$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3232352e302f32342d3234203d3e203633363431.roa File: 3132332e34392e3232352e302f32342d3234203d3e203633363431.roa (raw, json) Hash identifier: nlW0+2r5AYtSbrP6dyEOCv+/AjNl8Ws/xCbwp45S53o= Subject key identifier: B8:B5:46:FD:F9:88:D2:B4:65:C6:CB:82:B4:5E:4A:CD:68:35:09:34 Certificate issuer: /CN=909D556251A0BE5F9234514028EBD37CE8E1280A Certificate serial: 67AD8C98085A17BE07674AF13450C7F0C995D0B6 Authority key identifier: 90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3232352e302f32342d3234203d3e203633363431.roa Signing time: Wed 22 Apr 2026 14:06:46 +0000 ROA not before: Wed 22 Apr 2026 14:01:46 +0000 ROA not after: Wed 21 Apr 2027 14:06:46 +0000 asID: 63641 IP address blocks: 123.49.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 10:43:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:ad:8c:98:08:5a:17:be:07:67:4a:f1:34:50:c7:f0:c9:95:d0:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=909D556251A0BE5F9234514028EBD37CE8E1280A Validity Not Before: Apr 22 14:01:46 2026 GMT Not After : Apr 21 14:06:46 2027 GMT Subject: CN=B8B546FDF988D2B465C6CB82B45E4ACD68350934 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:11:bc:57:23:23:16:29:87:db:ef:1d:33:df: 93:81:e7:68:31:a7:ad:62:4b:ae:69:73:f2:bd:17: 43:00:e2:b6:3f:1a:f2:63:6a:de:39:a8:9d:00:0e: d3:07:a8:17:f8:0a:0b:b5:b6:1a:56:b2:d3:5b:cf: 38:af:a6:e4:ea:bb:8d:00:d5:14:08:78:f3:4c:15: a7:45:2b:bf:fa:b4:0b:bb:4c:02:05:5e:62:da:8a: b7:7b:ca:38:4f:5d:e0:1f:9b:1c:32:1f:7a:79:82: de:c2:02:45:8e:a8:7c:9e:32:25:83:f4:eb:6e:f0: b3:2b:c4:7d:c8:3f:ce:60:3c:70:7a:4c:55:41:22: b3:16:d3:66:1b:79:ac:25:6c:67:18:d3:49:65:54: 65:29:8f:01:95:06:e6:fa:d6:89:37:ac:ec:96:2c: b3:e7:ea:26:dc:53:4a:18:21:25:bd:09:98:a6:2d: 33:f0:c4:54:8c:92:7a:70:22:c1:ed:9d:4b:92:47: d1:a9:96:d6:a3:5e:b7:b9:18:a7:cc:5a:b9:5f:5d: 74:a2:09:10:c4:fd:3b:c3:42:57:1f:94:8b:34:30: 92:28:76:6a:48:8f:90:63:34:c9:2c:90:24:23:8f: 92:a3:0d:87:44:27:24:42:1c:9d:d8:02:98:ca:8e: fd:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:B5:46:FD:F9:88:D2:B4:65:C6:CB:82:B4:5E:4A:CD:68:35:09:34 X509v3 Authority Key Identifier: keyid:90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3232352e302f32342d3234203d3e203633363431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.49.225.0/24 Signature Algorithm: sha256WithRSAEncryption 07:4c:d6:33:87:60:a5:28:45:e6:01:25:85:11:36:68:ee:46: 2d:0a:9e:27:fa:ad:d2:95:20:b4:af:98:12:86:e5:4e:a9:e7: ed:d5:e5:74:d7:e8:89:87:d0:74:86:83:27:07:02:7a:82:75: 86:4d:f1:48:d4:15:8e:cc:ce:17:09:9b:05:e3:6b:ad:23:98: f5:80:e7:50:51:b6:04:33:2f:67:0d:0e:42:a6:bd:6d:a5:3e: 2b:8a:e5:e3:27:33:cd:c8:eb:ab:e1:b0:08:43:ab:b9:c4:76: 1c:75:fc:74:c9:0c:b9:47:51:34:29:0d:f1:4c:51:f3:5f:13: ba:8c:44:66:ca:bb:c6:98:0d:8d:8d:79:3a:b4:47:5a:eb:90: b4:66:12:16:83:65:98:0c:d5:44:86:12:d9:f4:50:2e:b9:de: 7e:ec:61:4c:1e:ae:b9:73:e6:30:07:eb:43:7b:a7:13:7a:11: 2f:90:97:4f:bf:eb:a4:02:c3:62:71:b2:9f:f1:34:1b:55:5e: f8:34:a1:18:d7:aa:84:6a:72:8a:93:e3:07:58:e0:cc:af:d7: 37:af:ea:17:11:52:10:fc:64:1d:10:42:2f:fe:8a:5b:5d:62: b3:9a:f7:f5:8e:5a:e8:af:b6:7d:e8:45:8c:15:4d:2c:13:22: fd:22:7e:01 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUZ62MmAhaF74HZ0rxNFDH8MmV0LYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NF OEUxMjgwQTAeFw0yNjA0MjIxNDAxNDZaFw0yNzA0MjExNDA2NDZaMDMxMTAvBgNV BAMTKEI4QjU0NkZERjk4OEQyQjQ2NUM2Q0I4MkI0NUU0QUNENjgzNTA5MzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzEbxXIyMWKYfb7x0z35OB52gx p61iS65pc/K9F0MA4rY/GvJjat45qJ0ADtMHqBf4Cgu1thpWstNbzzivpuTqu40A 1RQIePNMFadFK7/6tAu7TAIFXmLaird7yjhPXeAfmxwyH3p5gt7CAkWOqHyeMiWD 9Otu8LMrxH3IP85gPHB6TFVBIrMW02YbeawlbGcY00llVGUpjwGVBub61ok3rOyW LLPn6ibcU0oYISW9CZimLTPwxFSMknpwIsHtnUuSR9GpltajXre5GKfMWrlfXXSi CRDE/TvDQlcflIs0MJIodmpIj5BjNMkskCQjj5KjDYdEJyRCHJ3YApjKjv3HAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUuLVG/fmI0rRlxsuCtF5KzWg1CTQwHwYDVR0j BBgwFoAUkJ1VYlGgvl+SNFFAKOvTfOjhKAowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4MjMzMDM0Njc5OTEwNS8wLzkwOUQ1NTYyNTFBMEJFNUY5MjM0NTE0MDI4RUJE MzdDRThFMTI4MEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NFOEUxMjgwQS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU4MjMzMDM0Njc5OTEwNS8wLzMxMzIzMzJlMzQz OTJlMzIzMjM1MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzYzMzM2MzQzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAHsx4TANBgkqhkiG9w0BAQsFAAOCAQEAB0zWM4dgpShF5gElhRE2aO5G LQqeJ/qt0pUgtK+YEoblTqnn7dXldNfoiYfQdIaDJwcCeoJ1hk3xSNQVjszOFwmb BeNrrSOY9YDnUFG2BDMvZw0OQqa9baU+K4rl4yczzcjrq+GwCEOrucR2HHX8dMkM uUdRNCkN8UxR818TuoxEZsq7xpgNjY15OrRHWuuQtGYSFoNlmAzVRIYS2fRQLrne fuxhTB6uuXPmMAfrQ3unE3oRL5CXT7/rpALDYnGyn/E0G1Ve+DShGNeqhGpyipPj B1jgzK/XN6/qFxFSEPxkHRBCL/6KW11is5r39Y5a6K+2fehFjBVNLBMi/SJ+AQ== -----END CERTIFICATE-----Generated at Mon Apr 27 11:06:44 2026 by rpki-client