$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3230312e302f32342d3234203d3e203633363431.roa File: 3132332e34392e3230312e302f32342d3234203d3e203633363431.roa (raw, json) Hash identifier: 0gJhcSLRwp51ohsGoA9ZLrcYj9cNV2NcW8aBaSJmlmU= Subject key identifier: CD:07:C8:7D:9C:23:95:91:A3:C3:0C:5E:68:2C:7A:6E:4B:F7:81:A7 Certificate issuer: /CN=909D556251A0BE5F9234514028EBD37CE8E1280A Certificate serial: 554FF5452B6763F839B3431C9CF4DF3EDF4F6419 Authority key identifier: 90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3230312e302f32342d3234203d3e203633363431.roa Signing time: Wed 22 Apr 2026 14:14:48 +0000 ROA not before: Wed 22 Apr 2026 14:09:48 +0000 ROA not after: Wed 21 Apr 2027 14:14:48 +0000 asID: 63641 IP address blocks: 123.49.201.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 10:43:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:4f:f5:45:2b:67:63:f8:39:b3:43:1c:9c:f4:df:3e:df:4f:64:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=909D556251A0BE5F9234514028EBD37CE8E1280A Validity Not Before: Apr 22 14:09:48 2026 GMT Not After : Apr 21 14:14:48 2027 GMT Subject: CN=CD07C87D9C239591A3C30C5E682C7A6E4BF781A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:30:53:bd:14:dc:9d:ef:4a:b4:92:ee:e0:79: e4:70:95:21:99:20:33:be:86:45:fd:97:1a:7c:11: 7f:43:e4:1d:c8:18:0c:9a:9f:45:01:11:a4:a0:dd: 49:38:12:98:f6:c9:43:d4:f5:65:d1:9e:2f:cb:6b: 90:2d:fb:70:26:c0:68:c8:aa:57:42:aa:85:06:fa: 6a:3a:5b:52:df:8f:fa:b8:9c:4f:68:1a:94:ca:6f: 97:01:e6:fb:68:e4:59:e7:f9:01:71:c4:00:89:48: 96:40:27:c1:3d:a3:a5:63:c3:9b:08:48:77:57:ad: 27:2e:3f:4f:6b:65:24:91:5f:a5:51:55:45:b5:b5: b4:e3:6a:e5:7f:a6:fc:e8:0c:41:9c:85:3d:39:89: 51:34:c6:c1:df:7a:50:6d:4e:17:4b:1b:5e:b5:c7: a9:4a:14:b1:17:1b:74:99:25:d3:cd:e2:3f:ca:fa: 87:91:9a:81:39:eb:6d:96:09:d1:bf:4e:30:d7:cc: 0f:6c:e0:16:49:fa:32:69:1e:12:36:73:6c:f5:9e: d2:c9:43:58:dd:ed:62:28:f7:1c:c7:ec:9d:28:3d: 90:a2:92:0d:7e:22:9e:1b:3e:0e:16:c3:fd:61:56: 8d:3e:c4:5f:f4:67:6f:c5:3b:5a:33:7f:26:d1:62: 88:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:07:C8:7D:9C:23:95:91:A3:C3:0C:5E:68:2C:7A:6E:4B:F7:81:A7 X509v3 Authority Key Identifier: keyid:90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3230312e302f32342d3234203d3e203633363431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.49.201.0/24 Signature Algorithm: sha256WithRSAEncryption 54:8c:14:a5:e1:e6:dd:74:0a:a7:29:53:59:8b:8b:1d:9b:20: ce:b1:a2:7e:62:9b:01:59:29:8e:05:77:51:f3:78:5d:11:bd: 81:9a:37:1b:e7:a4:0f:38:78:2b:aa:3d:50:5d:f2:a1:e0:85: 94:2a:ea:5e:90:10:19:b6:0b:0d:54:fe:aa:bf:6b:7e:96:4a: c4:2e:d4:01:2d:74:b9:89:f3:63:5b:ae:7b:00:6d:4a:61:b6: 11:ea:68:23:a5:c2:ef:c9:9b:1e:fd:93:11:91:8b:1b:0e:4c: 00:7b:91:dc:ea:a1:2c:80:1b:46:73:bc:3f:4f:a8:cc:a5:c4: 97:a4:5b:c6:86:60:cf:73:04:74:1a:a0:92:55:a7:c6:5b:6c: 84:06:7b:7f:64:4a:e1:ab:29:0c:82:47:b1:1a:65:57:1e:e2: 08:50:38:c2:4e:fc:c1:c9:13:50:9c:c0:3d:f6:33:80:be:81: 1a:db:d6:48:aa:db:b1:cb:0b:5b:a6:08:39:97:14:cb:bc:82: 89:87:c0:3f:96:20:98:93:65:3b:f2:45:59:f4:10:b4:9e:5a: c6:d6:1f:6b:98:78:1e:3c:9a:98:09:79:bb:73:0a:9a:03:4b: c0:7d:e9:bf:9b:f8:c9:b8:30:a3:7c:04:33:ff:96:91:ee:27: 99:4a:8b:87 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUVU/1RStnY/g5s0McnPTfPt9PZBkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NF OEUxMjgwQTAeFw0yNjA0MjIxNDA5NDhaFw0yNzA0MjExNDE0NDhaMDMxMTAvBgNV BAMTKENEMDdDODdEOUMyMzk1OTFBM0MzMEM1RTY4MkM3QTZFNEJGNzgxQTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD3MFO9FNyd70q0ku7geeRwlSGZ IDO+hkX9lxp8EX9D5B3IGAyan0UBEaSg3Uk4Epj2yUPU9WXRni/La5At+3AmwGjI qldCqoUG+mo6W1Lfj/q4nE9oGpTKb5cB5vto5Fnn+QFxxACJSJZAJ8E9o6Vjw5sI SHdXrScuP09rZSSRX6VRVUW1tbTjauV/pvzoDEGchT05iVE0xsHfelBtThdLG161 x6lKFLEXG3SZJdPN4j/K+oeRmoE5622WCdG/TjDXzA9s4BZJ+jJpHhI2c2z1ntLJ Q1jd7WIo9xzH7J0oPZCikg1+Ip4bPg4Ww/1hVo0+xF/0Z2/FO1ozfybRYohrAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUzQfIfZwjlZGjwwxeaCx6bkv3gacwHwYDVR0j BBgwFoAUkJ1VYlGgvl+SNFFAKOvTfOjhKAowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4MjMzMDM0Njc5OTEwNS8wLzkwOUQ1NTYyNTFBMEJFNUY5MjM0NTE0MDI4RUJE MzdDRThFMTI4MEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NFOEUxMjgwQS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU4MjMzMDM0Njc5OTEwNS8wLzMxMzIzMzJlMzQz OTJlMzIzMDMxMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzYzMzM2MzQzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAHsxyTANBgkqhkiG9w0BAQsFAAOCAQEAVIwUpeHm3XQKpylTWYuLHZsg zrGifmKbAVkpjgV3UfN4XRG9gZo3G+ekDzh4K6o9UF3yoeCFlCrqXpAQGbYLDVT+ qr9rfpZKxC7UAS10uYnzY1uuewBtSmG2EepoI6XC78mbHv2TEZGLGw5MAHuR3Oqh LIAbRnO8P0+ozKXEl6RbxoZgz3MEdBqgklWnxltshAZ7f2RK4aspDIJHsRplVx7i CFA4wk78wckTUJzAPfYzgL6BGtvWSKrbscsLW6YIOZcUy7yCiYfAP5YgmJNlO/JF WfQQtJ5axtYfa5h4HjyamAl5u3MKmgNLwH3pv5v4ybgwo3wEM/+Wke4nmUqLhw== -----END CERTIFICATE-----Generated at Mon Apr 27 11:06:43 2026 by rpki-client