$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3233392e302f32342d3234203d3e2034353135.roa File: 3132332e34392e3233392e302f32342d3234203d3e2034353135.roa (raw, json) Hash identifier: xPp+HIkucYcNISYjpnKRw9KaNyd+9qiol8ET8agbl+g= Subject key identifier: 6C:98:20:38:B0:1C:12:3A:0F:80:0C:90:DB:0F:60:22:AE:77:6F:ED Certificate issuer: /CN=909D556251A0BE5F9234514028EBD37CE8E1280A Certificate serial: 6AA58116B3B6143CBEA6B1AA2F6E15CC9B98C31D Authority key identifier: 90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3233392e302f32342d3234203d3e2034353135.roa Signing time: Wed 22 Apr 2026 13:48:49 +0000 ROA not before: Wed 22 Apr 2026 13:43:49 +0000 ROA not after: Wed 21 Apr 2027 13:48:49 +0000 asID: 4515 IP address blocks: 123.49.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 10:43:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:a5:81:16:b3:b6:14:3c:be:a6:b1:aa:2f:6e:15:cc:9b:98:c3:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=909D556251A0BE5F9234514028EBD37CE8E1280A Validity Not Before: Apr 22 13:43:49 2026 GMT Not After : Apr 21 13:48:49 2027 GMT Subject: CN=6C982038B01C123A0F800C90DB0F6022AE776FED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:b3:a5:88:3a:71:32:aa:c3:50:bd:40:e9:8c: 6f:f1:99:01:cd:98:0c:7c:19:4e:7e:c2:05:ae:4d: 08:d5:c8:e9:29:74:3d:0c:c9:bd:41:6f:24:3f:5c: b9:83:56:e4:b0:fe:a5:e8:de:56:01:e4:fe:5d:45: 88:c1:14:2f:e5:e1:9c:17:90:f9:c0:cf:7c:fe:36: d7:01:58:e4:7b:48:22:e5:ed:39:42:bf:be:f8:fd: 5f:6e:b1:97:75:29:13:fe:a0:0a:01:9b:7e:57:4d: e1:3c:11:d0:30:21:02:5e:f1:69:24:ff:80:8c:cf: 3a:07:d2:b9:a9:72:ab:5f:0b:43:75:f0:97:76:48: 72:eb:71:5f:de:77:bd:69:9f:33:83:dc:2b:6f:91: c2:90:f3:6d:25:e9:79:a2:17:94:e3:00:b0:f2:17: 62:7d:53:34:10:bc:aa:7c:cb:9b:81:48:40:97:f8: 2f:33:7c:84:be:ef:fd:1b:4b:ad:d1:6a:0d:ad:1c: a8:be:cc:b8:01:27:7c:15:4a:a7:f3:03:32:7c:4c: 9a:df:a7:0c:70:ac:c9:8c:28:23:6a:06:1f:dd:d0: 5c:61:90:ce:f6:46:31:32:a3:33:a5:cd:cc:1c:56: 7d:c8:68:9c:26:f0:5e:e5:8d:2c:98:54:04:f1:27: 1f:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:98:20:38:B0:1C:12:3A:0F:80:0C:90:DB:0F:60:22:AE:77:6F:ED X509v3 Authority Key Identifier: keyid:90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3233392e302f32342d3234203d3e2034353135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.49.239.0/24 Signature Algorithm: sha256WithRSAEncryption 68:dc:ce:ce:f1:7c:e3:f8:58:33:4e:5b:4b:0d:dc:37:3c:2b: 3f:74:db:8f:08:21:ee:60:b6:c3:c4:46:58:33:a1:f2:7f:60: 60:6e:9d:5d:38:5a:ff:af:cc:49:c0:da:18:cb:bf:25:9a:d1: 56:93:98:f5:24:ce:80:fb:80:6d:57:d6:b9:f9:b4:11:10:7b: 81:77:8c:d4:50:f9:86:c3:9e:0a:56:f8:b7:e6:1e:9a:ee:44: 27:5a:af:68:14:c1:73:b3:53:6f:52:68:f9:bb:52:67:20:df: e9:64:9e:a6:d6:ae:65:9a:58:69:3c:9a:9b:c9:5f:52:68:4a: ad:c8:21:3d:99:57:e8:fc:70:19:25:ee:9b:88:a7:09:c0:bb: bd:9e:c1:26:24:f0:15:bb:55:a1:bd:4e:7f:e2:86:2e:5b:2a: e4:3b:ca:d0:b0:73:98:21:2d:e6:db:c9:02:10:d4:ef:0a:14: e1:a5:fc:45:95:93:4a:23:bb:0b:6c:e6:03:42:4c:79:bd:fb: 2b:de:be:6b:71:e5:58:df:2d:3f:f1:7d:18:3f:4f:18:05:7f: c8:ae:b9:b8:9e:bb:3b:f3:61:82:12:ea:45:e5:47:71:80:2c: c8:a1:ac:25:ff:6c:95:c7:6d:12:55:73:b6:fd:a6:24:24:2f: e8:21:a5:77 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUaqWBFrO2FDy+prGqL24VzJuYwx0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NF OEUxMjgwQTAeFw0yNjA0MjIxMzQzNDlaFw0yNzA0MjExMzQ4NDlaMDMxMTAvBgNV BAMTKDZDOTgyMDM4QjAxQzEyM0EwRjgwMEM5MERCMEY2MDIyQUU3NzZGRUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8s6WIOnEyqsNQvUDpjG/xmQHN mAx8GU5+wgWuTQjVyOkpdD0Myb1BbyQ/XLmDVuSw/qXo3lYB5P5dRYjBFC/l4ZwX kPnAz3z+NtcBWOR7SCLl7TlCv774/V9usZd1KRP+oAoBm35XTeE8EdAwIQJe8Wkk /4CMzzoH0rmpcqtfC0N18Jd2SHLrcV/ed71pnzOD3CtvkcKQ820l6XmiF5TjALDy F2J9UzQQvKp8y5uBSECX+C8zfIS+7/0bS63Rag2tHKi+zLgBJ3wVSqfzAzJ8TJrf pwxwrMmMKCNqBh/d0FxhkM72RjEyozOlzcwcVn3IaJwm8F7ljSyYVATxJx8PAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUbJggOLAcEjoPgAyQ2w9gIq53b+0wHwYDVR0j BBgwFoAUkJ1VYlGgvl+SNFFAKOvTfOjhKAowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4MjMzMDM0Njc5OTEwNS8wLzkwOUQ1NTYyNTFBMEJFNUY5MjM0NTE0MDI4RUJE MzdDRThFMTI4MEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NFOEUxMjgwQS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTgyMzMwMzQ2Nzk5MTA1LzAvMzEzMjMzMmUzNDM5 MmUzMjMzMzkyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNDM1MzEzNS5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAHsx7zANBgkqhkiG9w0BAQsFAAOCAQEAaNzOzvF84/hYM05bSw3cNzwrP3Tb jwgh7mC2w8RGWDOh8n9gYG6dXTha/6/MScDaGMu/JZrRVpOY9STOgPuAbVfWufm0 ERB7gXeM1FD5hsOeClb4t+Yemu5EJ1qvaBTBc7NTb1Jo+btSZyDf6WSeptauZZpY aTyam8lfUmhKrcghPZlX6PxwGSXum4inCcC7vZ7BJiTwFbtVob1Of+KGLlsq5DvK 0LBzmCEt5tvJAhDU7woU4aX8RZWTSiO7C2zmA0JMeb37K96+a3HlWN8tP/F9GD9P GAV/yK65uJ67O/NhghLqReVHcYAsyKGsJf9slcdtElVztv2mJCQv6CGldw== -----END CERTIFICATE-----Generated at Mon Apr 27 11:06:28 2026 by rpki-client