$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3231342e302f32342d3234203d3e203633363431.roa File: 3132332e34392e3231342e302f32342d3234203d3e203633363431.roa (raw, json) Hash identifier: ZXqsveEbZkGn8OCWVRyeHVFOClBD6oD6G6y8PdTvbSU= Subject key identifier: E8:A0:48:AA:6F:6E:CA:0F:29:C0:7A:81:C9:E5:BE:16:E8:FC:83:77 Certificate issuer: /CN=909D556251A0BE5F9234514028EBD37CE8E1280A Certificate serial: 5BC0FDD1DE095AF5F63FDD7889D433EACB27A99C Authority key identifier: 90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3231342e302f32342d3234203d3e203633363431.roa Signing time: Wed 22 Apr 2026 14:18:31 +0000 ROA not before: Wed 22 Apr 2026 14:13:31 +0000 ROA not after: Wed 21 Apr 2027 14:18:31 +0000 asID: 63641 IP address blocks: 123.49.214.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 10:43:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:c0:fd:d1:de:09:5a:f5:f6:3f:dd:78:89:d4:33:ea:cb:27:a9:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=909D556251A0BE5F9234514028EBD37CE8E1280A Validity Not Before: Apr 22 14:13:31 2026 GMT Not After : Apr 21 14:18:31 2027 GMT Subject: CN=E8A048AA6F6ECA0F29C07A81C9E5BE16E8FC8377 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:78:24:89:76:53:f1:61:fc:e2:fe:5d:96:cc: ca:f2:79:56:65:30:8d:b0:5d:82:71:ab:84:77:4c: 02:f4:d3:ff:4b:40:75:05:52:b3:ee:0c:25:31:c4: 89:75:0e:7a:65:50:be:9a:83:ba:fc:91:8d:29:01: ac:19:8c:0a:0d:14:4b:16:8d:d9:da:69:d8:a5:01: a2:cc:08:05:5e:f8:05:92:dc:cb:42:32:e3:bf:e3: d3:b9:d4:ee:31:50:13:d7:c2:f5:89:47:92:4f:8c: fa:b7:ad:52:75:21:74:c1:ed:62:ef:57:ab:ad:65: 70:56:50:1a:80:7f:4d:22:38:71:8f:1b:de:d0:a8: a6:36:95:fa:cc:da:17:79:36:cf:c4:28:aa:36:e5: a9:94:b9:8d:fe:ef:37:60:c0:03:65:5f:41:cc:72: 68:3d:4d:0f:a2:55:39:4a:91:7b:e4:6e:9e:da:64: fd:d9:86:72:48:0a:bb:89:b9:15:96:a6:8c:ed:4c: 43:44:a9:f7:0a:5d:9e:35:b4:d4:c7:2d:8b:24:9e: 7f:8a:4a:af:ef:07:cc:08:6d:49:bf:93:20:75:d8: 67:d7:8f:e8:49:ce:ef:0e:df:a9:32:b9:42:43:9f: e6:a1:d8:ad:86:b2:c9:3e:6f:8c:d9:69:67:ab:82: c1:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:A0:48:AA:6F:6E:CA:0F:29:C0:7A:81:C9:E5:BE:16:E8:FC:83:77 X509v3 Authority Key Identifier: keyid:90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3231342e302f32342d3234203d3e203633363431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.49.214.0/24 Signature Algorithm: sha256WithRSAEncryption 77:e9:7c:80:e5:e2:a9:12:6d:f0:9d:e8:2b:0f:66:c0:e9:d1: 0a:45:17:df:60:4e:68:b9:66:56:fa:20:11:64:0a:36:6c:5c: 8f:97:0b:7e:1c:69:b1:83:4f:22:6a:a9:21:e7:75:7a:8e:1f: c8:4c:0e:db:4e:ac:b2:db:06:65:27:9f:56:3c:f1:b1:bb:cd: 6e:4d:4c:3d:d2:37:1d:fa:68:b9:a7:11:f6:3b:56:f6:97:5d: 76:c7:24:cc:2d:79:62:2b:45:59:93:a6:7d:76:be:fa:7f:59: 68:bc:89:59:60:06:4c:19:26:dd:c6:e9:c1:85:e0:a9:65:0d: 0d:ce:74:2d:fe:bb:e9:ed:41:2d:da:11:e4:1e:91:3f:32:09: 06:d0:6e:4b:0a:03:21:23:07:5d:2d:b9:d0:62:a5:f4:b0:23: 2d:34:e3:3a:38:b1:da:dd:42:ef:4e:03:c3:af:79:39:15:cb: 99:e5:90:92:73:ac:c5:37:d7:c9:b3:a7:f7:b8:78:a6:b2:aa: 4c:23:9f:f5:a5:14:8f:b9:0c:9c:a4:d4:bd:65:7f:8b:99:2b: 9f:f9:66:82:a9:57:8c:62:42:ad:88:8d:27:3b:38:19:40:e7: 59:10:1d:2b:1c:19:b6:32:10:00:e1:46:25:10:da:9c:cc:66: 88:c7:c3:ab -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUW8D90d4JWvX2P914idQz6ssnqZwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NF OEUxMjgwQTAeFw0yNjA0MjIxNDEzMzFaFw0yNzA0MjExNDE4MzFaMDMxMTAvBgNV BAMTKEU4QTA0OEFBNkY2RUNBMEYyOUMwN0E4MUM5RTVCRTE2RThGQzgzNzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4eCSJdlPxYfzi/l2WzMryeVZl MI2wXYJxq4R3TAL00/9LQHUFUrPuDCUxxIl1DnplUL6ag7r8kY0pAawZjAoNFEsW jdnaadilAaLMCAVe+AWS3MtCMuO/49O51O4xUBPXwvWJR5JPjPq3rVJ1IXTB7WLv V6utZXBWUBqAf00iOHGPG97QqKY2lfrM2hd5Ns/EKKo25amUuY3+7zdgwANlX0HM cmg9TQ+iVTlKkXvkbp7aZP3ZhnJICruJuRWWpoztTENEqfcKXZ41tNTHLYsknn+K Sq/vB8wIbUm/kyB12GfXj+hJzu8O36kyuUJDn+ah2K2Gssk+b4zZaWergsGtAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQU6KBIqm9uyg8pwHqByeW+Fuj8g3cwHwYDVR0j BBgwFoAUkJ1VYlGgvl+SNFFAKOvTfOjhKAowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4MjMzMDM0Njc5OTEwNS8wLzkwOUQ1NTYyNTFBMEJFNUY5MjM0NTE0MDI4RUJE MzdDRThFMTI4MEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NFOEUxMjgwQS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU4MjMzMDM0Njc5OTEwNS8wLzMxMzIzMzJlMzQz OTJlMzIzMTM0MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzYzMzM2MzQzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAHsx1jANBgkqhkiG9w0BAQsFAAOCAQEAd+l8gOXiqRJt8J3oKw9mwOnR CkUX32BOaLlmVvogEWQKNmxcj5cLfhxpsYNPImqpIed1eo4fyEwO206sstsGZSef VjzxsbvNbk1MPdI3HfpouacR9jtW9pdddsckzC15YitFWZOmfXa++n9ZaLyJWWAG TBkm3cbpwYXgqWUNDc50Lf676e1BLdoR5B6RPzIJBtBuSwoDISMHXS250GKl9LAj LTTjOjix2t1C704Dw695ORXLmeWQknOsxTfXybOn97h4prKqTCOf9aUUj7kMnKTU vWV/i5krn/lmgqlXjGJCrYiNJzs4GUDnWRAdKxwZtjIQAOFGJRDanMxmiMfDqw== -----END CERTIFICATE-----Generated at Mon Apr 27 11:06:04 2026 by rpki-client