$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3231352e302f32342d3234203d3e203633363431.roa File: 3132332e34392e3231352e302f32342d3234203d3e203633363431.roa (raw, json) Hash identifier: fjyXP9v/HlRwgQcj1lJ257azsiGYNvOuO8V18hx1Rcs= Subject key identifier: DD:1E:F5:3E:5F:DB:85:56:92:85:DF:86:BD:21:D6:5B:05:78:22:B2 Certificate issuer: /CN=909D556251A0BE5F9234514028EBD37CE8E1280A Certificate serial: 680D42A107E4D03E4CEE71A2B43B379A2A088A64 Authority key identifier: 90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3231352e302f32342d3234203d3e203633363431.roa Signing time: Wed 22 Apr 2026 14:18:48 +0000 ROA not before: Wed 22 Apr 2026 14:13:48 +0000 ROA not after: Wed 21 Apr 2027 14:18:48 +0000 asID: 63641 IP address blocks: 123.49.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 10:43:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:0d:42:a1:07:e4:d0:3e:4c:ee:71:a2:b4:3b:37:9a:2a:08:8a:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=909D556251A0BE5F9234514028EBD37CE8E1280A Validity Not Before: Apr 22 14:13:48 2026 GMT Not After : Apr 21 14:18:48 2027 GMT Subject: CN=DD1EF53E5FDB85569285DF86BD21D65B057822B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:9a:23:7f:80:ca:6f:9f:77:8b:0d:af:7c:48: 18:13:41:45:58:2b:7a:48:10:9b:e9:d8:ba:f8:9d: f9:ec:1f:d1:5c:29:74:75:be:02:fe:f6:c8:f9:29: 91:ba:86:60:da:57:25:7d:84:ca:9e:b7:8e:bd:0d: 87:a1:1f:4b:fb:1c:78:e8:0d:00:1b:e6:89:33:1b: d9:27:76:91:b8:25:69:bc:e4:c4:6a:89:13:c4:87: 53:e7:d6:a1:77:2a:16:d8:27:0f:83:20:fe:2c:4a: c1:e1:d7:49:63:1e:7b:30:20:8f:68:74:a2:c4:d4: 03:ea:cd:53:78:10:1d:77:c0:43:4a:83:5d:ef:6f: 71:8e:ce:37:66:9f:f8:a2:a9:ea:d5:7e:d9:74:02: 2b:06:0b:4d:bd:bf:d5:d6:cf:fe:0e:28:9a:7f:89: 39:28:ba:46:df:7d:09:3e:f7:fc:57:ff:07:0e:59: 1f:51:67:64:4e:3b:6f:d5:65:ff:2e:c1:14:a1:bc: 32:f9:8e:c5:71:ea:d4:9a:df:f7:22:99:77:c8:44: 2b:c8:ef:9f:d1:3e:15:6f:97:e1:fe:a2:62:02:f8: 41:1c:1d:0c:df:5d:30:40:ff:7c:69:8d:28:7e:31: a2:14:d6:65:b8:ed:48:66:bf:36:ab:58:e7:de:b6: 2d:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:1E:F5:3E:5F:DB:85:56:92:85:DF:86:BD:21:D6:5B:05:78:22:B2 X509v3 Authority Key Identifier: keyid:90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3231352e302f32342d3234203d3e203633363431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.49.215.0/24 Signature Algorithm: sha256WithRSAEncryption 61:cd:cb:1c:a0:e0:0f:d6:5b:17:19:52:2e:2e:34:71:55:ce: 80:84:66:71:08:74:a0:ce:66:78:ba:88:e1:db:9b:cb:a7:39: 8b:de:c4:cb:2c:4f:e6:57:ad:bb:4a:11:34:8a:bb:8c:41:08: d8:f3:d5:4a:6e:37:cc:9a:f6:d8:26:eb:7e:1b:f2:c1:35:48: 10:53:e8:bd:02:95:8f:14:4a:f5:73:d4:66:a1:b6:f8:46:1a: be:25:8a:0c:b2:e9:86:a6:4d:86:02:9a:a5:b6:2a:6f:69:f7: f4:3c:6f:54:52:fd:14:43:54:f8:d9:91:e6:07:05:20:b9:dc: ff:30:9f:7a:a2:b9:81:b4:dc:90:4f:cf:62:e7:da:95:95:2d: da:73:45:1c:77:6b:28:4e:53:ff:33:82:4f:94:68:92:71:9e: 53:25:d4:5f:f0:c4:45:09:47:80:55:83:d2:f9:66:33:8e:59: 7d:b1:49:80:ff:77:ea:21:d5:6b:de:79:d8:30:0b:05:5f:b4: 5c:75:6d:b8:c9:29:fc:cf:05:c0:98:c5:bc:08:db:a8:57:b4: 3e:a9:e6:09:bc:b9:59:3f:f6:2c:99:3c:9f:3d:bd:55:8b:3f: 67:43:f3:4a:f2:05:9d:75:54:78:8e:24:4a:fa:87:e5:71:d0: 7e:53:bf:15 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUaA1CoQfk0D5M7nGitDs3mioIimQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NF OEUxMjgwQTAeFw0yNjA0MjIxNDEzNDhaFw0yNzA0MjExNDE4NDhaMDMxMTAvBgNV BAMTKEREMUVGNTNFNUZEQjg1NTY5Mjg1REY4NkJEMjFENjVCMDU3ODIyQjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBmiN/gMpvn3eLDa98SBgTQUVY K3pIEJvp2Lr4nfnsH9FcKXR1vgL+9sj5KZG6hmDaVyV9hMqet469DYehH0v7HHjo DQAb5okzG9kndpG4JWm85MRqiRPEh1Pn1qF3KhbYJw+DIP4sSsHh10ljHnswII9o dKLE1APqzVN4EB13wENKg13vb3GOzjdmn/iiqerVftl0AisGC029v9XWz/4OKJp/ iTkoukbffQk+9/xX/wcOWR9RZ2ROO2/VZf8uwRShvDL5jsVx6tSa3/cimXfIRCvI 75/RPhVvl+H+omIC+EEcHQzfXTBA/3xpjSh+MaIU1mW47UhmvzarWOfeti2dAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQU3R71Pl/bhVaShd+GvSHWWwV4IrIwHwYDVR0j BBgwFoAUkJ1VYlGgvl+SNFFAKOvTfOjhKAowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4MjMzMDM0Njc5OTEwNS8wLzkwOUQ1NTYyNTFBMEJFNUY5MjM0NTE0MDI4RUJE MzdDRThFMTI4MEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NFOEUxMjgwQS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU4MjMzMDM0Njc5OTEwNS8wLzMxMzIzMzJlMzQz OTJlMzIzMTM1MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzYzMzM2MzQzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAHsx1zANBgkqhkiG9w0BAQsFAAOCAQEAYc3LHKDgD9ZbFxlSLi40cVXO gIRmcQh0oM5meLqI4duby6c5i97EyyxP5letu0oRNIq7jEEI2PPVSm43zJr22Cbr fhvywTVIEFPovQKVjxRK9XPUZqG2+EYaviWKDLLphqZNhgKapbYqb2n39DxvVFL9 FENU+NmR5gcFILnc/zCfeqK5gbTckE/PYufalZUt2nNFHHdrKE5T/zOCT5RoknGe UyXUX/DERQlHgFWD0vlmM45ZfbFJgP936iHVa9552DALBV+0XHVtuMkp/M8FwJjF vAjbqFe0PqnmCby5WT/2LJk8nz29VYs/Z0PzSvIFnXVUeI4kSvqH5XHQflO/FQ== -----END CERTIFICATE-----Generated at Mon Apr 27 11:06:37 2026 by rpki-client