$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3231392e302f32342d3234203d3e203633363431.roa File: 3132332e34392e3231392e302f32342d3234203d3e203633363431.roa (raw, json) Hash identifier: nuaXH4qlPhkPiPplj3F6BX/oQ9MnkxxjR0czIWSR8co= Subject key identifier: A3:C5:8A:56:A8:1B:92:1A:4C:06:7C:6C:88:2A:4A:6E:D7:DA:8F:81 Certificate issuer: /CN=909D556251A0BE5F9234514028EBD37CE8E1280A Certificate serial: 055D52B88357FC6C86676937667D14D2028B7994 Authority key identifier: 90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3231392e302f32342d3234203d3e203633363431.roa Signing time: Wed 22 Apr 2026 14:20:07 +0000 ROA not before: Wed 22 Apr 2026 14:15:07 +0000 ROA not after: Wed 21 Apr 2027 14:20:07 +0000 asID: 63641 IP address blocks: 123.49.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 10:43:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:5d:52:b8:83:57:fc:6c:86:67:69:37:66:7d:14:d2:02:8b:79:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=909D556251A0BE5F9234514028EBD37CE8E1280A Validity Not Before: Apr 22 14:15:07 2026 GMT Not After : Apr 21 14:20:07 2027 GMT Subject: CN=A3C58A56A81B921A4C067C6C882A4A6ED7DA8F81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:48:5a:29:f8:e1:62:8f:96:9d:be:50:c3:4b: 43:dd:b4:93:c3:41:26:ca:df:0c:93:60:eb:51:ce: a4:14:4f:ae:54:3c:5b:af:00:cb:8f:40:6f:a3:bd: 50:ce:40:a7:52:5c:07:ab:c7:be:9d:88:10:fe:1e: 84:73:ec:b5:ed:c0:98:b9:c7:3e:74:8c:00:99:42: 62:de:55:46:78:d3:d1:00:42:02:ce:04:2a:6f:f0: d0:97:f1:e4:22:be:1f:f8:fe:3c:ae:e5:d4:1e:5d: 14:27:b4:9f:ed:13:f8:34:38:87:41:9b:f7:01:fe: 33:b3:14:44:c3:d5:28:f4:84:74:6d:25:75:22:d9: 62:65:80:3e:80:24:47:9a:c9:37:d0:fd:10:1b:d1: fa:9e:15:cf:23:54:3f:c4:60:0f:bd:42:4c:65:c5: e1:8d:d3:fe:7c:b3:af:e8:fe:e3:cd:2c:24:c6:a7: fe:a5:e2:21:bd:c4:57:d7:08:3d:1b:2e:f4:90:a5: 30:6b:77:9a:8f:3d:3e:7b:67:99:af:08:56:33:c6: bd:fe:f6:ce:83:a6:5d:75:bd:b8:3f:77:b4:91:09: 24:4e:90:2c:8d:f2:86:11:c6:df:5a:0e:15:d3:21: e2:94:20:3f:d7:0c:23:df:74:b9:f1:01:09:7c:91: d2:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:C5:8A:56:A8:1B:92:1A:4C:06:7C:6C:88:2A:4A:6E:D7:DA:8F:81 X509v3 Authority Key Identifier: keyid:90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3231392e302f32342d3234203d3e203633363431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.49.219.0/24 Signature Algorithm: sha256WithRSAEncryption b2:44:70:84:4e:d8:25:0a:7a:f1:41:5a:3a:87:48:fc:bc:af: c1:d3:6b:21:ff:fa:4f:5f:c1:d8:78:7b:72:95:3a:38:37:44: 18:90:c6:5e:f5:07:9c:d6:a0:90:ad:ab:e2:d9:eb:10:9f:cf: 74:ac:73:6a:dc:e4:ca:8e:33:ab:2f:fb:0e:42:08:54:6a:a7: 9e:b5:56:09:ea:46:91:30:1e:4f:46:6c:c4:37:82:3d:9a:e5: ab:23:e2:be:f9:ef:b2:92:d8:f2:07:cf:24:81:23:64:79:3a: 8f:27:e8:fa:a0:a1:44:46:32:2d:66:3c:5e:e2:21:5d:1a:d5: fe:ae:9c:2f:f8:4b:fb:95:51:10:fc:bd:da:03:75:42:6f:ae: e8:49:81:5b:d4:f4:09:a8:fe:31:99:da:1c:7d:ce:70:7a:78: 0c:a8:e6:31:9f:52:b3:22:98:02:33:5d:26:83:48:92:25:4c: 85:b6:f2:c2:ef:d1:6f:db:41:b4:c2:67:52:d3:60:9b:c7:6e: c1:d6:36:ac:45:5a:bd:11:f1:2c:52:64:cd:30:be:57:51:24: 47:38:a3:b5:75:c9:5d:5c:1a:e6:90:1d:de:02:a1:13:43:0f: a5:76:7c:c8:d1:d4:6f:6b:71:8f:1e:8c:91:95:1b:8c:c2:cc: e8:aa:5b:99 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUBV1SuINX/GyGZ2k3Zn0U0gKLeZQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NF OEUxMjgwQTAeFw0yNjA0MjIxNDE1MDdaFw0yNzA0MjExNDIwMDdaMDMxMTAvBgNV BAMTKEEzQzU4QTU2QTgxQjkyMUE0QzA2N0M2Qzg4MkE0QTZFRDdEQThGODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBSFop+OFij5advlDDS0PdtJPD QSbK3wyTYOtRzqQUT65UPFuvAMuPQG+jvVDOQKdSXAerx76diBD+HoRz7LXtwJi5 xz50jACZQmLeVUZ409EAQgLOBCpv8NCX8eQivh/4/jyu5dQeXRQntJ/tE/g0OIdB m/cB/jOzFETD1Sj0hHRtJXUi2WJlgD6AJEeayTfQ/RAb0fqeFc8jVD/EYA+9Qkxl xeGN0/58s6/o/uPNLCTGp/6l4iG9xFfXCD0bLvSQpTBrd5qPPT57Z5mvCFYzxr3+ 9s6Dpl11vbg/d7SRCSROkCyN8oYRxt9aDhXTIeKUID/XDCPfdLnxAQl8kdKtAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUo8WKVqgbkhpMBnxsiCpKbtfaj4EwHwYDVR0j BBgwFoAUkJ1VYlGgvl+SNFFAKOvTfOjhKAowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4MjMzMDM0Njc5OTEwNS8wLzkwOUQ1NTYyNTFBMEJFNUY5MjM0NTE0MDI4RUJE MzdDRThFMTI4MEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NFOEUxMjgwQS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU4MjMzMDM0Njc5OTEwNS8wLzMxMzIzMzJlMzQz OTJlMzIzMTM5MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzYzMzM2MzQzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAHsx2zANBgkqhkiG9w0BAQsFAAOCAQEAskRwhE7YJQp68UFaOodI/Lyv wdNrIf/6T1/B2Hh7cpU6ODdEGJDGXvUHnNagkK2r4tnrEJ/PdKxzatzkyo4zqy/7 DkIIVGqnnrVWCepGkTAeT0ZsxDeCPZrlqyPivvnvspLY8gfPJIEjZHk6jyfo+qCh REYyLWY8XuIhXRrV/q6cL/hL+5VREPy92gN1Qm+u6EmBW9T0Caj+MZnaHH3OcHp4 DKjmMZ9SsyKYAjNdJoNIkiVMhbbywu/Rb9tBtMJnUtNgm8duwdY2rEVavRHxLFJk zTC+V1EkRzijtXXJXVwa5pAd3gKhE0MPpXZ8yNHUb2txjx6MkZUbjMLM6KpbmQ== -----END CERTIFICATE-----Generated at Mon Apr 27 11:06:38 2026 by rpki-client