$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3139372e302f32342d3234203d3e203633363431.roa File: 3132332e34392e3139372e302f32342d3234203d3e203633363431.roa (raw, json) Hash identifier: IQ677f3PGFyk3ZLuU/bc80yY+13WQWNOGJPCtHpvLM4= Subject key identifier: 4E:E2:6E:D1:B8:39:4B:BD:FD:94:DD:7B:BF:7B:04:83:B6:04:07:71 Certificate issuer: /CN=909D556251A0BE5F9234514028EBD37CE8E1280A Certificate serial: 71AD887F0B636C2831B698FF871D1127AD68C682 Authority key identifier: 90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3139372e302f32342d3234203d3e203633363431.roa Signing time: Wed 22 Apr 2026 14:13:40 +0000 ROA not before: Wed 22 Apr 2026 14:08:40 +0000 ROA not after: Wed 21 Apr 2027 14:13:40 +0000 asID: 63641 IP address blocks: 123.49.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 10:43:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:ad:88:7f:0b:63:6c:28:31:b6:98:ff:87:1d:11:27:ad:68:c6:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=909D556251A0BE5F9234514028EBD37CE8E1280A Validity Not Before: Apr 22 14:08:40 2026 GMT Not After : Apr 21 14:13:40 2027 GMT Subject: CN=4EE26ED1B8394BBDFD94DD7BBF7B0483B6040771 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:f2:4c:25:e6:ed:b0:58:e9:41:21:8f:e0:4e: 12:3b:28:6c:3c:d2:85:d9:77:e5:70:d1:3e:74:b4: ec:9d:f4:cb:58:f4:c9:af:9b:88:fd:ad:35:4a:f3: e3:70:25:42:62:22:9e:5e:a8:20:d2:81:e8:ea:50: 71:35:b7:52:a7:39:1f:e9:c8:96:95:1d:36:38:99: c1:8e:63:f8:fe:87:d3:a7:73:a1:3e:10:76:b7:81: 69:a3:21:4c:1b:dd:d3:31:ff:ad:2e:b4:b7:4a:cf: 94:b1:27:a5:8f:a6:53:cb:bc:65:d9:79:17:63:02: c9:10:8f:e6:19:14:20:3b:33:4d:19:32:7d:ce:cb: 0c:bd:12:1e:76:7c:b7:8f:c4:f2:17:7a:e6:50:a6: 98:67:db:44:8e:9c:fe:dc:5e:08:5e:d9:8e:00:78: 87:ea:33:93:23:67:5f:ff:d9:45:b0:60:17:7a:d7: 90:a8:26:b6:11:d4:54:53:2c:e2:7f:e2:72:74:f0: e3:02:39:90:fb:3c:81:74:67:34:3c:8a:95:ee:86: c4:c4:b1:d9:b9:94:69:68:1f:94:df:9a:5a:b3:4c: 19:4a:c8:e3:59:99:74:28:3d:f5:f2:19:45:95:42: ef:97:b2:b9:3e:68:1f:bb:4e:01:04:01:0f:4a:a0: 09:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:E2:6E:D1:B8:39:4B:BD:FD:94:DD:7B:BF:7B:04:83:B6:04:07:71 X509v3 Authority Key Identifier: keyid:90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3139372e302f32342d3234203d3e203633363431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.49.197.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:45:67:cb:a3:05:44:ba:90:da:84:c4:1f:07:7d:b6:a9:4b: 31:ca:be:3d:72:1e:0f:34:a1:58:07:4d:c6:3b:b7:91:db:4b: fc:30:14:19:2a:c0:14:b9:6d:9c:5a:e8:9e:43:54:f9:32:3f: 5e:71:4f:88:ee:59:79:11:d9:c9:da:69:51:52:49:25:48:9d: 1a:cd:37:9e:b0:5c:3d:01:31:cf:4a:58:e1:8d:35:f6:b9:fd: d9:56:e2:7e:09:dd:ae:70:66:56:38:1d:73:73:e2:b1:f9:dd: bd:18:99:fc:85:c4:3c:92:aa:58:96:dc:fc:fe:2a:84:93:20: 4a:36:bb:9a:fc:4c:d4:29:f7:5a:ec:54:16:9c:fb:5d:7e:22: 81:63:19:64:0a:79:e1:58:29:e3:73:44:4d:1c:8c:a7:8f:63: c9:65:3d:11:04:8c:ef:98:08:0e:22:7b:ee:eb:09:83:1f:e1: bc:3c:85:90:44:2b:9f:eb:bb:a2:81:bb:e3:2d:cc:2e:68:8a: 17:03:f2:8d:47:48:20:5e:74:19:fb:67:d6:20:dc:7d:f5:08: 0b:fd:91:94:5a:92:77:2a:ac:de:d4:c8:91:03:c0:4e:34:a3: d0:fb:4a:3a:7e:07:23:da:37:aa:24:68:da:b0:0c:1f:88:2e: 02:5d:6b:d7 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUca2IfwtjbCgxtpj/hx0RJ61oxoIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NF OEUxMjgwQTAeFw0yNjA0MjIxNDA4NDBaFw0yNzA0MjExNDEzNDBaMDMxMTAvBgNV BAMTKDRFRTI2RUQxQjgzOTRCQkRGRDk0REQ3QkJGN0IwNDgzQjYwNDA3NzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCu8kwl5u2wWOlBIY/gThI7KGw8 0oXZd+Vw0T50tOyd9MtY9Mmvm4j9rTVK8+NwJUJiIp5eqCDSgejqUHE1t1KnOR/p yJaVHTY4mcGOY/j+h9Onc6E+EHa3gWmjIUwb3dMx/60utLdKz5SxJ6WPplPLvGXZ eRdjAskQj+YZFCA7M00ZMn3Oywy9Eh52fLePxPIXeuZQpphn20SOnP7cXghe2Y4A eIfqM5MjZ1//2UWwYBd615CoJrYR1FRTLOJ/4nJ08OMCOZD7PIF0ZzQ8ipXuhsTE sdm5lGloH5TfmlqzTBlKyONZmXQoPfXyGUWVQu+Xsrk+aB+7TgEEAQ9KoAllAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUTuJu0bg5S739lN17v3sEg7YEB3EwHwYDVR0j BBgwFoAUkJ1VYlGgvl+SNFFAKOvTfOjhKAowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4MjMzMDM0Njc5OTEwNS8wLzkwOUQ1NTYyNTFBMEJFNUY5MjM0NTE0MDI4RUJE MzdDRThFMTI4MEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NFOEUxMjgwQS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU4MjMzMDM0Njc5OTEwNS8wLzMxMzIzMzJlMzQz OTJlMzEzOTM3MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzYzMzM2MzQzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAHsxxTANBgkqhkiG9w0BAQsFAAOCAQEAekVny6MFRLqQ2oTEHwd9tqlL Mcq+PXIeDzShWAdNxju3kdtL/DAUGSrAFLltnFronkNU+TI/XnFPiO5ZeRHZydpp UVJJJUidGs03nrBcPQExz0pY4Y019rn92VbifgndrnBmVjgdc3PisfndvRiZ/IXE PJKqWJbc/P4qhJMgSja7mvxM1Cn3WuxUFpz7XX4igWMZZAp54Vgp43NETRyMp49j yWU9EQSM75gIDiJ77usJgx/hvDyFkEQrn+u7ooG74y3MLmiKFwPyjUdIIF50Gftn 1iDcffUIC/2RlFqSdyqs3tTIkQPATjSj0PtKOn4HI9o3qiRo2rAMH4guAl1r1w== -----END CERTIFICATE-----Generated at Mon Apr 27 11:06:43 2026 by rpki-client