$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065588553129525251/0/3231312e3134392e33362e302f32322d3234203d3e20323133373035.roa File: 3231312e3134392e33362e302f32322d3234203d3e20323133373035.roa (raw, json) Hash identifier: HK63vjI4RIq2yRn8A/BOQDGw1u7iMQT/KaIoq8LJGsE= Subject key identifier: F1:6A:44:F4:9D:39:A6:BA:94:52:A6:A0:E4:5D:37:74:70:E8:3A:E8 Certificate issuer: /CN=E893434A32058DAFE9758FDA7B36659444C9EF8E Certificate serial: 1874646275E0673A9A8E0CCE5E5F1F4278CDD9F0 Authority key identifier: E8:93:43:4A:32:05:8D:AF:E9:75:8F:DA:7B:36:65:94:44:C9:EF:8E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/3231312e3134392e33362e302f32322d3234203d3e20323133373035.roa Signing time: Thu 02 Apr 2026 08:58:27 +0000 ROA not before: Thu 02 Apr 2026 08:53:27 +0000 ROA not after: Thu 01 Apr 2027 08:58:27 +0000 asID: 213705 IP address blocks: 211.149.36.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.crl rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 17:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:74:64:62:75:e0:67:3a:9a:8e:0c:ce:5e:5f:1f:42:78:cd:d9:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E893434A32058DAFE9758FDA7B36659444C9EF8E Validity Not Before: Apr 2 08:53:27 2026 GMT Not After : Apr 1 08:58:27 2027 GMT Subject: CN=F16A44F49D39A6BA9452A6A0E45D377470E83AE8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e5:9f:1e:a7:12:0f:da:73:cc:b4:0e:c6:f2: 40:66:70:2f:1e:33:4a:60:14:a7:d6:b6:3e:76:6d: c3:3b:03:81:fd:06:31:df:14:a7:02:cc:4f:ad:86: 58:32:22:3c:84:26:69:a7:49:40:1c:fc:80:b6:81: 0e:45:06:a8:88:56:44:33:e3:9d:9c:a2:25:ca:36: 01:9e:47:a0:3b:d5:27:2a:e0:4a:13:8d:93:b7:09: 08:c5:a4:11:38:a1:f9:c6:78:5f:7b:90:3d:2f:4f: d5:40:5f:0c:0f:4c:53:8d:f4:e9:d3:a2:9b:d0:04: b1:5c:8b:c6:83:cf:fb:2e:33:34:c7:68:db:10:4c: e3:c8:09:e2:bc:8c:55:cb:3e:e2:66:be:39:f5:48: dd:6d:26:d2:80:4f:82:d9:1c:ed:a2:20:e2:bf:31: 97:37:ea:53:1e:1c:6b:63:bb:7a:36:8c:75:4d:ee: 39:f8:4f:5d:0f:6f:36:cb:7d:f0:f2:52:74:7f:71: 21:41:45:2f:03:f6:b0:47:37:d7:49:41:17:13:68: 8a:c7:0e:8a:75:8a:fe:6e:18:52:d0:9c:29:ad:74: 55:26:f2:87:1a:cb:e5:b5:f6:0c:87:8c:8f:b1:dc: a5:02:6c:a0:66:b4:54:32:40:5b:25:aa:db:72:e8: d1:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:6A:44:F4:9D:39:A6:BA:94:52:A6:A0:E4:5D:37:74:70:E8:3A:E8 X509v3 Authority Key Identifier: keyid:E8:93:43:4A:32:05:8D:AF:E9:75:8F:DA:7B:36:65:94:44:C9:EF:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/3231312e3134392e33362e302f32322d3234203d3e20323133373035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 211.149.36.0/22 Signature Algorithm: sha256WithRSAEncryption 63:ce:17:de:c4:5c:a0:ef:c3:1c:f1:e4:0f:f2:26:75:08:ad: c2:5d:91:74:20:84:41:35:56:55:9c:21:28:5b:ac:33:88:2c: 3c:62:b5:2f:3b:cb:c2:82:ea:47:f4:8f:f9:32:43:9d:db:23: 68:c2:be:9a:d3:5e:dd:ff:50:c8:72:5a:49:45:9c:a1:75:16: e7:9b:08:3c:42:96:f7:e0:a5:e3:2d:27:13:8a:2d:82:c0:36: b8:63:3e:0c:08:89:11:8f:c8:5f:6d:aa:a5:7c:b5:cd:6e:8b: 1b:80:3e:7d:64:c3:53:c9:74:31:93:38:17:0f:3f:e1:54:88: 46:54:28:fa:31:f5:f4:6c:d2:9e:a5:8e:b9:ad:79:52:da:b9: 87:f0:dd:28:fe:1b:18:8a:28:03:c1:fd:0a:7e:d6:72:46:aa: 28:d4:1d:1a:00:ed:5f:6d:a6:4d:90:ea:9e:5f:b2:45:8d:16: 3d:2e:cc:5a:0b:cd:8a:d0:84:f4:5a:35:2c:44:e9:37:8f:47: 91:7c:00:b9:5a:87:d1:43:c2:a0:b2:ec:6b:47:4f:ea:be:94: 12:a4:40:ee:53:0b:a9:33:2e:0a:30:ef:fd:cf:67:dd:2b:cd: b4:87:5b:8a:09:ac:a0:c3:4a:0e:66:13:6a:79:74:d7:de:9b: bf:7d:ce:32 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUGHRkYnXgZzqajgzOXl8fQnjN2fAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTg5MzQzNEEzMjA1OERBRkU5NzU4RkRBN0IzNjY1OTQ0 NEM5RUY4RTAeFw0yNjA0MDIwODUzMjdaFw0yNzA0MDEwODU4MjdaMDMxMTAvBgNV BAMTKEYxNkE0NEY0OUQzOUE2QkE5NDUyQTZBMEU0NUQzNzc0NzBFODNBRTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDI5Z8epxIP2nPMtA7G8kBmcC8e M0pgFKfWtj52bcM7A4H9BjHfFKcCzE+thlgyIjyEJmmnSUAc/IC2gQ5FBqiIVkQz 452coiXKNgGeR6A71Scq4EoTjZO3CQjFpBE4ofnGeF97kD0vT9VAXwwPTFON9OnT opvQBLFci8aDz/suMzTHaNsQTOPICeK8jFXLPuJmvjn1SN1tJtKAT4LZHO2iIOK/ MZc36lMeHGtju3o2jHVN7jn4T10PbzbLffDyUnR/cSFBRS8D9rBHN9dJQRcTaIrH Dop1iv5uGFLQnCmtdFUm8ocay+W19gyHjI+x3KUCbKBmtFQyQFslqtty6NHPAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQU8WpE9J05prqUUqag5F03dHDoOugwHwYDVR0j BBgwFoAU6JNDSjIFja/pdY/aezZllETJ744wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4ODU1MzEyOTUyNTI1MS8wL0U4OTM0MzRBMzIwNThEQUZFOTc1OEZEQTdCMzY2 NTk0NDRDOUVGOEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRTg5MzQzNEEzMjA1OERBRkU5NzU4RkRBN0IzNjY1OTQ0NEM5RUY4RS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1ODg1NTMxMjk1MjUyNTEvMC8zMjMxMzEyZTMx MzQzOTJlMzMzNjJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDMyMzEzMzM3MzAzNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAtOVJDANBgkqhkiG9w0BAQsFAAOCAQEAY84X3sRcoO/DHPHkD/Im dQitwl2RdCCEQTVWVZwhKFusM4gsPGK1LzvLwoLqR/SP+TJDndsjaMK+mtNe3f9Q yHJaSUWcoXUW55sIPEKW9+Cl4y0nE4otgsA2uGM+DAiJEY/IX22qpXy1zW6LG4A+ fWTDU8l0MZM4Fw8/4VSIRlQo+jH19GzSnqWOua15Utq5h/DdKP4bGIooA8H9Cn7W ckaqKNQdGgDtX22mTZDqnl+yRY0WPS7MWgvNitCE9Fo1LETpN49HkXwAuVqH0UPC oLLsa0dP6r6UEqRA7lMLqTMuCjDv/c9n3SvNtIdbigmsoMNKDmYTanl0196bv33O Mg== -----END CERTIFICATE-----Generated at Fri Apr 17 22:46:13 2026 by rpki-client