$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579796714749953/0/3231312e3135342e3132382e302f32302d3230203d3e20313334373734.roa File: 3231312e3135342e3132382e302f32302d3230203d3e20313334373734.roa (raw, json) Hash identifier: 7sBR0PD3eTNaJp5A6+iXnX/3YOszhjTGDbjYWbhqZ2o= Subject key identifier: 64:4D:9B:0F:61:32:FE:9C:B7:6C:CF:CB:4A:FF:5F:3E:47:F7:01:D4 Certificate issuer: /CN=9B87DFEBDCCDA813116988D4421B088404578168 Certificate serial: 38ACCF286FE65E6910FB6D20C16D7B9C5EF80A62 Authority key identifier: 9B:87:DF:EB:DC:CD:A8:13:11:69:88:D4:42:1B:08:84:04:57:81:68 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9B87DFEBDCCDA813116988D4421B088404578168.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579796714749953/0/3231312e3135342e3132382e302f32302d3230203d3e20313334373734.roa Signing time: Fri 24 Apr 2026 02:42:01 +0000 ROA not before: Fri 24 Apr 2026 02:37:01 +0000 ROA not after: Fri 23 Apr 2027 02:42:01 +0000 asID: 134774 IP address blocks: 211.154.128.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579796714749953/0/9B87DFEBDCCDA813116988D4421B088404578168.crl rsync://rpki-rps.cnnic.cn/repo/A1065579796714749953/0/9B87DFEBDCCDA813116988D4421B088404578168.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9B87DFEBDCCDA813116988D4421B088404578168.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:ac:cf:28:6f:e6:5e:69:10:fb:6d:20:c1:6d:7b:9c:5e:f8:0a:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9B87DFEBDCCDA813116988D4421B088404578168 Validity Not Before: Apr 24 02:37:01 2026 GMT Not After : Apr 23 02:42:01 2027 GMT Subject: CN=644D9B0F6132FE9CB76CCFCB4AFF5F3E47F701D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:e9:69:5d:b7:d1:fb:57:65:87:0c:20:62:5a: 2c:8f:df:b4:97:19:87:5a:93:4d:e6:f7:b2:31:9d: fb:de:8c:0d:bf:19:d9:6d:31:55:03:6d:6c:8f:15: 19:d2:6a:8f:7b:a8:e5:4c:0d:6e:07:9f:77:2b:51: a4:28:ed:cc:2c:c4:e8:a2:98:1b:73:30:19:4b:0c: e3:7b:44:34:e1:82:73:6f:a3:c7:79:05:6c:b6:7d: de:42:99:7e:a9:53:d7:4a:45:fc:a2:61:79:86:86: d7:f3:e1:42:13:3f:cb:f6:80:f8:73:a2:34:90:42: cb:1e:39:d4:67:37:48:86:09:f1:7e:05:fc:7a:05: b7:fb:2a:a1:92:b0:d2:bb:a6:f8:81:30:05:60:1e: 44:2a:1b:40:e9:79:28:de:dd:bd:5f:3e:4b:a2:4e: 43:2b:0a:a1:72:19:73:7f:c5:ce:ea:d7:59:b4:32: 7e:ec:51:93:a2:3a:77:ec:06:f1:06:0e:b5:76:ba: 6f:99:ee:d9:30:c7:a4:07:50:9d:e8:c2:db:1a:26: 52:b0:69:0a:0d:63:a2:14:18:30:99:59:91:ba:c1: 66:40:10:12:c8:89:0d:11:2a:21:8b:24:c8:d7:ed: ae:25:63:ae:4a:3f:10:1f:a5:fd:73:e2:f1:a2:0a: ed:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:4D:9B:0F:61:32:FE:9C:B7:6C:CF:CB:4A:FF:5F:3E:47:F7:01:D4 X509v3 Authority Key Identifier: keyid:9B:87:DF:EB:DC:CD:A8:13:11:69:88:D4:42:1B:08:84:04:57:81:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579796714749953/0/9B87DFEBDCCDA813116988D4421B088404578168.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9B87DFEBDCCDA813116988D4421B088404578168.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579796714749953/0/3231312e3135342e3132382e302f32302d3230203d3e20313334373734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 211.154.128.0/20 Signature Algorithm: sha256WithRSAEncryption 3f:86:35:ef:f3:c0:9e:4f:78:55:f9:a2:1a:ee:6f:47:71:ae: 05:62:9f:7f:03:a9:78:b0:e5:2b:b9:d2:4b:26:76:8c:24:72: 0b:9d:59:31:c7:62:81:a1:15:5f:e3:0b:63:f1:aa:c7:e7:f2: 81:d6:9b:44:8f:0d:5c:f4:70:9d:58:d5:77:84:81:2f:74:d7: 1e:24:28:ad:dc:04:31:50:07:5b:ff:13:2f:6e:eb:2a:0d:14: a1:38:87:c3:48:09:7e:c1:d0:47:36:9b:b4:8d:1a:d7:43:34: 3a:a6:ea:49:8c:54:3d:4d:b9:a0:8e:d1:3b:2e:5b:27:68:b8: 27:a3:01:d4:67:73:40:93:fe:7a:e0:a8:38:f3:ca:36:b6:a6: 60:a9:b4:eb:de:8a:e3:e7:e7:43:5d:77:1e:c2:3b:29:dd:bf: 35:5c:b6:b1:67:56:0c:f5:3b:aa:0d:f2:f2:5c:15:d3:3a:ac: ba:0e:02:bb:74:c2:c0:50:ec:5f:47:c6:69:af:90:02:da:cb: 43:75:a0:02:d3:b9:8f:6d:48:4c:bf:2b:03:e2:4e:15:19:a0: e8:c3:3d:14:09:ab:d0:3e:3c:9a:ad:57:01:c8:af:06:73:47: b2:b9:9b:8b:99:b1:b5:86:8c:af:30:74:64:c8:a2:3a:90:a2: cd:6b:38:46 -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUOKzPKG/mXmkQ+20gwW17nF74CmIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUI4N0RGRUJEQ0NEQTgxMzExNjk4OEQ0NDIxQjA4ODQw NDU3ODE2ODAeFw0yNjA0MjQwMjM3MDFaFw0yNzA0MjMwMjQyMDFaMDMxMTAvBgNV BAMTKDY0NEQ5QjBGNjEzMkZFOUNCNzZDQ0ZDQjRBRkY1RjNFNDdGNzAxRDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCx6Wldt9H7V2WHDCBiWiyP37SX GYdak03m97IxnfvejA2/GdltMVUDbWyPFRnSao97qOVMDW4Hn3crUaQo7cwsxOii mBtzMBlLDON7RDThgnNvo8d5BWy2fd5CmX6pU9dKRfyiYXmGhtfz4UITP8v2gPhz ojSQQsseOdRnN0iGCfF+Bfx6Bbf7KqGSsNK7pviBMAVgHkQqG0DpeSje3b1fPkui TkMrCqFyGXN/xc7q11m0Mn7sUZOiOnfsBvEGDrV2um+Z7tkwx6QHUJ3owtsaJlKw aQoNY6IUGDCZWZG6wWZAEBLIiQ0RKiGLJMjX7a4lY65KPxAfpf1z4vGiCu11AgMB AAGjggIaMIICFjAdBgNVHQ4EFgQUZE2bD2Ey/py3bM/LSv9fPkf3AdQwHwYDVR0j BBgwFoAUm4ff69zNqBMRaYjUQhsIhARXgWgwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTc5NjcxNDc0OTk1My8wLzlCODdERkVCRENDREE4MTMxMTY5ODhENDQyMUIw ODg0MDQ1NzgxNjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOUI4N0RGRUJEQ0NEQTgxMzExNjk4OEQ0NDIxQjA4ODQwNDU3ODE2OC5jZXIw gZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMDY1NTc5Nzk2NzE0NzQ5OTUzLzAvMzIzMTMxMmUz MTM1MzQyZTMxMzIzODJlMzAyZjMyMzAyZDMyMzAyMDNkM2UyMDMxMzMzNDM3Mzcz NC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEBNOagDANBgkqhkiG9w0BAQsFAAOCAQEAP4Y17/PAnk94Vfmi Gu5vR3GuBWKffwOpeLDlK7nSSyZ2jCRyC51ZMcdigaEVX+MLY/Gqx+fygdabRI8N XPRwnVjVd4SBL3TXHiQordwEMVAHW/8TL27rKg0UoTiHw0gJfsHQRzabtI0a10M0 OqbqSYxUPU25oI7ROy5bJ2i4J6MB1GdzQJP+euCoOPPKNramYKm0696K4+fnQ113 HsI7Kd2/NVy2sWdWDPU7qg3y8lwV0zqsug4Cu3TCwFDsX0fGaa+QAtrLQ3WgAtO5 j21ITL8rA+JOFRmg6MM9FAmr0D48mq1XAcivBnNHsrmbi5mxtYaMrzB0ZMiiOpCi zWs4Rg== -----END CERTIFICATE-----Generated at Wed May 13 18:37:09 2026 by rpki-client