$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065588553129590787/0/3131342e3131322e31352e302f32342d3234203d3e20313334373030.roa File: 3131342e3131322e31352e302f32342d3234203d3e20313334373030.roa (raw, json) Hash identifier: qGGN9z1v3J7blrnZfsZh1ZYNPqm6d1dGjMNkeBUwoBw= Subject key identifier: 82:94:C3:E3:9A:92:03:0C:94:51:B4:9B:7C:9B:DA:98:20:21:AB:48 Certificate issuer: /CN=FF4E68ED10AAB07D8F4EEC05FD03457953F937E1 Certificate serial: 663506728D7B38AD4AB26767E567E2DEFD6DDFA6 Authority key identifier: FF:4E:68:ED:10:AA:B0:7D:8F:4E:EC:05:FD:03:45:79:53:F9:37:E1 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/FF4E68ED10AAB07D8F4EEC05FD03457953F937E1.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065588553129590787/0/3131342e3131322e31352e302f32342d3234203d3e20313334373030.roa Signing time: Mon 27 Apr 2026 10:24:23 +0000 ROA not before: Mon 27 Apr 2026 10:19:23 +0000 ROA not after: Mon 26 Apr 2027 10:24:23 +0000 asID: 134700 IP address blocks: 114.112.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065588553129590787/0/FF4E68ED10AAB07D8F4EEC05FD03457953F937E1.crl rsync://rpki-rps.cnnic.cn/repo/A1065588553129590787/0/FF4E68ED10AAB07D8F4EEC05FD03457953F937E1.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/FF4E68ED10AAB07D8F4EEC05FD03457953F937E1.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:42:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:35:06:72:8d:7b:38:ad:4a:b2:67:67:e5:67:e2:de:fd:6d:df:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF4E68ED10AAB07D8F4EEC05FD03457953F937E1 Validity Not Before: Apr 27 10:19:23 2026 GMT Not After : Apr 26 10:24:23 2027 GMT Subject: CN=8294C3E39A92030C9451B49B7C9BDA982021AB48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:6e:0c:7f:a2:3c:59:e6:e4:9b:88:87:de:24: 7b:07:53:0e:39:6d:b9:6f:a5:ca:38:32:0e:bf:6f: 25:fa:37:87:05:e1:c0:6f:a0:df:19:37:8e:58:83: ff:92:33:42:9d:f9:f6:9c:a0:01:12:e9:43:4b:60: c0:96:d7:44:f0:6e:95:f5:68:2b:8b:f9:18:c8:9b: 09:b4:8f:2b:d4:80:e5:e1:7e:8d:eb:6d:d9:0c:98: 90:65:84:7c:b5:b3:68:d9:e4:a4:5e:40:e5:5a:b1: cb:8b:30:08:90:d7:a5:d0:a6:d0:a3:dc:b8:0a:76: 26:df:eb:ea:58:be:4e:89:9c:80:62:e6:24:83:ad: 7b:76:40:69:bb:36:d8:38:2a:57:b2:f5:62:d9:9b: e0:c9:1b:31:d3:83:eb:58:6f:42:d0:30:a6:1a:7a: e7:5f:d7:67:80:42:10:e0:79:c7:8a:eb:37:35:8a: 62:3f:65:c2:db:09:db:eb:7d:ed:1e:c7:24:6d:ca: 4e:a5:2e:f6:90:c2:d9:ca:71:27:5f:5d:da:39:79: 29:99:9a:e2:a4:2e:b2:27:6e:8b:1f:bf:ab:99:d2: 2f:5a:7d:db:12:78:5f:30:9d:6f:32:a6:e8:f0:9c: a0:67:18:95:42:c5:51:63:fc:ed:ed:fd:2c:c2:35: 97:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:94:C3:E3:9A:92:03:0C:94:51:B4:9B:7C:9B:DA:98:20:21:AB:48 X509v3 Authority Key Identifier: keyid:FF:4E:68:ED:10:AA:B0:7D:8F:4E:EC:05:FD:03:45:79:53:F9:37:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129590787/0/FF4E68ED10AAB07D8F4EEC05FD03457953F937E1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/FF4E68ED10AAB07D8F4EEC05FD03457953F937E1.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129590787/0/3131342e3131322e31352e302f32342d3234203d3e20313334373030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.112.15.0/24 Signature Algorithm: sha256WithRSAEncryption bb:89:82:cb:8a:dc:75:65:ff:59:4f:10:b6:cd:2f:57:64:94: 82:9e:7b:32:fd:df:db:16:c1:ce:04:f0:ce:d2:7b:39:a8:e4: 91:14:35:55:40:69:35:e4:bc:43:8c:1a:fa:a4:11:37:d0:20: 3b:ef:88:45:d5:5b:f2:d6:1d:df:6c:2f:fa:3d:b8:bc:c3:a8: b4:d6:28:8d:ac:e3:c6:75:7f:35:76:81:d0:ae:d7:2d:46:ae: 9c:d6:21:b9:00:90:a7:8f:37:3f:25:90:1e:ba:b0:73:7e:1b: 81:94:b2:e7:cd:d4:44:0d:06:ec:19:16:07:83:36:c6:cb:6a: 54:a0:5b:d0:07:10:60:62:32:e8:5a:7d:9a:ca:e2:cc:ca:2d: d0:eb:89:20:df:a4:30:8e:93:84:6d:f7:7e:e1:36:4e:56:4f: 14:c4:c2:bd:0a:b3:00:77:bb:db:7f:27:8b:bc:5e:20:c5:d6: b3:f1:b9:36:d0:4c:d1:46:6e:40:5b:ab:76:cb:64:ac:be:30: 68:41:88:03:6e:35:df:f0:a9:43:a1:66:d7:e1:35:17:17:b2: eb:ed:ca:a9:5f:99:fb:62:62:56:da:1b:d1:6f:7e:f0:50:48: 64:8f:a3:ec:d0:e7:f2:62:e3:9e:a4:72:56:49:64:37:87:18: 93:fb:05:17 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUZjUGco17OK1Ksmdn5Wfi3v1t36YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkY0RTY4RUQxMEFBQjA3RDhGNEVFQzA1RkQwMzQ1Nzk1 M0Y5MzdFMTAeFw0yNjA0MjcxMDE5MjNaFw0yNzA0MjYxMDI0MjNaMDMxMTAvBgNV BAMTKDgyOTRDM0UzOUE5MjAzMEM5NDUxQjQ5QjdDOUJEQTk4MjAyMUFCNDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwbgx/ojxZ5uSbiIfeJHsHUw45 bblvpco4Mg6/byX6N4cF4cBvoN8ZN45Yg/+SM0Kd+facoAES6UNLYMCW10TwbpX1 aCuL+RjImwm0jyvUgOXhfo3rbdkMmJBlhHy1s2jZ5KReQOVascuLMAiQ16XQptCj 3LgKdibf6+pYvk6JnIBi5iSDrXt2QGm7Ntg4Kley9WLZm+DJGzHTg+tYb0LQMKYa eudf12eAQhDgeceK6zc1imI/ZcLbCdvrfe0exyRtyk6lLvaQwtnKcSdfXdo5eSmZ muKkLrInbosfv6uZ0i9afdsSeF8wnW8ypujwnKBnGJVCxVFj/O3t/SzCNZdBAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUgpTD45qSAwyUUbSbfJvamCAhq0gwHwYDVR0j BBgwFoAU/05o7RCqsH2PTuwF/QNFeVP5N+EwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4ODU1MzEyOTU5MDc4Ny8wL0ZGNEU2OEVEMTBBQUIwN0Q4RjRFRUMwNUZEMDM0 NTc5NTNGOTM3RTEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRkY0RTY4RUQxMEFBQjA3RDhGNEVFQzA1RkQwMzQ1Nzk1M0Y5MzdFMS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1ODg1NTMxMjk1OTA3ODcvMC8zMTMxMzQyZTMx MzEzMjJlMzEzNTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzNDM3MzAzMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAHJwDzANBgkqhkiG9w0BAQsFAAOCAQEAu4mCy4rcdWX/WU8Qts0v V2SUgp57Mv3f2xbBzgTwztJ7OajkkRQ1VUBpNeS8Q4wa+qQRN9AgO++IRdVb8tYd 32wv+j24vMOotNYojazjxnV/NXaB0K7XLUaunNYhuQCQp483PyWQHrqwc34bgZSy 583URA0G7BkWB4M2xstqVKBb0AcQYGIy6Fp9msrizMot0OuJIN+kMI6ThG33fuE2 TlZPFMTCvQqzAHe7238ni7xeIMXWs/G5NtBM0UZuQFurdstkrL4waEGIA2413/Cp Q6Fm1+E1Fxey6+3KqV+Z+2JiVtob0W9+8FBIZI+j7NDn8mLjnqRyVklkN4cYk/sF Fw== -----END CERTIFICATE-----Generated at Wed May 13 15:57:26 2026 by rpki-client