$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582330347388929/0/3131362e3139392e3135362e302f32322d3234203d3e20313436383334.roa File: 3131362e3139392e3135362e302f32322d3234203d3e20313436383334.roa (raw, json) Hash identifier: Uh2/EDdWK4c6ZYX1tLFLGx4xTpdDGyLVBokH0GwB3j4= Subject key identifier: 61:C1:8B:02:49:71:08:E9:04:0A:B2:8B:37:22:2B:A4:BB:BD:95:C9 Certificate issuer: /CN=E23C4800CA452B1A8E6214923C01540E30830232 Certificate serial: 7FAEDEC9088E245170F9E6D42BF3ADD87810CA67 Authority key identifier: E2:3C:48:00:CA:45:2B:1A:8E:62:14:92:3C:01:54:0E:30:83:02:32 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E23C4800CA452B1A8E6214923C01540E30830232.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582330347388929/0/3131362e3139392e3135362e302f32322d3234203d3e20313436383334.roa Signing time: Sat 07 Mar 2026 15:50:22 +0000 ROA not before: Sat 07 Mar 2026 15:45:22 +0000 ROA not after: Sat 06 Mar 2027 15:50:22 +0000 asID: 146834 IP address blocks: 116.199.156.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582330347388929/0/E23C4800CA452B1A8E6214923C01540E30830232.crl rsync://rpki-rps.cnnic.cn/repo/A1065582330347388929/0/E23C4800CA452B1A8E6214923C01540E30830232.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E23C4800CA452B1A8E6214923C01540E30830232.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 09:36:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:ae:de:c9:08:8e:24:51:70:f9:e6:d4:2b:f3:ad:d8:78:10:ca:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E23C4800CA452B1A8E6214923C01540E30830232 Validity Not Before: Mar 7 15:45:22 2026 GMT Not After : Mar 6 15:50:22 2027 GMT Subject: CN=61C18B02497108E9040AB28B37222BA4BBBD95C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:36:44:ec:ba:2f:c0:3f:35:00:eb:06:c1:6c: ab:02:4d:34:75:ee:1b:c3:d7:8c:96:4f:b2:5d:7a: 26:fa:64:44:77:58:1c:3f:ed:33:3b:5f:22:9f:80: 9e:3c:6d:f1:f3:fc:50:1e:bf:46:2f:ab:9c:65:e4: 60:b2:8e:c7:43:39:30:da:ee:ee:ff:ca:da:02:38: d6:b5:52:49:fe:05:74:e7:0b:cf:82:04:b5:f1:14: b4:8b:b7:82:a8:2d:38:43:3c:f6:66:6f:4d:e0:30: 7c:34:bf:6c:9c:ad:59:00:ac:3d:cd:48:35:b5:4b: 7d:25:3f:63:11:bd:f8:38:2f:67:a2:2d:06:ca:61: a5:10:59:e8:d5:0f:13:82:f0:b9:81:89:94:96:d0: 3c:b6:91:28:4e:35:08:21:34:a2:0f:82:26:4c:fa: 21:a3:8f:f3:07:43:ce:72:af:11:f2:67:0e:f5:38: ed:72:a6:63:25:3d:07:68:eb:02:ce:32:22:24:5d: 5e:0d:b9:5d:65:64:7a:de:f3:ab:a0:1c:85:37:12: 38:4f:30:09:32:37:ce:fb:d9:5a:25:ef:b8:52:2d: 44:f9:f8:6b:1d:67:de:ed:9f:b2:f5:68:d8:b6:2b: fd:7c:94:57:ad:c4:8d:ac:fb:50:3c:88:7e:70:83: 26:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:C1:8B:02:49:71:08:E9:04:0A:B2:8B:37:22:2B:A4:BB:BD:95:C9 X509v3 Authority Key Identifier: keyid:E2:3C:48:00:CA:45:2B:1A:8E:62:14:92:3C:01:54:0E:30:83:02:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330347388929/0/E23C4800CA452B1A8E6214923C01540E30830232.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E23C4800CA452B1A8E6214923C01540E30830232.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330347388929/0/3131362e3139392e3135362e302f32322d3234203d3e20313436383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.199.156.0/22 Signature Algorithm: sha256WithRSAEncryption 8a:82:08:af:77:23:40:23:37:46:8f:52:ba:12:f8:5c:45:f7: 35:2d:9a:22:a4:f4:32:ef:51:d3:a3:6f:8e:69:31:44:75:10: da:0b:3b:dc:09:1c:2c:02:55:b6:bf:13:92:c1:33:65:97:48: 1d:14:4d:9f:e0:f4:36:68:e8:e1:39:3b:04:ce:e9:33:32:67: b0:9c:6a:b7:0b:c2:d8:f7:a4:7e:86:38:3e:a8:4b:9b:2d:a6: 3a:76:c8:d9:1e:b3:f5:fc:1e:6a:c1:8f:f2:41:76:48:d4:f8: a5:42:41:5d:67:bb:b0:0d:2a:0c:92:6c:3c:f1:b1:64:46:39: 7b:4d:75:5a:f9:c9:9c:ac:cc:51:c9:76:ee:24:8e:b1:7d:a9: 88:98:68:f5:14:94:cf:5b:c1:e4:f4:a4:10:9f:90:28:de:b4: b8:1b:4d:63:c0:1f:38:b9:6e:81:1c:24:e1:a5:7d:9e:4b:5c: 45:fd:df:2f:d9:4e:b3:f6:42:ef:51:ad:3c:4f:1e:57:9c:5e: b6:ef:33:3c:f3:48:f9:34:d4:58:f0:e0:90:52:d2:00:91:36: 91:92:02:61:55:06:20:55:e9:d7:fd:ed:a9:a3:79:72:f9:57: 9d:d0:ed:de:84:82:05:37:d7:77:63:9c:25:f2:0c:d3:75:91: f2:fb:c6:f7 -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUf67eyQiOJFFw+ebUK/Ot2HgQymcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTIzQzQ4MDBDQTQ1MkIxQThFNjIxNDkyM0MwMTU0MEUz MDgzMDIzMjAeFw0yNjAzMDcxNTQ1MjJaFw0yNzAzMDYxNTUwMjJaMDMxMTAvBgNV BAMTKDYxQzE4QjAyNDk3MTA4RTkwNDBBQjI4QjM3MjIyQkE0QkJCRDk1QzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtNkTsui/APzUA6wbBbKsCTTR1 7hvD14yWT7Jdeib6ZER3WBw/7TM7XyKfgJ48bfHz/FAev0Yvq5xl5GCyjsdDOTDa 7u7/ytoCONa1Ukn+BXTnC8+CBLXxFLSLt4KoLThDPPZmb03gMHw0v2ycrVkArD3N SDW1S30lP2MRvfg4L2eiLQbKYaUQWejVDxOC8LmBiZSW0Dy2kShONQghNKIPgiZM +iGjj/MHQ85yrxHyZw71OO1ypmMlPQdo6wLOMiIkXV4NuV1lZHre86ugHIU3EjhP MAkyN8772Vol77hSLUT5+GsdZ97tn7L1aNi2K/18lFetxI2s+1A8iH5wgyabAgMB AAGjggIaMIICFjAdBgNVHQ4EFgQUYcGLAklxCOkECrKLNyIrpLu9lckwHwYDVR0j BBgwFoAU4jxIAMpFKxqOYhSSPAFUDjCDAjIwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4MjMzMDM0NzM4ODkyOS8wL0UyM0M0ODAwQ0E0NTJCMUE4RTYyMTQ5MjNDMDE1 NDBFMzA4MzAyMzIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRTIzQzQ4MDBDQTQ1MkIxQThFNjIxNDkyM0MwMTU0MEUzMDgzMDIzMi5jZXIw gZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMDY1NTgyMzMwMzQ3Mzg4OTI5LzAvMzEzMTM2MmUz MTM5MzkyZTMxMzUzNjJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDMxMzQzNjM4MzMz NC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAnTHnDANBgkqhkiG9w0BAQsFAAOCAQEAioIIr3cjQCM3Ro9S uhL4XEX3NS2aIqT0Mu9R06NvjmkxRHUQ2gs73AkcLAJVtr8TksEzZZdIHRRNn+D0 Nmjo4Tk7BM7pMzJnsJxqtwvC2PekfoY4PqhLmy2mOnbI2R6z9fweasGP8kF2SNT4 pUJBXWe7sA0qDJJsPPGxZEY5e011WvnJnKzMUcl27iSOsX2piJho9RSUz1vB5PSk EJ+QKN60uBtNY8AfOLlugRwk4aV9nktcRf3fL9lOs/ZC71GtPE8eV5xetu8zPPNI +TTUWPDgkFLSAJE2kZICYVUGIFXp1/3tqaN5cvlXndDt3oSCBTfXd2OcJfIM03WR 8vvG9w== -----END CERTIFICATE-----Generated at Thu Mar 26 23:38:31 2026 by rpki-client