$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065585911216996355/0/3131362e38392e3134342e302f32302d3234203d3e20313331353136.roa File: 3131362e38392e3134342e302f32302d3234203d3e20313331353136.roa (raw, json) Hash identifier: y83JS4Deej8KRcxGmYNU7f1r9CNZBaKtnt6Q+/BvP5c= Subject key identifier: 3D:F9:24:99:A7:C2:25:E7:4E:F1:42:82:B4:03:B2:06:83:6B:D2:71 Certificate issuer: /CN=25C6596195B162409A5AFAA92570F258BAD3C42D Certificate serial: 64D1B0009472B0C51693E80BE8A2C239138319AA Authority key identifier: 25:C6:59:61:95:B1:62:40:9A:5A:FA:A9:25:70:F2:58:BA:D3:C4:2D Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/25C6596195B162409A5AFAA92570F258BAD3C42D.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065585911216996355/0/3131362e38392e3134342e302f32302d3234203d3e20313331353136.roa Signing time: Tue 14 Apr 2026 09:24:46 +0000 ROA not before: Tue 14 Apr 2026 09:19:46 +0000 ROA not after: Tue 13 Apr 2027 09:24:46 +0000 asID: 131516 IP address blocks: 116.89.144.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065585911216996355/0/25C6596195B162409A5AFAA92570F258BAD3C42D.crl rsync://rpki-rps.cnnic.cn/repo/A1065585911216996355/0/25C6596195B162409A5AFAA92570F258BAD3C42D.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/25C6596195B162409A5AFAA92570F258BAD3C42D.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 14:52:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:d1:b0:00:94:72:b0:c5:16:93:e8:0b:e8:a2:c2:39:13:83:19:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25C6596195B162409A5AFAA92570F258BAD3C42D Validity Not Before: Apr 14 09:19:46 2026 GMT Not After : Apr 13 09:24:46 2027 GMT Subject: CN=3DF92499A7C225E74EF14282B403B206836BD271 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:dd:3e:01:a4:2f:04:d0:7c:35:7a:f1:e6:be: a6:fd:39:25:55:bd:41:78:30:f8:73:ad:43:6a:a2: ae:b7:3c:59:12:f3:75:f4:e0:37:2e:15:ec:57:8a: 00:ff:ee:7f:f2:9a:66:6a:4c:e4:0b:d8:55:0f:32: ab:7d:dd:63:a4:bf:83:ed:08:50:82:be:03:ce:d2: 35:34:a8:76:4b:bb:a6:02:12:d0:80:9b:ba:4f:b9: 27:5e:21:fb:06:43:a8:88:3d:72:df:6f:78:9d:5c: d8:ee:0b:af:e5:c1:65:b2:1a:71:47:14:5f:fc:5b: 21:2f:b4:6a:ec:6c:dd:66:5f:fe:d1:89:b6:da:7d: e8:92:74:2f:8c:aa:58:b4:06:a8:73:49:eb:99:96: 45:c9:f0:18:68:53:62:6f:1a:41:34:ba:a7:32:f7: b5:19:19:11:52:8b:24:0f:25:54:d5:20:f5:d7:4a: 31:92:43:38:30:4d:20:d4:f9:28:ba:40:ca:c0:b9: ad:8c:91:3d:ad:35:cb:5d:c0:88:39:7f:e9:04:6b: 4a:08:50:b2:d7:cf:44:4d:e4:9a:dc:be:23:a7:c8: 33:e6:02:da:ca:fa:76:47:c2:3d:3c:cc:0e:12:82: 9d:7d:83:17:d2:18:71:29:1d:c3:3f:2d:50:48:7a: 00:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:F9:24:99:A7:C2:25:E7:4E:F1:42:82:B4:03:B2:06:83:6B:D2:71 X509v3 Authority Key Identifier: keyid:25:C6:59:61:95:B1:62:40:9A:5A:FA:A9:25:70:F2:58:BA:D3:C4:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065585911216996355/0/25C6596195B162409A5AFAA92570F258BAD3C42D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/25C6596195B162409A5AFAA92570F258BAD3C42D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065585911216996355/0/3131362e38392e3134342e302f32302d3234203d3e20313331353136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.89.144.0/20 Signature Algorithm: sha256WithRSAEncryption 40:26:ce:26:46:b0:b2:8c:a3:4e:d0:91:2a:8e:03:cc:2c:c7: 64:5b:64:eb:68:47:a5:d6:9c:3d:8e:5c:f8:07:a0:40:af:c8: e1:58:11:98:7f:46:9c:e8:7f:41:2b:5b:6d:72:e6:93:ba:f7: aa:05:41:39:45:11:80:bf:97:af:63:b5:d0:07:70:85:b1:c7: 28:64:3d:a7:e0:3f:9f:79:19:9f:31:4d:c2:89:b8:fc:6e:98: 0f:09:f2:b3:a8:dc:81:77:fd:65:87:2c:d2:a0:52:ad:13:ae: 48:6c:42:0a:88:0e:8d:7c:1a:a0:f0:79:25:b9:34:61:72:7f: a8:dd:43:00:fa:42:3b:fb:6b:b9:ae:d2:21:5c:9a:6d:31:56: 7a:d1:06:b3:06:d1:36:af:c4:65:78:36:69:77:d0:54:99:6c: 05:3f:e6:2a:af:7a:24:53:66:c2:0f:7e:64:14:65:80:63:73: ff:20:21:cb:50:b3:41:08:30:cc:c0:25:25:8d:64:4a:99:1b: 9f:7c:91:3e:86:03:57:2a:ce:90:56:5c:de:2e:9d:c7:dc:0c: a4:94:77:b1:e4:45:49:9a:bc:8d:05:23:fa:7c:85:f4:b2:10: 4b:91:8a:d2:dd:35:ad:bd:e7:c8:1c:43:fb:56:f2:6e:c7:bf: 9e:56:70:b7 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUZNGwAJRysMUWk+gL6KLCORODGaowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjVDNjU5NjE5NUIxNjI0MDlBNUFGQUE5MjU3MEYyNThC QUQzQzQyRDAeFw0yNjA0MTQwOTE5NDZaFw0yNzA0MTMwOTI0NDZaMDMxMTAvBgNV BAMTKDNERjkyNDk5QTdDMjI1RTc0RUYxNDI4MkI0MDNCMjA2ODM2QkQyNzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDs3T4BpC8E0Hw1evHmvqb9OSVV vUF4MPhzrUNqoq63PFkS83X04DcuFexXigD/7n/ymmZqTOQL2FUPMqt93WOkv4Pt CFCCvgPO0jU0qHZLu6YCEtCAm7pPuSdeIfsGQ6iIPXLfb3idXNjuC6/lwWWyGnFH FF/8WyEvtGrsbN1mX/7RibbafeiSdC+Mqli0BqhzSeuZlkXJ8BhoU2JvGkE0uqcy 97UZGRFSiyQPJVTVIPXXSjGSQzgwTSDU+Si6QMrAua2MkT2tNctdwIg5f+kEa0oI ULLXz0RN5JrcviOnyDPmAtrK+nZHwj08zA4Sgp19gxfSGHEpHcM/LVBIegC7AgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUPfkkmafCJedO8UKCtAOyBoNr0nEwHwYDVR0j BBgwFoAUJcZZYZWxYkCaWvqpJXDyWLrTxC0wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4NTkxMTIxNjk5NjM1NS8wLzI1QzY1OTYxOTVCMTYyNDA5QTVBRkFBOTI1NzBG MjU4QkFEM0M0MkQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjVDNjU5NjE5NUIxNjI0MDlBNUFGQUE5MjU3MEYyNThCQUQzQzQyRC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1ODU5MTEyMTY5OTYzNTUvMC8zMTMxMzYyZTM4 MzkyZTMxMzQzNDJlMzAyZjMyMzAyZDMyMzQyMDNkM2UyMDMxMzMzMTM1MzEzNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEBHRZkDANBgkqhkiG9w0BAQsFAAOCAQEAQCbOJkawsoyjTtCRKo4D zCzHZFtk62hHpdacPY5c+AegQK/I4VgRmH9GnOh/QStbbXLmk7r3qgVBOUURgL+X r2O10AdwhbHHKGQ9p+A/n3kZnzFNwom4/G6YDwnys6jcgXf9ZYcs0qBSrROuSGxC CogOjXwaoPB5Jbk0YXJ/qN1DAPpCO/trua7SIVyabTFWetEGswbRNq/EZXg2aXfQ VJlsBT/mKq96JFNmwg9+ZBRlgGNz/yAhy1CzQQgwzMAlJY1kSpkbn3yRPoYDVyrO kFZc3i6dx9wMpJR3seRFSZq8jQUj+nyF9LIQS5GK0t01rb3nyBxD+1bybse/nlZw tw== -----END CERTIFICATE-----Generated at Fri Apr 17 22:12:17 2026 by rpki-client