$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3139342e302f32342d3234203d3e203137363231.roa File: 3132332e34392e3139342e302f32342d3234203d3e203137363231.roa (raw, json) Hash identifier: tpCuzUZhBTKr/2QwyPQ/TRUAvV1y7fpz93gBAfWFzks= Subject key identifier: AE:53:47:4E:9A:A9:54:EB:2C:1F:EB:03:72:49:8C:29:7C:09:59:A4 Certificate issuer: /CN=909D556251A0BE5F9234514028EBD37CE8E1280A Certificate serial: 274B86D388846CCA3965120E6E952D093DA6F2B8 Authority key identifier: 90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3139342e302f32342d3234203d3e203137363231.roa Signing time: Wed 22 Apr 2026 14:12:20 +0000 ROA not before: Wed 22 Apr 2026 14:07:20 +0000 ROA not after: Wed 21 Apr 2027 14:12:20 +0000 asID: 17621 IP address blocks: 123.49.194.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 10:43:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:4b:86:d3:88:84:6c:ca:39:65:12:0e:6e:95:2d:09:3d:a6:f2:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=909D556251A0BE5F9234514028EBD37CE8E1280A Validity Not Before: Apr 22 14:07:20 2026 GMT Not After : Apr 21 14:12:20 2027 GMT Subject: CN=AE53474E9AA954EB2C1FEB0372498C297C0959A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:92:75:8c:70:e5:0a:c4:a2:4f:11:c4:a9:0c: ad:f4:ce:22:fa:a3:7a:ed:99:ae:8d:f1:37:2e:99: c8:74:13:cb:cc:87:8f:b8:30:d6:2c:ec:ff:b0:31: 66:d4:9a:92:75:23:77:05:d3:ed:1a:60:73:8c:ed: 58:d0:5d:a4:df:9f:3b:d3:4c:7e:0c:de:ef:00:3e: a4:c9:95:2f:3b:ec:b3:ef:51:94:cc:07:28:42:43: 76:a9:f6:ab:b5:d4:3e:a8:01:aa:b0:24:83:bc:66: ca:2b:0e:26:9b:25:61:10:a3:0a:51:1d:91:f6:b0: 39:e7:19:43:84:e0:f8:b0:2d:24:ed:34:e4:1c:4a: 46:0d:7d:18:88:ed:00:34:d1:87:44:0f:1d:fc:f8: 3b:68:11:33:46:2a:a6:d5:38:d2:22:68:72:7a:fe: 4a:69:dd:ca:83:5f:1c:d7:2a:81:fc:e2:a6:69:94: 7f:f6:9b:7f:b1:de:08:f9:4f:a4:60:9f:dc:32:1a: 44:29:0c:09:17:d9:e1:ab:5e:6b:a6:54:2d:8c:f8: a2:64:80:a4:21:bc:66:b0:c9:38:62:13:6d:5a:67: 1b:59:92:ac:dc:61:6f:ea:13:df:d4:06:b0:e0:ff: c8:c6:0c:d1:96:83:4b:c6:c7:6d:9c:99:c9:98:a9: 02:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:53:47:4E:9A:A9:54:EB:2C:1F:EB:03:72:49:8C:29:7C:09:59:A4 X509v3 Authority Key Identifier: keyid:90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3139342e302f32342d3234203d3e203137363231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.49.194.0/24 Signature Algorithm: sha256WithRSAEncryption da:27:2c:3c:25:e4:5f:57:2f:71:53:8f:e3:6c:01:3a:7c:89: e1:65:25:ec:49:b8:c8:27:46:3f:99:1b:05:02:1d:4b:bd:0a: 45:b9:19:39:95:65:4d:14:ee:19:11:bb:77:85:6d:e3:f3:fd: ad:47:1d:60:b6:93:7e:dd:4b:ef:83:97:19:c9:d6:2c:5f:52: 76:bb:6b:d7:18:5d:5d:dc:f7:63:02:e5:2c:36:da:ab:b2:20: 10:59:aa:43:7a:a5:fe:dd:48:39:44:92:11:ff:10:6c:db:b5: 70:7b:fa:0a:1f:93:81:a3:a4:c8:75:59:f8:17:e0:11:61:f2: 82:0d:06:cb:c6:2e:c3:97:03:c3:36:2a:91:5e:c4:f4:dc:61: fb:ab:63:7e:be:93:de:3e:33:83:ff:3b:48:55:0e:e1:fc:06: 00:90:73:e6:c9:15:05:9a:07:53:4b:ed:a0:bc:3e:81:a0:20: ce:da:d7:b0:3b:15:66:bc:d5:59:c3:d6:95:00:31:1a:c8:fa: 80:4e:6f:7e:0c:76:56:12:6c:6a:88:05:59:60:b8:e5:63:46: 45:57:83:5e:3d:bb:f7:52:2b:cf:d7:e0:4d:4a:ad:cc:33:78: 13:90:37:df:35:fc:0a:60:71:f8:75:c8:f4:ea:62:40:31:bc: b3:a4:c9:a3 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUJ0uG04iEbMo5ZRIObpUtCT2m8rgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NF OEUxMjgwQTAeFw0yNjA0MjIxNDA3MjBaFw0yNzA0MjExNDEyMjBaMDMxMTAvBgNV BAMTKEFFNTM0NzRFOUFBOTU0RUIyQzFGRUIwMzcyNDk4QzI5N0MwOTU5QTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7knWMcOUKxKJPEcSpDK30ziL6 o3rtma6N8Tcumch0E8vMh4+4MNYs7P+wMWbUmpJ1I3cF0+0aYHOM7VjQXaTfnzvT TH4M3u8APqTJlS877LPvUZTMByhCQ3ap9qu11D6oAaqwJIO8ZsorDiabJWEQowpR HZH2sDnnGUOE4PiwLSTtNOQcSkYNfRiI7QA00YdEDx38+DtoETNGKqbVONIiaHJ6 /kpp3cqDXxzXKoH84qZplH/2m3+x3gj5T6Rgn9wyGkQpDAkX2eGrXmumVC2M+KJk gKQhvGawyThiE21aZxtZkqzcYW/qE9/UBrDg/8jGDNGWg0vGx22cmcmYqQKvAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUrlNHTpqpVOssH+sDckmMKXwJWaQwHwYDVR0j BBgwFoAUkJ1VYlGgvl+SNFFAKOvTfOjhKAowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4MjMzMDM0Njc5OTEwNS8wLzkwOUQ1NTYyNTFBMEJFNUY5MjM0NTE0MDI4RUJE MzdDRThFMTI4MEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NFOEUxMjgwQS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU4MjMzMDM0Njc5OTEwNS8wLzMxMzIzMzJlMzQz OTJlMzEzOTM0MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzNzM2MzIzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAHsxwjANBgkqhkiG9w0BAQsFAAOCAQEA2icsPCXkX1cvcVOP42wBOnyJ 4WUl7Em4yCdGP5kbBQIdS70KRbkZOZVlTRTuGRG7d4Vt4/P9rUcdYLaTft1L74OX GcnWLF9Sdrtr1xhdXdz3YwLlLDbaq7IgEFmqQ3ql/t1IOUSSEf8QbNu1cHv6Ch+T gaOkyHVZ+BfgEWHygg0Gy8Yuw5cDwzYqkV7E9Nxh+6tjfr6T3j4zg/87SFUO4fwG AJBz5skVBZoHU0vtoLw+gaAgztrXsDsVZrzVWcPWlQAxGsj6gE5vfgx2VhJsaogF WWC45WNGRVeDXj2791Irz9fgTUqtzDN4E5A33zX8CmBx+HXI9OpiQDG8s6TJow== -----END CERTIFICATE-----Generated at Mon Apr 27 11:06:44 2026 by rpki-client