$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065585911217586179/1/3136312e3234382e38342e302f32332d3234203d3e20323032373336.roa File: 3136312e3234382e38342e302f32332d3234203d3e20323032373336.roa (raw, json) Hash identifier: PNOmssIbHxITzlHe7RfPxz+xaJMGLHFeoLuHtEcKzhk= Subject key identifier: 35:DD:64:96:D2:9D:16:79:4F:68:0A:EA:58:30:EA:7C:87:53:6D:EB Certificate issuer: /CN=8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8 Certificate serial: 627979C42080EBCDA6B69852EE281A5C97AC241D Authority key identifier: 8B:D8:35:B2:E2:15:D6:86:F2:4F:B3:1A:8A:EC:EE:E4:4F:BD:BD:C8 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/1/3136312e3234382e38342e302f32332d3234203d3e20323032373336.roa Signing time: Tue 14 Apr 2026 03:23:38 +0000 ROA not before: Tue 14 Apr 2026 03:18:38 +0000 ROA not after: Tue 13 Apr 2027 03:23:38 +0000 asID: 202736 IP address blocks: 161.248.84.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/1/8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8.crl rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/1/8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 15:28:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:79:79:c4:20:80:eb:cd:a6:b6:98:52:ee:28:1a:5c:97:ac:24:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8 Validity Not Before: Apr 14 03:18:38 2026 GMT Not After : Apr 13 03:23:38 2027 GMT Subject: CN=35DD6496D29D16794F680AEA5830EA7C87536DEB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:82:33:83:50:93:fa:5c:f3:42:de:55:1b:fd: 4b:43:ce:b2:3c:a7:35:4e:8f:b8:55:17:eb:43:ae: a8:89:6a:b5:0b:22:bc:50:28:1b:d0:7f:ec:77:e4: eb:14:27:a7:d4:03:54:a0:35:69:db:f2:15:f1:b4: 32:b6:3f:dc:43:07:e1:d2:d0:7c:53:1a:16:6e:55: 2c:bf:c5:35:2b:45:90:26:eb:9d:d0:25:02:43:c7: e2:36:7b:47:5a:25:68:7d:35:a5:c7:3a:f7:1a:b5: ab:05:f0:80:96:05:f0:18:51:06:6b:ac:64:70:67: b5:31:4b:78:f0:ba:12:47:b8:3e:aa:5b:68:b1:fc: 3e:5e:2a:2e:2a:d8:8d:50:d2:50:ed:78:8c:c8:d6: 91:d2:de:42:43:ac:e7:63:c2:3a:2e:95:41:16:4e: b8:92:d1:d6:88:09:f1:d8:ed:83:2f:aa:73:6f:35: 84:09:c9:c2:ba:00:b6:47:0f:d0:5f:4e:99:41:1f: 2c:3b:da:7d:83:eb:1f:b9:91:05:97:4c:44:de:83: c3:b6:04:96:53:b2:d1:c6:68:a8:48:01:98:e3:45: 6e:8e:0a:7b:e7:85:c5:4f:6d:d6:5f:2c:ca:3e:50: 0f:d7:4c:86:f2:0d:c7:c2:de:59:ef:25:6a:63:d2: 4f:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:DD:64:96:D2:9D:16:79:4F:68:0A:EA:58:30:EA:7C:87:53:6D:EB X509v3 Authority Key Identifier: keyid:8B:D8:35:B2:E2:15:D6:86:F2:4F:B3:1A:8A:EC:EE:E4:4F:BD:BD:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/1/8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/1/3136312e3234382e38342e302f32332d3234203d3e20323032373336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 161.248.84.0/23 Signature Algorithm: sha256WithRSAEncryption 14:2f:3c:6e:85:b4:e3:2b:10:54:fc:85:5a:6d:f2:82:5c:34: 32:29:91:75:75:fa:2d:f7:47:f0:af:8f:cc:7e:b3:00:a7:3c: d4:42:af:5b:07:50:d3:01:95:98:e7:aa:c2:00:69:dd:08:5b: f6:db:72:a1:79:db:7b:76:09:02:bb:71:9b:58:22:6f:c7:85: 0e:7e:3a:fb:c4:0c:4b:b4:98:31:0a:a4:f2:fa:96:91:30:d9: bc:76:8b:5f:0d:53:0a:e8:34:16:69:92:09:0a:51:4c:8e:ee: 71:d4:23:59:57:94:09:f1:94:14:20:04:d9:28:27:b6:cf:c4: 54:00:81:56:c0:35:23:fe:7f:a4:b0:c9:ad:45:c9:44:5b:bf: 17:e9:e9:00:b5:c7:cf:70:2a:97:e3:1d:6b:b1:b4:c5:8a:77: eb:aa:94:6d:8b:28:02:ae:78:0d:25:3d:f7:7b:01:60:1e:70: 1d:3f:a3:eb:8e:4f:b0:80:25:63:f7:b1:84:bb:09:4f:6b:c4: ef:49:b0:db:ec:f8:a9:35:0a:73:ff:1c:70:d2:f6:88:66:c6: 14:b2:19:93:45:a2:44:3b:a9:72:53:7b:95:61:eb:10:66:4d: 4e:32:23:60:99:37:a4:83:7f:b8:76:03:43:7e:54:89:77:9f: a9:0d:4d:10 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUYnl5xCCA682mtphS7igaXJesJB0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEJEODM1QjJFMjE1RDY4NkYyNEZCMzFBOEFFQ0VFRTQ0 RkJEQkRDODAeFw0yNjA0MTQwMzE4MzhaFw0yNzA0MTMwMzIzMzhaMDMxMTAvBgNV BAMTKDM1REQ2NDk2RDI5RDE2Nzk0RjY4MEFFQTU4MzBFQTdDODc1MzZERUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCSgjODUJP6XPNC3lUb/UtDzrI8 pzVOj7hVF+tDrqiJarULIrxQKBvQf+x35OsUJ6fUA1SgNWnb8hXxtDK2P9xDB+HS 0HxTGhZuVSy/xTUrRZAm653QJQJDx+I2e0daJWh9NaXHOvcatasF8ICWBfAYUQZr rGRwZ7UxS3jwuhJHuD6qW2ix/D5eKi4q2I1Q0lDteIzI1pHS3kJDrOdjwjoulUEW TriS0daICfHY7YMvqnNvNYQJycK6ALZHD9BfTplBHyw72n2D6x+5kQWXTETeg8O2 BJZTstHGaKhIAZjjRW6OCnvnhcVPbdZfLMo+UA/XTIbyDcfC3lnvJWpj0k+DAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUNd1kltKdFnlPaArqWDDqfIdTbeswHwYDVR0j BBgwFoAUi9g1suIV1obyT7Maiuzu5E+9vcgwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4NTkxMTIxNzU4NjE3OS8xLzhCRDgzNUIyRTIxNUQ2ODZGMjRGQjMxQThBRUNF RUU0NEZCREJEQzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvOEJEODM1QjJFMjE1RDY4NkYyNEZCMzFBOEFFQ0VFRTQ0RkJEQkRDOC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1ODU5MTEyMTc1ODYxNzkvMS8zMTM2MzEyZTMy MzQzODJlMzgzNDJlMzAyZjMyMzMyZDMyMzQyMDNkM2UyMDMyMzAzMjM3MzMzNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAaH4VDANBgkqhkiG9w0BAQsFAAOCAQEAFC88boW04ysQVPyFWm3y glw0MimRdXX6LfdH8K+PzH6zAKc81EKvWwdQ0wGVmOeqwgBp3Qhb9ttyoXnbe3YJ Artxm1gib8eFDn46+8QMS7SYMQqk8vqWkTDZvHaLXw1TCug0FmmSCQpRTI7ucdQj WVeUCfGUFCAE2Sgnts/EVACBVsA1I/5/pLDJrUXJRFu/F+npALXHz3Aql+Mda7G0 xYp366qUbYsoAq54DSU993sBYB5wHT+j645PsIAlY/exhLsJT2vE70mw2+z4qTUK c/8ccNL2iGbGFLIZk0WiRDupclN7lWHrEGZNTjIjYJk3pIN/uHYDQ35UiXefqQ1N EA== -----END CERTIFICATE-----Generated at Sat Apr 18 07:29:52 2026 by rpki-client