$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065588553129590787/0/3131342e3131322e31342e302f32342d3234203d3e20313334373030.roa File: 3131342e3131322e31342e302f32342d3234203d3e20313334373030.roa (raw, json) Hash identifier: UhMCkMnvGroSwQ7ia+m7IKuB2v4mMQqHNofiuVYxCx0= Subject key identifier: 32:FF:D2:10:9B:3E:D3:67:41:F1:BF:79:58:4C:A9:CF:50:D7:CA:0D Certificate issuer: /CN=FF4E68ED10AAB07D8F4EEC05FD03457953F937E1 Certificate serial: 2FA1442D784AE47680A8A0A24601698E6C8E4058 Authority key identifier: FF:4E:68:ED:10:AA:B0:7D:8F:4E:EC:05:FD:03:45:79:53:F9:37:E1 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/FF4E68ED10AAB07D8F4EEC05FD03457953F937E1.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065588553129590787/0/3131342e3131322e31342e302f32342d3234203d3e20313334373030.roa Signing time: Mon 27 Apr 2026 10:24:24 +0000 ROA not before: Mon 27 Apr 2026 10:19:24 +0000 ROA not after: Mon 26 Apr 2027 10:24:24 +0000 asID: 134700 IP address blocks: 114.112.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065588553129590787/0/FF4E68ED10AAB07D8F4EEC05FD03457953F937E1.crl rsync://rpki-rps.cnnic.cn/repo/A1065588553129590787/0/FF4E68ED10AAB07D8F4EEC05FD03457953F937E1.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/FF4E68ED10AAB07D8F4EEC05FD03457953F937E1.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:42:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:a1:44:2d:78:4a:e4:76:80:a8:a0:a2:46:01:69:8e:6c:8e:40:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF4E68ED10AAB07D8F4EEC05FD03457953F937E1 Validity Not Before: Apr 27 10:19:24 2026 GMT Not After : Apr 26 10:24:24 2027 GMT Subject: CN=32FFD2109B3ED36741F1BF79584CA9CF50D7CA0D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:7c:d2:95:f7:ff:9d:0a:30:63:fa:95:52:68: a0:e6:4f:ea:0c:a7:06:87:77:5d:45:d4:78:1f:6e: bb:fb:cc:c7:02:39:dc:c5:9a:a4:8a:4e:12:35:7d: 5f:2c:fe:e9:46:04:bc:5b:af:59:2e:b3:75:40:6e: cb:fe:33:ba:76:3b:d4:b2:76:a6:e6:f6:cb:d0:b3: fa:d6:9c:ae:0d:00:7d:56:ff:98:2f:af:f0:01:14: d1:af:09:0c:f6:e6:08:1e:f7:90:99:14:76:5e:98: 7f:ca:b2:db:c7:26:6a:df:98:26:50:92:64:f4:3c: 6b:1d:4c:4c:ef:41:ee:5f:d9:29:84:7d:e9:af:5d: 5b:e8:73:1f:04:32:6e:ba:33:e7:b5:c4:52:0c:3d: 39:71:d2:b0:47:d8:80:05:d6:23:88:5b:4b:65:33: e7:27:09:fe:91:90:41:1e:90:03:99:47:0c:d6:48: fb:21:6d:e3:ee:65:a6:d5:63:d2:97:a2:2e:53:40: 7d:8f:59:ec:9e:f9:a2:da:ff:f9:3c:2f:a4:9c:69: 82:92:1b:cc:d6:c6:97:61:9c:18:e3:87:9d:62:3a: a2:e3:20:d1:a8:59:06:3e:42:67:32:3d:44:6a:06: 3b:d3:39:49:08:1b:81:60:23:5c:66:78:a9:3b:68: 9b:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:FF:D2:10:9B:3E:D3:67:41:F1:BF:79:58:4C:A9:CF:50:D7:CA:0D X509v3 Authority Key Identifier: keyid:FF:4E:68:ED:10:AA:B0:7D:8F:4E:EC:05:FD:03:45:79:53:F9:37:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129590787/0/FF4E68ED10AAB07D8F4EEC05FD03457953F937E1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/FF4E68ED10AAB07D8F4EEC05FD03457953F937E1.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129590787/0/3131342e3131322e31342e302f32342d3234203d3e20313334373030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.112.14.0/24 Signature Algorithm: sha256WithRSAEncryption 80:b0:68:1b:e4:93:d5:cd:a0:f6:d0:27:ec:6a:53:c8:be:80: 3e:f6:1d:d0:d7:2e:92:ae:77:ab:32:c7:d5:a7:c1:5b:98:09: a6:c0:4d:9a:e8:3f:07:81:70:6e:c7:8b:db:6a:c5:84:a4:c1: f5:c2:73:fe:49:32:33:0d:03:6e:3f:f6:7c:4f:c9:bd:8a:77: 2b:6a:aa:82:8d:1d:d3:4d:78:c0:26:61:e9:ac:b0:c5:b7:54: c9:4d:e6:ee:85:ab:aa:7a:76:1b:c3:ef:b7:32:ba:ef:e9:05: b6:09:f2:13:4d:60:65:e2:a3:14:94:d7:a9:95:19:c2:d4:23: a5:0a:4f:be:1a:cf:04:3c:0b:f2:bc:f2:d8:a2:3e:c5:65:6e: 23:02:bf:3a:bd:2b:35:90:19:f9:a0:03:3d:0a:ef:6e:ce:39: a8:96:ac:7d:64:be:ae:7e:72:6b:81:b3:67:9c:c2:9f:d3:87: 4e:1f:ad:89:9b:68:d9:06:d9:03:ea:7f:62:d8:e8:4f:07:06: 8a:9a:26:4a:a4:f0:e8:64:22:4c:f9:8a:2d:0b:12:6d:f1:bc: 11:66:75:d6:bf:76:07:83:40:d3:e2:e2:bb:4e:2d:9d:8d:ed: 5b:5c:fe:6a:be:2d:64:cf:b7:78:37:28:99:6c:ca:58:50:68: a5:9e:99:59 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUL6FELXhK5HaAqKCiRgFpjmyOQFgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkY0RTY4RUQxMEFBQjA3RDhGNEVFQzA1RkQwMzQ1Nzk1 M0Y5MzdFMTAeFw0yNjA0MjcxMDE5MjRaFw0yNzA0MjYxMDI0MjRaMDMxMTAvBgNV BAMTKDMyRkZEMjEwOUIzRUQzNjc0MUYxQkY3OTU4NENBOUNGNTBEN0NBMEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClfNKV9/+dCjBj+pVSaKDmT+oM pwaHd11F1Hgfbrv7zMcCOdzFmqSKThI1fV8s/ulGBLxbr1kus3VAbsv+M7p2O9Sy dqbm9svQs/rWnK4NAH1W/5gvr/ABFNGvCQz25gge95CZFHZemH/KstvHJmrfmCZQ kmT0PGsdTEzvQe5f2SmEfemvXVvocx8EMm66M+e1xFIMPTlx0rBH2IAF1iOIW0tl M+cnCf6RkEEekAOZRwzWSPshbePuZabVY9KXoi5TQH2PWeye+aLa//k8L6ScaYKS G8zWxpdhnBjjh51iOqLjINGoWQY+QmcyPURqBjvTOUkIG4FgI1xmeKk7aJv1AgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUMv/SEJs+02dB8b95WEypz1DXyg0wHwYDVR0j BBgwFoAU/05o7RCqsH2PTuwF/QNFeVP5N+EwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4ODU1MzEyOTU5MDc4Ny8wL0ZGNEU2OEVEMTBBQUIwN0Q4RjRFRUMwNUZEMDM0 NTc5NTNGOTM3RTEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRkY0RTY4RUQxMEFBQjA3RDhGNEVFQzA1RkQwMzQ1Nzk1M0Y5MzdFMS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1ODg1NTMxMjk1OTA3ODcvMC8zMTMxMzQyZTMx MzEzMjJlMzEzNDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzNDM3MzAzMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAHJwDjANBgkqhkiG9w0BAQsFAAOCAQEAgLBoG+ST1c2g9tAn7GpT yL6APvYd0Ncukq53qzLH1afBW5gJpsBNmug/B4FwbseL22rFhKTB9cJz/kkyMw0D bj/2fE/JvYp3K2qqgo0d0014wCZh6aywxbdUyU3m7oWrqnp2G8PvtzK67+kFtgny E01gZeKjFJTXqZUZwtQjpQpPvhrPBDwL8rzy2KI+xWVuIwK/Or0rNZAZ+aADPQrv bs45qJasfWS+rn5ya4GzZ5zCn9OHTh+tiZto2QbZA+p/YtjoTwcGipomSqTw6GQi TPmKLQsSbfG8EWZ11r92B4NA0+Liu04tnY3tW1z+ar4tZM+3eDcomWzKWFBopZ6Z WQ== -----END CERTIFICATE-----Generated at Wed May 13 17:09:26 2026 by rpki-client