$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582330346864641/0/3131392e3136312e3135372e302f32342d3234203d3e203633363331.roa File: 3131392e3136312e3135372e302f32342d3234203d3e203633363331.roa (raw, json) Hash identifier: tUiIUTqcTNvN/U4B9L5lCpdQw6TwFJaaWBbk34dQlvI= Subject key identifier: 88:A7:33:D7:C2:8B:0A:59:CC:76:CA:03:91:C2:6D:DF:21:A2:52:63 Certificate issuer: /CN=D9EB5C6DC17682949F5243587DA38740C3EEA953 Certificate serial: 661910E3E4E7A787243FDF76C46A5B4978DB6BC0 Authority key identifier: D9:EB:5C:6D:C1:76:82:94:9F:52:43:58:7D:A3:87:40:C3:EE:A9:53 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D9EB5C6DC17682949F5243587DA38740C3EEA953.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582330346864641/0/3131392e3136312e3135372e302f32342d3234203d3e203633363331.roa Signing time: Thu 16 Apr 2026 07:16:03 +0000 ROA not before: Thu 16 Apr 2026 07:11:03 +0000 ROA not after: Thu 15 Apr 2027 07:16:03 +0000 asID: 63631 IP address blocks: 119.161.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582330346864641/0/D9EB5C6DC17682949F5243587DA38740C3EEA953.crl rsync://rpki-rps.cnnic.cn/repo/A1065582330346864641/0/D9EB5C6DC17682949F5243587DA38740C3EEA953.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D9EB5C6DC17682949F5243587DA38740C3EEA953.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 08:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:19:10:e3:e4:e7:a7:87:24:3f:df:76:c4:6a:5b:49:78:db:6b:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D9EB5C6DC17682949F5243587DA38740C3EEA953 Validity Not Before: Apr 16 07:11:03 2026 GMT Not After : Apr 15 07:16:03 2027 GMT Subject: CN=88A733D7C28B0A59CC76CA0391C26DDF21A25263 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:b3:ea:af:c7:24:2a:52:36:27:84:9e:59:54: a3:14:55:64:9d:79:4a:5f:d3:e5:b5:01:5e:ea:56: 57:cc:14:b0:c8:79:40:f2:f0:b6:c7:58:ac:70:5c: b9:c5:63:c5:03:e6:f3:f0:d9:13:42:9e:c2:f4:b0: dd:a2:b6:e1:a5:02:ee:1f:f2:32:7c:d5:b3:2c:59: f1:b8:91:fe:29:1f:de:14:ff:ee:bb:d6:e1:1d:4c: c2:3d:ab:e2:e3:b3:f8:c9:84:1c:1f:48:e8:87:6b: aa:db:bc:94:6c:d6:c0:89:c5:4b:d8:bc:bf:8e:85: 61:95:1b:74:e2:34:86:bf:4d:5d:5f:42:c4:09:d7: ca:04:4b:06:71:b4:10:6c:23:9a:ac:cd:ca:d4:78: 45:5f:09:46:3f:7a:19:c9:d5:15:0a:0e:03:9f:90: 09:bc:83:17:0f:54:35:90:da:de:8a:a7:c7:55:fe: 91:46:01:8d:d5:73:ef:65:93:cb:ac:54:5b:7e:3e: 09:57:6c:4e:1a:55:c4:f3:b0:b4:2b:fb:2c:5d:c7: d4:09:af:fd:c2:8b:82:19:a8:25:d7:ad:f4:ba:85: 63:5e:0c:3b:da:8a:06:9a:fc:79:78:38:14:e4:d9: f2:c1:17:2b:d5:5c:d4:b7:23:ea:a1:89:85:7b:aa: a8:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:A7:33:D7:C2:8B:0A:59:CC:76:CA:03:91:C2:6D:DF:21:A2:52:63 X509v3 Authority Key Identifier: keyid:D9:EB:5C:6D:C1:76:82:94:9F:52:43:58:7D:A3:87:40:C3:EE:A9:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346864641/0/D9EB5C6DC17682949F5243587DA38740C3EEA953.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D9EB5C6DC17682949F5243587DA38740C3EEA953.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346864641/0/3131392e3136312e3135372e302f32342d3234203d3e203633363331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.161.157.0/24 Signature Algorithm: sha256WithRSAEncryption 27:8f:be:87:28:12:3a:06:1a:55:bd:21:e4:e6:a2:54:db:1c: f8:25:2e:9c:b0:3f:c7:55:0b:31:af:4a:aa:15:a4:bf:f0:11: 4b:11:73:d2:23:e3:82:e8:3f:d4:5d:2e:99:18:82:9d:0b:b3: 83:47:9d:da:3b:83:ca:f4:c1:4e:65:a7:3f:29:c8:21:01:42: 19:13:0f:84:b5:2b:ff:25:25:a3:4f:47:6d:f0:34:e7:db:55: 4f:69:06:e4:23:54:55:0d:9d:ae:13:79:4b:90:da:a9:c9:52: cc:c0:23:96:fb:4d:3f:53:78:77:61:b4:38:ae:96:8b:8a:c4: 68:aa:97:98:37:6f:ae:64:15:db:58:c2:85:c9:36:3f:19:8f: 6b:b0:39:8e:78:5c:11:08:ac:1b:2c:83:39:8a:36:a1:73:a5: e7:78:66:89:6e:ee:06:48:91:48:a4:f8:f5:ce:ac:95:fe:74: 47:07:16:95:b0:e5:68:1a:c6:6c:01:c7:26:a6:42:f9:49:0e: 4e:cb:e3:6b:8b:4f:93:58:e0:42:1f:bc:5e:38:99:25:a7:ef: 04:02:74:de:b9:cf:fd:fe:10:48:3d:52:5c:f9:26:a1:b4:f4: c2:93:67:dc:f5:9e:e2:d0:02:e7:2a:b2:e3:38:a0:e6:d8:4b: 64:27:52:9a -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUZhkQ4+Tnp4ckP992xGpbSXjba8AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDlFQjVDNkRDMTc2ODI5NDlGNTI0MzU4N0RBMzg3NDBD M0VFQTk1MzAeFw0yNjA0MTYwNzExMDNaFw0yNzA0MTUwNzE2MDNaMDMxMTAvBgNV BAMTKDg4QTczM0Q3QzI4QjBBNTlDQzc2Q0EwMzkxQzI2RERGMjFBMjUyNjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4s+qvxyQqUjYnhJ5ZVKMUVWSd eUpf0+W1AV7qVlfMFLDIeUDy8LbHWKxwXLnFY8UD5vPw2RNCnsL0sN2ituGlAu4f 8jJ81bMsWfG4kf4pH94U/+671uEdTMI9q+Ljs/jJhBwfSOiHa6rbvJRs1sCJxUvY vL+OhWGVG3TiNIa/TV1fQsQJ18oESwZxtBBsI5qszcrUeEVfCUY/ehnJ1RUKDgOf kAm8gxcPVDWQ2t6Kp8dV/pFGAY3Vc+9lk8usVFt+PglXbE4aVcTzsLQr+yxdx9QJ r/3Ci4IZqCXXrfS6hWNeDDvaigaa/Hl4OBTk2fLBFyvVXNS3I+qhiYV7qqiXAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUiKcz18KLClnMdsoDkcJt3yGiUmMwHwYDVR0j BBgwFoAU2etcbcF2gpSfUkNYfaOHQMPuqVMwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4MjMzMDM0Njg2NDY0MS8wL0Q5RUI1QzZEQzE3NjgyOTQ5RjUyNDM1ODdEQTM4 NzQwQzNFRUE5NTMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRDlFQjVDNkRDMTc2ODI5NDlGNTI0MzU4N0RBMzg3NDBDM0VFQTk1My5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1ODIzMzAzNDY4NjQ2NDEvMC8zMTMxMzkyZTMx MzYzMTJlMzEzNTM3MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzYzMzM2MzMzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAHehnTANBgkqhkiG9w0BAQsFAAOCAQEAJ4++hygSOgYaVb0h5Oai VNsc+CUunLA/x1ULMa9KqhWkv/ARSxFz0iPjgug/1F0umRiCnQuzg0ed2juDyvTB TmWnPynIIQFCGRMPhLUr/yUlo09HbfA059tVT2kG5CNUVQ2drhN5S5DaqclSzMAj lvtNP1N4d2G0OK6Wi4rEaKqXmDdvrmQV21jChck2PxmPa7A5jnhcEQisGyyDOYo2 oXOl53hmiW7uBkiRSKT49c6slf50RwcWlbDlaBrGbAHHJqZC+UkOTsvja4tPk1jg Qh+8XjiZJafvBAJ03rnP/f4QSD1SXPkmobT0wpNn3PWe4tAC5yqy4zig5thLZCdS mg== -----END CERTIFICATE-----Generated at Fri Apr 17 18:43:01 2026 by rpki-client