$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3233392e302f32342d3234203d3e203633363431.roa File: 3132332e34392e3233392e302f32342d3234203d3e203633363431.roa (raw, json) Hash identifier: LyF4fvs9FHN+I28cOQYNpWGtWx94XSXqaiw56k8Jb5w= Subject key identifier: 6B:CB:90:BF:19:02:28:21:44:33:E5:44:62:A2:43:98:EC:98:F7:08 Certificate issuer: /CN=909D556251A0BE5F9234514028EBD37CE8E1280A Certificate serial: 1A6FD9176DEF9A3525E8E229E492490DB4424C71 Authority key identifier: 90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3233392e302f32342d3234203d3e203633363431.roa Signing time: Wed 22 Apr 2026 13:48:49 +0000 ROA not before: Wed 22 Apr 2026 13:43:49 +0000 ROA not after: Wed 21 Apr 2027 13:48:49 +0000 asID: 63641 IP address blocks: 123.49.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 10:43:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:6f:d9:17:6d:ef:9a:35:25:e8:e2:29:e4:92:49:0d:b4:42:4c:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=909D556251A0BE5F9234514028EBD37CE8E1280A Validity Not Before: Apr 22 13:43:49 2026 GMT Not After : Apr 21 13:48:49 2027 GMT Subject: CN=6BCB90BF190228214433E54462A24398EC98F708 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:72:c4:ea:f0:43:e5:96:22:08:93:a6:3d:98: ae:b1:fc:db:ec:17:90:9d:b8:67:60:f4:66:ef:14: a9:98:07:6c:d6:16:67:e3:8e:4c:a2:64:7d:0c:a8: 14:b5:b2:95:44:b6:e3:d6:4e:48:f1:e5:94:6b:d7: 5d:2b:97:8f:59:98:d9:a1:e5:18:69:bd:54:03:a8: 1c:72:c0:88:c5:42:63:ba:56:4b:3e:95:69:aa:b5: a1:e6:f2:84:34:4b:42:d4:6f:bf:74:84:41:8e:73: 0b:a0:89:ad:77:5c:a4:a5:b2:78:b7:12:8e:8c:d9: e2:9d:c8:fe:61:85:53:83:c4:b6:a5:8f:7f:3f:b8: 1d:96:1b:55:62:e4:04:bd:af:c5:eb:0f:4a:94:31: fb:cb:4a:3e:bb:2c:73:93:69:23:24:1f:46:de:93: de:bc:e6:cb:61:67:91:ea:e4:a2:ab:72:eb:84:f2: 05:9c:db:32:0d:7e:4b:8a:5e:3d:50:d0:bc:31:43: 43:2b:76:d0:e3:b0:e2:db:cf:29:e8:07:f3:59:fe: ca:5c:e3:f2:55:0c:05:7d:39:67:91:d8:8e:80:f9: dc:08:ee:2b:46:e1:d6:78:83:bc:0b:bc:74:b9:24: 6b:69:70:c5:75:c3:ca:df:13:57:5c:18:49:53:ce: 32:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:CB:90:BF:19:02:28:21:44:33:E5:44:62:A2:43:98:EC:98:F7:08 X509v3 Authority Key Identifier: keyid:90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3233392e302f32342d3234203d3e203633363431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.49.239.0/24 Signature Algorithm: sha256WithRSAEncryption 13:cc:bf:b7:bd:e1:8c:f9:7f:00:a1:bd:83:e3:57:91:e7:7d: 1e:83:21:a3:89:f4:ee:da:7a:af:0c:db:67:4b:19:b4:84:1c: b0:96:7d:81:e5:4d:51:5b:b2:c4:34:9f:1a:d0:4c:c1:f4:50: 98:cc:19:f0:e2:83:00:53:e9:7c:06:ba:ea:18:b7:ec:ab:63: ce:ad:a8:02:60:d9:88:7e:5b:55:da:cf:bb:a5:b4:42:cd:5b: 15:75:62:24:40:8d:25:f9:9b:18:7b:ea:69:01:4e:22:b4:e6: 57:85:89:a4:c5:2a:e0:6c:81:54:eb:a1:5a:62:c8:4e:26:07: dd:43:1f:e9:7d:de:f7:66:27:da:0b:21:3a:bb:98:e2:c5:49: 26:66:30:74:8d:d0:7d:e1:a0:e6:be:71:d7:99:e4:d9:3d:79: 7b:a9:af:11:7a:db:29:d4:19:5a:9e:f5:b7:3b:11:6e:8d:7e: a5:18:54:32:38:06:41:54:88:cf:d8:bb:bd:70:a1:18:1d:f4: 41:5d:0d:49:58:c9:d9:3d:f8:3d:bb:9a:82:d3:54:bf:4c:bd: cd:04:fe:74:ac:4c:ce:bb:4e:3a:33:55:4e:18:99:d3:bf:e8: 4f:4b:00:f7:44:24:6a:fd:9d:62:dc:f7:53:0c:51:eb:8b:d3: 3a:78:41:f7 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUGm/ZF23vmjUl6OIp5JJJDbRCTHEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NF OEUxMjgwQTAeFw0yNjA0MjIxMzQzNDlaFw0yNzA0MjExMzQ4NDlaMDMxMTAvBgNV BAMTKDZCQ0I5MEJGMTkwMjI4MjE0NDMzRTU0NDYyQTI0Mzk4RUM5OEY3MDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3csTq8EPlliIIk6Y9mK6x/Nvs F5CduGdg9GbvFKmYB2zWFmfjjkyiZH0MqBS1spVEtuPWTkjx5ZRr110rl49ZmNmh 5RhpvVQDqBxywIjFQmO6Vks+lWmqtaHm8oQ0S0LUb790hEGOcwugia13XKSlsni3 Eo6M2eKdyP5hhVODxLalj38/uB2WG1Vi5AS9r8XrD0qUMfvLSj67LHOTaSMkH0be k9685sthZ5Hq5KKrcuuE8gWc2zINfkuKXj1Q0LwxQ0MrdtDjsOLbzynoB/NZ/spc 4/JVDAV9OWeR2I6A+dwI7itG4dZ4g7wLvHS5JGtpcMV1w8rfE1dcGElTzjKDAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUa8uQvxkCKCFEM+VEYqJDmOyY9wgwHwYDVR0j BBgwFoAUkJ1VYlGgvl+SNFFAKOvTfOjhKAowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4MjMzMDM0Njc5OTEwNS8wLzkwOUQ1NTYyNTFBMEJFNUY5MjM0NTE0MDI4RUJE MzdDRThFMTI4MEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NFOEUxMjgwQS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU4MjMzMDM0Njc5OTEwNS8wLzMxMzIzMzJlMzQz OTJlMzIzMzM5MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzYzMzM2MzQzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAHsx7zANBgkqhkiG9w0BAQsFAAOCAQEAE8y/t73hjPl/AKG9g+NXked9 HoMho4n07tp6rwzbZ0sZtIQcsJZ9geVNUVuyxDSfGtBMwfRQmMwZ8OKDAFPpfAa6 6hi37Ktjzq2oAmDZiH5bVdrPu6W0Qs1bFXViJECNJfmbGHvqaQFOIrTmV4WJpMUq 4GyBVOuhWmLITiYH3UMf6X3e92Yn2gshOruY4sVJJmYwdI3QfeGg5r5x15nk2T15 e6mvEXrbKdQZWp71tzsRbo1+pRhUMjgGQVSIz9i7vXChGB30QV0NSVjJ2T34Pbua gtNUv0y9zQT+dKxMzrtOOjNVThiZ07/oT0sA90Qkav2dYtz3UwxR64vTOnhB9w== -----END CERTIFICATE-----Generated at Mon Apr 27 11:06:28 2026 by rpki-client