$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065887644090630145/0/3131322e37342e302e302f31362d3234203d3e203337393633.roa File: 3131322e37342e302e302f31362d3234203d3e203337393633.roa (raw, json) Hash identifier: G3zmSVUd68hJoAuRfhCoY9LP5i9XMd7UlDxZdZGEgDc= Subject key identifier: 24:B8:F5:DF:6A:3D:E5:7D:40:29:FB:75:EE:29:A7:4C:70:91:51:99 Certificate issuer: /CN=B3CAFB59F10B03AD2106E8215DBB903F157D0C8E Certificate serial: 01D6F984284CDF2E381C0452F9787A340E56F366 Authority key identifier: B3:CA:FB:59:F1:0B:03:AD:21:06:E8:21:5D:BB:90:3F:15:7D:0C:8E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/3131322e37342e302e302f31362d3234203d3e203337393633.roa Signing time: Fri 10 Apr 2026 08:02:23 +0000 ROA not before: Fri 10 Apr 2026 07:57:23 +0000 ROA not after: Fri 09 Apr 2027 08:02:23 +0000 asID: 37963 IP address blocks: 112.74.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.crl rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 17:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:d6:f9:84:28:4c:df:2e:38:1c:04:52:f9:78:7a:34:0e:56:f3:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B3CAFB59F10B03AD2106E8215DBB903F157D0C8E Validity Not Before: Apr 10 07:57:23 2026 GMT Not After : Apr 9 08:02:23 2027 GMT Subject: CN=24B8F5DF6A3DE57D4029FB75EE29A74C70915199 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:6f:2b:7e:d8:31:4b:5b:b5:e8:2f:9d:87:39: aa:99:79:4f:56:8f:a3:dc:0c:5c:f5:64:00:d8:ca: 71:fd:a0:07:e1:a1:6c:eb:27:fe:33:97:c9:07:82: dd:54:cd:ee:04:e3:71:b9:68:01:a3:b6:52:82:76: 9b:fa:90:22:4e:f1:ee:0f:f9:9b:81:c1:5a:57:52: bf:7c:c7:a2:66:87:e7:d0:50:ac:f5:bf:c0:37:0a: 00:4b:0f:93:68:f7:9f:cf:a9:ec:f4:8b:cd:c7:d0: dd:58:ab:2c:48:4f:4b:cb:04:20:70:7a:30:c0:5a: 71:f8:a5:22:4a:5e:51:98:61:d1:1f:f6:f6:8f:71: 92:50:fb:47:44:fa:c1:3c:fc:73:3f:c6:4b:b6:89: 71:c4:dd:a4:dc:06:2b:75:0d:b7:d3:2d:97:09:a1: 6d:bb:ba:69:a2:2c:23:03:dd:23:10:fd:96:13:60: 7d:16:7d:d6:f7:f9:68:7e:7a:bb:a1:88:48:1b:64: 8f:bb:16:82:d4:65:37:94:44:91:f7:5c:8a:59:f3: 22:41:09:f1:1d:e7:9a:4e:02:66:c9:1d:eb:01:67: d6:ea:6b:ae:e7:aa:47:de:26:dd:98:a9:71:3e:35: 4a:46:28:56:70:3a:3b:09:df:13:37:6b:a7:56:c2: a9:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:B8:F5:DF:6A:3D:E5:7D:40:29:FB:75:EE:29:A7:4C:70:91:51:99 X509v3 Authority Key Identifier: keyid:B3:CA:FB:59:F1:0B:03:AD:21:06:E8:21:5D:BB:90:3F:15:7D:0C:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/3131322e37342e302e302f31362d3234203d3e203337393633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 112.74.0.0/16 Signature Algorithm: sha256WithRSAEncryption 24:29:41:9e:7e:4e:7a:39:18:01:e8:7a:1b:81:4e:32:c0:79: 76:2a:94:42:31:69:83:f3:a9:08:5d:c9:dd:be:5a:a4:40:3a: 16:5c:6c:24:f0:43:cc:f8:e4:dc:8a:b3:a8:16:d1:92:0d:86: 6f:39:85:9e:93:d6:fc:df:76:9e:c7:d8:2f:48:e9:a1:46:33: bb:7c:c8:5b:b7:83:cd:42:aa:d4:8e:13:b8:c1:4e:23:ec:d0: 20:a7:05:3c:a3:15:5a:58:1c:88:eb:5a:27:4b:b8:c0:8a:ce: 6c:b4:85:ee:27:2b:59:9b:df:2c:97:c4:ba:ef:b1:8d:8b:ad: d9:c1:63:73:3f:ff:3d:0f:a0:7a:dd:99:b2:05:70:d5:44:6c: f4:b9:fa:dc:2a:c0:ac:86:21:6b:77:48:d8:24:7a:5b:32:a9: 9d:1d:99:46:7f:dd:ba:2c:6a:9d:45:5b:42:bd:c2:20:cd:0b: cd:52:40:d3:3c:99:62:9a:6f:51:56:1e:0d:2e:ac:a4:33:42: 95:d4:74:99:4f:23:a7:54:3d:34:ef:38:58:84:ab:0c:38:f5: 54:7b:30:88:ab:e4:f8:08:a7:1e:e6:cb:81:93:d6:e0:12:00: 88:6a:38:6d:d9:f5:85:4c:ef:ca:4f:0e:a0:a4:64:c6:2d:3f: a5:50:33:c4 -----BEGIN CERTIFICATE----- MIIFBDCCA+ygAwIBAgIUAdb5hChM3y44HARS+Xh6NA5W82YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjNDQUZCNTlGMTBCMDNBRDIxMDZFODIxNURCQjkwM0Yx NTdEMEM4RTAeFw0yNjA0MTAwNzU3MjNaFw0yNzA0MDkwODAyMjNaMDMxMTAvBgNV BAMTKDI0QjhGNURGNkEzREU1N0Q0MDI5RkI3NUVFMjlBNzRDNzA5MTUxOTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcbyt+2DFLW7XoL52HOaqZeU9W j6PcDFz1ZADYynH9oAfhoWzrJ/4zl8kHgt1Uze4E43G5aAGjtlKCdpv6kCJO8e4P +ZuBwVpXUr98x6Jmh+fQUKz1v8A3CgBLD5No95/Pqez0i83H0N1YqyxIT0vLBCBw ejDAWnH4pSJKXlGYYdEf9vaPcZJQ+0dE+sE8/HM/xku2iXHE3aTcBit1DbfTLZcJ oW27ummiLCMD3SMQ/ZYTYH0Wfdb3+Wh+eruhiEgbZI+7FoLUZTeURJH3XIpZ8yJB CfEd55pOAmbJHesBZ9bqa67nqkfeJt2YqXE+NUpGKFZwOjsJ3xM3a6dWwqnFAgMB AAGjggIOMIICCjAdBgNVHQ4EFgQUJLj132o95X1AKft17imnTHCRUZkwHwYDVR0j BBgwFoAUs8r7WfELA60hBughXbuQPxV9DI4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTg4NzY0NDA5MDYzMDE0NS8wL0IzQ0FGQjU5RjEwQjAzQUQyMTA2RTgyMTVEQkI5 MDNGMTU3RDBDOEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQjNDQUZCNTlGMTBCMDNBRDIxMDZFODIxNURCQjkwM0YxNTdEMEM4RS5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1ODg3NjQ0MDkwNjMwMTQ1LzAvMzEzMTMyMmUzNzM0 MmUzMDJlMzAyZjMxMzYyZDMyMzQyMDNkM2UyMDMzMzczOTM2MzMucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD AwBwSjANBgkqhkiG9w0BAQsFAAOCAQEAJClBnn5OejkYAeh6G4FOMsB5diqUQjFp g/OpCF3J3b5apEA6FlxsJPBDzPjk3IqzqBbRkg2GbzmFnpPW/N92nsfYL0jpoUYz u3zIW7eDzUKq1I4TuMFOI+zQIKcFPKMVWlgciOtaJ0u4wIrObLSF7icrWZvfLJfE uu+xjYut2cFjcz//PQ+get2ZsgVw1URs9Ln63CrArIYha3dI2CR6WzKpnR2ZRn/d uixqnUVbQr3CIM0LzVJA0zyZYppvUVYeDS6spDNCldR0mU8jp1Q9NO84WISrDDj1 VHswiKvk+AinHubLgZPW4BIAiGo4bdn1hUzvyk8OoKRkxi0/pVAzxA== -----END CERTIFICATE-----Generated at Sat Apr 18 05:45:43 2026 by rpki-client