$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3231312e302f32342d3234203d3e203633363431.roa File: 3132332e34392e3231312e302f32342d3234203d3e203633363431.roa (raw, json) Hash identifier: 5GT8hSh0PuTjY9zX+FqybF3k9DTM24R9tvwsc1D6rtg= Subject key identifier: 48:B8:BB:5E:96:89:EE:72:4A:84:17:D6:20:A7:78:F7:E5:11:BA:41 Certificate issuer: /CN=909D556251A0BE5F9234514028EBD37CE8E1280A Certificate serial: 765707F99098E9843DEB4DCDB225E58724807DB4 Authority key identifier: 90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3231312e302f32342d3234203d3e203633363431.roa Signing time: Wed 22 Apr 2026 14:17:38 +0000 ROA not before: Wed 22 Apr 2026 14:12:38 +0000 ROA not after: Wed 21 Apr 2027 14:17:38 +0000 asID: 63641 IP address blocks: 123.49.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 10:43:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:57:07:f9:90:98:e9:84:3d:eb:4d:cd:b2:25:e5:87:24:80:7d:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=909D556251A0BE5F9234514028EBD37CE8E1280A Validity Not Before: Apr 22 14:12:38 2026 GMT Not After : Apr 21 14:17:38 2027 GMT Subject: CN=48B8BB5E9689EE724A8417D620A778F7E511BA41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:f1:49:1a:90:cd:9c:1a:8b:3f:23:a0:00:55: 63:9c:95:13:1a:47:fd:a5:88:c6:92:a5:88:3f:bb: 68:5a:29:0c:ff:3a:bc:67:80:35:97:c8:d4:28:b2: e5:a2:1d:0c:f0:c7:48:87:6f:85:66:b7:a0:24:a9: 02:ce:6b:71:76:01:ed:a9:ad:c3:d9:09:eb:21:92: af:74:fe:24:dc:72:d0:1b:2a:c9:a5:73:4d:33:5d: e0:5f:3f:33:71:7f:36:72:a7:f9:e2:ec:6f:ec:b2: 2e:12:f5:dc:83:6e:4b:b6:02:d0:68:55:83:4b:47: 02:9d:b5:cb:40:75:ea:ce:2c:e0:e4:0b:70:63:5e: a1:e9:34:58:b3:f1:9a:cd:b6:f2:0d:4b:2f:92:f3: ff:8f:d1:f4:dd:71:f8:b4:5e:02:dd:b5:87:0b:e1: 58:78:c4:07:94:18:d4:11:c7:90:78:f9:ae:55:13: 7c:ae:1c:88:cb:d3:39:fe:c9:47:f0:ba:cf:a7:bb: 99:30:55:a9:97:00:ad:c5:f5:62:6b:9b:c6:dd:29: 1f:b7:af:e7:e1:08:cd:03:e3:b0:1f:7c:0f:ad:27: 32:9c:5e:5d:a3:c3:46:89:86:7c:df:1b:9b:ce:8b: fb:df:11:00:50:eb:50:18:7b:60:3d:17:91:ba:58: c6:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:B8:BB:5E:96:89:EE:72:4A:84:17:D6:20:A7:78:F7:E5:11:BA:41 X509v3 Authority Key Identifier: keyid:90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3231312e302f32342d3234203d3e203633363431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.49.211.0/24 Signature Algorithm: sha256WithRSAEncryption e9:4c:52:08:29:b7:6d:b0:fb:1b:4c:c7:91:f6:b8:b8:98:6d: 35:c1:56:aa:cf:28:61:88:7e:7c:82:a4:d4:5b:e6:d3:e7:35: 73:a8:08:36:92:6e:2c:52:44:df:a0:95:e5:3c:65:41:07:fa: 2a:d0:e0:5d:32:ea:20:e5:40:bb:24:9b:fd:5e:41:c3:c1:0a: fd:62:69:43:58:5f:0a:72:66:37:4f:e3:16:f4:49:bb:0b:82: fb:ca:9c:53:df:36:76:92:78:85:8a:0c:c7:4f:78:70:69:f0: 24:cf:9e:08:df:28:cc:88:f8:1d:ef:ea:f4:a6:8d:95:f4:e9: 95:89:02:e0:60:92:b0:db:99:2c:15:60:ee:73:0f:75:f4:99: b0:4d:40:df:c7:60:0e:91:f6:39:50:31:a3:42:e2:08:2f:ca: e4:3b:8b:c2:28:d8:2f:35:f2:18:3a:88:06:c8:a2:6c:6e:30: ed:95:37:1e:ae:fa:89:d0:06:75:51:3a:60:2d:2b:18:90:93: e4:26:37:b4:f1:e2:19:6e:c1:54:cb:13:ce:9b:75:29:2f:c3: bf:9a:d1:47:76:c2:d7:5b:68:eb:ed:cc:17:d8:19:c7:cd:1a: f8:73:eb:e9:ba:12:75:d6:de:5d:b7:dd:c1:e3:8e:f9:85:ce: 04:cf:b6:4a -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUdlcH+ZCY6YQ9603NsiXlhySAfbQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NF OEUxMjgwQTAeFw0yNjA0MjIxNDEyMzhaFw0yNzA0MjExNDE3MzhaMDMxMTAvBgNV BAMTKDQ4QjhCQjVFOTY4OUVFNzI0QTg0MTdENjIwQTc3OEY3RTUxMUJBNDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCd8UkakM2cGos/I6AAVWOclRMa R/2liMaSpYg/u2haKQz/OrxngDWXyNQosuWiHQzwx0iHb4Vmt6AkqQLOa3F2Ae2p rcPZCeshkq90/iTcctAbKsmlc00zXeBfPzNxfzZyp/ni7G/ssi4S9dyDbku2AtBo VYNLRwKdtctAderOLODkC3BjXqHpNFiz8ZrNtvINSy+S8/+P0fTdcfi0XgLdtYcL 4Vh4xAeUGNQRx5B4+a5VE3yuHIjL0zn+yUfwus+nu5kwVamXAK3F9WJrm8bdKR+3 r+fhCM0D47AffA+tJzKcXl2jw0aJhnzfG5vOi/vfEQBQ61AYe2A9F5G6WMbXAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUSLi7XpaJ7nJKhBfWIKd49+URukEwHwYDVR0j BBgwFoAUkJ1VYlGgvl+SNFFAKOvTfOjhKAowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4MjMzMDM0Njc5OTEwNS8wLzkwOUQ1NTYyNTFBMEJFNUY5MjM0NTE0MDI4RUJE MzdDRThFMTI4MEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NFOEUxMjgwQS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU4MjMzMDM0Njc5OTEwNS8wLzMxMzIzMzJlMzQz OTJlMzIzMTMxMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzYzMzM2MzQzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAHsx0zANBgkqhkiG9w0BAQsFAAOCAQEA6UxSCCm3bbD7G0zHkfa4uJht NcFWqs8oYYh+fIKk1Fvm0+c1c6gINpJuLFJE36CV5TxlQQf6KtDgXTLqIOVAuySb /V5Bw8EK/WJpQ1hfCnJmN0/jFvRJuwuC+8qcU982dpJ4hYoMx094cGnwJM+eCN8o zIj4He/q9KaNlfTplYkC4GCSsNuZLBVg7nMPdfSZsE1A38dgDpH2OVAxo0LiCC/K 5DuLwijYLzXyGDqIBsiibG4w7ZU3Hq76idAGdVE6YC0rGJCT5CY3tPHiGW7BVMsT zpt1KS/Dv5rRR3bC11to6+3MF9gZx80a+HPr6boSddbeXbfdweOO+YXOBM+2Sg== -----END CERTIFICATE-----Generated at Mon Apr 27 11:06:39 2026 by rpki-client