$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3232342e302f32342d3234203d3e203633363431.roa File: 3132332e34392e3232342e302f32342d3234203d3e203633363431.roa (raw, json) Hash identifier: 4YYXh1BPZu1beZ9KL+/SiWdP+nVc9+fPns+a/OUMvQ4= Subject key identifier: DE:12:96:62:76:80:CB:31:28:AB:6E:4C:02:42:61:A0:D4:83:1B:05 Certificate issuer: /CN=909D556251A0BE5F9234514028EBD37CE8E1280A Certificate serial: 0ADE8DBC7B0F4990A0E26D468967192561A9786E Authority key identifier: 90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3232342e302f32342d3234203d3e203633363431.roa Signing time: Wed 22 Apr 2026 14:06:26 +0000 ROA not before: Wed 22 Apr 2026 14:01:26 +0000 ROA not after: Wed 21 Apr 2027 14:06:26 +0000 asID: 63641 IP address blocks: 123.49.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 10:43:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:de:8d:bc:7b:0f:49:90:a0:e2:6d:46:89:67:19:25:61:a9:78:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=909D556251A0BE5F9234514028EBD37CE8E1280A Validity Not Before: Apr 22 14:01:26 2026 GMT Not After : Apr 21 14:06:26 2027 GMT Subject: CN=DE1296627680CB3128AB6E4C024261A0D4831B05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:aa:54:6e:af:88:7b:a2:36:82:80:93:6c:67: 09:d3:14:ef:db:7c:97:ea:04:81:39:7e:b0:04:0e: 7f:4b:16:0e:cd:60:7a:e6:a5:32:59:ac:c8:b4:12: fd:5f:fe:17:0a:8c:71:c9:64:6d:c2:22:fd:dd:32: b9:96:78:af:74:d5:9c:17:03:b3:ba:8a:50:05:2d: 88:29:9a:b1:5f:7f:0a:cc:7a:79:24:be:9b:57:23: 8f:f5:c8:16:ff:8e:48:6b:39:92:6f:74:f3:1b:3a: 3c:63:84:ef:c3:a9:c4:73:ba:e4:a5:d9:7d:81:bd: 3f:41:56:76:a2:cb:50:a9:85:7a:67:6e:43:34:03: 95:60:8a:03:8e:11:a4:6f:2e:49:33:cb:5b:be:a5: 18:f0:ff:dc:48:5f:90:c4:49:01:5a:ac:d7:6f:42: 49:b9:50:1c:f4:5a:a6:3f:a3:5c:b7:7b:af:aa:5b: f8:78:65:52:b0:95:58:c9:dc:4b:5d:8a:fe:3d:b8: a5:88:30:78:2a:11:de:24:05:6a:5b:fe:80:75:09: a1:f2:7b:68:c2:2e:8d:ab:91:72:69:11:8c:88:5b: 3f:62:e3:e6:a5:7d:cb:b9:b0:85:ce:a2:49:d5:f1: 2c:14:c9:ef:61:a6:91:e8:5d:c5:cb:cf:b8:a9:c0: 9a:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:12:96:62:76:80:CB:31:28:AB:6E:4C:02:42:61:A0:D4:83:1B:05 X509v3 Authority Key Identifier: keyid:90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3232342e302f32342d3234203d3e203633363431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.49.224.0/24 Signature Algorithm: sha256WithRSAEncryption 01:56:dd:ec:68:a0:96:c6:91:d2:bf:96:9d:bb:e2:89:2c:bf: 67:36:b8:a7:d9:b3:a1:3f:d9:44:6c:e5:ed:b7:b4:9f:99:a2: 44:36:11:e7:82:ef:f5:14:05:35:4c:29:80:5b:66:48:ac:da: a3:56:b4:e1:22:42:2c:97:00:49:06:e1:0b:5c:a8:89:d6:68: 26:55:47:e2:11:16:89:2b:c2:d6:8a:2b:51:08:4b:03:75:6f: 08:60:7e:44:30:81:b6:6e:04:bc:3c:8d:76:6a:2e:a0:13:ed: d9:78:ba:97:be:9d:2d:fe:95:35:20:6d:3b:7e:61:85:a8:a2: 5e:b5:b6:82:66:ab:0b:a6:88:1c:24:24:00:1f:6d:1d:d3:d5: fa:d5:a6:e8:d7:40:e2:bb:b2:97:bc:ed:8c:70:b1:6f:e7:6e: 10:60:be:fb:18:7a:8a:ba:d8:33:7b:f5:1c:c3:bb:d0:36:74: 75:90:36:4f:98:d4:d2:ea:6b:69:48:13:fa:61:d0:29:c0:e6: 0e:4e:42:75:c9:d5:80:52:a7:fa:fb:6d:f8:9d:93:6e:10:b5: 52:65:d1:32:c2:e4:3e:c8:12:02:6b:1c:c1:5c:a3:d3:85:b5: e8:7e:fc:48:55:73:c6:69:ff:01:80:95:37:93:85:b8:01:5e: dc:1e:6e:c8 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUCt6NvHsPSZCg4m1GiWcZJWGpeG4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NF OEUxMjgwQTAeFw0yNjA0MjIxNDAxMjZaFw0yNzA0MjExNDA2MjZaMDMxMTAvBgNV BAMTKERFMTI5NjYyNzY4MENCMzEyOEFCNkU0QzAyNDI2MUEwRDQ4MzFCMDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzqlRur4h7ojaCgJNsZwnTFO/b fJfqBIE5frAEDn9LFg7NYHrmpTJZrMi0Ev1f/hcKjHHJZG3CIv3dMrmWeK901ZwX A7O6ilAFLYgpmrFffwrMenkkvptXI4/1yBb/jkhrOZJvdPMbOjxjhO/DqcRzuuSl 2X2BvT9BVnaiy1CphXpnbkM0A5VgigOOEaRvLkkzy1u+pRjw/9xIX5DESQFarNdv Qkm5UBz0WqY/o1y3e6+qW/h4ZVKwlVjJ3Etdiv49uKWIMHgqEd4kBWpb/oB1CaHy e2jCLo2rkXJpEYyIWz9i4+alfcu5sIXOoknV8SwUye9hppHoXcXLz7ipwJp3AgMB AAGjggIUMIICEDAdBgNVHQ4EFgQU3hKWYnaAyzEoq25MAkJhoNSDGwUwHwYDVR0j BBgwFoAUkJ1VYlGgvl+SNFFAKOvTfOjhKAowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4MjMzMDM0Njc5OTEwNS8wLzkwOUQ1NTYyNTFBMEJFNUY5MjM0NTE0MDI4RUJE MzdDRThFMTI4MEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NFOEUxMjgwQS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU4MjMzMDM0Njc5OTEwNS8wLzMxMzIzMzJlMzQz OTJlMzIzMjM0MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzYzMzM2MzQzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAHsx4DANBgkqhkiG9w0BAQsFAAOCAQEAAVbd7GiglsaR0r+WnbviiSy/ Zza4p9mzoT/ZRGzl7be0n5miRDYR54Lv9RQFNUwpgFtmSKzao1a04SJCLJcASQbh C1yoidZoJlVH4hEWiSvC1oorUQhLA3VvCGB+RDCBtm4EvDyNdmouoBPt2Xi6l76d Lf6VNSBtO35hhaiiXrW2gmarC6aIHCQkAB9tHdPV+tWm6NdA4ruyl7ztjHCxb+du EGC++xh6irrYM3v1HMO70DZ0dZA2T5jU0upraUgT+mHQKcDmDk5CdcnVgFKn+vtt +J2TbhC1UmXRMsLkPsgSAmscwVyj04W16H78SFVzxmn/AYCVN5OFuAFe3B5uyA== -----END CERTIFICATE-----Generated at Mon Apr 27 11:06:03 2026 by rpki-client