$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096586764014845955/0/3131342e3131342e3131322e302f32302d3234203d3e203231383539.roa File: 3131342e3131342e3131322e302f32302d3234203d3e203231383539.roa (raw, json) Hash identifier: HRMXKfc+EpXqjefGAqI2D0frnesKyXTLaWckWOelSRU= Subject key identifier: B0:B1:4C:49:30:0C:40:C3:DA:7D:8A:37:1B:0F:07:55:8E:60:09:1F Certificate issuer: /CN=F8B4FC29FEF20ADFAFB24A6DAF5F4415226EF8A8 Certificate serial: 5CEA94D13C21BBE8E41BBE42717379EEABFBB29B Authority key identifier: F8:B4:FC:29:FE:F2:0A:DF:AF:B2:4A:6D:AF:5F:44:15:22:6E:F8:A8 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/F8B4FC29FEF20ADFAFB24A6DAF5F4415226EF8A8.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096586764014845955/0/3131342e3131342e3131322e302f32302d3234203d3e203231383539.roa Signing time: Thu 16 Apr 2026 00:19:21 +0000 ROA not before: Thu 16 Apr 2026 00:14:21 +0000 ROA not after: Thu 15 Apr 2027 00:19:21 +0000 asID: 21859 IP address blocks: 114.114.112.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096586764014845955/0/F8B4FC29FEF20ADFAFB24A6DAF5F4415226EF8A8.crl rsync://rpki-rps.cnnic.cn/repo/A1096586764014845955/0/F8B4FC29FEF20ADFAFB24A6DAF5F4415226EF8A8.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/F8B4FC29FEF20ADFAFB24A6DAF5F4415226EF8A8.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 12:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:ea:94:d1:3c:21:bb:e8:e4:1b:be:42:71:73:79:ee:ab:fb:b2:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F8B4FC29FEF20ADFAFB24A6DAF5F4415226EF8A8 Validity Not Before: Apr 16 00:14:21 2026 GMT Not After : Apr 15 00:19:21 2027 GMT Subject: CN=B0B14C49300C40C3DA7D8A371B0F07558E60091F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c0:0e:3c:46:6e:eb:ac:e3:70:e2:55:35:1b: 46:47:1a:30:ea:45:e0:81:2f:2d:74:82:e5:e9:04: 15:e5:2e:cd:8f:aa:1d:a6:73:06:fa:4f:a2:cd:c3: ef:cb:b7:6d:9b:98:15:5c:49:88:04:40:69:5d:3a: 8f:d2:e5:6b:7f:8e:32:35:02:5c:1a:a4:47:46:91: 10:76:d4:b7:e2:cd:32:dc:32:ce:84:aa:c3:51:fd: e2:18:95:28:58:46:d0:2b:16:ce:05:37:fa:b6:e1: 41:a1:f6:72:2e:7a:50:87:0f:39:a4:1d:e4:33:4d: 5b:16:2a:1b:67:cf:47:b2:b5:d4:f3:6f:97:0f:27: 76:60:4b:b0:32:90:d5:bc:13:0f:2e:5a:0b:15:d8: fb:5e:aa:1d:3d:00:19:4d:0a:e8:8c:f7:ca:62:70: 23:0d:c3:76:46:b2:96:0a:cf:6f:f2:31:66:d0:f1: 8e:7d:14:60:3d:b3:79:c1:fa:4c:f6:2a:f7:67:22: df:ab:eb:db:89:e5:54:1e:3d:4b:c3:80:88:f9:0d: ec:f7:5b:51:f2:0f:da:95:64:15:2e:81:dd:ae:67: a4:80:40:c6:1e:a8:9d:a5:f1:02:d2:57:6f:77:39: 11:29:5c:86:47:63:fc:6f:8d:e6:13:5d:73:40:0f: 48:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:B1:4C:49:30:0C:40:C3:DA:7D:8A:37:1B:0F:07:55:8E:60:09:1F X509v3 Authority Key Identifier: keyid:F8:B4:FC:29:FE:F2:0A:DF:AF:B2:4A:6D:AF:5F:44:15:22:6E:F8:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096586764014845955/0/F8B4FC29FEF20ADFAFB24A6DAF5F4415226EF8A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/F8B4FC29FEF20ADFAFB24A6DAF5F4415226EF8A8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096586764014845955/0/3131342e3131342e3131322e302f32302d3234203d3e203231383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.114.112.0/20 Signature Algorithm: sha256WithRSAEncryption 40:91:23:f6:e2:f3:f6:2a:5e:44:4a:44:60:27:d2:8f:18:e4: aa:cd:59:cd:2a:92:22:ce:fd:58:62:bb:9d:73:a7:d0:40:6b: 8e:32:2c:34:c5:72:89:a0:5c:bb:fd:92:33:09:6f:92:cd:da: 62:0f:bb:6e:4a:72:b6:5a:18:74:7a:67:b0:8a:ac:ee:e3:28: 78:80:1c:ba:b8:cd:46:ee:e2:d9:1c:7d:93:12:26:6f:3a:ef: 96:6a:03:11:6c:25:d8:44:df:b5:ed:ad:26:0f:72:44:3c:cb: 7a:0d:58:62:0b:92:99:43:69:0f:60:6d:82:f0:7a:53:0a:18: 5f:bc:c7:8d:47:39:24:40:17:2c:cc:08:a8:1e:86:bc:70:5e: 60:a4:58:15:bd:9b:d4:f8:4a:16:1d:ad:f1:29:cc:df:d2:89: f1:3b:a6:56:81:e3:3e:b5:4c:97:17:07:eb:ae:51:c4:09:50: a2:34:66:3b:6c:2b:08:fe:1d:68:88:37:a8:9d:74:3b:60:3c: 3f:77:01:f5:6a:f6:16:c6:e3:1d:f6:80:f9:b7:44:04:9d:7a: bf:e6:9d:52:cc:62:dd:2c:e4:ad:ad:51:76:c7:ff:49:3c:f1: 40:3a:be:4a:87:5d:62:be:86:66:f3:dd:4d:a9:59:82:94:24: 1f:06:6a:6a -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUXOqU0Twhu+jkG75CcXN57qv7spswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjhCNEZDMjlGRUYyMEFERkFGQjI0QTZEQUY1RjQ0MTUy MjZFRjhBODAeFw0yNjA0MTYwMDE0MjFaFw0yNzA0MTUwMDE5MjFaMDMxMTAvBgNV BAMTKEIwQjE0QzQ5MzAwQzQwQzNEQTdEOEEzNzFCMEYwNzU1OEU2MDA5MUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9wA48Rm7rrONw4lU1G0ZHGjDq ReCBLy10guXpBBXlLs2Pqh2mcwb6T6LNw+/Lt22bmBVcSYgEQGldOo/S5Wt/jjI1 AlwapEdGkRB21LfizTLcMs6EqsNR/eIYlShYRtArFs4FN/q24UGh9nIuelCHDzmk HeQzTVsWKhtnz0eytdTzb5cPJ3ZgS7AykNW8Ew8uWgsV2Pteqh09ABlNCuiM98pi cCMNw3ZGspYKz2/yMWbQ8Y59FGA9s3nB+kz2KvdnIt+r69uJ5VQePUvDgIj5Dez3 W1HyD9qVZBUugd2uZ6SAQMYeqJ2l8QLSV293OREpXIZHY/xvjeYTXXNAD0i9AgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUsLFMSTAMQMPafYo3Gw8HVY5gCR8wHwYDVR0j BBgwFoAU+LT8Kf7yCt+vskptr19EFSJu+KgwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjU4Njc2NDAxNDg0NTk1NS8wL0Y4QjRGQzI5RkVGMjBBREZBRkIyNEE2REFGNUY0 NDE1MjI2RUY4QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRjhCNEZDMjlGRUYyMEFERkFGQjI0QTZEQUY1RjQ0MTUyMjZFRjhBOC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTY1ODY3NjQwMTQ4NDU5NTUvMC8zMTMxMzQyZTMx MzEzNDJlMzEzMTMyMmUzMDJmMzIzMDJkMzIzNDIwM2QzZTIwMzIzMTM4MzUzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEBHJycDANBgkqhkiG9w0BAQsFAAOCAQEAQJEj9uLz9ipeREpEYCfS jxjkqs1ZzSqSIs79WGK7nXOn0EBrjjIsNMVyiaBcu/2SMwlvks3aYg+7bkpytloY dHpnsIqs7uMoeIAcurjNRu7i2Rx9kxImbzrvlmoDEWwl2ETfte2tJg9yRDzLeg1Y YguSmUNpD2BtgvB6UwoYX7zHjUc5JEAXLMwIqB6GvHBeYKRYFb2b1PhKFh2t8SnM 39KJ8TumVoHjPrVMlxcH665RxAlQojRmO2wrCP4daIg3qJ10O2A8P3cB9Wr2Fsbj HfaA+bdEBJ16v+adUsxi3Szkra1Rdsf/STzxQDq+SoddYr6GZvPdTalZgpQkHwZq ag== -----END CERTIFICATE-----Generated at Fri Apr 17 14:51:57 2026 by rpki-client