$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065887644090630145/0/3132312e38392e302e302f31362d3234203d3e203337393633.roa File: 3132312e38392e302e302f31362d3234203d3e203337393633.roa (raw, json) Hash identifier: aRmlBdC/MnO13qZTP+OkxSC+OOrQhcoCciBB6RX77hE= Subject key identifier: C1:54:6A:E5:7A:34:77:E9:40:A8:D7:18:33:95:C7:68:C3:90:EC:7A Certificate issuer: /CN=B3CAFB59F10B03AD2106E8215DBB903F157D0C8E Certificate serial: 7A5B267958D08631C6969EBE65E2EDB7C1237077 Authority key identifier: B3:CA:FB:59:F1:0B:03:AD:21:06:E8:21:5D:BB:90:3F:15:7D:0C:8E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/3132312e38392e302e302f31362d3234203d3e203337393633.roa Signing time: Tue 14 Apr 2026 02:16:08 +0000 ROA not before: Tue 14 Apr 2026 02:11:08 +0000 ROA not after: Tue 13 Apr 2027 02:16:08 +0000 asID: 37963 IP address blocks: 121.89.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.crl rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 11:27:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:5b:26:79:58:d0:86:31:c6:96:9e:be:65:e2:ed:b7:c1:23:70:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B3CAFB59F10B03AD2106E8215DBB903F157D0C8E Validity Not Before: Apr 14 02:11:08 2026 GMT Not After : Apr 13 02:16:08 2027 GMT Subject: CN=C1546AE57A3477E940A8D7183395C768C390EC7A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:d4:82:93:63:e8:fd:1a:d4:d3:26:90:71:01: 54:b3:0c:06:45:34:2c:b2:9a:3c:26:25:e6:4b:25: 6a:d5:4e:65:69:47:fe:06:18:0b:2a:73:1f:39:4b: 64:17:ee:72:db:1b:5e:a5:96:e6:36:98:9b:dd:63: cc:ec:9c:52:9a:cf:8f:cf:3d:0b:8c:9b:a2:f4:84: 26:44:04:7b:90:29:fe:75:9b:a6:fd:22:ca:00:6f: 6a:0c:b8:73:5e:93:56:4c:02:6e:28:cd:cf:17:c8: 21:28:82:44:e1:01:32:93:f1:6f:25:28:95:ab:34: 41:d2:59:9e:9c:0b:4d:68:36:9b:f6:1f:9a:52:ad: 10:c8:a1:d3:46:aa:9e:e5:f5:98:1f:3c:0f:a4:b8: bc:64:b8:38:77:43:8a:ab:7f:67:b2:c9:41:4a:ed: b6:c4:03:6e:a2:84:14:5b:a5:61:bc:fc:62:c1:ff: 1c:e4:9d:2f:ec:3d:75:c2:a8:8c:29:7f:d7:28:b1: f1:8f:9e:0c:01:4e:b9:99:25:b2:bb:82:af:82:5b: a3:9f:67:e5:b6:55:56:c3:ec:9d:5a:38:38:4e:44: c4:3a:07:f0:ae:e5:98:e9:ae:f0:42:c8:fd:d7:7b: 05:f8:c9:cb:bf:c0:d5:2b:21:7e:92:4f:70:8f:19: 16:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:54:6A:E5:7A:34:77:E9:40:A8:D7:18:33:95:C7:68:C3:90:EC:7A X509v3 Authority Key Identifier: keyid:B3:CA:FB:59:F1:0B:03:AD:21:06:E8:21:5D:BB:90:3F:15:7D:0C:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/3132312e38392e302e302f31362d3234203d3e203337393633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 121.89.0.0/16 Signature Algorithm: sha256WithRSAEncryption 9d:c4:79:6d:aa:b1:6a:fa:70:29:99:50:b7:09:b5:c9:49:02: 83:35:ac:7b:a4:7a:0c:68:93:23:a4:41:52:89:20:44:54:de: c1:6a:3a:7d:ed:53:f6:3a:c9:a1:ba:63:60:a6:02:05:91:ca: 82:d1:9e:77:4e:c1:0a:34:8c:60:ce:7b:d8:f4:1e:93:33:7c: 29:ee:f4:dd:69:71:b0:33:ff:07:77:84:d8:fd:ce:af:4c:21: 57:27:f1:77:3e:e8:88:be:c3:33:dd:bb:73:a4:1b:ec:e6:2b: 8c:38:0d:fe:b9:06:e8:e7:76:e4:99:77:6e:53:95:7f:7f:e4: 54:c5:3d:23:cc:c3:50:ad:87:a2:18:27:5e:fd:c6:95:22:cf: 2d:1e:4d:0c:1f:8b:21:ec:b8:9d:27:2d:c9:7a:5f:a6:ef:fc: 64:da:30:d6:b7:4b:94:4c:d7:3d:b4:82:80:7e:00:77:af:5f: 73:04:e3:24:ee:88:2d:da:36:2d:2f:9a:81:62:03:45:11:dd: fd:ea:2d:e2:03:80:6f:67:10:55:c7:14:3f:92:ff:e2:13:b9: c0:0e:71:3b:7b:c6:a2:b8:d7:b5:73:a5:50:22:8f:ec:59:85: c9:2a:05:dc:0a:3a:71:06:77:9a:86:49:45:64:dd:5e:21:9e: bf:0e:d8:28 -----BEGIN CERTIFICATE----- MIIFBDCCA+ygAwIBAgIUelsmeVjQhjHGlp6+ZeLtt8EjcHcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjNDQUZCNTlGMTBCMDNBRDIxMDZFODIxNURCQjkwM0Yx NTdEMEM4RTAeFw0yNjA0MTQwMjExMDhaFw0yNzA0MTMwMjE2MDhaMDMxMTAvBgNV BAMTKEMxNTQ2QUU1N0EzNDc3RTk0MEE4RDcxODMzOTVDNzY4QzM5MEVDN0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCd1IKTY+j9GtTTJpBxAVSzDAZF NCyymjwmJeZLJWrVTmVpR/4GGAsqcx85S2QX7nLbG16lluY2mJvdY8zsnFKaz4/P PQuMm6L0hCZEBHuQKf51m6b9IsoAb2oMuHNek1ZMAm4ozc8XyCEogkThATKT8W8l KJWrNEHSWZ6cC01oNpv2H5pSrRDIodNGqp7l9ZgfPA+kuLxkuDh3Q4qrf2eyyUFK 7bbEA26ihBRbpWG8/GLB/xzknS/sPXXCqIwpf9cosfGPngwBTrmZJbK7gq+CW6Of Z+W2VVbD7J1aODhORMQ6B/Cu5ZjprvBCyP3XewX4ycu/wNUrIX6ST3CPGRa5AgMB AAGjggIOMIICCjAdBgNVHQ4EFgQUwVRq5Xo0d+lAqNcYM5XHaMOQ7HowHwYDVR0j BBgwFoAUs8r7WfELA60hBughXbuQPxV9DI4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTg4NzY0NDA5MDYzMDE0NS8wL0IzQ0FGQjU5RjEwQjAzQUQyMTA2RTgyMTVEQkI5 MDNGMTU3RDBDOEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQjNDQUZCNTlGMTBCMDNBRDIxMDZFODIxNURCQjkwM0YxNTdEMEM4RS5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1ODg3NjQ0MDkwNjMwMTQ1LzAvMzEzMjMxMmUzODM5 MmUzMDJlMzAyZjMxMzYyZDMyMzQyMDNkM2UyMDMzMzczOTM2MzMucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD AwB5WTANBgkqhkiG9w0BAQsFAAOCAQEAncR5baqxavpwKZlQtwm1yUkCgzWse6R6 DGiTI6RBUokgRFTewWo6fe1T9jrJobpjYKYCBZHKgtGed07BCjSMYM572PQekzN8 Ke703WlxsDP/B3eE2P3Or0whVyfxdz7oiL7DM927c6Qb7OYrjDgN/rkG6Od25Jl3 blOVf3/kVMU9I8zDUK2HohgnXv3GlSLPLR5NDB+LIey4nSctyXpfpu/8ZNow1rdL lEzXPbSCgH4Ad69fcwTjJO6ILdo2LS+agWIDRRHd/eot4gOAb2cQVccUP5L/4hO5 wA5xO3vGorjXtXOlUCKP7FmFySoF3Ao6cQZ3moZJRWTdXiGevw7YKA== -----END CERTIFICATE-----Generated at Fri Apr 17 22:01:46 2026 by rpki-client