$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065887644090630145/0/3131342e3231352e302e302f31362d3234203d3e203337393633.roa File: 3131342e3231352e302e302f31362d3234203d3e203337393633.roa (raw, json) Hash identifier: asRVDvkw9n5PwBBtla9aZDKA3N+T6k8ahpr54j5ukgA= Subject key identifier: 52:4B:43:D6:24:50:31:8C:FB:24:28:C5:A9:C3:AE:72:05:8F:1D:B5 Certificate issuer: /CN=B3CAFB59F10B03AD2106E8215DBB903F157D0C8E Certificate serial: 2EB38BEE6D693E9920C48BEFE5211A1907B8E19E Authority key identifier: B3:CA:FB:59:F1:0B:03:AD:21:06:E8:21:5D:BB:90:3F:15:7D:0C:8E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/3131342e3231352e302e302f31362d3234203d3e203337393633.roa Signing time: Mon 13 Apr 2026 08:31:35 +0000 ROA not before: Mon 13 Apr 2026 08:26:35 +0000 ROA not after: Mon 12 Apr 2027 08:31:35 +0000 asID: 37963 IP address blocks: 114.215.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.crl rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 11:27:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:b3:8b:ee:6d:69:3e:99:20:c4:8b:ef:e5:21:1a:19:07:b8:e1:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B3CAFB59F10B03AD2106E8215DBB903F157D0C8E Validity Not Before: Apr 13 08:26:35 2026 GMT Not After : Apr 12 08:31:35 2027 GMT Subject: CN=524B43D62450318CFB2428C5A9C3AE72058F1DB5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:4b:6f:3f:0b:52:c6:68:a4:40:32:3c:43:38: f1:62:f2:64:cb:19:60:f1:af:19:2b:71:7c:df:18: a0:ab:65:3c:b0:df:14:5c:54:e3:d3:a1:0d:4c:3d: 07:46:d6:c1:a6:87:8c:a0:9a:c4:e9:b5:2a:28:30: 3c:de:62:1f:ed:c2:01:4e:56:c5:f4:b1:8a:1b:e1: 09:0b:ad:bb:01:17:b0:97:dd:18:fe:f3:8b:1b:57: 0b:48:c7:86:e6:b1:67:57:0a:e0:20:a2:95:4f:b8: a1:23:34:14:41:ff:a9:9e:3c:82:1a:3b:67:6c:34: b1:c3:a6:66:80:81:18:14:85:7e:b9:2b:d7:59:cf: e6:dd:42:3b:9b:2d:16:13:bc:5a:2f:a1:9e:8f:f8: 86:bd:74:e8:2e:28:9e:95:79:1d:d8:2d:ae:5e:d8: c8:1f:d0:31:6c:ba:fb:fe:91:f8:fa:cc:dc:8b:53: 0b:26:47:9b:95:f1:6a:40:00:42:5b:73:d3:2b:1c: 3e:d5:9c:79:74:b9:29:ad:59:63:d3:de:20:d6:46: 1e:dd:09:fd:0a:bf:a3:0a:4b:3f:ae:40:0d:8c:2d: e3:2c:b1:ea:1c:13:92:d3:65:fd:ff:2a:b5:07:63: 92:7e:86:9a:44:1d:68:3d:35:aa:6f:cd:81:c0:69: 66:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:4B:43:D6:24:50:31:8C:FB:24:28:C5:A9:C3:AE:72:05:8F:1D:B5 X509v3 Authority Key Identifier: keyid:B3:CA:FB:59:F1:0B:03:AD:21:06:E8:21:5D:BB:90:3F:15:7D:0C:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/3131342e3231352e302e302f31362d3234203d3e203337393633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.215.0.0/16 Signature Algorithm: sha256WithRSAEncryption 90:a4:de:c5:3c:e1:82:73:d8:19:e0:c2:23:3c:9e:69:6f:2c: 5a:77:92:2f:04:0c:44:5f:62:23:d0:9a:d1:38:09:23:92:be: ba:f3:b4:78:2b:55:bc:a4:d0:b1:16:e6:ff:26:74:3e:2f:77: 89:f0:a6:aa:e6:a8:99:e6:0a:0a:02:b0:dc:f3:d0:b6:e8:4a: 63:8b:91:c9:fe:e4:a7:d3:ae:c1:d6:bc:32:c1:77:de:07:de: 47:03:63:78:b8:0f:9d:11:55:ee:d9:be:4a:53:ae:0f:21:75: 6f:80:11:79:29:6f:f1:75:c9:c7:69:6f:fb:cb:af:88:e5:cd: 57:eb:78:76:14:07:95:4d:d8:24:12:92:f1:5e:9d:02:45:fd: 3e:60:0a:95:c6:2e:76:77:3e:50:05:7c:3b:ef:8b:74:30:fc: 56:59:55:30:87:8e:ca:57:75:0b:88:d1:10:f5:73:51:4f:e2: a8:d3:17:48:86:ea:c0:cc:5f:82:02:a5:ec:30:7b:4e:21:7b: 03:cf:be:d5:15:65:ad:bc:95:97:72:2c:f6:b8:c1:0e:47:b6: 39:a3:d0:17:11:60:99:e8:0f:11:19:b1:02:a5:51:52:cc:0b: c4:9e:3b:16:28:ea:9b:c7:56:f4:a6:c7:36:60:0e:ac:27:ad: 90:79:67:a6 -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgIULrOL7m1pPpkgxIvv5SEaGQe44Z4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjNDQUZCNTlGMTBCMDNBRDIxMDZFODIxNURCQjkwM0Yx NTdEMEM4RTAeFw0yNjA0MTMwODI2MzVaFw0yNzA0MTIwODMxMzVaMDMxMTAvBgNV BAMTKDUyNEI0M0Q2MjQ1MDMxOENGQjI0MjhDNUE5QzNBRTcyMDU4RjFEQjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFS28/C1LGaKRAMjxDOPFi8mTL GWDxrxkrcXzfGKCrZTyw3xRcVOPToQ1MPQdG1sGmh4ygmsTptSooMDzeYh/twgFO VsX0sYob4QkLrbsBF7CX3Rj+84sbVwtIx4bmsWdXCuAgopVPuKEjNBRB/6mePIIa O2dsNLHDpmaAgRgUhX65K9dZz+bdQjubLRYTvFovoZ6P+Ia9dOguKJ6VeR3YLa5e 2Mgf0DFsuvv+kfj6zNyLUwsmR5uV8WpAAEJbc9MrHD7VnHl0uSmtWWPT3iDWRh7d Cf0Kv6MKSz+uQA2MLeMsseocE5LTZf3/KrUHY5J+hppEHWg9NapvzYHAaWYNAgMB AAGjggIQMIICDDAdBgNVHQ4EFgQUUktD1iRQMYz7JCjFqcOucgWPHbUwHwYDVR0j BBgwFoAUs8r7WfELA60hBughXbuQPxV9DI4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTg4NzY0NDA5MDYzMDE0NS8wL0IzQ0FGQjU5RjEwQjAzQUQyMTA2RTgyMTVEQkI5 MDNGMTU3RDBDOEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQjNDQUZCNTlGMTBCMDNBRDIxMDZFODIxNURCQjkwM0YxNTdEMEM4RS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1ODg3NjQ0MDkwNjMwMTQ1LzAvMzEzMTM0MmUzMjMx MzUyZTMwMmUzMDJmMzEzNjJkMzIzNDIwM2QzZTIwMzMzNzM5MzYzMy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEw BQMDAHLXMA0GCSqGSIb3DQEBCwUAA4IBAQCQpN7FPOGCc9gZ4MIjPJ5pbyxad5Iv BAxEX2Ij0JrROAkjkr6687R4K1W8pNCxFub/JnQ+L3eJ8Kaq5qiZ5goKArDc89C2 6Epji5HJ/uSn067B1rwywXfeB95HA2N4uA+dEVXu2b5KU64PIXVvgBF5KW/xdcnH aW/7y6+I5c1X63h2FAeVTdgkEpLxXp0CRf0+YAqVxi52dz5QBXw774t0MPxWWVUw h47KV3ULiNEQ9XNRT+Ko0xdIhurAzF+CAqXsMHtOIXsDz77VFWWtvJWXciz2uMEO R7Y5o9AXEWCZ6A8RGbECpVFSzAvEnjsWKOqbx1b0psc2YA6sJ62QeWem -----END CERTIFICATE-----Generated at Fri Apr 17 23:54:21 2026 by rpki-client