$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3232322e302f32342d3234203d3e203633363431.roa File: 3132332e34392e3232322e302f32342d3234203d3e203633363431.roa (raw, json) Hash identifier: skcXbGFzJaqToqPmWqX4bpU2K6fOaxD9op9JqlDYPKQ= Subject key identifier: 0D:F3:79:68:FE:DB:8D:E9:23:C6:8A:E2:1C:F2:F1:E1:91:8A:6D:DB Certificate issuer: /CN=909D556251A0BE5F9234514028EBD37CE8E1280A Certificate serial: 2EE802B49C73D4F7F5AEC5A394E0822FACEA4046 Authority key identifier: 90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3232322e302f32342d3234203d3e203633363431.roa Signing time: Wed 22 Apr 2026 14:20:58 +0000 ROA not before: Wed 22 Apr 2026 14:15:58 +0000 ROA not after: Wed 21 Apr 2027 14:20:58 +0000 asID: 63641 IP address blocks: 123.49.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 10:43:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:e8:02:b4:9c:73:d4:f7:f5:ae:c5:a3:94:e0:82:2f:ac:ea:40:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=909D556251A0BE5F9234514028EBD37CE8E1280A Validity Not Before: Apr 22 14:15:58 2026 GMT Not After : Apr 21 14:20:58 2027 GMT Subject: CN=0DF37968FEDB8DE923C68AE21CF2F1E1918A6DDB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:87:57:36:39:1d:23:80:41:ec:b6:ea:be:89: 62:86:f8:ee:c9:a1:1a:7d:20:d9:7b:53:5e:a7:33: 85:62:02:12:11:ff:62:ae:0d:31:9b:1e:a7:21:98: 89:76:fd:ec:26:11:0f:b3:3c:fa:d5:d4:d4:50:d1: ab:3a:b2:60:ff:d6:bb:aa:0f:04:b6:1a:07:63:c2: 80:1a:9a:e6:f1:5f:5d:7d:b1:29:52:16:59:9f:36: 59:ac:66:d7:c8:8e:9c:f6:ba:45:63:6b:14:b0:eb: 8b:31:f3:c9:26:cc:6e:8a:0a:7e:1a:24:5f:74:f2: e4:49:52:24:0d:ee:50:48:66:60:b8:7a:ba:5f:58: 80:b8:51:11:6b:af:95:8a:0c:5e:f2:0f:e1:72:1d: f3:a4:20:27:80:ae:99:21:4a:d6:d2:be:78:91:2f: 9c:19:b9:12:e3:7e:94:6c:9f:db:9c:b1:4b:e5:88: 85:f1:98:3d:a8:73:9e:79:e0:e9:a5:6d:66:08:35: a7:b2:13:64:c4:0b:e2:6d:c7:5a:bd:39:88:51:8d: 76:a4:98:1b:e9:c6:64:85:5f:ae:45:fc:0e:7c:ef: fe:46:ab:54:a2:ff:23:55:57:92:10:0e:5f:00:d3: 3d:b1:f6:72:4a:fe:e4:b8:ad:f3:80:d8:58:3c:7d: e7:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:F3:79:68:FE:DB:8D:E9:23:C6:8A:E2:1C:F2:F1:E1:91:8A:6D:DB X509v3 Authority Key Identifier: keyid:90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3232322e302f32342d3234203d3e203633363431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.49.222.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:31:7c:90:74:30:5a:9d:92:38:83:a4:06:d1:e1:eb:3d:6b: f9:28:99:5c:1e:9e:d7:65:b5:f7:f3:49:ec:3a:c9:25:93:26: 55:08:8e:0c:3f:d7:6c:c9:e1:4b:3c:5d:24:b3:9e:1b:ee:f0: fa:b9:83:04:3c:45:8d:ef:95:a6:1f:b4:b9:17:51:97:0a:af: 05:22:6f:0c:07:fa:93:c5:32:1c:c2:39:1c:28:8e:b1:34:e9: ad:57:00:f7:8d:7f:5a:e7:60:09:e5:80:24:45:c2:26:33:a8: 14:59:2e:8e:e1:4e:e0:7b:67:0b:a9:33:35:06:d5:44:aa:f3: 1f:2b:72:4f:e5:9a:8c:89:4a:66:ce:f4:80:f8:af:41:ad:f0: 66:90:ee:ba:54:05:7e:47:63:1b:90:4d:71:1f:a3:4e:76:8e: a9:f7:e5:d2:aa:95:c6:a5:4e:19:de:37:fe:f1:09:ef:34:6b: e4:db:ad:36:fa:19:c9:25:a2:f9:9c:ee:18:82:7c:90:8c:72: 4b:cb:03:22:b0:ca:3a:92:fa:bc:23:ba:c9:73:c3:32:cb:d2: 0f:b2:d5:ef:d1:f5:44:fc:b9:af:b3:d7:03:ba:79:b8:92:67: 48:98:7d:94:30:de:97:62:8d:b7:9b:be:ce:c4:61:ae:88:20: 47:ea:c6:40 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIULugCtJxz1Pf1rsWjlOCCL6zqQEYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NF OEUxMjgwQTAeFw0yNjA0MjIxNDE1NThaFw0yNzA0MjExNDIwNThaMDMxMTAvBgNV BAMTKDBERjM3OTY4RkVEQjhERTkyM0M2OEFFMjFDRjJGMUUxOTE4QTZEREIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0h1c2OR0jgEHstuq+iWKG+O7J oRp9INl7U16nM4ViAhIR/2KuDTGbHqchmIl2/ewmEQ+zPPrV1NRQ0as6smD/1ruq DwS2GgdjwoAamubxX119sSlSFlmfNlmsZtfIjpz2ukVjaxSw64sx88kmzG6KCn4a JF908uRJUiQN7lBIZmC4erpfWIC4URFrr5WKDF7yD+FyHfOkICeArpkhStbSvniR L5wZuRLjfpRsn9ucsUvliIXxmD2oc5554OmlbWYINaeyE2TEC+Jtx1q9OYhRjXak mBvpxmSFX65F/A587/5Gq1Si/yNVV5IQDl8A0z2x9nJK/uS4rfOA2Fg8feetAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUDfN5aP7bjekjxoriHPLx4ZGKbdswHwYDVR0j BBgwFoAUkJ1VYlGgvl+SNFFAKOvTfOjhKAowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4MjMzMDM0Njc5OTEwNS8wLzkwOUQ1NTYyNTFBMEJFNUY5MjM0NTE0MDI4RUJE MzdDRThFMTI4MEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NFOEUxMjgwQS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU4MjMzMDM0Njc5OTEwNS8wLzMxMzIzMzJlMzQz OTJlMzIzMjMyMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzYzMzM2MzQzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAHsx3jANBgkqhkiG9w0BAQsFAAOCAQEATDF8kHQwWp2SOIOkBtHh6z1r +SiZXB6e12W19/NJ7DrJJZMmVQiODD/XbMnhSzxdJLOeG+7w+rmDBDxFje+Vph+0 uRdRlwqvBSJvDAf6k8UyHMI5HCiOsTTprVcA941/WudgCeWAJEXCJjOoFFkujuFO 4HtnC6kzNQbVRKrzHytyT+WajIlKZs70gPivQa3wZpDuulQFfkdjG5BNcR+jTnaO qffl0qqVxqVOGd43/vEJ7zRr5NutNvoZySWi+ZzuGIJ8kIxyS8sDIrDKOpL6vCO6 yXPDMsvSD7LV79H1RPy5r7PXA7p5uJJnSJh9lDDel2KNt5u+zsRhroggR+rGQA== -----END CERTIFICATE-----Generated at Mon Apr 27 11:06:44 2026 by rpki-client