$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065585911216996355/0/3231312e3134372e39362e302f32302d3234203d3e20313331353136.roa File: 3231312e3134372e39362e302f32302d3234203d3e20313331353136.roa (raw, json) Hash identifier: VZcRbqZjxjAhNXelM57YDaEk4eZQzgx6rRmelt9cpwo= Subject key identifier: AA:DD:BF:C9:C6:3E:73:A7:CD:FE:62:A4:87:72:AB:34:ED:99:BA:DA Certificate issuer: /CN=25C6596195B162409A5AFAA92570F258BAD3C42D Certificate serial: 283DE11F6488EDF729B49F52CF061485103D879A Authority key identifier: 25:C6:59:61:95:B1:62:40:9A:5A:FA:A9:25:70:F2:58:BA:D3:C4:2D Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/25C6596195B162409A5AFAA92570F258BAD3C42D.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065585911216996355/0/3231312e3134372e39362e302f32302d3234203d3e20313331353136.roa Signing time: Tue 14 Apr 2026 09:24:46 +0000 ROA not before: Tue 14 Apr 2026 09:19:46 +0000 ROA not after: Tue 13 Apr 2027 09:24:46 +0000 asID: 131516 IP address blocks: 211.147.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065585911216996355/0/25C6596195B162409A5AFAA92570F258BAD3C42D.crl rsync://rpki-rps.cnnic.cn/repo/A1065585911216996355/0/25C6596195B162409A5AFAA92570F258BAD3C42D.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/25C6596195B162409A5AFAA92570F258BAD3C42D.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 14:52:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:3d:e1:1f:64:88:ed:f7:29:b4:9f:52:cf:06:14:85:10:3d:87:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25C6596195B162409A5AFAA92570F258BAD3C42D Validity Not Before: Apr 14 09:19:46 2026 GMT Not After : Apr 13 09:24:46 2027 GMT Subject: CN=AADDBFC9C63E73A7CDFE62A48772AB34ED99BADA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:13:33:55:62:19:fa:26:d2:07:2a:cc:5c:c5: 69:d4:76:7c:9a:3c:80:2f:28:f5:0c:78:2f:16:ed: 6b:e5:4a:73:05:85:f7:bb:a1:57:a2:a4:d9:f4:b6: 65:1e:5f:07:42:b1:f4:32:44:d0:7d:01:25:a3:f9: 8f:fd:e2:cc:fc:a5:53:af:a1:8a:5f:60:fe:68:d6: a7:45:36:3f:d3:ee:67:a6:7d:bb:3b:42:df:23:d1: b1:97:2b:2f:07:e5:d4:c9:7c:31:f8:5c:69:8a:b3: 71:bb:47:11:24:03:eb:3b:00:d2:b3:80:bd:1d:64: f6:dc:ef:f1:e8:eb:fd:45:32:14:79:a5:19:91:80: 72:18:e7:10:41:1d:f0:cd:c2:42:b5:ef:e0:29:e0: 44:93:45:cf:ce:78:81:51:58:8f:6d:a3:ac:9d:9e: 97:98:52:ee:a3:a0:1a:f9:66:df:5c:83:dd:71:25: 3b:8e:14:7b:d4:7e:38:d9:e9:ac:f6:64:eb:5e:6e: e6:7b:26:eb:07:0a:9c:2c:18:cf:5e:16:18:79:e0: c2:e9:96:9e:02:3d:7d:5e:84:89:28:15:b9:43:bd: 15:b5:9a:0b:6a:68:c5:61:13:c5:9c:01:56:51:cb: 2c:a6:88:13:67:73:79:8f:4f:0c:00:b0:a1:2b:fc: 0a:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:DD:BF:C9:C6:3E:73:A7:CD:FE:62:A4:87:72:AB:34:ED:99:BA:DA X509v3 Authority Key Identifier: keyid:25:C6:59:61:95:B1:62:40:9A:5A:FA:A9:25:70:F2:58:BA:D3:C4:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065585911216996355/0/25C6596195B162409A5AFAA92570F258BAD3C42D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/25C6596195B162409A5AFAA92570F258BAD3C42D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065585911216996355/0/3231312e3134372e39362e302f32302d3234203d3e20313331353136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 211.147.96.0/20 Signature Algorithm: sha256WithRSAEncryption 80:78:89:4a:6f:26:2b:6c:b2:05:d1:a7:be:74:cf:74:78:60: 33:89:b2:6d:fb:94:11:59:06:dc:7c:3e:78:7a:ad:4c:06:fd: 7e:e6:21:0d:f5:e8:23:1c:06:d2:e7:65:4d:29:8c:4a:ec:79: 80:f4:92:7a:0a:06:9e:c2:da:09:4b:01:5a:84:80:51:6f:15: 30:7f:31:b1:5f:c4:45:f0:b9:ab:96:c0:3f:93:9f:e0:b6:94: 99:c6:17:a2:90:25:9e:c8:4e:a9:2d:d5:08:a3:95:54:8c:76: 10:de:b2:f7:32:a1:71:28:12:fb:e7:ab:9d:cc:59:68:52:9a: 26:ee:23:1c:90:e3:5c:88:cf:4a:ab:4b:97:0d:ee:f8:de:60: ad:b0:26:89:46:91:4c:c9:71:15:cf:14:8e:82:e3:c2:d7:f0: f6:a3:20:2b:d7:20:8d:10:4b:0b:6b:96:56:ef:1a:6a:8d:47: b7:72:18:cf:d7:f6:2b:87:ee:ae:f9:35:a7:ea:f2:b2:78:8a: a0:70:f9:ef:d5:42:9f:14:7d:e6:a3:a3:7d:d2:d8:0d:02:54: 63:4b:cb:79:b7:fc:58:2e:a2:2b:cf:00:b3:54:8e:c8:7d:f8: 89:c1:62:61:95:9c:84:8c:1d:26:06:bc:e1:2c:c6:70:3f:20: 1e:de:42:6f -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUKD3hH2SI7fcptJ9SzwYUhRA9h5owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjVDNjU5NjE5NUIxNjI0MDlBNUFGQUE5MjU3MEYyNThC QUQzQzQyRDAeFw0yNjA0MTQwOTE5NDZaFw0yNzA0MTMwOTI0NDZaMDMxMTAvBgNV BAMTKEFBRERCRkM5QzYzRTczQTdDREZFNjJBNDg3NzJBQjM0RUQ5OUJBREEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwEzNVYhn6JtIHKsxcxWnUdnya PIAvKPUMeC8W7WvlSnMFhfe7oVeipNn0tmUeXwdCsfQyRNB9ASWj+Y/94sz8pVOv oYpfYP5o1qdFNj/T7memfbs7Qt8j0bGXKy8H5dTJfDH4XGmKs3G7RxEkA+s7ANKz gL0dZPbc7/Ho6/1FMhR5pRmRgHIY5xBBHfDNwkK17+Ap4ESTRc/OeIFRWI9to6yd npeYUu6joBr5Zt9cg91xJTuOFHvUfjjZ6az2ZOtebuZ7JusHCpwsGM9eFhh54MLp lp4CPX1ehIkoFblDvRW1mgtqaMVhE8WcAVZRyyymiBNnc3mPTwwAsKEr/AobAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUqt2/ycY+c6fN/mKkh3KrNO2ZutowHwYDVR0j BBgwFoAUJcZZYZWxYkCaWvqpJXDyWLrTxC0wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4NTkxMTIxNjk5NjM1NS8wLzI1QzY1OTYxOTVCMTYyNDA5QTVBRkFBOTI1NzBG MjU4QkFEM0M0MkQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjVDNjU5NjE5NUIxNjI0MDlBNUFGQUE5MjU3MEYyNThCQUQzQzQyRC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1ODU5MTEyMTY5OTYzNTUvMC8zMjMxMzEyZTMx MzQzNzJlMzkzNjJlMzAyZjMyMzAyZDMyMzQyMDNkM2UyMDMxMzMzMTM1MzEzNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEBNOTYDANBgkqhkiG9w0BAQsFAAOCAQEAgHiJSm8mK2yyBdGnvnTP dHhgM4mybfuUEVkG3Hw+eHqtTAb9fuYhDfXoIxwG0udlTSmMSux5gPSSegoGnsLa CUsBWoSAUW8VMH8xsV/ERfC5q5bAP5Of4LaUmcYXopAlnshOqS3VCKOVVIx2EN6y 9zKhcSgS++erncxZaFKaJu4jHJDjXIjPSqtLlw3u+N5grbAmiUaRTMlxFc8UjoLj wtfw9qMgK9cgjRBLC2uWVu8aao1Ht3IYz9f2K4furvk1p+rysniKoHD579VCnxR9 5qOjfdLYDQJUY0vLebf8WC6iK88As1SOyH34icFiYZWchIwdJga84SzGcD8gHt5C bw== -----END CERTIFICATE-----Generated at Fri Apr 17 17:52:02 2026 by rpki-client