$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1070955924073545731/0/3231312e3134372e302e302f32312d3231203d3e2034383437.roa File: 3231312e3134372e302e302f32312d3231203d3e2034383437.roa (raw, json) Hash identifier: fcafh5eb8R7GYO9JPxRF2JSFiwj0/iMPIepT728l4mE= Subject key identifier: A3:48:B3:C2:10:1A:00:4C:4C:EA:18:84:A8:63:6D:A2:7B:AD:95:AF Certificate issuer: /CN=1B27C26F8F7ECE53972D80933F503C09222E8F9F Certificate serial: 01280821DE4E4EE72637ED9F9A2FCBBF4BE3B3C5 Authority key identifier: 1B:27:C2:6F:8F:7E:CE:53:97:2D:80:93:3F:50:3C:09:22:2E:8F:9F Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1B27C26F8F7ECE53972D80933F503C09222E8F9F.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1070955924073545731/0/3231312e3134372e302e302f32312d3231203d3e2034383437.roa Signing time: Wed 15 Apr 2026 04:05:03 +0000 ROA not before: Wed 15 Apr 2026 04:00:03 +0000 ROA not after: Wed 14 Apr 2027 04:05:03 +0000 asID: 4847 IP address blocks: 211.147.0.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1070955924073545731/0/1B27C26F8F7ECE53972D80933F503C09222E8F9F.crl rsync://rpki-rps.cnnic.cn/repo/A1070955924073545731/0/1B27C26F8F7ECE53972D80933F503C09222E8F9F.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1B27C26F8F7ECE53972D80933F503C09222E8F9F.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 12:18:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:28:08:21:de:4e:4e:e7:26:37:ed:9f:9a:2f:cb:bf:4b:e3:b3:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1B27C26F8F7ECE53972D80933F503C09222E8F9F Validity Not Before: Apr 15 04:00:03 2026 GMT Not After : Apr 14 04:05:03 2027 GMT Subject: CN=A348B3C2101A004C4CEA1884A8636DA27BAD95AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:ef:1d:6e:62:80:a9:a2:e8:dc:d4:05:d0:73: 8a:03:d2:8c:61:50:0d:4a:28:73:fe:0d:19:01:06: c2:23:25:1d:1b:cf:88:18:44:3c:e0:70:de:fc:a4: 7c:90:99:63:7e:c8:5f:f1:db:b9:b6:b6:f5:00:f5: 7e:91:9e:a6:c3:15:73:8d:51:34:c5:8c:fc:2c:f7: 5e:fe:e8:8f:37:3d:44:22:6d:57:b8:33:3b:36:2f: c3:97:8a:63:57:3e:e4:74:7b:0b:05:66:7d:81:b2: 9c:c4:c7:57:b1:12:7c:de:78:18:ef:18:0f:87:ad: 1b:b7:70:2c:82:9f:b3:ec:22:23:af:65:ed:83:b6: 2c:fd:72:b5:eb:1d:7d:51:12:30:ba:3a:a4:84:e7: 23:57:d0:53:0f:90:df:e1:6b:ee:67:e8:c0:5f:58: d8:05:26:d6:ad:a9:a5:57:db:bc:ad:81:69:32:4e: f1:3e:f4:4d:10:f5:e9:f0:0d:34:7a:f1:35:01:b1: 76:6b:be:9e:ba:12:31:b8:7e:4f:14:37:e0:7b:7b: cf:da:c7:b5:9e:ee:aa:d2:a1:74:98:b7:bf:e5:33: 09:f6:80:f3:c1:fd:d1:5f:f1:8c:ca:34:37:c5:6f: 5c:b2:86:e5:7a:84:cd:c5:a6:f2:c8:c9:ea:93:82: 8e:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:48:B3:C2:10:1A:00:4C:4C:EA:18:84:A8:63:6D:A2:7B:AD:95:AF X509v3 Authority Key Identifier: keyid:1B:27:C2:6F:8F:7E:CE:53:97:2D:80:93:3F:50:3C:09:22:2E:8F:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1070955924073545731/0/1B27C26F8F7ECE53972D80933F503C09222E8F9F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1B27C26F8F7ECE53972D80933F503C09222E8F9F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1070955924073545731/0/3231312e3134372e302e302f32312d3231203d3e2034383437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 211.147.0.0/21 Signature Algorithm: sha256WithRSAEncryption 2c:75:f9:c0:63:49:09:7e:87:4e:8e:9e:1f:69:63:33:a4:6e: 46:73:80:f2:dc:a1:bd:97:47:75:08:db:9c:09:41:91:e0:f1: 51:77:4d:91:9d:0c:00:5e:84:0a:e5:9d:e8:4c:75:e4:c2:df: 10:0e:b6:bc:9b:fc:ed:d4:fc:60:65:dd:77:3a:fc:98:ae:11: 5d:20:7f:10:ac:59:00:86:49:ee:f7:55:d1:ce:06:f4:0c:e0: ed:16:dc:0c:54:7b:fb:b9:5f:f3:59:69:c1:87:4b:41:d2:59: e6:54:3d:c0:71:7c:29:d1:64:91:0c:7e:40:b9:05:a7:a8:29: bc:fe:50:c0:95:bf:8d:b2:c0:4c:2d:4f:0a:95:f5:9c:ab:5c: d7:47:4d:7d:83:a6:4a:cd:f3:09:15:7f:24:35:77:10:06:10: e5:c9:9f:b8:64:16:5c:c7:5a:ac:dc:7d:99:c6:af:12:a7:b5: e8:ff:9b:1f:55:9f:6a:f6:04:90:95:34:c0:8b:43:92:1c:0f: 20:4e:39:3a:22:2b:a5:17:8e:ce:7f:48:07:75:9b:68:01:56: 33:50:c7:9d:80:1d:b5:99:a6:58:d9:09:a0:16:cf:5d:0a:a8: 9e:cb:04:a8:32:ea:fb:b2:3e:16:44:b9:b1:98:d7:bf:cb:43: 66:b6:a3:72 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUASgIId5OTucmN+2fmi/Lv0vjs8UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUIyN0MyNkY4RjdFQ0U1Mzk3MkQ4MDkzM0Y1MDNDMDky MjJFOEY5RjAeFw0yNjA0MTUwNDAwMDNaFw0yNzA0MTQwNDA1MDNaMDMxMTAvBgNV BAMTKEEzNDhCM0MyMTAxQTAwNEM0Q0VBMTg4NEE4NjM2REEyN0JBRDk1QUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDh7x1uYoCpoujc1AXQc4oD0oxh UA1KKHP+DRkBBsIjJR0bz4gYRDzgcN78pHyQmWN+yF/x27m2tvUA9X6RnqbDFXON UTTFjPws917+6I83PUQibVe4Mzs2L8OXimNXPuR0ewsFZn2BspzEx1exEnzeeBjv GA+HrRu3cCyCn7PsIiOvZe2Dtiz9crXrHX1REjC6OqSE5yNX0FMPkN/ha+5n6MBf WNgFJtatqaVX27ytgWkyTvE+9E0Q9enwDTR68TUBsXZrvp66EjG4fk8UN+B7e8/a x7We7qrSoXSYt7/lMwn2gPPB/dFf8YzKNDfFb1yyhuV6hM3FpvLIyeqTgo7LAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUo0izwhAaAExM6hiEqGNtonutla8wHwYDVR0j BBgwFoAUGyfCb49+zlOXLYCTP1A8CSIuj58wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA3 MDk1NTkyNDA3MzU0NTczMS8wLzFCMjdDMjZGOEY3RUNFNTM5NzJEODA5MzNGNTAz QzA5MjIyRThGOUYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMUIyN0MyNkY4RjdFQ0U1Mzk3MkQ4MDkzM0Y1MDNDMDkyMjJFOEY5Ri5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDcwOTU1OTI0MDczNTQ1NzMxLzAvMzIzMTMxMmUzMTM0 MzcyZTMwMmUzMDJmMzIzMTJkMzIzMTIwM2QzZTIwMzQzODM0Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAPTkwAwDQYJKoZIhvcNAQELBQADggEBACx1+cBjSQl+h06Onh9pYzOkbkZzgPLc ob2XR3UI25wJQZHg8VF3TZGdDABehArlnehMdeTC3xAOtryb/O3U/GBl3Xc6/Jiu EV0gfxCsWQCGSe73VdHOBvQM4O0W3AxUe/u5X/NZacGHS0HSWeZUPcBxfCnRZJEM fkC5BaeoKbz+UMCVv42ywEwtTwqV9ZyrXNdHTX2DpkrN8wkVfyQ1dxAGEOXJn7hk FlzHWqzcfZnGrxKntej/mx9Vn2r2BJCVNMCLQ5IcDyBOOToiK6UXjs5/SAd1m2gB VjNQx52AHbWZpljZCaAWz10KqJ7LBKgy6vuyPhZEubGY17/LQ2a2o3I= -----END CERTIFICATE-----Generated at Fri Apr 17 16:11:53 2026 by rpki-client