$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3230342e302f32342d3234203d3e203633363431.roa File: 3132332e34392e3230342e302f32342d3234203d3e203633363431.roa (raw, json) Hash identifier: mXMBtFdBCpqKkCCOgNLjwviOTisM7TclTur7dKVWif8= Subject key identifier: 46:AE:A8:AB:15:37:FA:3A:4C:D9:D0:8B:F9:B7:46:D8:15:44:3D:13 Certificate issuer: /CN=909D556251A0BE5F9234514028EBD37CE8E1280A Certificate serial: 3D89BBAD663436C269AD0765231CBC6EBEFA5C4C Authority key identifier: 90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3230342e302f32342d3234203d3e203633363431.roa Signing time: Wed 22 Apr 2026 14:15:41 +0000 ROA not before: Wed 22 Apr 2026 14:10:41 +0000 ROA not after: Wed 21 Apr 2027 14:15:41 +0000 asID: 63641 IP address blocks: 123.49.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 10:43:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:89:bb:ad:66:34:36:c2:69:ad:07:65:23:1c:bc:6e:be:fa:5c:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=909D556251A0BE5F9234514028EBD37CE8E1280A Validity Not Before: Apr 22 14:10:41 2026 GMT Not After : Apr 21 14:15:41 2027 GMT Subject: CN=46AEA8AB1537FA3A4CD9D08BF9B746D815443D13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:36:7c:c4:d9:22:95:f1:79:eb:25:df:7a:cb: 26:90:2e:41:a9:43:f3:c6:16:59:80:e1:8a:07:f8: d5:78:91:11:39:15:04:90:96:24:2f:8d:47:51:d2: 09:d3:fa:0f:bc:ef:29:82:14:cc:d8:b6:3b:80:2c: 40:35:e0:33:eb:08:be:d9:d7:ba:c2:33:fb:68:d6: e9:6d:4f:97:8a:11:6d:f3:ef:e8:d4:ea:9c:be:09: 6e:9e:b8:1f:40:2e:1c:0f:90:a8:23:b6:a3:bc:d0: aa:ec:44:63:e0:c4:d4:de:1f:be:56:5b:98:da:9e: e3:92:75:63:80:8e:85:a1:21:59:13:45:4d:9e:54: 33:f3:da:33:9d:14:69:c4:b3:52:5e:9b:c1:fc:d6: e1:13:07:a6:84:d1:cc:c7:c9:aa:4c:59:4e:90:5f: 3c:9c:c3:67:f1:3c:b5:4d:3f:ec:b6:09:0b:56:65: e4:81:b1:e1:ef:0e:87:ee:12:54:f7:74:05:66:59: 9c:d8:f2:07:c8:39:10:47:f6:27:2c:94:ae:d5:2c: cb:28:62:46:cd:a9:73:ca:a2:cc:b2:7d:af:5d:d4: 5b:1d:86:41:60:26:2b:45:e2:c4:e2:36:21:90:69: fc:61:a6:11:ca:bb:a0:5b:20:a3:76:9e:05:12:18: f3:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:AE:A8:AB:15:37:FA:3A:4C:D9:D0:8B:F9:B7:46:D8:15:44:3D:13 X509v3 Authority Key Identifier: keyid:90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3230342e302f32342d3234203d3e203633363431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.49.204.0/24 Signature Algorithm: sha256WithRSAEncryption dc:a6:27:99:c9:d1:32:b2:e3:0f:44:be:6d:33:d6:8c:ad:44: 8f:76:f2:72:b7:50:4d:b6:56:57:4b:ef:3e:eb:b5:fc:58:2c: a1:54:d7:96:a4:3b:d2:f9:82:42:98:6a:e1:50:2b:3d:8e:1a: 51:37:1c:84:30:0a:60:71:45:5b:21:6c:bd:af:47:aa:e4:e1: 5f:a1:bb:de:29:f5:d5:b0:ec:2e:b0:a9:31:92:3f:9d:86:0a: c9:d4:e5:7e:6f:33:a1:78:04:30:66:a6:37:67:01:85:d3:4c: ce:4c:03:05:14:c7:17:0c:90:97:1f:c1:df:6a:e2:6f:11:85: 6b:34:92:87:f3:38:b7:19:be:38:4b:a4:ef:88:f4:70:e7:e0: 48:a4:9a:e5:d9:d3:51:1e:0d:16:dc:9c:69:d8:ec:b2:a1:20: 1e:f3:a6:04:41:26:be:c0:af:ef:b4:6f:09:7a:6e:21:3d:89: 4d:00:11:b5:0d:5f:da:97:fe:8a:eb:43:70:5e:ff:1c:ef:89: 33:59:b9:7c:eb:0f:c8:6a:bb:32:59:f8:8d:74:ab:5d:08:af: 9c:c4:8b:e8:eb:07:8c:f4:14:79:ab:4d:74:09:51:0e:e0:7d: a8:e0:c1:14:e6:f3:fd:c2:69:d8:83:e3:95:b0:f6:5d:d1:3b: 44:09:94:5e -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUPYm7rWY0NsJprQdlIxy8br76XEwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NF OEUxMjgwQTAeFw0yNjA0MjIxNDEwNDFaFw0yNzA0MjExNDE1NDFaMDMxMTAvBgNV BAMTKDQ2QUVBOEFCMTUzN0ZBM0E0Q0Q5RDA4QkY5Qjc0NkQ4MTU0NDNEMTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkNnzE2SKV8XnrJd96yyaQLkGp Q/PGFlmA4YoH+NV4kRE5FQSQliQvjUdR0gnT+g+87ymCFMzYtjuALEA14DPrCL7Z 17rCM/to1ultT5eKEW3z7+jU6py+CW6euB9ALhwPkKgjtqO80KrsRGPgxNTeH75W W5januOSdWOAjoWhIVkTRU2eVDPz2jOdFGnEs1Jem8H81uETB6aE0czHyapMWU6Q Xzycw2fxPLVNP+y2CQtWZeSBseHvDofuElT3dAVmWZzY8gfIORBH9icslK7VLMso YkbNqXPKosyyfa9d1FsdhkFgJitF4sTiNiGQafxhphHKu6BbIKN2ngUSGPNTAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQURq6oqxU3+jpM2dCL+bdG2BVEPRMwHwYDVR0j BBgwFoAUkJ1VYlGgvl+SNFFAKOvTfOjhKAowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4MjMzMDM0Njc5OTEwNS8wLzkwOUQ1NTYyNTFBMEJFNUY5MjM0NTE0MDI4RUJE MzdDRThFMTI4MEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NFOEUxMjgwQS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU4MjMzMDM0Njc5OTEwNS8wLzMxMzIzMzJlMzQz OTJlMzIzMDM0MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzYzMzM2MzQzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAHsxzDANBgkqhkiG9w0BAQsFAAOCAQEA3KYnmcnRMrLjD0S+bTPWjK1E j3bycrdQTbZWV0vvPuu1/FgsoVTXlqQ70vmCQphq4VArPY4aUTcchDAKYHFFWyFs va9HquThX6G73in11bDsLrCpMZI/nYYKydTlfm8zoXgEMGamN2cBhdNMzkwDBRTH FwyQlx/B32ribxGFazSSh/M4txm+OEuk74j0cOfgSKSa5dnTUR4NFtycadjssqEg HvOmBEEmvsCv77RvCXpuIT2JTQARtQ1f2pf+iutDcF7/HO+JM1m5fOsPyGq7Mln4 jXSrXQivnMSL6OsHjPQUeatNdAlRDuB9qODBFObz/cJp2IPjlbD2XdE7RAmUXg== -----END CERTIFICATE-----Generated at Mon Apr 27 11:06:07 2026 by rpki-client