20:f4: 05:4a:82:63:0e:09:4e:1a:bf:f4:71:32:6f:f3:78: 37:22:d0:7a:1a:9f:a2:53:1e:3a:8b:03:01:a4:eb: de:65:0f:65:01:2b:ca:fb:4a:79:e5:81:62:41:c8: 57:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:23:CA:16:5C:E3:A3:58:4A:62:0D:55:92:11:83:5D:22:E1:37:F8 X509v3 Authority Key Identifier: keyid:D9:EB:5C:6D:C1:76:82:94:9F:52:43:58:7D:A3:87:40:C3:EE:A9:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346864641/0/D9EB5C6DC17682949F5243587DA38740C3EEA953.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D9EB5C6DC17682949F5243587DA38740C3EEA953.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346864641/0/3131392e3136312e3135302e302f32342d3234203d3e203633363331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.161.150.0/24 Signature Algorithm: sha256WithRSAEncryption 63:d8:98:28:2b:21:df:97:66:41:8c:ad:e8:a2:73:54:5f:a6: 51:91:c0:40:cc:7b:f3:2c:76:9f:f1:41:86:85:0c:bc:da:78: 5f:b2:14:05:00:52:d3:f8:87:da:cd:3b:48:5c:4d:f2:7e:bc: 5a:2b:98:3d:8b:25:a3:5a:66:26:2f:f2:1a:78:37:51:10:82: c6:3c:d2:81:ec:86:d6:f9:5b:f4:d9:49:6b:15:fd:94:ee:80: 0e:60:a5:a1:92:79:e0:95:c4:0d:42:f9:cf:44:c8:7c:09:a3: 76:85:1e:45:a7:65:fa:a1:61:07:49:14:60:e3:f0:f7:ec:5c: 70:b9:18:b3:ad:2f:1a:a1:6d:09:d7:31:cf:b8:73:5b:e1:fc: bc:12:0e:a2:1c:51:14:79:10:3f:d1:42:70:43:c0:52:94:9a: da:34:d0:a3:35:90:f4:58:e6:78:60:8e:6a:b2:ba:13:d4:c8: 0c:01:5f:b9:97:62:c2:8a:a9:87:8f:bc:f2:d4:bd:13:91:f0: 31:de:7b:eb:c6:bd:42:b5:67:5f:28:3c:65:26:3c:a7:ce:d0: c7:75:20:bf:f0:79:1b:f8:08:2e:48:4e:12:4c:dd:0a:3e:1e: ea:59:a9:ea:17:b8:a5:53:8c:0c:73:e3:bb:b8:3e:9f:39:17: 06:9e:d4:df -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUQ7ikVbmkGN3RHvpcUO/YsmFrezYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDlFQjVDNkRDMTc2ODI5NDlGNTI0MzU4N0RBMzg3NDBD M0VFQTk1MzAeFw0yNjA0MTYwOTQ5NDlaFw0yNzA0MTUwOTU0NDlaMDMxMTAvBgNV BAMTKDM5MjNDQTE2NUNFM0EzNTg0QTYyMEQ1NTkyMTE4MzVEMjJFMTM3RjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUF83IRpbyIs3dlWJtf3ARwGEr 2jbY7Vc/4gadWr0/ANPnbOG/YnCi+0Dyc/HapsVGKpJbHkZPChRe60HmbyfOvk6L H3u/YS72Zk1ZqjlK9xDlA476egHINOMcX8tw3kTjxtD9Kd89Qgm0fV+j6lvALOd2 oJNqMTJ5JCSsYo/EApJGV54InyYQ17dlN9PhQcbZ6+6fYpX9Jtd0J3+JYJaNL/Mu T3pd5OII1E/U/ZTnVcR5V/1G/yrxuKdj7PlcF71FixKuXUaJr515Vq9y5FEg9AVK gmMOCU4av/RxMm/zeDci0Hoan6JTHjqLAwGk695lD2UBK8r7SnnlgWJByFcVAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUOSPKFlzjo1hKYg1VkhGDXSLhN/gwHwYDVR0j BBgwFoAU2etcbcF2gpSfUkNYfaOHQMPuqVMwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4MjMzMDM0Njg2NDY0MS8wL0Q5RUI1QzZEQzE3NjgyOTQ5RjUyNDM1ODdEQTM4 NzQwQzNFRUE5NTMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRDlFQjVDNkRDMTc2ODI5NDlGNTI0MzU4N0RBMzg3NDBDM0VFQTk1My5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1ODIzMzAzNDY4NjQ2NDEvMC8zMTMxMzkyZTMx MzYzMTJlMzEzNTMwMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzYzMzM2MzMzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAHehljANBgkqhkiG9w0BAQsFAAOCAQEAY9iYKCsh35dmQYyt6KJz VF+mUZHAQMx78yx2n/FBhoUMvNp4X7IUBQBS0/iH2s07SFxN8n68WiuYPYslo1pm Ji/yGng3URCCxjzSgeyG1vlb9NlJaxX9lO6ADmCloZJ54JXEDUL5z0TIfAmjdoUe Radl+qFhB0kUYOPw9+xccLkYs60vGqFtCdcxz7hzW+H8vBIOohxRFHkQP9FCcEPA UpSa2jTQozWQ9FjmeGCOarK6E9TIDAFfuZdiwoqph4+88tS9E5HwMd5768a9QrVn Xyg8ZSY8p87Qx3Ugv/B5G/gILkhOEkzdCj4e6lmp6he4pVOMDHPju7g+nzkXBp7U 3w== -----END CERTIFICATE-----Generated at Fri Apr 17 19:09:33 2026 by rpki-client