$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3231362e302f32342d3234203d3e203633363431.roa File: 3132332e34392e3231362e302f32342d3234203d3e203633363431.roa (raw, json) Hash identifier: Nn6AwP+Ov+ZSLZQ+heOUOcHhzc0iSdpSpdZ0Ckpqq1M= Subject key identifier: 06:61:50:98:2F:85:23:F6:B3:D5:4A:4F:29:45:1F:EF:54:6B:BE:96 Certificate issuer: /CN=909D556251A0BE5F9234514028EBD37CE8E1280A Certificate serial: 5E785F144E976E86E526AF49E7559C59687269B9 Authority key identifier: 90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3231362e302f32342d3234203d3e203633363431.roa Signing time: Wed 22 Apr 2026 14:19:04 +0000 ROA not before: Wed 22 Apr 2026 14:14:04 +0000 ROA not after: Wed 21 Apr 2027 14:19:04 +0000 asID: 63641 IP address blocks: 123.49.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 10:43:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:78:5f:14:4e:97:6e:86:e5:26:af:49:e7:55:9c:59:68:72:69:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=909D556251A0BE5F9234514028EBD37CE8E1280A Validity Not Before: Apr 22 14:14:04 2026 GMT Not After : Apr 21 14:19:04 2027 GMT Subject: CN=066150982F8523F6B3D54A4F29451FEF546BBE96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:d0:5f:fe:29:f6:1f:0b:3c:2f:18:f1:72:86: bb:1d:15:ca:1e:6e:42:e3:df:07:bc:03:9b:60:28: 44:09:49:a6:47:fd:50:07:30:14:d2:00:9c:a9:26: c0:03:cf:e0:57:67:c6:c0:86:db:25:ad:5c:92:d6: 3b:a6:09:ea:87:5c:54:99:6a:ee:5f:a7:d1:ed:39: 99:ca:86:9f:69:8a:52:6e:f7:3d:7a:f3:0f:0f:ca: 90:18:cb:1c:3e:0b:d6:fb:4b:93:e3:20:b0:d9:b5: 55:84:4d:5d:f3:cc:ab:5b:4d:cb:fe:e8:01:1b:10: 51:73:90:9d:b2:88:72:73:53:1f:f1:6e:5a:a5:08: 81:c0:39:8e:a8:cc:cf:43:dc:d5:11:32:98:92:36: 9b:7e:bf:91:67:40:7d:75:c3:2b:5a:b2:20:58:9d: f4:d2:01:d0:7b:76:36:d3:6a:de:2c:72:e6:c5:81: fd:2d:e9:1b:15:4a:cb:ae:27:ea:e7:23:69:29:8f: 05:25:b3:d3:97:bd:ce:56:5f:1d:79:1b:6b:0f:05: 7d:98:de:33:b5:cc:95:0f:3a:b0:92:c6:b1:49:ea: 78:dd:0e:03:40:f1:4f:84:91:88:76:6b:fb:87:16: 59:da:ed:8b:7e:09:f1:a8:f8:be:3f:0a:50:a0:a0: d0:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:61:50:98:2F:85:23:F6:B3:D5:4A:4F:29:45:1F:EF:54:6B:BE:96 X509v3 Authority Key Identifier: keyid:90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3231362e302f32342d3234203d3e203633363431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.49.216.0/24 Signature Algorithm: sha256WithRSAEncryption 98:8e:81:6f:29:3b:57:fc:29:fc:d5:a2:ec:40:f5:17:2d:56: e5:9c:15:21:e3:ad:2f:66:93:b5:f4:d1:91:01:f7:30:b3:27: 6b:17:ee:f6:3b:8c:78:40:75:95:e8:17:b4:41:df:32:83:4f: d1:13:70:33:31:fc:da:d3:5d:46:00:f8:30:b0:ab:0a:07:d1: 95:fb:10:96:03:74:37:78:44:23:02:77:7b:c9:1b:1c:ee:cf: 8d:8a:e9:0b:7f:5f:cd:0e:09:0d:f4:9e:d6:98:a5:1b:4e:20: ed:db:46:0c:9d:61:3d:f3:32:71:b0:12:d1:53:2e:b1:36:03: 4d:b3:c2:16:73:e0:c7:55:0f:4e:6b:8c:6c:19:94:0a:c3:2b: 38:3e:06:9d:28:bd:76:9f:af:11:54:e9:55:d6:fb:91:10:52: 29:ef:fd:72:c3:b5:21:c5:9c:35:55:de:bf:f6:e1:e8:3c:b2: 8f:dc:30:14:23:7c:f8:2a:89:f5:70:a8:95:ad:c8:f0:3b:85: a0:55:96:03:04:b0:b7:6b:75:68:8c:95:83:c4:1a:3d:71:0d: 68:c5:21:72:50:22:bf:c9:93:67:70:12:d8:50:50:9a:07:b6: 86:8a:19:33:86:ad:21:cc:bc:e7:f5:02:fe:8c:1d:41:64:da: 10:51:38:1a -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUXnhfFE6XboblJq9J51WcWWhyabkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NF OEUxMjgwQTAeFw0yNjA0MjIxNDE0MDRaFw0yNzA0MjExNDE5MDRaMDMxMTAvBgNV BAMTKDA2NjE1MDk4MkY4NTIzRjZCM0Q1NEE0RjI5NDUxRkVGNTQ2QkJFOTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDS0F/+KfYfCzwvGPFyhrsdFcoe bkLj3we8A5tgKEQJSaZH/VAHMBTSAJypJsADz+BXZ8bAhtslrVyS1jumCeqHXFSZ au5fp9HtOZnKhp9pilJu9z168w8PypAYyxw+C9b7S5PjILDZtVWETV3zzKtbTcv+ 6AEbEFFzkJ2yiHJzUx/xblqlCIHAOY6ozM9D3NURMpiSNpt+v5FnQH11wytasiBY nfTSAdB7djbTat4scubFgf0t6RsVSsuuJ+rnI2kpjwUls9OXvc5WXx15G2sPBX2Y 3jO1zJUPOrCSxrFJ6njdDgNA8U+EkYh2a/uHFlna7Yt+CfGo+L4/ClCgoND1AgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUBmFQmC+FI/az1UpPKUUf71RrvpYwHwYDVR0j BBgwFoAUkJ1VYlGgvl+SNFFAKOvTfOjhKAowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4MjMzMDM0Njc5OTEwNS8wLzkwOUQ1NTYyNTFBMEJFNUY5MjM0NTE0MDI4RUJE MzdDRThFMTI4MEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NFOEUxMjgwQS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU4MjMzMDM0Njc5OTEwNS8wLzMxMzIzMzJlMzQz OTJlMzIzMTM2MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzYzMzM2MzQzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAHsx2DANBgkqhkiG9w0BAQsFAAOCAQEAmI6Bbyk7V/wp/NWi7ED1Fy1W 5ZwVIeOtL2aTtfTRkQH3MLMnaxfu9juMeEB1legXtEHfMoNP0RNwMzH82tNdRgD4 MLCrCgfRlfsQlgN0N3hEIwJ3e8kbHO7PjYrpC39fzQ4JDfSe1pilG04g7dtGDJ1h PfMycbAS0VMusTYDTbPCFnPgx1UPTmuMbBmUCsMrOD4GnSi9dp+vEVTpVdb7kRBS Ke/9csO1IcWcNVXev/bh6Dyyj9wwFCN8+CqJ9XCola3I8DuFoFWWAwSwt2t1aIyV g8QaPXENaMUhclAiv8mTZ3AS2FBQmge2hooZM4atIcy85/UC/owdQWTaEFE4Gg== -----END CERTIFICATE-----Generated at Mon Apr 27 11:06:44 2026 by rpki-client