$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576723371786242/0/3132302e3133362e3138382e302f32322d3234203d3e203233383533.roa File: 3132302e3133362e3138382e302f32322d3234203d3e203233383533.roa (raw, json) Hash identifier: bOMoD4GkZR5G7bg1hwUbmvGxSHBuMAi8FYq4NpkEpt0= Subject key identifier: CB:A9:F4:2D:40:58:C3:2F:3D:CA:A2:3E:49:B0:A4:87:F3:69:F6:17 Certificate issuer: /CN=3EC2D884A54E878D848EDE42517466153F747434 Certificate serial: 0ACC7DEF8F11185CE06AF369613B9338D01E022D Authority key identifier: 3E:C2:D8:84:A5:4E:87:8D:84:8E:DE:42:51:74:66:15:3F:74:74:34 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3EC2D884A54E878D848EDE42517466153F747434.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576723371786242/0/3132302e3133362e3138382e302f32322d3234203d3e203233383533.roa Signing time: Sat 18 Apr 2026 10:18:31 +0000 ROA not before: Sat 18 Apr 2026 10:13:31 +0000 ROA not after: Sat 17 Apr 2027 10:18:31 +0000 asID: 23853 IP address blocks: 120.136.188.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576723371786242/0/3EC2D884A54E878D848EDE42517466153F747434.crl rsync://rpki-rps.cnnic.cn/repo/A1065576723371786242/0/3EC2D884A54E878D848EDE42517466153F747434.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3EC2D884A54E878D848EDE42517466153F747434.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 09:25:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:cc:7d:ef:8f:11:18:5c:e0:6a:f3:69:61:3b:93:38:d0:1e:02:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3EC2D884A54E878D848EDE42517466153F747434 Validity Not Before: Apr 18 10:13:31 2026 GMT Not After : Apr 17 10:18:31 2027 GMT Subject: CN=CBA9F42D4058C32F3DCAA23E49B0A487F369F617 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:8d:48:bc:17:3e:78:bf:c7:5c:11:ee:1d:9c: a4:15:c9:ba:4c:38:ba:d2:6e:d4:b0:09:4e:d0:6e: 7e:e4:34:49:4f:8a:2e:d2:1a:08:1b:56:37:ca:0a: 78:c6:7b:9d:d5:f2:46:7e:6e:53:88:52:e5:cb:76: e8:49:0f:33:95:54:20:18:60:62:97:2d:a3:17:57: 9a:ba:a1:79:99:d6:8b:94:35:cd:09:b5:fb:49:b0: 0e:39:88:2f:7c:e9:d6:4b:c2:e0:fb:c5:49:5c:86: 66:6c:90:a8:49:37:00:b7:f9:63:13:72:bc:f7:7a: ca:1a:74:41:fb:85:8a:69:8f:97:fd:e9:9d:2c:17: 9a:4f:81:d3:be:4b:d8:7a:3b:b8:26:45:09:3b:d9: 53:78:14:81:ab:01:08:1b:2e:96:24:d9:cd:87:09: 40:41:dc:0e:0c:83:fd:2d:0e:6b:63:d9:b9:14:b2: c3:a2:27:21:b4:b5:8f:79:ac:bf:49:38:fd:27:b7: 8a:ae:60:ad:ec:ba:0f:82:50:e3:06:6c:22:ff:e7: 12:59:64:31:2a:7f:dd:2a:cd:98:c8:ee:44:89:c3: 5a:3b:e7:2e:6b:a2:45:9c:0e:61:e2:db:c0:55:e5: fb:4c:65:ca:c1:94:20:26:09:e1:30:91:f2:0e:93: f3:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:A9:F4:2D:40:58:C3:2F:3D:CA:A2:3E:49:B0:A4:87:F3:69:F6:17 X509v3 Authority Key Identifier: keyid:3E:C2:D8:84:A5:4E:87:8D:84:8E:DE:42:51:74:66:15:3F:74:74:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576723371786242/0/3EC2D884A54E878D848EDE42517466153F747434.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3EC2D884A54E878D848EDE42517466153F747434.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576723371786242/0/3132302e3133362e3138382e302f32322d3234203d3e203233383533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 120.136.188.0/22 Signature Algorithm: sha256WithRSAEncryption 58:1f:05:4e:96:39:61:bf:cd:56:a5:77:cc:28:5f:33:9e:58: 9e:b1:35:e8:1f:f6:01:27:0d:a4:ea:57:2b:90:1e:ff:06:61: 74:ea:1a:2d:37:2a:8c:eb:2c:df:78:18:89:60:7d:6e:37:45: e2:b6:63:bb:54:48:e2:09:b9:ab:f1:d4:da:05:2d:bb:66:20: 4a:fc:04:8c:b4:c8:bf:8a:83:12:ee:1b:4b:5a:f1:3c:cb:b9: f6:97:a5:29:dd:31:3f:2e:7b:ec:88:dc:34:60:06:94:af:18: 70:93:b8:e1:de:a8:a9:13:08:1a:84:8b:51:e5:1f:a5:96:be: 1f:38:3f:a1:a1:47:c9:28:58:96:71:df:9a:3b:09:cb:a8:3a: a6:cc:ce:00:6f:f2:cd:d6:51:b0:ac:87:57:46:f7:f7:a7:05: 08:e5:2b:75:8b:51:10:1b:42:d2:ed:83:b2:90:e5:d3:c8:e6: 57:04:9d:0e:d7:fc:03:00:35:c0:22:84:12:68:d3:a3:b3:2b: 5f:70:8f:99:f2:cb:10:df:9e:aa:21:73:7b:3b:26:e9:ec:8f: 12:46:41:c0:d6:89:aa:46:3c:97:ae:ae:9b:b6:78:8b:5e:dd: 59:5c:08:8b:09:37:53:43:ca:70:b8:aa:d8:05:d2:06:33:17: 99:03:2b:de -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUCsx9748RGFzgavNpYTuTONAeAi0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0VDMkQ4ODRBNTRFODc4RDg0OEVERTQyNTE3NDY2MTUz Rjc0NzQzNDAeFw0yNjA0MTgxMDEzMzFaFw0yNzA0MTcxMDE4MzFaMDMxMTAvBgNV BAMTKENCQTlGNDJENDA1OEMzMkYzRENBQTIzRTQ5QjBBNDg3RjM2OUY2MTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwjUi8Fz54v8dcEe4dnKQVybpM OLrSbtSwCU7Qbn7kNElPii7SGggbVjfKCnjGe53V8kZ+blOIUuXLduhJDzOVVCAY YGKXLaMXV5q6oXmZ1ouUNc0JtftJsA45iC986dZLwuD7xUlchmZskKhJNwC3+WMT crz3esoadEH7hYppj5f96Z0sF5pPgdO+S9h6O7gmRQk72VN4FIGrAQgbLpYk2c2H CUBB3A4Mg/0tDmtj2bkUssOiJyG0tY95rL9JOP0nt4quYK3sug+CUOMGbCL/5xJZ ZDEqf90qzZjI7kSJw1o75y5rokWcDmHi28BV5ftMZcrBlCAmCeEwkfIOk/OfAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUy6n0LUBYwy89yqI+SbCkh/Np9hcwHwYDVR0j BBgwFoAUPsLYhKVOh42Ejt5CUXRmFT90dDQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjcyMzM3MTc4NjI0Mi8wLzNFQzJEODg0QTU0RTg3OEQ4NDhFREU0MjUxNzQ2 NjE1M0Y3NDc0MzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvM0VDMkQ4ODRBNTRFODc4RDg0OEVERTQyNTE3NDY2MTUzRjc0NzQzNC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzY3MjMzNzE3ODYyNDIvMC8zMTMyMzAyZTMx MzMzNjJlMzEzODM4MmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzIzMzM4MzUzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAniIvDANBgkqhkiG9w0BAQsFAAOCAQEAWB8FTpY5Yb/NVqV3zChf M55YnrE16B/2AScNpOpXK5Ae/wZhdOoaLTcqjOss33gYiWB9bjdF4rZju1RI4gm5 q/HU2gUtu2YgSvwEjLTIv4qDEu4bS1rxPMu59pelKd0xPy577IjcNGAGlK8YcJO4 4d6oqRMIGoSLUeUfpZa+Hzg/oaFHyShYlnHfmjsJy6g6pszOAG/yzdZRsKyHV0b3 96cFCOUrdYtREBtC0u2DspDl08jmVwSdDtf8AwA1wCKEEmjTo7MrX3CPmfLLEN+e qiFzezsm6eyPEkZBwNaJqkY8l66um7Z4i17dWVwIiwk3U0PKcLiq2AXSBjMXmQMr 3g== -----END CERTIFICATE-----Generated at Mon Apr 27 11:16:22 2026 by rpki-client