$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3230332e302f32342d3234203d3e203633363431.roa File: 3132332e34392e3230332e302f32342d3234203d3e203633363431.roa (raw, json) Hash identifier: h2RwF/3Y3xRQptHWc3NEQtkPPGh5e6qvLvkbaUATUDM= Subject key identifier: CC:D9:81:2E:01:F7:23:85:B6:B8:B1:82:6B:09:A9:50:EF:BD:5E:7A Certificate issuer: /CN=909D556251A0BE5F9234514028EBD37CE8E1280A Certificate serial: 59CEEAC06780B9CD2746C84C29C7046A882F6EB0 Authority key identifier: 90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3230332e302f32342d3234203d3e203633363431.roa Signing time: Wed 22 Apr 2026 14:15:20 +0000 ROA not before: Wed 22 Apr 2026 14:10:20 +0000 ROA not after: Wed 21 Apr 2027 14:15:20 +0000 asID: 63641 IP address blocks: 123.49.203.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 10:43:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:ce:ea:c0:67:80:b9:cd:27:46:c8:4c:29:c7:04:6a:88:2f:6e:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=909D556251A0BE5F9234514028EBD37CE8E1280A Validity Not Before: Apr 22 14:10:20 2026 GMT Not After : Apr 21 14:15:20 2027 GMT Subject: CN=CCD9812E01F72385B6B8B1826B09A950EFBD5E7A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:5b:a6:5c:75:a7:cf:9e:58:0b:9a:32:00:2a: 70:84:57:da:35:04:b8:bd:ca:87:e3:6d:66:82:19: 4d:67:c0:a4:29:32:e0:4c:38:24:3c:6e:82:f6:55: 11:16:a9:48:7b:f4:d0:e3:bf:d2:fe:dc:26:ab:12: e1:43:de:70:2e:f3:a8:c9:f6:a5:a3:49:37:94:3f: e8:8b:0c:cf:3e:00:6f:e5:3d:84:52:c5:09:ec:d0: d8:74:fc:73:22:d8:9d:3c:72:33:99:75:a2:a5:a5: c5:50:77:cc:59:29:f9:4e:7c:09:fe:d5:7e:46:93: 4f:bc:b7:67:4d:97:4a:57:d0:9e:8a:9a:06:35:6d: dc:ff:1b:a7:6b:00:29:8b:37:69:96:57:c8:1d:43: 7b:41:c5:3f:d4:c1:e1:55:db:26:14:da:23:b6:51: da:0c:de:b1:b1:6a:ed:f9:b6:1f:ba:a6:2b:79:68: 7c:15:76:81:73:e5:93:ac:35:48:63:3c:17:71:43: 6d:cc:60:9e:0c:af:ef:79:b9:dc:af:fc:1f:75:7f: 44:be:be:88:65:37:04:6b:78:76:df:5b:1f:76:4d: 11:89:69:e7:8a:f3:7d:99:17:a6:bb:8a:ca:e3:44: 6c:7d:57:07:67:f3:07:cf:85:0e:d2:ff:44:5c:17: 75:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:D9:81:2E:01:F7:23:85:B6:B8:B1:82:6B:09:A9:50:EF:BD:5E:7A X509v3 Authority Key Identifier: keyid:90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3230332e302f32342d3234203d3e203633363431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.49.203.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:6f:9a:f5:74:d8:c7:a7:dc:67:58:67:53:e7:f3:e9:e9:ec: e6:fe:4d:4b:df:13:59:7c:2f:3d:96:03:f7:f9:17:af:d6:81: 7b:b2:d5:a5:81:23:f8:7a:44:71:7a:9c:77:9c:16:dc:28:c9: cf:cc:71:e5:ce:74:da:20:55:75:16:d1:e6:92:3a:cb:fe:7e: 97:d8:ff:46:91:2b:4d:98:21:61:8a:92:1b:6c:64:2c:9d:e2: 75:fc:80:c9:83:ee:81:eb:70:c5:ee:51:c9:d7:13:70:43:7f: 86:bd:7e:4b:51:b8:c9:5a:6b:a6:0e:5a:10:5a:d8:b8:ad:db: 7b:93:de:3c:f2:36:86:01:a5:a1:07:28:68:6c:40:4e:34:d3: 00:fb:d4:d2:e5:b0:85:b3:05:6b:32:4a:f2:fc:a4:a3:65:92: 7e:26:ee:fd:9b:79:b3:4b:34:da:3d:45:cc:ae:cf:14:72:53: ae:13:be:40:80:44:86:b1:15:39:bc:f9:9e:31:fd:99:4f:9d: 83:ed:89:4e:7a:7e:c4:06:4a:e5:8e:c8:e5:0a:61:c6:92:cf: 8f:ea:7b:9d:af:f0:c0:1e:52:f6:74:17:95:44:b4:c8:c9:7b: 0b:7a:05:22:b0:ee:ff:c3:9f:30:20:bd:f0:cf:2e:77:d5:9a: 96:ea:e5:d0 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUWc7qwGeAuc0nRshMKccEaogvbrAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NF OEUxMjgwQTAeFw0yNjA0MjIxNDEwMjBaFw0yNzA0MjExNDE1MjBaMDMxMTAvBgNV BAMTKENDRDk4MTJFMDFGNzIzODVCNkI4QjE4MjZCMDlBOTUwRUZCRDVFN0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoW6ZcdafPnlgLmjIAKnCEV9o1 BLi9yofjbWaCGU1nwKQpMuBMOCQ8boL2VREWqUh79NDjv9L+3CarEuFD3nAu86jJ 9qWjSTeUP+iLDM8+AG/lPYRSxQns0Nh0/HMi2J08cjOZdaKlpcVQd8xZKflOfAn+ 1X5Gk0+8t2dNl0pX0J6KmgY1bdz/G6drACmLN2mWV8gdQ3tBxT/UweFV2yYU2iO2 UdoM3rGxau35th+6pit5aHwVdoFz5ZOsNUhjPBdxQ23MYJ4Mr+95udyv/B91f0S+ vohlNwRreHbfWx92TRGJaeeK832ZF6a7isrjRGx9Vwdn8wfPhQ7S/0RcF3UNAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUzNmBLgH3I4W2uLGCawmpUO+9XnowHwYDVR0j BBgwFoAUkJ1VYlGgvl+SNFFAKOvTfOjhKAowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4MjMzMDM0Njc5OTEwNS8wLzkwOUQ1NTYyNTFBMEJFNUY5MjM0NTE0MDI4RUJE MzdDRThFMTI4MEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NFOEUxMjgwQS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU4MjMzMDM0Njc5OTEwNS8wLzMxMzIzMzJlMzQz OTJlMzIzMDMzMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzYzMzM2MzQzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAHsxyzANBgkqhkiG9w0BAQsFAAOCAQEAjW+a9XTYx6fcZ1hnU+fz6ens 5v5NS98TWXwvPZYD9/kXr9aBe7LVpYEj+HpEcXqcd5wW3CjJz8xx5c502iBVdRbR 5pI6y/5+l9j/RpErTZghYYqSG2xkLJ3idfyAyYPugetwxe5RydcTcEN/hr1+S1G4 yVprpg5aEFrYuK3be5PePPI2hgGloQcoaGxATjTTAPvU0uWwhbMFazJK8vyko2WS fibu/Zt5s0s02j1FzK7PFHJTrhO+QIBEhrEVObz5njH9mU+dg+2JTnp+xAZK5Y7I 5QphxpLPj+p7na/wwB5S9nQXlUS0yMl7C3oFIrDu/8OfMCC98M8ud9Walurl0A== -----END CERTIFICATE-----Generated at Mon Apr 27 11:06:07 2026 by rpki-client