$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065887644090630145/0/3131382e3139302e302e302f31362d3234203d3e203337393633.roa File: 3131382e3139302e302e302f31362d3234203d3e203337393633.roa (raw, json) Hash identifier: xQW9ojol45re4iNCAQGqC8ODlHa5bqX39lPKMWNMbPQ= Subject key identifier: 52:AD:69:D7:AF:4E:3C:4C:28:B8:88:86:89:84:D3:4F:BD:D4:EE:07 Certificate issuer: /CN=B3CAFB59F10B03AD2106E8215DBB903F157D0C8E Certificate serial: 17D14006B1494E37592870EBF5A58C7121C2EB22 Authority key identifier: B3:CA:FB:59:F1:0B:03:AD:21:06:E8:21:5D:BB:90:3F:15:7D:0C:8E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/3131382e3139302e302e302f31362d3234203d3e203337393633.roa Signing time: Fri 17 Apr 2026 08:41:08 +0000 ROA not before: Fri 17 Apr 2026 08:36:08 +0000 ROA not after: Fri 16 Apr 2027 08:41:08 +0000 asID: 37963 IP address blocks: 118.190.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.crl rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 11:27:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:d1:40:06:b1:49:4e:37:59:28:70:eb:f5:a5:8c:71:21:c2:eb:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B3CAFB59F10B03AD2106E8215DBB903F157D0C8E Validity Not Before: Apr 17 08:36:08 2026 GMT Not After : Apr 16 08:41:08 2027 GMT Subject: CN=52AD69D7AF4E3C4C28B888868984D34FBDD4EE07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:f8:7d:f3:ad:33:7c:91:32:2b:be:ad:d0:62: 3d:91:3d:9b:56:0d:b1:ce:1e:a3:c2:f3:5b:f8:45: e0:ae:8d:02:7d:3c:03:6e:93:c2:b5:ef:fd:39:4f: c5:43:a2:1f:9d:c2:04:9c:77:ff:7b:81:56:18:2c: c3:d9:32:0e:d2:7f:8f:f2:b2:c7:26:28:cd:17:41: 98:62:f6:17:0c:f9:4a:7f:87:b0:9a:2f:69:35:64: 9f:11:86:7b:5f:92:dc:89:52:8b:91:c4:f5:1b:a4: fa:b4:6f:03:49:aa:ea:ec:dd:1b:f2:71:02:a4:42: e5:d2:47:d3:fb:e1:38:0b:c4:ba:fd:45:82:27:c1: c3:87:a8:a8:30:d0:2b:4b:eb:42:54:e9:ad:c0:22: b0:e7:bf:ec:dc:52:61:b2:5d:d0:0d:4f:17:dd:74: 20:00:b4:94:8e:00:0e:8a:c4:5c:54:70:ba:b9:af: c8:44:f3:65:a2:b6:8d:a1:75:4b:5f:63:d3:a0:4c: 08:13:e4:cc:12:b1:1b:1f:6b:f2:8d:07:94:4a:25: a7:10:a2:6a:0d:5d:66:2e:cc:03:f5:b9:72:15:fa: 6f:f1:83:0c:d8:ff:c7:0c:b9:d2:90:f3:0b:2d:ea: 0a:87:c5:b1:e7:4e:cb:72:b9:f5:84:a6:21:70:9c: 56:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:AD:69:D7:AF:4E:3C:4C:28:B8:88:86:89:84:D3:4F:BD:D4:EE:07 X509v3 Authority Key Identifier: keyid:B3:CA:FB:59:F1:0B:03:AD:21:06:E8:21:5D:BB:90:3F:15:7D:0C:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/3131382e3139302e302e302f31362d3234203d3e203337393633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 118.190.0.0/16 Signature Algorithm: sha256WithRSAEncryption 83:d8:d6:70:69:9c:10:ac:fd:36:61:10:f2:fc:da:0d:d5:79: 71:e1:f8:b5:87:25:55:82:07:b3:c7:45:a6:46:54:48:8b:0a: d8:68:3d:b4:4e:db:1f:65:98:20:88:6e:32:ee:74:30:d2:18: af:46:f9:0d:58:52:6d:d1:5b:a3:3f:2f:74:88:6a:9e:c0:78: 0f:52:04:39:9d:cb:27:a6:f1:4f:64:68:51:b2:7f:6f:14:b6: a6:1a:8b:3d:30:7f:d3:18:a1:76:8c:3a:0c:f8:78:b0:3c:5b: 33:65:49:ef:1a:1a:8e:08:f3:5a:8d:bf:bc:8b:f2:f9:e4:51: c4:ed:56:98:08:b3:62:94:db:03:35:c4:df:aa:d4:ec:34:d8: af:7e:57:e3:5d:4f:f4:ec:3b:4e:34:60:b1:22:29:97:9b:3a: e4:59:e3:8f:8b:ad:b9:fa:b8:43:ff:83:54:29:98:a3:75:38: 9a:3a:79:1e:1a:d2:91:c0:93:d0:d1:fe:5b:26:cc:75:ad:c2: 1e:12:c0:f8:89:94:64:fa:09:b2:39:ec:b1:1f:73:d7:86:b6: ab:42:d9:91:c1:7b:cf:8f:70:1e:0d:a7:cb:62:2f:8b:ea:c9: 93:29:f6:7c:07:e7:52:98:03:ec:a7:ea:e9:c6:f1:20:b2:78: 31:b7:2b:40 -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgIUF9FABrFJTjdZKHDr9aWMcSHC6yIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjNDQUZCNTlGMTBCMDNBRDIxMDZFODIxNURCQjkwM0Yx NTdEMEM4RTAeFw0yNjA0MTcwODM2MDhaFw0yNzA0MTYwODQxMDhaMDMxMTAvBgNV BAMTKDUyQUQ2OUQ3QUY0RTNDNEMyOEI4ODg4Njg5ODREMzRGQkRENEVFMDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCr+H3zrTN8kTIrvq3QYj2RPZtW DbHOHqPC81v4ReCujQJ9PANuk8K17/05T8VDoh+dwgScd/97gVYYLMPZMg7Sf4/y sscmKM0XQZhi9hcM+Up/h7CaL2k1ZJ8RhntfktyJUouRxPUbpPq0bwNJqurs3Rvy cQKkQuXSR9P74TgLxLr9RYInwcOHqKgw0CtL60JU6a3AIrDnv+zcUmGyXdANTxfd dCAAtJSOAA6KxFxUcLq5r8hE82Wito2hdUtfY9OgTAgT5MwSsRsfa/KNB5RKJacQ omoNXWYuzAP1uXIV+m/xgwzY/8cMudKQ8wst6gqHxbHnTstyufWEpiFwnFZ1AgMB AAGjggIQMIICDDAdBgNVHQ4EFgQUUq1p169OPEwouIiGiYTTT73U7gcwHwYDVR0j BBgwFoAUs8r7WfELA60hBughXbuQPxV9DI4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTg4NzY0NDA5MDYzMDE0NS8wL0IzQ0FGQjU5RjEwQjAzQUQyMTA2RTgyMTVEQkI5 MDNGMTU3RDBDOEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQjNDQUZCNTlGMTBCMDNBRDIxMDZFODIxNURCQjkwM0YxNTdEMEM4RS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1ODg3NjQ0MDkwNjMwMTQ1LzAvMzEzMTM4MmUzMTM5 MzAyZTMwMmUzMDJmMzEzNjJkMzIzNDIwM2QzZTIwMzMzNzM5MzYzMy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEw BQMDAHa+MA0GCSqGSIb3DQEBCwUAA4IBAQCD2NZwaZwQrP02YRDy/NoN1Xlx4fi1 hyVVggezx0WmRlRIiwrYaD20TtsfZZggiG4y7nQw0hivRvkNWFJt0VujPy90iGqe wHgPUgQ5ncsnpvFPZGhRsn9vFLamGos9MH/TGKF2jDoM+HiwPFszZUnvGhqOCPNa jb+8i/L55FHE7VaYCLNilNsDNcTfqtTsNNivflfjXU/07DtONGCxIimXmzrkWeOP i625+rhD/4NUKZijdTiaOnkeGtKRwJPQ0f5bJsx1rcIeEsD4iZRk+gmyOeyxH3PX hrarQtmRwXvPj3AeDafLYi+L6smTKfZ8B+dSmAPsp+rpxvEgsngxtytA -----END CERTIFICATE-----Generated at Fri Apr 17 19:53:33 2026 by rpki-client