$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1070955924073545731/0/3231382e3234312e3135322e302f32312d3231203d3e2034383437.roa File: 3231382e3234312e3135322e302f32312d3231203d3e2034383437.roa (raw, json) Hash identifier: 7t38Ok3y1MSCIrkK7JtCipo0K4fqF4ZYBaXy0Wi+4oo= Subject key identifier: 8B:1D:86:8F:2C:70:B8:0B:8E:2C:D2:35:16:B2:05:20:F0:C9:AB:98 Certificate issuer: /CN=1B27C26F8F7ECE53972D80933F503C09222E8F9F Certificate serial: 278D948264CF82182003DD931B0C6FAA16800C55 Authority key identifier: 1B:27:C2:6F:8F:7E:CE:53:97:2D:80:93:3F:50:3C:09:22:2E:8F:9F Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1B27C26F8F7ECE53972D80933F503C09222E8F9F.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1070955924073545731/0/3231382e3234312e3135322e302f32312d3231203d3e2034383437.roa Signing time: Wed 15 Apr 2026 04:05:03 +0000 ROA not before: Wed 15 Apr 2026 04:00:03 +0000 ROA not after: Wed 14 Apr 2027 04:05:03 +0000 asID: 4847 IP address blocks: 218.241.152.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1070955924073545731/0/1B27C26F8F7ECE53972D80933F503C09222E8F9F.crl rsync://rpki-rps.cnnic.cn/repo/A1070955924073545731/0/1B27C26F8F7ECE53972D80933F503C09222E8F9F.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1B27C26F8F7ECE53972D80933F503C09222E8F9F.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 12:18:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:8d:94:82:64:cf:82:18:20:03:dd:93:1b:0c:6f:aa:16:80:0c:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1B27C26F8F7ECE53972D80933F503C09222E8F9F Validity Not Before: Apr 15 04:00:03 2026 GMT Not After : Apr 14 04:05:03 2027 GMT Subject: CN=8B1D868F2C70B80B8E2CD23516B20520F0C9AB98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:52:b8:cb:a5:68:e1:5b:1c:e9:70:33:26:47: ce:58:82:d7:7d:59:8a:2b:2d:9a:72:ad:85:1b:7e: a3:77:f7:d3:21:60:1c:0a:ad:73:47:e9:b8:2d:01: 8c:42:7c:ff:c0:1e:47:35:4e:54:42:42:26:3c:72: 2c:77:b0:c6:23:c4:13:66:65:8c:eb:2e:50:a8:c7: 65:de:61:bd:8e:4f:8d:17:7c:69:de:af:2b:e5:f8: 58:bf:ae:34:62:a0:c5:31:04:9e:af:a0:e8:06:f2: cf:54:d8:5e:ee:2b:0b:ee:79:25:d6:5d:21:cb:13: 4d:f8:c7:51:50:f7:b1:b5:e7:01:ac:ad:d1:e4:86: bc:d2:f9:3c:a9:0a:ff:f5:3e:39:fd:e9:ff:f5:aa: 77:35:3a:2a:fb:56:e7:0a:95:87:17:e4:b2:fa:55: 5e:20:b2:fc:6e:4c:a1:e9:a4:49:83:fa:a8:6d:ac: c7:2f:aa:ef:20:26:83:d2:20:24:7c:4d:67:15:12: d3:c5:02:77:c8:34:a9:b2:78:90:ea:cf:96:4f:40: 97:12:33:b7:20:42:35:fa:88:de:ce:0d:8d:68:96: 16:f9:a5:22:1f:e9:de:72:17:8d:34:67:bb:c9:01: 08:06:ef:de:54:11:13:ea:1a:ed:c6:eb:b7:51:c3: 7c:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:1D:86:8F:2C:70:B8:0B:8E:2C:D2:35:16:B2:05:20:F0:C9:AB:98 X509v3 Authority Key Identifier: keyid:1B:27:C2:6F:8F:7E:CE:53:97:2D:80:93:3F:50:3C:09:22:2E:8F:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1070955924073545731/0/1B27C26F8F7ECE53972D80933F503C09222E8F9F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1B27C26F8F7ECE53972D80933F503C09222E8F9F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1070955924073545731/0/3231382e3234312e3135322e302f32312d3231203d3e2034383437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 218.241.152.0/21 Signature Algorithm: sha256WithRSAEncryption 89:70:2b:10:9a:8d:24:7b:bb:a0:c7:6d:1b:63:73:66:3b:d2: 33:32:7a:54:0f:1f:48:d4:1f:3c:fb:ec:11:32:b7:70:94:f2: 51:90:56:8d:fc:b0:4f:fa:58:1c:78:54:1e:96:d2:5b:ab:9d: 0c:20:3a:a6:49:ca:fc:d0:75:f9:cc:33:91:f1:6a:84:1a:d9: 80:23:99:cb:f6:da:41:d9:b6:fc:26:0b:c8:cf:df:8a:6a:73: b3:85:de:6b:3d:54:f0:d6:19:f0:48:83:a9:ce:dc:76:2d:2c: a3:ed:38:45:8b:c9:c7:aa:3a:e0:e1:47:e6:be:85:b2:00:2a: 79:5d:72:e1:e8:11:86:74:2b:12:d9:f8:00:12:e7:8c:e6:b1: 08:9c:37:a7:a1:7a:eb:d0:c6:76:a2:fd:1e:5a:61:a7:d3:6b: f8:5b:21:5a:ee:76:67:59:2c:09:4d:d8:0e:2e:b8:62:10:17: 06:92:5e:1e:d0:04:b4:e7:69:30:74:7e:2d:5d:bf:8d:62:17: 8b:56:cc:6d:4f:2a:e8:b1:a5:2a:f2:b5:85:b7:fa:03:a4:c9: a5:18:45:a8:a5:1a:9c:6f:62:b8:11:22:55:b0:29:7e:95:45: 23:0c:78:53:9d:f0:86:cf:99:66:2d:f4:a7:b1:76:b1:d7:df: f1:45:cf:79 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUJ42UgmTPghggA92TGwxvqhaADFUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUIyN0MyNkY4RjdFQ0U1Mzk3MkQ4MDkzM0Y1MDNDMDky MjJFOEY5RjAeFw0yNjA0MTUwNDAwMDNaFw0yNzA0MTQwNDA1MDNaMDMxMTAvBgNV BAMTKDhCMUQ4NjhGMkM3MEI4MEI4RTJDRDIzNTE2QjIwNTIwRjBDOUFCOTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpUrjLpWjhWxzpcDMmR85Ygtd9 WYorLZpyrYUbfqN399MhYBwKrXNH6bgtAYxCfP/AHkc1TlRCQiY8cix3sMYjxBNm ZYzrLlCox2XeYb2OT40XfGneryvl+Fi/rjRioMUxBJ6voOgG8s9U2F7uKwvueSXW XSHLE034x1FQ97G15wGsrdHkhrzS+TypCv/1Pjn96f/1qnc1Oir7VucKlYcX5LL6 VV4gsvxuTKHppEmD+qhtrMcvqu8gJoPSICR8TWcVEtPFAnfINKmyeJDqz5ZPQJcS M7cgQjX6iN7ODY1olhb5pSIf6d5yF400Z7vJAQgG795UERPqGu3G67dRw3zbAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUix2GjyxwuAuOLNI1FrIFIPDJq5gwHwYDVR0j BBgwFoAUGyfCb49+zlOXLYCTP1A8CSIuj58wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA3 MDk1NTkyNDA3MzU0NTczMS8wLzFCMjdDMjZGOEY3RUNFNTM5NzJEODA5MzNGNTAz QzA5MjIyRThGOUYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMUIyN0MyNkY4RjdFQ0U1Mzk3MkQ4MDkzM0Y1MDNDMDkyMjJFOEY5Ri5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA3MDk1NTkyNDA3MzU0NTczMS8wLzMyMzEzODJlMzIz NDMxMmUzMTM1MzIyZTMwMmYzMjMxMmQzMjMxMjAzZDNlMjAzNDM4MzQzNy5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEA9rxmDANBgkqhkiG9w0BAQsFAAOCAQEAiXArEJqNJHu7oMdtG2NzZjvS MzJ6VA8fSNQfPPvsETK3cJTyUZBWjfywT/pYHHhUHpbSW6udDCA6pknK/NB1+cwz kfFqhBrZgCOZy/baQdm2/CYLyM/fimpzs4Xeaz1U8NYZ8EiDqc7cdi0so+04RYvJ x6o64OFH5r6FsgAqeV1y4egRhnQrEtn4ABLnjOaxCJw3p6F669DGdqL9Hlphp9Nr +FshWu52Z1ksCU3YDi64YhAXBpJeHtAEtOdpMHR+LV2/jWIXi1bMbU8q6LGlKvK1 hbf6A6TJpRhFqKUanG9iuBEiVbApfpVFIwx4U53whs+ZZi30p7F2sdff8UXPeQ== -----END CERTIFICATE-----Generated at Fri Apr 17 18:23:31 2026 by rpki-client