$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096586764014845955/0/3131342e3131342e3132382e302f31372d3234203d3e2034383337.roa File: 3131342e3131342e3132382e302f31372d3234203d3e2034383337.roa (raw, json) Hash identifier: 7mISZsZ4HIxbAs3JkW8PttavON7sghcgz5ug1T/w3Jk= Subject key identifier: 78:F0:2F:54:B1:1C:01:D5:2F:0C:35:A9:35:24:08:A3:0D:E5:BB:96 Certificate issuer: /CN=F8B4FC29FEF20ADFAFB24A6DAF5F4415226EF8A8 Certificate serial: 7FBC365AF14B7735CBC134DE4FD37BF967DAFCD5 Authority key identifier: F8:B4:FC:29:FE:F2:0A:DF:AF:B2:4A:6D:AF:5F:44:15:22:6E:F8:A8 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/F8B4FC29FEF20ADFAFB24A6DAF5F4415226EF8A8.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096586764014845955/0/3131342e3131342e3132382e302f31372d3234203d3e2034383337.roa Signing time: Thu 16 Apr 2026 00:18:22 +0000 ROA not before: Thu 16 Apr 2026 00:13:22 +0000 ROA not after: Thu 15 Apr 2027 00:18:22 +0000 asID: 4837 IP address blocks: 114.114.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096586764014845955/0/F8B4FC29FEF20ADFAFB24A6DAF5F4415226EF8A8.crl rsync://rpki-rps.cnnic.cn/repo/A1096586764014845955/0/F8B4FC29FEF20ADFAFB24A6DAF5F4415226EF8A8.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/F8B4FC29FEF20ADFAFB24A6DAF5F4415226EF8A8.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 23:35:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:bc:36:5a:f1:4b:77:35:cb:c1:34:de:4f:d3:7b:f9:67:da:fc:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F8B4FC29FEF20ADFAFB24A6DAF5F4415226EF8A8 Validity Not Before: Apr 16 00:13:22 2026 GMT Not After : Apr 15 00:18:22 2027 GMT Subject: CN=78F02F54B11C01D52F0C35A9352408A30DE5BB96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:4c:27:8a:22:86:62:dd:4b:2a:fb:d5:35:68: 37:10:50:00:35:12:b7:a8:41:6b:1f:ff:c6:6c:4d: 9a:24:84:29:d9:b5:94:13:9d:40:98:cf:e1:be:b8: 51:72:05:c1:72:06:88:49:48:48:9a:49:38:ad:c1: 5a:cb:30:1e:68:b2:5a:a8:70:71:f9:37:d4:3e:38: 33:c4:75:74:f7:b9:d7:43:d1:5b:54:92:0c:4a:bf: 60:fa:8b:1e:6c:f4:c0:99:08:55:94:12:9b:15:bf: 5d:5a:45:e3:fa:ab:ef:b8:a9:de:5d:bf:3c:36:98: 17:1c:7c:f2:90:08:56:b6:32:e5:36:43:e9:35:73: 85:2d:00:1e:9a:2c:bf:03:80:6b:ca:42:a9:4c:e3: 63:d8:68:d1:b2:a2:f9:c4:42:73:14:f2:99:46:45: 44:75:5f:d0:c0:24:94:31:10:7f:4d:90:bc:2c:c4: 20:9d:2e:58:2c:44:9d:84:dd:44:7c:f7:f3:dc:5f: 95:49:5e:47:91:5f:08:6a:4d:1d:db:ab:3a:fc:6f: 73:c1:7b:c9:05:36:ac:7e:fa:93:ff:f8:15:03:c0: 83:d2:f1:d3:f7:0c:a6:4e:43:29:96:57:41:5a:88: b4:7f:eb:bb:a3:94:69:cf:56:e5:08:cf:5d:4a:f6: 9d:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:F0:2F:54:B1:1C:01:D5:2F:0C:35:A9:35:24:08:A3:0D:E5:BB:96 X509v3 Authority Key Identifier: keyid:F8:B4:FC:29:FE:F2:0A:DF:AF:B2:4A:6D:AF:5F:44:15:22:6E:F8:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096586764014845955/0/F8B4FC29FEF20ADFAFB24A6DAF5F4415226EF8A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/F8B4FC29FEF20ADFAFB24A6DAF5F4415226EF8A8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096586764014845955/0/3131342e3131342e3132382e302f31372d3234203d3e2034383337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.114.128.0/17 Signature Algorithm: sha256WithRSAEncryption 56:eb:b0:b1:08:97:1f:a0:37:4b:12:7f:75:fa:25:3f:1b:78: 14:99:1d:6d:8c:a8:a5:70:4a:83:7d:8d:7b:12:90:73:b8:7d: 4a:6d:08:c1:1c:78:83:35:6d:ae:c6:e3:53:a5:9c:1a:cd:17: 05:60:ab:ee:c0:f5:07:40:4c:c6:ab:33:6f:af:94:0b:4e:62: 7d:61:bf:19:2f:25:08:ef:d0:30:3d:5f:1f:79:60:5e:c5:fc: 5c:6d:23:64:b9:a5:bd:5a:d5:b1:c0:94:81:05:22:99:5e:d4: f8:8c:61:6f:cc:3f:a9:bf:bc:9b:77:69:19:2e:e5:b5:d9:ae: 72:67:74:e3:91:5b:e2:d8:9d:e4:15:77:25:88:2b:26:f6:10: cb:9f:af:f2:7b:93:b6:28:5f:c6:a6:ba:61:81:15:ec:35:f8: 46:0f:be:3e:d7:2b:06:ad:d8:42:4e:46:43:94:eb:74:2e:4e: 97:e5:17:f4:00:45:35:1d:71:c7:0b:a7:f5:af:04:5e:c5:42: 02:86:d4:7d:79:90:61:82:70:a9:d5:bf:0b:c9:00:03:7e:ed: 33:d8:47:b5:e6:b0:49:52:88:73:0d:62:1c:fd:3f:d4:cd:b5: a4:5b:2a:20:f8:ea:b7:db:33:bb:40:6f:96:f0:6c:04:9a:6f: a3:72:8e:97 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUf7w2WvFLdzXLwTTeT9N7+Wfa/NUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjhCNEZDMjlGRUYyMEFERkFGQjI0QTZEQUY1RjQ0MTUy MjZFRjhBODAeFw0yNjA0MTYwMDEzMjJaFw0yNzA0MTUwMDE4MjJaMDMxMTAvBgNV BAMTKDc4RjAyRjU0QjExQzAxRDUyRjBDMzVBOTM1MjQwOEEzMERFNUJCOTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4TCeKIoZi3Usq+9U1aDcQUAA1 EreoQWsf/8ZsTZokhCnZtZQTnUCYz+G+uFFyBcFyBohJSEiaSTitwVrLMB5oslqo cHH5N9Q+ODPEdXT3uddD0VtUkgxKv2D6ix5s9MCZCFWUEpsVv11aReP6q++4qd5d vzw2mBccfPKQCFa2MuU2Q+k1c4UtAB6aLL8DgGvKQqlM42PYaNGyovnEQnMU8plG RUR1X9DAJJQxEH9NkLwsxCCdLlgsRJ2E3UR89/PcX5VJXkeRXwhqTR3bqzr8b3PB e8kFNqx++pP/+BUDwIPS8dP3DKZOQymWV0FaiLR/67ujlGnPVuUIz11K9p3TAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUePAvVLEcAdUvDDWpNSQIow3lu5YwHwYDVR0j BBgwFoAU+LT8Kf7yCt+vskptr19EFSJu+KgwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjU4Njc2NDAxNDg0NTk1NS8wL0Y4QjRGQzI5RkVGMjBBREZBRkIyNEE2REFGNUY0 NDE1MjI2RUY4QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRjhCNEZDMjlGRUYyMEFERkFGQjI0QTZEQUY1RjQ0MTUyMjZFRjhBOC5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NjU4Njc2NDAxNDg0NTk1NS8wLzMxMzEzNDJlMzEz MTM0MmUzMTMyMzgyZTMwMmYzMTM3MmQzMjM0MjAzZDNlMjAzNDM4MzMzNy5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEB3JygDANBgkqhkiG9w0BAQsFAAOCAQEAVuuwsQiXH6A3SxJ/dfolPxt4 FJkdbYyopXBKg32NexKQc7h9Sm0IwRx4gzVtrsbjU6WcGs0XBWCr7sD1B0BMxqsz b6+UC05ifWG/GS8lCO/QMD1fH3lgXsX8XG0jZLmlvVrVscCUgQUimV7U+Ixhb8w/ qb+8m3dpGS7ltdmucmd045Fb4tid5BV3JYgrJvYQy5+v8nuTtihfxqa6YYEV7DX4 Rg++PtcrBq3YQk5GQ5TrdC5Ol+UX9ABFNR1xxwun9a8EXsVCAobUfXmQYYJwqdW/ C8kAA37tM9hHteawSVKIcw1iHP0/1M21pFsqIPjqt9szu0BvlvBsBJpvo3KOlw== -----END CERTIFICATE-----Generated at Sun Apr 19 08:58:25 2026 by rpki-client