$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065588553129590787/0/3131342e3131322e322e302f32342d3234203d3e20313334373030.roa File: 3131342e3131322e322e302f32342d3234203d3e20313334373030.roa (raw, json) Hash identifier: +2G6erfa1rLR6JGdLwaEKJTHVZA9qtqDhBJ39tqXT1I= Subject key identifier: 68:9D:80:5C:3E:63:1F:F4:49:88:39:C6:9F:AB:2F:98:22:5C:C6:7A Certificate issuer: /CN=FF4E68ED10AAB07D8F4EEC05FD03457953F937E1 Certificate serial: 7FD37CF2EB06A71B65F6582BEB384219F2E970E8 Authority key identifier: FF:4E:68:ED:10:AA:B0:7D:8F:4E:EC:05:FD:03:45:79:53:F9:37:E1 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/FF4E68ED10AAB07D8F4EEC05FD03457953F937E1.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065588553129590787/0/3131342e3131322e322e302f32342d3234203d3e20313334373030.roa Signing time: Mon 27 Apr 2026 10:24:23 +0000 ROA not before: Mon 27 Apr 2026 10:19:23 +0000 ROA not after: Mon 26 Apr 2027 10:24:23 +0000 asID: 134700 IP address blocks: 114.112.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065588553129590787/0/FF4E68ED10AAB07D8F4EEC05FD03457953F937E1.crl rsync://rpki-rps.cnnic.cn/repo/A1065588553129590787/0/FF4E68ED10AAB07D8F4EEC05FD03457953F937E1.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/FF4E68ED10AAB07D8F4EEC05FD03457953F937E1.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:42:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:d3:7c:f2:eb:06:a7:1b:65:f6:58:2b:eb:38:42:19:f2:e9:70:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF4E68ED10AAB07D8F4EEC05FD03457953F937E1 Validity Not Before: Apr 27 10:19:23 2026 GMT Not After : Apr 26 10:24:23 2027 GMT Subject: CN=689D805C3E631FF4498839C69FAB2F98225CC67A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:7e:a1:4d:2b:e8:46:48:e7:08:83:3f:4a:25: 9e:04:ed:28:84:db:97:34:56:94:2a:a7:c9:fb:d7: c0:40:58:50:35:fb:f2:ce:63:9c:4d:5f:85:fd:0b: fa:e7:96:88:f1:93:c0:4b:84:ce:de:95:c9:b3:07: fa:a3:df:7b:2e:3e:ad:7c:a1:9b:ba:73:78:57:5c: 2f:47:a8:a6:c4:e9:8c:14:ed:d6:c9:42:1b:00:f8: e8:14:aa:6a:bf:71:56:ec:e0:f7:6e:36:17:95:f5: d6:64:f5:14:98:f0:27:a6:f1:f4:39:bd:18:47:fb: 7e:0e:c5:20:2a:89:a4:5b:b7:39:4f:d7:c2:b2:db: 70:2b:0a:f7:2e:48:7b:33:03:99:9e:03:b5:79:7f: 37:cc:f0:71:d6:71:01:ee:ba:b5:58:11:c7:f2:ad: 24:67:1e:76:83:de:34:f2:36:63:2b:ad:6a:c4:72: 3b:07:34:a6:99:c7:8d:58:c3:8b:b6:b3:3a:84:23: 90:88:4a:e6:ac:de:a6:89:86:85:dc:ef:d8:98:1f: 9a:b8:c7:6b:63:99:dc:48:fa:bc:8b:fa:f5:51:d6: cc:71:c9:31:8a:4f:e4:66:42:f2:8c:85:0d:d1:bf: 12:29:b8:5f:c7:3f:54:53:91:ef:3f:43:3c:43:52: 28:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:9D:80:5C:3E:63:1F:F4:49:88:39:C6:9F:AB:2F:98:22:5C:C6:7A X509v3 Authority Key Identifier: keyid:FF:4E:68:ED:10:AA:B0:7D:8F:4E:EC:05:FD:03:45:79:53:F9:37:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129590787/0/FF4E68ED10AAB07D8F4EEC05FD03457953F937E1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/FF4E68ED10AAB07D8F4EEC05FD03457953F937E1.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129590787/0/3131342e3131322e322e302f32342d3234203d3e20313334373030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.112.2.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:25:0d:3b:fa:48:4b:7d:4e:4b:8c:82:76:3d:ea:6c:68:fa: f0:fa:6f:af:10:1a:71:ca:af:af:35:76:19:90:28:e4:4d:48: ea:99:b6:ac:ff:47:1e:a2:3b:cf:37:e7:e6:8e:a7:06:00:8f: 51:90:01:db:bf:e0:66:11:e7:37:01:ad:0c:d5:e2:b2:e2:54: 33:ef:06:b8:61:a0:0c:2a:b3:aa:35:40:4d:83:4e:0b:6b:89: 52:4f:38:dc:1a:60:51:05:65:e7:0b:a5:09:94:0e:6b:35:dd: c7:6c:a1:c5:5f:77:66:b0:40:db:17:69:79:ac:3e:60:7e:4c: c4:09:c0:1c:54:56:ba:1f:7f:5b:8b:ac:12:ec:cd:32:88:87: e4:63:45:71:0e:76:c2:7b:73:71:66:30:ce:0c:b6:e5:8d:e4: 00:46:47:e8:e9:00:1b:3e:e0:dd:9d:af:b6:41:bc:7c:32:35: 32:0a:d4:b8:f3:dc:14:b8:ef:c3:fe:73:16:d3:78:76:e8:e9: 99:e4:d4:38:52:9e:f5:f8:9e:35:bc:df:5e:8c:87:fd:f0:4d: ab:3e:4a:25:8c:68:43:2c:a1:91:2e:cb:52:db:90:27:df:be: 1b:96:fb:b4:1b:01:4d:bd:15:97:50:38:ab:90:35:91:f2:c2: 3b:1c:09:ba -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUf9N88usGpxtl9lgr6zhCGfLpcOgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkY0RTY4RUQxMEFBQjA3RDhGNEVFQzA1RkQwMzQ1Nzk1 M0Y5MzdFMTAeFw0yNjA0MjcxMDE5MjNaFw0yNzA0MjYxMDI0MjNaMDMxMTAvBgNV BAMTKDY4OUQ4MDVDM0U2MzFGRjQ0OTg4MzlDNjlGQUIyRjk4MjI1Q0M2N0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCHfqFNK+hGSOcIgz9KJZ4E7SiE 25c0VpQqp8n718BAWFA1+/LOY5xNX4X9C/rnlojxk8BLhM7elcmzB/qj33suPq18 oZu6c3hXXC9HqKbE6YwU7dbJQhsA+OgUqmq/cVbs4PduNheV9dZk9RSY8Cem8fQ5 vRhH+34OxSAqiaRbtzlP18Ky23ArCvcuSHszA5meA7V5fzfM8HHWcQHuurVYEcfy rSRnHnaD3jTyNmMrrWrEcjsHNKaZx41Yw4u2szqEI5CISuas3qaJhoXc79iYH5q4 x2tjmdxI+ryL+vVR1sxxyTGKT+RmQvKMhQ3RvxIpuF/HP1RTke8/QzxDUigbAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUaJ2AXD5jH/RJiDnGn6svmCJcxnowHwYDVR0j BBgwFoAU/05o7RCqsH2PTuwF/QNFeVP5N+EwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4ODU1MzEyOTU5MDc4Ny8wL0ZGNEU2OEVEMTBBQUIwN0Q4RjRFRUMwNUZEMDM0 NTc5NTNGOTM3RTEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRkY0RTY4RUQxMEFBQjA3RDhGNEVFQzA1RkQwMzQ1Nzk1M0Y5MzdFMS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU4ODU1MzEyOTU5MDc4Ny8wLzMxMzEzNDJlMzEz MTMyMmUzMjJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzNDM3MzAzMC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAHJwAjANBgkqhkiG9w0BAQsFAAOCAQEAPCUNO/pIS31OS4yCdj3qbGj6 8PpvrxAaccqvrzV2GZAo5E1I6pm2rP9HHqI7zzfn5o6nBgCPUZAB27/gZhHnNwGt DNXisuJUM+8GuGGgDCqzqjVATYNOC2uJUk843BpgUQVl5wulCZQOazXdx2yhxV93 ZrBA2xdpeaw+YH5MxAnAHFRWuh9/W4usEuzNMoiH5GNFcQ52wntzcWYwzgy25Y3k AEZH6OkAGz7g3Z2vtkG8fDI1MgrUuPPcFLjvw/5zFtN4dujpmeTUOFKe9fieNbzf XoyH/fBNqz5KJYxoQyyhkS7LUtuQJ9++G5b7tBsBTb0Vl1A4q5A1kfLCOxwJug== -----END CERTIFICATE-----Generated at Wed May 13 16:42:38 2026 by rpki-client