$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096586764014845955/0/3131342e3131342e3132382e302f31372d3234203d3e203536303436.roa File: 3131342e3131342e3132382e302f31372d3234203d3e203536303436.roa (raw, json) Hash identifier: FWWMCAx1W0KCQG5LZnRL2X3DIQBk/s6lX410aw4wRiM= Subject key identifier: 22:52:BA:CB:F3:31:20:7D:DD:EC:64:4B:7C:6E:99:DD:44:36:E9:C9 Certificate issuer: /CN=F8B4FC29FEF20ADFAFB24A6DAF5F4415226EF8A8 Certificate serial: 076BACCC2E7D001FE5213B37195725C84B00988B Authority key identifier: F8:B4:FC:29:FE:F2:0A:DF:AF:B2:4A:6D:AF:5F:44:15:22:6E:F8:A8 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/F8B4FC29FEF20ADFAFB24A6DAF5F4415226EF8A8.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096586764014845955/0/3131342e3131342e3132382e302f31372d3234203d3e203536303436.roa Signing time: Thu 16 Apr 2026 00:17:40 +0000 ROA not before: Thu 16 Apr 2026 00:12:40 +0000 ROA not after: Thu 15 Apr 2027 00:17:40 +0000 asID: 56046 IP address blocks: 114.114.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096586764014845955/0/F8B4FC29FEF20ADFAFB24A6DAF5F4415226EF8A8.crl rsync://rpki-rps.cnnic.cn/repo/A1096586764014845955/0/F8B4FC29FEF20ADFAFB24A6DAF5F4415226EF8A8.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/F8B4FC29FEF20ADFAFB24A6DAF5F4415226EF8A8.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 09:51:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:6b:ac:cc:2e:7d:00:1f:e5:21:3b:37:19:57:25:c8:4b:00:98:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F8B4FC29FEF20ADFAFB24A6DAF5F4415226EF8A8 Validity Not Before: Apr 16 00:12:40 2026 GMT Not After : Apr 15 00:17:40 2027 GMT Subject: CN=2252BACBF331207DDDEC644B7C6E99DD4436E9C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d6:c0:af:af:54:10:b6:19:67:ca:12:7f:ff: 15:ec:83:99:cb:f1:40:8d:2d:b8:7a:97:72:e8:b2: 12:7f:9b:d7:66:66:8c:a3:7a:e4:2c:cd:da:3e:44: 87:df:c3:bc:f4:13:13:5a:f0:94:65:e9:2d:66:f2: fd:bd:b2:62:88:6e:92:90:c5:c2:72:88:9a:1f:60: 85:bf:af:25:a2:c3:63:13:6d:14:47:28:2c:d9:34: 7b:12:e2:f4:41:d1:72:89:43:38:f7:03:79:5f:a6: 17:c2:32:74:a8:b7:fe:47:41:0e:4f:6f:e5:7f:90: 04:48:de:a9:33:ee:b1:81:cd:12:07:09:18:11:98: 69:6e:f4:4f:4f:f0:c8:d1:cf:cc:20:44:5a:89:68: 31:4d:9d:4e:de:69:38:40:36:bd:30:cf:2d:30:8b: 37:10:c5:a7:62:41:17:56:81:c3:a1:b1:89:70:ae: 99:fa:76:63:a3:8a:f5:e7:7b:b9:63:fb:6b:cb:23: 7e:0c:a7:1d:97:52:c3:3a:0f:77:e2:01:65:b2:b0: fb:5e:8e:fe:d3:db:78:a4:11:4f:03:7e:18:b1:0d: 7b:0d:d4:f0:35:76:cd:cb:ab:6a:a8:b8:ea:41:5c: ac:33:5a:b1:a0:17:9d:6f:57:a7:be:d3:26:83:52: 4a:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:52:BA:CB:F3:31:20:7D:DD:EC:64:4B:7C:6E:99:DD:44:36:E9:C9 X509v3 Authority Key Identifier: keyid:F8:B4:FC:29:FE:F2:0A:DF:AF:B2:4A:6D:AF:5F:44:15:22:6E:F8:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096586764014845955/0/F8B4FC29FEF20ADFAFB24A6DAF5F4415226EF8A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/F8B4FC29FEF20ADFAFB24A6DAF5F4415226EF8A8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096586764014845955/0/3131342e3131342e3132382e302f31372d3234203d3e203536303436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.114.128.0/17 Signature Algorithm: sha256WithRSAEncryption a8:88:c7:3a:d1:f2:76:70:14:65:d8:5a:85:97:4e:81:bc:d3: 4d:23:79:0c:ce:94:df:81:b3:50:2e:c9:5d:ea:6c:00:14:14: 10:bd:db:73:ae:3d:ab:2d:e9:03:d7:e7:f2:d9:dc:87:e7:90: 1d:04:25:49:42:91:9d:5a:84:9c:80:0a:c6:dc:f0:3e:e7:3d: 73:34:40:93:fc:2a:78:ab:56:30:95:7f:54:d3:f9:c4:17:05: cd:e1:f8:04:7a:01:6b:07:e6:17:76:d8:51:ab:b2:43:37:fb: 6a:d1:1c:35:39:0b:b3:77:91:da:b5:3b:8c:51:31:16:ed:56: 5c:24:d2:e3:a8:fb:f8:42:71:17:8f:c0:26:3d:ec:df:38:fc: 95:ab:53:64:dc:51:b0:39:24:a4:5b:f3:3e:de:61:7a:01:c5: c9:b7:59:6e:31:3f:ff:68:98:68:14:52:f5:8d:85:c3:0e:59: 8a:c8:a5:fb:21:5f:96:3a:85:de:08:34:ea:33:4b:76:5f:b2: f1:ca:4d:39:2d:88:ec:08:e3:ec:be:4b:ec:79:00:c6:49:35: 66:ba:18:87:cf:71:e1:8f:3e:05:10:23:d1:3f:d2:1e:32:25: 6b:87:3f:9d:19:ab:e0:6a:dc:9e:0b:2c:92:5f:1e:17:e9:ec: 22:90:61:23 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUB2uszC59AB/lITs3GVclyEsAmIswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjhCNEZDMjlGRUYyMEFERkFGQjI0QTZEQUY1RjQ0MTUy MjZFRjhBODAeFw0yNjA0MTYwMDEyNDBaFw0yNzA0MTUwMDE3NDBaMDMxMTAvBgNV BAMTKDIyNTJCQUNCRjMzMTIwN0REREVDNjQ0QjdDNkU5OURENDQzNkU5QzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+1sCvr1QQthlnyhJ//xXsg5nL 8UCNLbh6l3LoshJ/m9dmZoyjeuQszdo+RIffw7z0ExNa8JRl6S1m8v29smKIbpKQ xcJyiJofYIW/ryWiw2MTbRRHKCzZNHsS4vRB0XKJQzj3A3lfphfCMnSot/5HQQ5P b+V/kARI3qkz7rGBzRIHCRgRmGlu9E9P8MjRz8wgRFqJaDFNnU7eaThANr0wzy0w izcQxadiQRdWgcOhsYlwrpn6dmOjivXne7lj+2vLI34Mpx2XUsM6D3fiAWWysPte jv7T23ikEU8DfhixDXsN1PA1ds3Lq2qouOpBXKwzWrGgF51vV6e+0yaDUkqRAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUIlK6y/MxIH3d7GRLfG6Z3UQ26ckwHwYDVR0j BBgwFoAU+LT8Kf7yCt+vskptr19EFSJu+KgwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjU4Njc2NDAxNDg0NTk1NS8wL0Y4QjRGQzI5RkVGMjBBREZBRkIyNEE2REFGNUY0 NDE1MjI2RUY4QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRjhCNEZDMjlGRUYyMEFERkFGQjI0QTZEQUY1RjQ0MTUyMjZFRjhBOC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTY1ODY3NjQwMTQ4NDU5NTUvMC8zMTMxMzQyZTMx MzEzNDJlMzEzMjM4MmUzMDJmMzEzNzJkMzIzNDIwM2QzZTIwMzUzNjMwMzQzNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEB3JygDANBgkqhkiG9w0BAQsFAAOCAQEAqIjHOtHydnAUZdhahZdO gbzTTSN5DM6U34GzUC7JXepsABQUEL3bc649qy3pA9fn8tnch+eQHQQlSUKRnVqE nIAKxtzwPuc9czRAk/wqeKtWMJV/VNP5xBcFzeH4BHoBawfmF3bYUauyQzf7atEc NTkLs3eR2rU7jFExFu1WXCTS46j7+EJxF4/AJj3s3zj8latTZNxRsDkkpFvzPt5h egHFybdZbjE//2iYaBRS9Y2Fww5Zisil+yFfljqF3gg06jNLdl+y8cpNOS2I7Ajj 7L5L7HkAxkk1ZroYh89x4Y8+BRAj0T/SHjIla4c/nRmr4Grcngsskl8eF+nsIpBh Iw== -----END CERTIFICATE-----Generated at Fri Apr 17 13:29:47 2026 by rpki-client