$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132302e3133372e302e302f31372d3137203d3e203633363431.roa File: 3132302e3133372e302e302f31372d3137203d3e203633363431.roa (raw, json) Hash identifier: KpU0KZpKjVMSdFNJPjjfLuypwluF4kkZtK+qzO1VRY8= Subject key identifier: 73:57:75:34:7E:29:95:5B:40:46:6B:E7:C1:39:45:40:D8:8D:14:88 Certificate issuer: /CN=909D556251A0BE5F9234514028EBD37CE8E1280A Certificate serial: 62ECDBF691026761513FEF9600FA94D9710506BB Authority key identifier: 90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132302e3133372e302e302f31372d3137203d3e203633363431.roa Signing time: Wed 22 Apr 2026 14:22:20 +0000 ROA not before: Wed 22 Apr 2026 14:17:20 +0000 ROA not after: Wed 21 Apr 2027 14:22:20 +0000 asID: 63641 IP address blocks: 120.137.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 10:43:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:ec:db:f6:91:02:67:61:51:3f:ef:96:00:fa:94:d9:71:05:06:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=909D556251A0BE5F9234514028EBD37CE8E1280A Validity Not Before: Apr 22 14:17:20 2026 GMT Not After : Apr 21 14:22:20 2027 GMT Subject: CN=735775347E29955B40466BE7C1394540D88D1488 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:de:60:f7:d8:4c:76:bb:c6:bd:ea:ce:e4:3f: c6:07:bc:4a:95:8d:14:eb:cd:bd:ba:7e:0f:83:36: 1c:d9:ea:87:b1:4b:da:80:f6:42:4f:94:78:bf:d0: 96:42:1a:81:39:d6:54:1e:1c:3d:3d:7d:55:09:a8: 91:28:dc:e8:d2:4e:65:8f:97:54:d6:29:f6:cb:55: bc:81:ef:3d:4c:1f:e9:c7:c3:a0:06:f0:56:ea:f1: b4:b4:ea:b1:3e:0d:f5:b0:b0:8f:f8:17:23:3f:5b: 5e:15:62:e9:fe:eb:97:71:e0:6f:8f:dc:b9:60:d0: 7c:e5:92:2d:fe:5f:c8:cc:c7:c7:dc:66:1e:0a:e4: 9e:86:63:7a:a5:04:e6:98:08:76:94:ba:f1:05:04: 0e:4a:0e:24:d0:2d:c3:87:ba:63:dd:9a:ee:2e:a6: 5e:fd:4b:e3:66:8b:d9:ae:f3:8a:e6:42:39:2b:a3: a8:0b:9c:cd:17:e2:f1:47:58:37:15:22:37:ae:05: 69:05:6a:c0:89:78:6e:6b:59:41:53:7e:04:a5:fa: 78:cd:5f:5f:1d:27:d7:aa:41:d9:13:71:60:54:b4: c1:ad:d0:b7:8e:c5:78:95:1b:b8:e4:6a:a5:f9:11: 0b:f2:cd:26:ab:f7:e4:df:88:36:c2:46:90:af:ea: 58:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:57:75:34:7E:29:95:5B:40:46:6B:E7:C1:39:45:40:D8:8D:14:88 X509v3 Authority Key Identifier: keyid:90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132302e3133372e302e302f31372d3137203d3e203633363431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 120.137.0.0/17 Signature Algorithm: sha256WithRSAEncryption 5f:31:f8:2c:c9:aa:0b:95:4b:e3:b1:3b:20:09:a6:fa:2f:92: 15:16:d0:fb:4c:3d:94:fa:fc:0f:c3:9e:67:2a:bd:3f:40:8c: d5:bf:d0:01:03:7b:77:03:9c:ad:1f:24:39:ec:9a:95:50:7f: 34:2f:82:16:e3:e1:ea:25:53:08:b0:db:1f:4e:26:7c:c4:e6: 02:cb:78:6b:4a:1b:67:fc:c1:2f:65:aa:78:c9:ce:2b:ec:9e: 59:f8:de:9e:82:c0:71:3d:0d:3e:2f:b4:d4:f1:dc:b8:d8:d6: 21:84:19:00:d0:c9:30:e8:61:0d:d7:0b:85:b6:ab:fb:22:d3: 74:4b:d3:da:09:a3:37:cc:fc:02:a2:0a:18:d0:88:ad:0f:ce: 14:99:0a:78:98:6a:76:30:b3:3a:e2:35:8d:1a:ae:c0:c4:08: 03:6c:1b:79:39:11:e6:a8:45:93:f2:c7:69:61:9f:61:bf:55: 51:1a:68:6c:94:d2:e1:00:a5:ff:bb:51:65:b4:26:70:3a:4b: 4c:90:9d:1f:b3:ec:f5:ee:a1:ab:1a:a9:5e:9d:0d:76:0c:93: 9a:2a:a7:de:35:71:16:11:2a:44:de:69:b6:6c:0d:53:c0:67: 16:4f:79:40:6c:bc:4e:69:7a:22:1a:57:8b:17:84:36:ef:4a: 7a:b9:68:4e -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUYuzb9pECZ2FRP++WAPqU2XEFBrswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NF OEUxMjgwQTAeFw0yNjA0MjIxNDE3MjBaFw0yNzA0MjExNDIyMjBaMDMxMTAvBgNV BAMTKDczNTc3NTM0N0UyOTk1NUI0MDQ2NkJFN0MxMzk0NTQwRDg4RDE0ODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDy3mD32Ex2u8a96s7kP8YHvEqV jRTrzb26fg+DNhzZ6oexS9qA9kJPlHi/0JZCGoE51lQeHD09fVUJqJEo3OjSTmWP l1TWKfbLVbyB7z1MH+nHw6AG8Fbq8bS06rE+DfWwsI/4FyM/W14VYun+65dx4G+P 3Llg0Hzlki3+X8jMx8fcZh4K5J6GY3qlBOaYCHaUuvEFBA5KDiTQLcOHumPdmu4u pl79S+Nmi9mu84rmQjkro6gLnM0X4vFHWDcVIjeuBWkFasCJeG5rWUFTfgSl+njN X18dJ9eqQdkTcWBUtMGt0LeOxXiVG7jkaqX5EQvyzSar9+TfiDbCRpCv6ljlAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUc1d1NH4plVtARmvnwTlFQNiNFIgwHwYDVR0j BBgwFoAUkJ1VYlGgvl+SNFFAKOvTfOjhKAowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4MjMzMDM0Njc5OTEwNS8wLzkwOUQ1NTYyNTFBMEJFNUY5MjM0NTE0MDI4RUJE MzdDRThFMTI4MEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NFOEUxMjgwQS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTgyMzMwMzQ2Nzk5MTA1LzAvMzEzMjMwMmUzMTMz MzcyZTMwMmUzMDJmMzEzNzJkMzEzNzIwM2QzZTIwMzYzMzM2MzQzMS5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEB3iJADANBgkqhkiG9w0BAQsFAAOCAQEAXzH4LMmqC5VL47E7IAmm+i+SFRbQ +0w9lPr8D8OeZyq9P0CM1b/QAQN7dwOcrR8kOeyalVB/NC+CFuPh6iVTCLDbH04m fMTmAst4a0obZ/zBL2WqeMnOK+yeWfjenoLAcT0NPi+01PHcuNjWIYQZANDJMOhh DdcLhbar+yLTdEvT2gmjN8z8AqIKGNCIrQ/OFJkKeJhqdjCzOuI1jRquwMQIA2wb eTkR5qhFk/LHaWGfYb9VURpobJTS4QCl/7tRZbQmcDpLTJCdH7Ps9e6hqxqpXp0N dgyTmiqn3jVxFhEqRN5ptmwNU8BnFk95QGy8Tml6IhpXixeENu9KerloTg== -----END CERTIFICATE-----Generated at Mon Apr 27 11:06:04 2026 by rpki-client