$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3233362e302f32342d3234203d3e203633363431.roa File: 3132332e34392e3233362e302f32342d3234203d3e203633363431.roa (raw, json) Hash identifier: XC08a8XKWPGK9uLvjdBDg5JBOMAJ9VPkEru0RE7snZw= Subject key identifier: DD:C5:C4:D8:E3:25:21:6C:F1:27:A5:4B:0A:19:D8:C7:B4:32:53:9E Certificate issuer: /CN=909D556251A0BE5F9234514028EBD37CE8E1280A Certificate serial: 5A4A575EC2B03EEB210BE59193B5CECA4CD3F7FB Authority key identifier: 90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3233362e302f32342d3234203d3e203633363431.roa Signing time: Wed 22 Apr 2026 14:10:22 +0000 ROA not before: Wed 22 Apr 2026 14:05:22 +0000 ROA not after: Wed 21 Apr 2027 14:10:22 +0000 asID: 63641 IP address blocks: 123.49.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 10:43:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:4a:57:5e:c2:b0:3e:eb:21:0b:e5:91:93:b5:ce:ca:4c:d3:f7:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=909D556251A0BE5F9234514028EBD37CE8E1280A Validity Not Before: Apr 22 14:05:22 2026 GMT Not After : Apr 21 14:10:22 2027 GMT Subject: CN=DDC5C4D8E325216CF127A54B0A19D8C7B432539E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:17:91:5e:51:6b:a3:23:0c:d9:9d:31:7c:df: e9:53:bd:c9:28:c5:44:56:5f:a1:29:d3:9c:a6:45: a0:39:6c:0e:59:9c:1d:00:aa:ca:d6:89:dc:d3:e4: 9a:6c:30:2c:b3:35:03:39:e0:f2:d4:f9:f1:b0:dd: df:d0:bb:c3:d8:5f:44:c9:43:87:6e:76:b3:ce:41: 0a:20:2c:f9:0d:59:7c:f6:00:bc:5c:4f:4a:ef:ba: cd:55:9b:a5:4f:7d:97:16:78:b5:b0:74:2f:b3:2f: 0e:6f:8b:fc:10:26:67:b0:2b:9e:bd:1d:a8:0e:7a: d5:1b:10:31:34:7e:d2:44:93:80:93:a4:ab:21:0b: c2:1e:37:1b:4d:87:6a:f4:90:2f:8d:a3:a3:f8:b2: a5:89:2d:15:90:d2:14:f0:0e:e6:e9:09:11:6c:c5: 5d:dd:37:87:2a:24:6d:93:5c:ec:ab:55:5c:b8:9b: ad:c3:8d:70:83:7e:83:14:35:a1:db:57:9b:c2:c9: 24:9b:b4:3e:01:e8:35:89:27:9e:74:a4:5b:a1:1c: 30:60:ea:fd:fb:ae:9f:21:49:c1:fd:96:12:9b:ea: 6e:6a:4b:67:f6:a9:e9:b4:d4:79:43:58:55:89:5a: c9:6d:9e:b7:74:25:02:9d:97:5d:e8:16:80:b0:78: f6:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:C5:C4:D8:E3:25:21:6C:F1:27:A5:4B:0A:19:D8:C7:B4:32:53:9E X509v3 Authority Key Identifier: keyid:90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3233362e302f32342d3234203d3e203633363431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.49.236.0/24 Signature Algorithm: sha256WithRSAEncryption 70:3a:a4:68:87:b9:3a:da:e2:ac:75:d0:48:4d:8e:0d:8d:2a: 78:fc:ee:4f:a5:b3:d2:53:ef:ba:48:7b:00:83:e8:59:74:6f: 17:72:2b:0b:07:26:c6:a9:99:e7:80:19:c3:16:c6:30:36:89: d2:44:5c:0b:8e:c8:46:f9:ed:33:ef:dc:69:8f:4d:a1:4a:5b: e9:73:cc:62:2a:b1:13:54:2c:f9:f1:8d:88:1d:de:bd:30:ac: 39:e3:dc:82:9b:62:c1:d0:c6:a2:dc:f2:3c:69:dd:ea:c3:45: ee:3c:26:4b:23:41:03:02:e9:37:33:fe:54:5f:1e:83:b3:bf: a3:f8:aa:11:b0:11:d8:98:fd:a6:7f:9f:ed:ec:f7:00:7c:95: 41:2e:9a:63:88:56:10:6a:d3:4c:b2:59:8a:84:f9:54:14:e6: 9c:7f:6a:04:0e:72:cf:b6:38:93:02:17:d9:e3:d4:41:fa:be: f0:0f:99:9f:fd:24:46:31:ed:b7:23:46:89:d0:cb:4f:96:71: 78:57:e1:28:ab:49:e8:62:60:a5:67:bb:d4:e0:3f:26:3e:ea: 69:02:5a:d5:d5:d7:06:ef:1a:1e:4f:01:20:d0:f8:da:1e:72: ef:3d:94:e6:0c:94:ab:96:f6:c4:c3:5b:19:5a:e8:ed:1a:78: 0d:33:55:bc -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUWkpXXsKwPushC+WRk7XOykzT9/swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NF OEUxMjgwQTAeFw0yNjA0MjIxNDA1MjJaFw0yNzA0MjExNDEwMjJaMDMxMTAvBgNV BAMTKEREQzVDNEQ4RTMyNTIxNkNGMTI3QTU0QjBBMTlEOEM3QjQzMjUzOUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIF5FeUWujIwzZnTF83+lTvcko xURWX6Ep05ymRaA5bA5ZnB0AqsrWidzT5JpsMCyzNQM54PLU+fGw3d/Qu8PYX0TJ Q4dudrPOQQogLPkNWXz2ALxcT0rvus1Vm6VPfZcWeLWwdC+zLw5vi/wQJmewK569 HagOetUbEDE0ftJEk4CTpKshC8IeNxtNh2r0kC+No6P4sqWJLRWQ0hTwDubpCRFs xV3dN4cqJG2TXOyrVVy4m63DjXCDfoMUNaHbV5vCySSbtD4B6DWJJ550pFuhHDBg 6v37rp8hScH9lhKb6m5qS2f2qem01HlDWFWJWsltnrd0JQKdl13oFoCwePbLAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQU3cXE2OMlIWzxJ6VLChnYx7QyU54wHwYDVR0j BBgwFoAUkJ1VYlGgvl+SNFFAKOvTfOjhKAowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4MjMzMDM0Njc5OTEwNS8wLzkwOUQ1NTYyNTFBMEJFNUY5MjM0NTE0MDI4RUJE MzdDRThFMTI4MEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NFOEUxMjgwQS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU4MjMzMDM0Njc5OTEwNS8wLzMxMzIzMzJlMzQz OTJlMzIzMzM2MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzYzMzM2MzQzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAHsx7DANBgkqhkiG9w0BAQsFAAOCAQEAcDqkaIe5OtrirHXQSE2ODY0q ePzuT6Wz0lPvukh7AIPoWXRvF3IrCwcmxqmZ54AZwxbGMDaJ0kRcC47IRvntM+/c aY9NoUpb6XPMYiqxE1Qs+fGNiB3evTCsOePcgptiwdDGotzyPGnd6sNF7jwmSyNB AwLpNzP+VF8eg7O/o/iqEbAR2Jj9pn+f7ez3AHyVQS6aY4hWEGrTTLJZioT5VBTm nH9qBA5yz7Y4kwIX2ePUQfq+8A+Zn/0kRjHttyNGidDLT5ZxeFfhKKtJ6GJgpWe7 1OA/Jj7qaQJa1dXXBu8aHk8BIND42h5y7z2U5gyUq5b2xMNbGVro7Rp4DTNVvA== -----END CERTIFICATE-----Generated at Mon Apr 27 11:06:27 2026 by rpki-client