$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582330346864641/0/3131392e3136312e3135382e302f32342d3234203d3e203633363331.roa File: 3131392e3136312e3135382e302f32342d3234203d3e203633363331.roa (raw, json) Hash identifier: LQZaiQ/Qd/M/fCrq9bHgdqWNP7ugk6V735y0mDkj9fA= Subject key identifier: 23:0A:9D:CB:0D:58:5E:B2:54:50:B0:26:4E:98:2D:1E:1E:B8:3E:DE Certificate issuer: /CN=D9EB5C6DC17682949F5243587DA38740C3EEA953 Certificate serial: 5FED21E385A2048C918428C87C7653C8660FFB38 Authority key identifier: D9:EB:5C:6D:C1:76:82:94:9F:52:43:58:7D:A3:87:40:C3:EE:A9:53 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D9EB5C6DC17682949F5243587DA38740C3EEA953.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582330346864641/0/3131392e3136312e3135382e302f32342d3234203d3e203633363331.roa Signing time: Thu 16 Apr 2026 07:16:03 +0000 ROA not before: Thu 16 Apr 2026 07:11:03 +0000 ROA not after: Thu 15 Apr 2027 07:16:03 +0000 asID: 63631 IP address blocks: 119.161.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582330346864641/0/D9EB5C6DC17682949F5243587DA38740C3EEA953.crl rsync://rpki-rps.cnnic.cn/repo/A1065582330346864641/0/D9EB5C6DC17682949F5243587DA38740C3EEA953.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D9EB5C6DC17682949F5243587DA38740C3EEA953.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 08:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:ed:21:e3:85:a2:04:8c:91:84:28:c8:7c:76:53:c8:66:0f:fb:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D9EB5C6DC17682949F5243587DA38740C3EEA953 Validity Not Before: Apr 16 07:11:03 2026 GMT Not After : Apr 15 07:16:03 2027 GMT Subject: CN=230A9DCB0D585EB25450B0264E982D1E1EB83EDE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:37:e5:fc:43:30:40:1b:e6:45:e7:eb:97:bf: 3a:12:c7:a0:0f:74:b0:f8:67:f4:b5:4e:62:96:e7: 40:02:32:ff:7f:5f:3d:04:ca:41:3b:31:46:22:4e: 64:2e:0e:2b:bc:dd:cb:1e:e5:ea:18:08:b8:c6:4f: 94:55:0f:ca:f1:0d:fa:42:1d:47:03:d9:ed:d0:c6: fa:f5:9d:1a:f8:53:cf:8d:42:90:55:5f:a8:4c:6e: d4:17:be:45:73:21:c2:54:31:70:d9:1f:15:e4:4a: 89:1a:fd:2b:78:02:0c:10:6b:8b:ab:a7:ae:d3:52: 3e:5c:34:4e:c6:1c:ce:bd:84:d1:aa:da:a1:d7:d7: 98:5b:cb:31:88:cb:f7:18:4c:10:bc:c3:53:73:78: 4f:89:e5:c1:63:b7:d3:c6:47:d0:e9:ee:f4:05:9a: ec:4e:b4:96:b9:4c:34:a9:20:8f:25:24:c4:75:dc: d5:e8:1d:aa:22:73:da:ff:9a:42:55:c8:71:7e:45: 7b:1c:58:8f:e9:55:03:29:59:aa:5c:f8:e8:4f:9e: 4b:f6:bb:02:48:03:0a:08:fa:14:d2:ee:00:8e:c6: 60:be:75:09:bc:e9:29:e3:ff:9e:79:c3:7e:0f:f5: 7b:8e:40:50:4f:8b:2f:b0:74:ed:45:c5:40:79:a1: 86:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:0A:9D:CB:0D:58:5E:B2:54:50:B0:26:4E:98:2D:1E:1E:B8:3E:DE X509v3 Authority Key Identifier: keyid:D9:EB:5C:6D:C1:76:82:94:9F:52:43:58:7D:A3:87:40:C3:EE:A9:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346864641/0/D9EB5C6DC17682949F5243587DA38740C3EEA953.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D9EB5C6DC17682949F5243587DA38740C3EEA953.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346864641/0/3131392e3136312e3135382e302f32342d3234203d3e203633363331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.161.158.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:56:78:19:1a:1f:bb:5c:f3:b9:1f:11:be:1c:71:05:cd:db: 98:9e:5a:eb:e3:00:49:2d:b5:4b:3e:d5:31:bc:60:01:b0:f5: b5:d9:99:0c:78:ec:fb:04:67:9e:1e:c4:7f:db:8f:f9:4a:cf: 0c:65:9a:47:56:d9:f6:b2:e4:7a:3a:83:3f:00:85:b2:f5:59: 4c:1e:a6:f5:ca:73:d8:59:c5:8c:42:99:de:78:e8:fa:a9:db: 63:61:22:36:1e:f8:fe:15:78:ef:b5:c4:cc:30:e2:21:4b:b8: 9e:74:42:c3:48:93:fe:13:b5:c7:a1:f8:ec:c9:c6:b1:04:1d: 82:e6:ea:61:10:cb:5a:ac:c3:be:a8:86:fc:24:8f:73:b0:29: 42:24:42:d7:5c:87:b1:6e:0d:cc:87:5e:ce:ac:dc:22:87:94: af:6b:a3:fc:50:9a:df:c1:e1:0b:30:59:a6:3c:db:2d:8a:60: c2:10:7e:37:ac:13:9a:42:7f:ef:23:5f:7b:5f:4a:ba:71:a1: 78:bf:74:92:49:f7:56:f0:a3:6c:3e:de:28:27:fb:2f:ae:91: 23:3d:6c:f6:80:8c:0f:a1:66:8f:9b:32:54:4e:a0:a2:49:02: 22:50:69:1b:1a:16:ae:24:30:ed:39:8f:ce:7b:95:95:35:37: 31:82:4e:57 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUX+0h44WiBIyRhCjIfHZTyGYP+zgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDlFQjVDNkRDMTc2ODI5NDlGNTI0MzU4N0RBMzg3NDBD M0VFQTk1MzAeFw0yNjA0MTYwNzExMDNaFw0yNzA0MTUwNzE2MDNaMDMxMTAvBgNV BAMTKDIzMEE5RENCMEQ1ODVFQjI1NDUwQjAyNjRFOTgyRDFFMUVCODNFREUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcN+X8QzBAG+ZF5+uXvzoSx6AP dLD4Z/S1TmKW50ACMv9/Xz0EykE7MUYiTmQuDiu83cse5eoYCLjGT5RVD8rxDfpC HUcD2e3Qxvr1nRr4U8+NQpBVX6hMbtQXvkVzIcJUMXDZHxXkSoka/St4AgwQa4ur p67TUj5cNE7GHM69hNGq2qHX15hbyzGIy/cYTBC8w1NzeE+J5cFjt9PGR9Dp7vQF muxOtJa5TDSpII8lJMR13NXoHaoic9r/mkJVyHF+RXscWI/pVQMpWapc+OhPnkv2 uwJIAwoI+hTS7gCOxmC+dQm86Snj/555w34P9XuOQFBPiy+wdO1FxUB5oYa1AgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUIwqdyw1YXrJUULAmTpgtHh64Pt4wHwYDVR0j BBgwFoAU2etcbcF2gpSfUkNYfaOHQMPuqVMwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4MjMzMDM0Njg2NDY0MS8wL0Q5RUI1QzZEQzE3NjgyOTQ5RjUyNDM1ODdEQTM4 NzQwQzNFRUE5NTMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRDlFQjVDNkRDMTc2ODI5NDlGNTI0MzU4N0RBMzg3NDBDM0VFQTk1My5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1ODIzMzAzNDY4NjQ2NDEvMC8zMTMxMzkyZTMx MzYzMTJlMzEzNTM4MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzYzMzM2MzMzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAHehnjANBgkqhkiG9w0BAQsFAAOCAQEAHFZ4GRofu1zzuR8Rvhxx Bc3bmJ5a6+MASS21Sz7VMbxgAbD1tdmZDHjs+wRnnh7Ef9uP+UrPDGWaR1bZ9rLk ejqDPwCFsvVZTB6m9cpz2FnFjEKZ3njo+qnbY2EiNh74/hV477XEzDDiIUu4nnRC w0iT/hO1x6H47MnGsQQdgubqYRDLWqzDvqiG/CSPc7ApQiRC11yHsW4NzIdezqzc IoeUr2uj/FCa38HhCzBZpjzbLYpgwhB+N6wTmkJ/7yNfe19KunGheL90kkn3VvCj bD7eKCf7L66RIz1s9oCMD6Fmj5syVE6gokkCIlBpGxoWriQw7TmPznuVlTU3MYJO Vw== -----END CERTIFICATE-----Generated at Fri Apr 17 20:25:05 2026 by rpki-client