$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3232332e302f32342d3234203d3e203633363431.roa File: 3132332e34392e3232332e302f32342d3234203d3e203633363431.roa (raw, json) Hash identifier: Lx/zPZ8q/JK9uKyDQ4I8Vpvd6IMCjqGHnjyz+CYWEeU= Subject key identifier: 8C:0A:35:32:DF:7B:73:3F:6E:31:49:D4:2A:18:13:E9:80:90:95:90 Certificate issuer: /CN=909D556251A0BE5F9234514028EBD37CE8E1280A Certificate serial: 047B0A0C97E26EDC46C29D834D4516B421EF9CC3 Authority key identifier: 90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3232332e302f32342d3234203d3e203633363431.roa Signing time: Wed 22 Apr 2026 14:21:14 +0000 ROA not before: Wed 22 Apr 2026 14:16:14 +0000 ROA not after: Wed 21 Apr 2027 14:21:14 +0000 asID: 63641 IP address blocks: 123.49.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 10:43:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:7b:0a:0c:97:e2:6e:dc:46:c2:9d:83:4d:45:16:b4:21:ef:9c:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=909D556251A0BE5F9234514028EBD37CE8E1280A Validity Not Before: Apr 22 14:16:14 2026 GMT Not After : Apr 21 14:21:14 2027 GMT Subject: CN=8C0A3532DF7B733F6E3149D42A1813E980909590 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:3c:c8:e1:b3:90:91:2a:d3:35:9f:ad:8f:25: 73:9d:2b:a3:0a:1d:b5:a4:ac:d9:0c:12:5a:27:38: 5d:21:a2:c1:9a:ec:d2:53:6b:59:39:cd:9c:60:03: 9a:e5:6b:04:dc:0a:8c:da:57:bb:f2:74:95:11:fb: aa:15:df:de:2c:59:ec:23:02:e3:23:89:6b:b3:17: 66:13:9f:d4:c4:6b:31:0a:3b:dc:be:86:a6:95:67: 4e:93:72:b0:4c:c9:d7:fb:fe:c1:ea:3e:cb:3d:ed: 1a:ca:72:b4:68:b8:98:f0:4e:94:9f:69:72:f4:38: 2c:46:bb:bc:24:21:33:6f:6c:b1:d9:8f:12:44:20: 88:b9:57:cc:52:66:95:1c:21:e3:7f:c8:e7:de:ad: d8:5c:18:80:5f:36:d6:74:5e:9b:8a:02:42:e3:89: 6b:02:17:1f:c1:9b:5b:d9:21:f0:9e:c8:27:86:8c: 3f:cc:2b:2a:59:7f:9a:da:ae:05:1e:d4:28:35:65: 94:c3:c7:9d:13:73:b8:ca:05:5a:6a:c6:35:0d:73: 7c:3a:3e:6e:46:ae:a2:a3:9e:5c:50:36:f2:81:10: d8:04:76:6c:32:14:76:9e:16:29:65:1d:9c:37:3b: 99:09:c1:73:6a:41:75:4d:f6:9e:67:33:68:1b:5b: 27:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:0A:35:32:DF:7B:73:3F:6E:31:49:D4:2A:18:13:E9:80:90:95:90 X509v3 Authority Key Identifier: keyid:90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3232332e302f32342d3234203d3e203633363431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.49.223.0/24 Signature Algorithm: sha256WithRSAEncryption 30:71:9b:37:af:56:92:30:15:43:f7:29:11:56:2d:28:9a:ff: da:c2:1b:f4:5e:6f:79:09:d8:c5:c2:c4:59:53:16:bb:35:a5: 51:b2:8b:3e:67:c0:bc:57:c9:a4:12:b3:32:bf:b8:1a:26:1e: 83:fb:e7:b2:93:be:8f:b6:16:d3:ec:3b:52:98:0a:d2:e4:a2: 5b:af:98:10:ee:db:ee:62:ca:82:92:e1:ed:76:4c:dd:87:21: b6:ec:38:9b:b8:9d:21:b0:5b:db:7d:28:99:17:22:7b:c5:61: 3f:d6:08:e0:e7:ef:7f:3f:64:74:95:e3:b5:19:7b:7d:52:29: e0:c8:3e:2f:6d:c5:17:42:c7:3e:2d:22:ea:e7:5e:54:e2:d3: 08:67:f5:fb:22:3b:86:a5:5b:14:2c:0b:8e:25:0f:a5:a2:5a: 91:4c:4c:91:e2:41:b7:d1:b7:fc:ef:e1:6d:3f:0b:64:47:5b: 1f:e1:92:92:13:88:79:d4:4e:1a:e1:bc:74:10:6d:88:c4:96: cb:1a:06:2c:d2:d7:eb:ed:31:c3:f6:13:31:93:f2:c3:c4:4f: 11:ee:14:bf:6d:2b:33:57:f4:64:7e:77:1b:98:5e:99:2b:e7: 03:0e:1a:ee:62:83:f3:82:07:f7:bd:9b:3c:bc:a7:f5:b6:0c: 29:87:04:ad -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUBHsKDJfibtxGwp2DTUUWtCHvnMMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NF OEUxMjgwQTAeFw0yNjA0MjIxNDE2MTRaFw0yNzA0MjExNDIxMTRaMDMxMTAvBgNV BAMTKDhDMEEzNTMyREY3QjczM0Y2RTMxNDlENDJBMTgxM0U5ODA5MDk1OTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD0PMjhs5CRKtM1n62PJXOdK6MK HbWkrNkMElonOF0hosGa7NJTa1k5zZxgA5rlawTcCozaV7vydJUR+6oV394sWewj AuMjiWuzF2YTn9TEazEKO9y+hqaVZ06TcrBMydf7/sHqPss97RrKcrRouJjwTpSf aXL0OCxGu7wkITNvbLHZjxJEIIi5V8xSZpUcIeN/yOferdhcGIBfNtZ0XpuKAkLj iWsCFx/Bm1vZIfCeyCeGjD/MKypZf5rargUe1Cg1ZZTDx50Tc7jKBVpqxjUNc3w6 Pm5GrqKjnlxQNvKBENgEdmwyFHaeFillHZw3O5kJwXNqQXVN9p5nM2gbWyd1AgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUjAo1Mt97cz9uMUnUKhgT6YCQlZAwHwYDVR0j BBgwFoAUkJ1VYlGgvl+SNFFAKOvTfOjhKAowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4MjMzMDM0Njc5OTEwNS8wLzkwOUQ1NTYyNTFBMEJFNUY5MjM0NTE0MDI4RUJE MzdDRThFMTI4MEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NFOEUxMjgwQS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU4MjMzMDM0Njc5OTEwNS8wLzMxMzIzMzJlMzQz OTJlMzIzMjMzMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzYzMzM2MzQzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAHsx3zANBgkqhkiG9w0BAQsFAAOCAQEAMHGbN69WkjAVQ/cpEVYtKJr/ 2sIb9F5veQnYxcLEWVMWuzWlUbKLPmfAvFfJpBKzMr+4GiYeg/vnspO+j7YW0+w7 UpgK0uSiW6+YEO7b7mLKgpLh7XZM3Ychtuw4m7idIbBb230omRcie8VhP9YI4Ofv fz9kdJXjtRl7fVIp4Mg+L23FF0LHPi0i6udeVOLTCGf1+yI7hqVbFCwLjiUPpaJa kUxMkeJBt9G3/O/hbT8LZEdbH+GSkhOIedROGuG8dBBtiMSWyxoGLNLX6+0xw/YT MZPyw8RPEe4Uv20rM1f0ZH53G5hemSvnAw4a7mKD84IH972bPLyn9bYMKYcErQ== -----END CERTIFICATE-----Generated at Mon Apr 27 11:06:38 2026 by rpki-client