$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142852097/0/3231392e3233372e34392e302f32342d3234203d3e20313436373838.roa File: 3231392e3233372e34392e302f32342d3234203d3e20313436373838.roa (raw, json) Hash identifier: +REQa4jLM3hdGFLwAQ0WdXcUob2bOAwEsbDJlekDdt4= Subject key identifier: A9:C6:D6:DF:56:FC:AF:D9:70:A3:E7:7B:21:D7:EC:70:A3:F3:3B:57 Certificate issuer: /CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Certificate serial: 384BF5F0085C559EC1E5EE221C1A73DEEA71F396 Authority key identifier: CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/3231392e3233372e34392e302f32342d3234203d3e20313436373838.roa Signing time: Mon 20 Apr 2026 01:09:55 +0000 ROA not before: Mon 20 Apr 2026 01:04:55 +0000 ROA not after: Mon 19 Apr 2027 01:09:55 +0000 asID: 146788 IP address blocks: 219.237.49.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:37:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:4b:f5:f0:08:5c:55:9e:c1:e5:ee:22:1c:1a:73:de:ea:71:f3:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Validity Not Before: Apr 20 01:04:55 2026 GMT Not After : Apr 19 01:09:55 2027 GMT Subject: CN=A9C6D6DF56FCAFD970A3E77B21D7EC70A3F33B57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:83:fa:9e:3f:a5:20:3b:a2:05:52:c2:ae:e7: d0:4b:ab:90:41:f8:a6:bb:69:59:07:f7:f6:d3:8c: 07:9d:cf:de:2e:df:77:15:6f:d7:f2:cf:b9:4e:18: 8d:44:e3:18:d8:81:f8:ac:f6:6b:4b:df:6c:cd:74: 9c:1b:8c:ed:5b:e8:3c:df:cd:90:6f:94:74:52:77: 90:27:f0:69:5f:33:c7:58:18:e3:85:05:bd:69:c8: 8d:bc:05:c7:cd:65:6f:24:3a:dd:82:ff:09:7d:c9: 90:9d:6f:bf:69:ef:ae:08:e2:44:75:71:d3:a2:0f: 25:ec:3f:3b:b6:66:41:fd:10:17:27:24:4c:8b:d9: 21:d3:78:c7:bd:67:77:ec:7a:b4:4a:ba:a4:d4:f2: 0d:48:1d:9d:90:87:a5:f1:ed:2a:ab:9e:f6:8a:55: 31:eb:89:c8:a6:bf:de:af:d2:48:a8:ef:c0:3d:1a: f1:ac:dc:be:66:90:39:53:fe:4e:9a:e9:50:4e:d2: 20:24:b1:f0:e1:fe:e8:44:94:02:85:27:ef:ce:ed: ef:65:6e:f3:b1:39:c0:c8:e6:ff:05:98:37:58:d5: 85:9e:a9:5c:2a:46:e2:09:11:93:ad:9c:ce:c4:31: ac:73:46:6b:a7:de:64:fa:fa:f5:97:2b:fa:62:48: f2:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:C6:D6:DF:56:FC:AF:D9:70:A3:E7:7B:21:D7:EC:70:A3:F3:3B:57 X509v3 Authority Key Identifier: keyid:CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/3231392e3233372e34392e302f32342d3234203d3e20313436373838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 219.237.49.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:13:a2:ae:eb:ad:07:a0:c8:98:a4:35:dc:06:71:e0:f0:4e: 4d:d9:16:f3:07:6f:b6:b5:52:d6:35:6e:08:ea:94:f7:42:dc: f2:1a:4e:1e:27:31:f7:99:46:54:65:bd:d1:81:67:09:d3:59: 9f:d7:9e:4f:26:02:ee:18:56:c7:1a:a5:de:f7:19:6c:bc:26: ea:af:41:47:a5:f3:6f:24:9a:8b:80:6a:f2:bf:e5:dd:b8:f9: 49:15:8b:25:91:b6:4c:c8:7b:1f:72:22:ee:7e:85:30:4c:a7: 35:8d:42:a8:1a:72:56:a5:a4:60:f5:9e:22:20:cb:77:27:23: 24:51:95:af:9b:f4:e0:07:35:ab:2e:88:51:b7:89:3c:d3:3d: fd:2c:51:1f:91:90:d6:21:66:d1:e3:b0:a6:96:23:ed:d8:a3: fc:c9:15:d5:b4:79:7e:3d:64:cf:30:b1:32:07:78:6d:1a:11: d7:fe:f7:d5:a6:f1:3a:61:60:c5:81:db:6f:43:25:41:f3:4c: 9d:76:88:40:84:c1:9e:68:bf:f1:d3:d5:2d:49:aa:7a:9d:77: 20:65:c9:ae:3c:2e:c0:6d:11:a5:5d:63:28:49:ca:99:c8:e3: 2e:eb:86:94:86:72:1e:d0:f0:d1:f4:f8:0a:b5:ad:31:cb:ef: f3:51:fb:b6 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUOEv18AhcVZ7B5e4iHBpz3upx85YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3 MjE5QjU5NDAeFw0yNjA0MjAwMTA0NTVaFw0yNzA0MTkwMTA5NTVaMDMxMTAvBgNV BAMTKEE5QzZENkRGNTZGQ0FGRDk3MEEzRTc3QjIxRDdFQzcwQTNGMzNCNTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXg/qeP6UgO6IFUsKu59BLq5BB +Ka7aVkH9/bTjAedz94u33cVb9fyz7lOGI1E4xjYgfis9mtL32zNdJwbjO1b6Dzf zZBvlHRSd5An8GlfM8dYGOOFBb1pyI28BcfNZW8kOt2C/wl9yZCdb79p764I4kR1 cdOiDyXsPzu2ZkH9EBcnJEyL2SHTeMe9Z3fserRKuqTU8g1IHZ2Qh6Xx7SqrnvaK VTHricimv96v0kio78A9GvGs3L5mkDlT/k6a6VBO0iAksfDh/uhElAKFJ+/O7e9l bvOxOcDI5v8FmDdY1YWeqVwqRuIJEZOtnM7EMaxzRmun3mT6+vWXK/piSPI9AgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUqcbW31b8r9lwo+d7IdfscKPzO1cwHwYDVR0j BBgwFoAUzyFM3txYSzsBD8Om0NPbiXIZtZQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjg1MjA5Ny8wL0NGMjE0Q0RFREM1ODRCM0IwMTBGQzNBNkQwRDNE Qjg5NzIxOUI1OTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3MjE5QjU5NC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzQ1NjAxNDI4NTIwOTcvMC8zMjMxMzkyZTMy MzMzNzJlMzQzOTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzQzNjM3MzgzOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEANvtMTANBgkqhkiG9w0BAQsFAAOCAQEACxOiruutB6DImKQ13AZx 4PBOTdkW8wdvtrVS1jVuCOqU90Lc8hpOHicx95lGVGW90YFnCdNZn9eeTyYC7hhW xxql3vcZbLwm6q9BR6XzbySai4Bq8r/l3bj5SRWLJZG2TMh7H3Ii7n6FMEynNY1C qBpyVqWkYPWeIiDLdycjJFGVr5v04Ac1qy6IUbeJPNM9/SxRH5GQ1iFm0eOwppYj 7dij/MkV1bR5fj1kzzCxMgd4bRoR1/731abxOmFgxYHbb0MlQfNMnXaIQITBnmi/ 8dPVLUmqep13IGXJrjwuwG0RpV1jKEnKmcjjLuuGlIZyHtDw0fT4CrWtMcvv81H7 tg== -----END CERTIFICATE-----Generated at Wed May 13 14:10:45 2026 by rpki-client