$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3230372e302f32342d3234203d3e203633363431.roa File: 3132332e34392e3230372e302f32342d3234203d3e203633363431.roa (raw, json) Hash identifier: RlranR40wbvt2+OaOkp3rT4sRGa/xBWSVYls2Rp30hI= Subject key identifier: 11:D3:55:D7:13:47:7E:6D:79:87:0A:86:9D:43:9A:FD:F6:84:52:87 Certificate issuer: /CN=909D556251A0BE5F9234514028EBD37CE8E1280A Certificate serial: 1BEFED97EE85C872C93C0FD03186E8E2897A78B5 Authority key identifier: 90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3230372e302f32342d3234203d3e203633363431.roa Signing time: Wed 22 Apr 2026 14:16:30 +0000 ROA not before: Wed 22 Apr 2026 14:11:30 +0000 ROA not after: Wed 21 Apr 2027 14:16:30 +0000 asID: 63641 IP address blocks: 123.49.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 10:43:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:ef:ed:97:ee:85:c8:72:c9:3c:0f:d0:31:86:e8:e2:89:7a:78:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=909D556251A0BE5F9234514028EBD37CE8E1280A Validity Not Before: Apr 22 14:11:30 2026 GMT Not After : Apr 21 14:16:30 2027 GMT Subject: CN=11D355D713477E6D79870A869D439AFDF6845287 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:4a:59:e4:ce:3d:8a:01:d5:e2:b4:63:19:70: c8:24:bf:21:13:98:8a:be:74:25:04:84:15:e5:e6: 2a:c9:93:ce:c4:68:11:6b:40:5e:90:b3:3a:b5:80: 3a:d1:00:74:70:d0:47:8a:6a:f2:4b:d1:d7:1c:63: 79:4e:13:94:79:0e:47:43:5a:b4:b6:2e:f0:c7:ae: e8:25:4b:dd:31:67:3f:31:44:1a:64:cc:f8:8a:be: 08:b0:f5:05:bb:22:ec:6d:94:ad:ec:09:53:90:70: a2:da:fd:d1:56:8a:08:71:47:41:bc:56:f5:82:64: 5a:a8:a7:b5:33:98:97:4f:02:90:12:91:18:6a:8e: de:54:8f:e7:3e:0a:f7:80:a5:b5:92:ce:85:9d:cc: c1:4a:4f:b3:e0:74:b3:d1:6b:e6:53:4d:9e:c6:d9: fe:47:16:fd:2a:67:11:62:fe:45:a3:b0:76:59:fd: 35:0b:b1:58:95:64:84:43:97:7b:4b:d5:09:5b:f1: ae:5f:1e:cf:53:26:55:73:f8:d3:56:d9:0f:d9:fa: f3:63:f1:70:4a:87:8f:93:71:3d:40:7e:3e:df:97: 90:6b:df:4f:06:19:6c:eb:59:8a:fd:58:db:f5:c2: 33:4f:de:9c:f2:59:d4:7c:71:74:9c:3d:8d:5b:0a: df:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:D3:55:D7:13:47:7E:6D:79:87:0A:86:9D:43:9A:FD:F6:84:52:87 X509v3 Authority Key Identifier: keyid:90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3230372e302f32342d3234203d3e203633363431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.49.207.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:94:fc:e6:7a:6d:06:52:5b:4e:6c:ed:22:fb:b1:c2:39:ba: b6:21:84:52:f0:43:78:81:d8:7e:98:cd:7c:36:c2:43:70:ad: ff:a0:bf:ea:6e:b3:cc:b0:e6:d8:75:db:ba:e6:f0:54:22:63: cb:b9:f7:f2:9c:8b:52:b4:ee:a1:55:4c:b3:22:88:d5:c6:7b: c9:35:9b:20:2e:85:de:ed:ef:81:4a:8d:ee:49:60:80:79:32: 3a:fe:38:27:37:36:66:64:05:52:8a:82:bf:28:82:e4:80:ed: 76:a4:c2:16:76:23:75:1d:03:47:da:2d:8a:57:a5:1d:32:08: 2d:f9:14:1a:34:bd:2c:3c:88:8a:eb:91:ba:84:54:a4:d1:3b: 0a:ec:32:26:6e:00:93:7e:67:56:bb:e8:d4:9c:09:0c:18:23: d5:ef:7c:ea:7d:0f:ff:a1:d1:d4:af:fc:ce:a4:76:5e:fa:e7: 6f:18:f9:f0:d2:f5:42:c5:aa:d6:7e:79:22:a8:08:cd:39:9c: bd:78:ac:7c:1e:e7:81:78:03:94:43:df:95:1c:ca:7b:2a:ec: e8:17:1a:80:a9:2f:fd:05:6f:59:42:ed:e5:ee:e3:ef:35:20: 97:16:59:48:96:98:28:00:3a:f2:7d:99:92:2a:83:63:42:2f: ba:fd:1d:8c -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUG+/tl+6FyHLJPA/QMYbo4ol6eLUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NF OEUxMjgwQTAeFw0yNjA0MjIxNDExMzBaFw0yNzA0MjExNDE2MzBaMDMxMTAvBgNV BAMTKDExRDM1NUQ3MTM0NzdFNkQ3OTg3MEE4NjlENDM5QUZERjY4NDUyODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWSlnkzj2KAdXitGMZcMgkvyET mIq+dCUEhBXl5irJk87EaBFrQF6Qszq1gDrRAHRw0EeKavJL0dccY3lOE5R5DkdD WrS2LvDHruglS90xZz8xRBpkzPiKvgiw9QW7IuxtlK3sCVOQcKLa/dFWighxR0G8 VvWCZFqop7UzmJdPApASkRhqjt5Uj+c+CveApbWSzoWdzMFKT7PgdLPRa+ZTTZ7G 2f5HFv0qZxFi/kWjsHZZ/TULsViVZIRDl3tL1Qlb8a5fHs9TJlVz+NNW2Q/Z+vNj 8XBKh4+TcT1Afj7fl5Br308GGWzrWYr9WNv1wjNP3pzyWdR8cXScPY1bCt9DAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUEdNV1xNHfm15hwqGnUOa/faEUocwHwYDVR0j BBgwFoAUkJ1VYlGgvl+SNFFAKOvTfOjhKAowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4MjMzMDM0Njc5OTEwNS8wLzkwOUQ1NTYyNTFBMEJFNUY5MjM0NTE0MDI4RUJE MzdDRThFMTI4MEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NFOEUxMjgwQS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU4MjMzMDM0Njc5OTEwNS8wLzMxMzIzMzJlMzQz OTJlMzIzMDM3MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzYzMzM2MzQzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAHsxzzANBgkqhkiG9w0BAQsFAAOCAQEAf5T85nptBlJbTmztIvuxwjm6 tiGEUvBDeIHYfpjNfDbCQ3Ct/6C/6m6zzLDm2HXbuubwVCJjy7n38pyLUrTuoVVM syKI1cZ7yTWbIC6F3u3vgUqN7klggHkyOv44Jzc2ZmQFUoqCvyiC5IDtdqTCFnYj dR0DR9otilelHTIILfkUGjS9LDyIiuuRuoRUpNE7CuwyJm4Ak35nVrvo1JwJDBgj 1e986n0P/6HR1K/8zqR2Xvrnbxj58NL1QsWq1n55IqgIzTmcvXisfB7ngXgDlEPf lRzKeyrs6BcagKkv/QVvWULt5e7j7zUglxZZSJaYKAA68n2ZkiqDY0Ivuv0djA== -----END CERTIFICATE-----Generated at Mon Apr 27 11:06:08 2026 by rpki-client