$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3232382e302f32342d3234203d3e203633363431.roa File: 3132332e34392e3232382e302f32342d3234203d3e203633363431.roa (raw, json) Hash identifier: J1ICGFCfsfqcEnNOxy8huWKFib64OxphZyyw/aOhHxo= Subject key identifier: 7D:BF:86:9F:A2:71:86:A0:11:43:1A:6F:15:44:8B:F8:5F:BE:6C:93 Certificate issuer: /CN=909D556251A0BE5F9234514028EBD37CE8E1280A Certificate serial: 6237BBF0E74889D5A911334D45F8B0E8533DC305 Authority key identifier: 90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3232382e302f32342d3234203d3e203633363431.roa Signing time: Wed 22 Apr 2026 14:07:47 +0000 ROA not before: Wed 22 Apr 2026 14:02:47 +0000 ROA not after: Wed 21 Apr 2027 14:07:47 +0000 asID: 63641 IP address blocks: 123.49.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 10:43:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:37:bb:f0:e7:48:89:d5:a9:11:33:4d:45:f8:b0:e8:53:3d:c3:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=909D556251A0BE5F9234514028EBD37CE8E1280A Validity Not Before: Apr 22 14:02:47 2026 GMT Not After : Apr 21 14:07:47 2027 GMT Subject: CN=7DBF869FA27186A011431A6F15448BF85FBE6C93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:2e:4b:6b:7b:47:77:a8:b9:80:f9:bb:f5:07: 19:c6:45:29:f7:4f:56:cd:0f:51:7d:30:da:39:1b: ea:4a:54:6a:b0:d1:f1:42:4e:79:24:6b:46:98:ca: df:29:b0:5b:d4:32:57:f5:80:56:d2:80:46:83:4a: 57:8f:f2:1b:73:bb:c7:06:d1:ea:cb:bb:78:0e:f3: 3f:d0:78:9f:b5:9d:ce:5a:f7:5d:2e:10:85:bc:d4: 3f:bf:20:bf:19:60:9d:9e:83:18:04:8e:97:96:d6: 87:15:50:fe:d0:48:41:98:10:97:34:2a:9b:10:aa: 04:1f:02:98:96:bb:47:d6:65:42:4c:9a:eb:63:31: 4c:18:38:86:79:91:4d:9c:cd:19:45:37:f2:c4:ec: fa:6b:a0:15:f4:65:cf:26:70:d6:30:e2:45:de:c5: 95:ce:b3:a3:62:3f:23:37:11:d6:5d:a3:e6:21:68: e6:c6:ad:4d:58:fe:72:3d:e3:7b:4c:fa:31:0b:0e: 73:fe:ae:f1:ca:33:ea:fb:b7:9a:a3:03:4a:34:32: 7a:75:e0:fe:5d:b9:39:fb:cc:a9:f9:d9:ce:9a:8f: e8:ad:ef:45:f1:40:8c:6f:74:a8:1f:64:84:20:db: be:ed:b3:97:3c:f7:80:ad:2b:09:cd:b1:f5:50:9c: d4:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:BF:86:9F:A2:71:86:A0:11:43:1A:6F:15:44:8B:F8:5F:BE:6C:93 X509v3 Authority Key Identifier: keyid:90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3232382e302f32342d3234203d3e203633363431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.49.228.0/24 Signature Algorithm: sha256WithRSAEncryption 27:00:a1:48:a5:4f:54:7a:a6:a1:8b:04:37:22:55:55:18:7b: 01:87:16:9b:bb:73:14:67:95:b6:26:8f:bc:28:10:ed:07:f9: 1e:d2:c0:f1:84:57:df:d4:16:2e:f5:71:8c:96:ce:d3:c1:b0: cf:6b:0b:16:fa:10:eb:e3:63:50:3f:df:6a:8f:36:90:ff:4e: cf:d7:2f:50:c4:f9:36:71:b2:fc:d3:35:38:7e:c6:e2:a3:51: bf:f6:e4:67:c8:78:49:8c:b6:74:25:9a:49:41:35:56:4c:20: 0b:ce:50:e4:9b:e6:11:01:a2:19:a0:18:93:2d:12:e3:6f:c1: 2b:e4:ac:8b:b8:cc:a1:b5:63:2d:4e:ba:63:66:5a:f8:70:29: 5b:a8:19:29:aa:b1:07:c3:29:5c:0a:58:13:2e:3d:0d:9a:3b: 51:23:b6:a9:52:7d:ad:1e:34:72:7f:00:fb:f7:5e:db:c1:60: 88:3f:fb:21:05:9d:bf:42:4b:52:7a:84:93:29:81:cc:68:2d: 79:35:78:e8:9e:9c:5b:07:cd:ff:03:25:25:4d:a5:99:69:5a: 51:35:44:63:48:5e:0f:71:5f:5f:d2:09:95:8c:08:e3:2c:a4: a2:00:e4:2c:06:f3:25:95:fe:5b:22:d9:05:32:27:e9:63:ab: 00:74:97:e6 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUYje78OdIidWpETNNRfiw6FM9wwUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NF OEUxMjgwQTAeFw0yNjA0MjIxNDAyNDdaFw0yNzA0MjExNDA3NDdaMDMxMTAvBgNV BAMTKDdEQkY4NjlGQTI3MTg2QTAxMTQzMUE2RjE1NDQ4QkY4NUZCRTZDOTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDILktre0d3qLmA+bv1BxnGRSn3 T1bND1F9MNo5G+pKVGqw0fFCTnkka0aYyt8psFvUMlf1gFbSgEaDSleP8htzu8cG 0erLu3gO8z/QeJ+1nc5a910uEIW81D+/IL8ZYJ2egxgEjpeW1ocVUP7QSEGYEJc0 KpsQqgQfApiWu0fWZUJMmutjMUwYOIZ5kU2czRlFN/LE7PproBX0Zc8mcNYw4kXe xZXOs6NiPyM3EdZdo+YhaObGrU1Y/nI943tM+jELDnP+rvHKM+r7t5qjA0o0Mnp1 4P5duTn7zKn52c6aj+it70XxQIxvdKgfZIQg277ts5c894CtKwnNsfVQnNS/AgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUfb+Gn6JxhqARQxpvFUSL+F++bJMwHwYDVR0j BBgwFoAUkJ1VYlGgvl+SNFFAKOvTfOjhKAowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4MjMzMDM0Njc5OTEwNS8wLzkwOUQ1NTYyNTFBMEJFNUY5MjM0NTE0MDI4RUJE MzdDRThFMTI4MEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NFOEUxMjgwQS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU4MjMzMDM0Njc5OTEwNS8wLzMxMzIzMzJlMzQz OTJlMzIzMjM4MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzYzMzM2MzQzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAHsx5DANBgkqhkiG9w0BAQsFAAOCAQEAJwChSKVPVHqmoYsENyJVVRh7 AYcWm7tzFGeVtiaPvCgQ7Qf5HtLA8YRX39QWLvVxjJbO08Gwz2sLFvoQ6+NjUD/f ao82kP9Oz9cvUMT5NnGy/NM1OH7G4qNRv/bkZ8h4SYy2dCWaSUE1VkwgC85Q5Jvm EQGiGaAYky0S42/BK+Ssi7jMobVjLU66Y2Za+HApW6gZKaqxB8MpXApYEy49DZo7 USO2qVJ9rR40cn8A+/de28FgiD/7IQWdv0JLUnqEkymBzGgteTV46J6cWwfN/wMl JU2lmWlaUTVEY0heD3FfX9IJlYwI4yykogDkLAbzJZX+WyLZBTIn6WOrAHSX5g== -----END CERTIFICATE-----Generated at Mon Apr 27 11:06:44 2026 by rpki-client