$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3231382e302f32342d3234203d3e203633363431.roa File: 3132332e34392e3231382e302f32342d3234203d3e203633363431.roa (raw, json) Hash identifier: 8c1bu0UWzEWk4Dez8fhnRM+K0a1ytHbEyUn9spv1k7E= Subject key identifier: CF:DC:2C:02:65:40:20:26:C0:83:D7:65:4F:93:27:3A:6C:EB:7C:1E Certificate issuer: /CN=909D556251A0BE5F9234514028EBD37CE8E1280A Certificate serial: 35AEF921A49E2E104F053C559B86CADB2EDA2BAA Authority key identifier: 90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3231382e302f32342d3234203d3e203633363431.roa Signing time: Wed 22 Apr 2026 14:19:41 +0000 ROA not before: Wed 22 Apr 2026 14:14:41 +0000 ROA not after: Wed 21 Apr 2027 14:19:41 +0000 asID: 63641 IP address blocks: 123.49.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 10:43:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:ae:f9:21:a4:9e:2e:10:4f:05:3c:55:9b:86:ca:db:2e:da:2b:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=909D556251A0BE5F9234514028EBD37CE8E1280A Validity Not Before: Apr 22 14:14:41 2026 GMT Not After : Apr 21 14:19:41 2027 GMT Subject: CN=CFDC2C0265402026C083D7654F93273A6CEB7C1E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:74:cd:ec:83:01:a6:9d:7d:7e:97:90:2c:eb: ad:fd:13:10:79:b9:e0:14:b1:ca:3a:37:d1:bc:07: 1a:84:b5:42:4d:6f:d1:fc:1f:aa:4e:c4:07:3c:0d: d1:94:7b:e1:48:66:cd:a6:e3:ba:4a:ec:fc:08:3a: e5:e0:84:90:4e:1d:bc:db:6b:02:ce:ce:4a:9a:d1: e4:02:7f:ea:72:1b:b8:12:09:1a:04:ce:89:21:1d: 5b:e2:b1:51:fd:93:9c:18:e9:b3:23:2b:a8:e2:f0: a2:38:50:67:5d:b3:6e:2f:b7:e8:c7:f0:78:3f:21: 23:a6:51:a6:00:15:4e:3b:83:cd:bf:f6:1f:a4:29: 25:18:07:8d:5d:9e:02:1c:0d:73:46:50:ff:f6:c0: 4a:0f:45:fc:ea:5b:fb:32:7b:76:b7:c1:3b:02:ca: 31:2a:f3:4e:af:bb:3b:60:40:d4:64:f7:1a:4b:a2: fd:8f:c4:0b:c4:d5:98:2e:a4:2d:de:8c:35:5a:d2: 3f:37:78:68:49:58:e6:ad:57:ef:45:7a:27:43:f4: 35:86:82:ca:07:38:7d:9b:3f:b9:ab:e7:c3:32:db: c2:06:a4:9c:2a:6c:21:09:5b:b6:c4:c1:f8:f6:73: 14:69:f9:03:3b:91:00:44:d0:f4:9b:52:dd:66:a6: 26:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:DC:2C:02:65:40:20:26:C0:83:D7:65:4F:93:27:3A:6C:EB:7C:1E X509v3 Authority Key Identifier: keyid:90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3231382e302f32342d3234203d3e203633363431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.49.218.0/24 Signature Algorithm: sha256WithRSAEncryption 11:35:1c:0f:60:f3:1a:5b:6b:8b:72:ba:68:1f:ca:28:fd:9e: 39:c5:1d:98:cf:32:1f:4c:3f:ec:e2:75:2f:a7:a1:29:12:bd: 51:bd:e3:ae:f5:f7:1c:96:66:ea:6d:a6:94:0b:31:85:07:53: 82:c9:58:78:e7:99:ca:75:8f:5b:98:45:8c:08:fc:b1:76:b6: f9:98:94:5f:ae:02:4e:50:b0:5d:35:1e:27:6f:af:ba:8b:2c: f8:b2:b5:09:c4:22:8b:ba:67:8a:ee:50:f9:8b:d5:80:b1:b4: 2f:96:10:3c:9b:02:7a:a3:04:75:70:6c:64:68:dd:e5:21:41: 72:12:97:fa:db:46:e3:85:f2:fc:8c:a2:43:47:25:b5:db:91: 82:79:75:03:b4:e9:b4:49:9a:3e:2b:d4:a1:95:ae:c5:3b:71: a3:d5:85:b7:22:c4:37:0a:f0:ad:f1:b8:69:38:e0:00:f4:d0: 2b:a2:d5:2c:a2:9c:bb:38:d4:ec:69:76:cf:17:ec:a4:17:b2: a6:83:b5:f0:43:ce:38:a7:6f:f7:24:5e:4d:d7:20:21:5b:16: b4:11:02:57:e9:d1:04:c8:92:28:04:a3:40:87:60:ea:93:11: 04:28:0c:7d:c8:ec:5d:ca:f1:6a:10:78:95:8c:3a:e1:78:d5: 16:d2:a5:51 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUNa75IaSeLhBPBTxVm4bK2y7aK6owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NF OEUxMjgwQTAeFw0yNjA0MjIxNDE0NDFaFw0yNzA0MjExNDE5NDFaMDMxMTAvBgNV BAMTKENGREMyQzAyNjU0MDIwMjZDMDgzRDc2NTRGOTMyNzNBNkNFQjdDMUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbdM3sgwGmnX1+l5As6639ExB5 ueAUsco6N9G8BxqEtUJNb9H8H6pOxAc8DdGUe+FIZs2m47pK7PwIOuXghJBOHbzb awLOzkqa0eQCf+pyG7gSCRoEzokhHVvisVH9k5wY6bMjK6ji8KI4UGdds24vt+jH 8Hg/ISOmUaYAFU47g82/9h+kKSUYB41dngIcDXNGUP/2wEoPRfzqW/sye3a3wTsC yjEq806vuztgQNRk9xpLov2PxAvE1ZgupC3ejDVa0j83eGhJWOatV+9FeidD9DWG gsoHOH2bP7mr58My28IGpJwqbCEJW7bEwfj2cxRp+QM7kQBE0PSbUt1mpiYDAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUz9wsAmVAICbAg9dlT5MnOmzrfB4wHwYDVR0j BBgwFoAUkJ1VYlGgvl+SNFFAKOvTfOjhKAowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4MjMzMDM0Njc5OTEwNS8wLzkwOUQ1NTYyNTFBMEJFNUY5MjM0NTE0MDI4RUJE MzdDRThFMTI4MEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NFOEUxMjgwQS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU4MjMzMDM0Njc5OTEwNS8wLzMxMzIzMzJlMzQz OTJlMzIzMTM4MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzYzMzM2MzQzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAHsx2jANBgkqhkiG9w0BAQsFAAOCAQEAETUcD2DzGltri3K6aB/KKP2e OcUdmM8yH0w/7OJ1L6ehKRK9Ub3jrvX3HJZm6m2mlAsxhQdTgslYeOeZynWPW5hF jAj8sXa2+ZiUX64CTlCwXTUeJ2+vuoss+LK1CcQii7pniu5Q+YvVgLG0L5YQPJsC eqMEdXBsZGjd5SFBchKX+ttG44Xy/IyiQ0cltduRgnl1A7TptEmaPivUoZWuxTtx o9WFtyLENwrwrfG4aTjgAPTQK6LVLKKcuzjU7Gl2zxfspBeypoO18EPOOKdv9yRe TdcgIVsWtBECV+nRBMiSKASjQIdg6pMRBCgMfcjsXcrxahB4lYw64XjVFtKlUQ== -----END CERTIFICATE-----Generated at Mon Apr 27 11:06:38 2026 by rpki-client