$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3234302e302f32342d3234203d3e203633363431.roa File: 3132332e34392e3234302e302f32342d3234203d3e203633363431.roa (raw, json) Hash identifier: ZX2G/QfwZVrIb91tHIiNvvTXyB7s3s+VNCvv2+l1os8= Subject key identifier: 8B:D4:90:DE:FE:57:82:A8:99:40:24:45:15:05:7B:90:F9:65:4D:37 Certificate issuer: /CN=909D556251A0BE5F9234514028EBD37CE8E1280A Certificate serial: 71991CAEE852105C61C18BCEEE8F029175CE4E9B Authority key identifier: 90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3234302e302f32342d3234203d3e203633363431.roa Signing time: Wed 22 Apr 2026 13:46:23 +0000 ROA not before: Wed 22 Apr 2026 13:41:23 +0000 ROA not after: Wed 21 Apr 2027 13:46:23 +0000 asID: 63641 IP address blocks: 123.49.240.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 10:43:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:99:1c:ae:e8:52:10:5c:61:c1:8b:ce:ee:8f:02:91:75:ce:4e:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=909D556251A0BE5F9234514028EBD37CE8E1280A Validity Not Before: Apr 22 13:41:23 2026 GMT Not After : Apr 21 13:46:23 2027 GMT Subject: CN=8BD490DEFE5782A89940244515057B90F9654D37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:ef:48:78:02:21:df:a7:07:8d:7a:eb:ba:ac: e8:30:ce:67:48:52:0e:11:25:c4:9b:64:a3:c6:d6: d3:b9:7c:23:0d:72:7e:01:aa:73:1f:72:40:d2:fc: 7f:7f:bf:0a:ff:48:3c:c5:e9:3b:19:56:26:8d:1b: 40:43:38:e8:21:ab:8c:01:a8:1b:cb:e9:c3:88:31: 0b:1c:0d:1f:3e:ac:34:3d:2b:00:93:3d:16:d2:05: 49:5b:fe:ec:d3:35:57:f8:e4:51:7f:11:18:64:d3: 57:e0:ef:43:d4:e9:f0:f7:68:81:6f:84:4b:50:15: 52:27:4a:fe:3f:e0:c7:3e:70:5d:2f:5d:d2:8c:ac: 45:45:46:e4:1f:f8:07:83:e2:68:6c:6c:6f:32:27: 40:b4:9e:05:9f:cb:b3:3d:e4:84:0e:92:2a:aa:ef: ca:e7:01:88:07:49:00:27:06:45:ac:d5:5d:e8:18: ed:c7:bc:1a:3d:db:01:25:88:6f:43:86:0c:33:e4: 7c:c7:48:82:cd:52:4b:24:fd:8c:c8:24:c4:cd:de: 86:c4:34:e0:02:86:2d:94:f9:83:32:e7:2d:b1:83: 8d:af:8b:03:8c:3c:98:93:34:28:66:8b:ae:ff:59: 5e:25:63:a4:23:ad:c6:60:2b:fb:4f:9e:2e:07:18: 79:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:D4:90:DE:FE:57:82:A8:99:40:24:45:15:05:7B:90:F9:65:4D:37 X509v3 Authority Key Identifier: keyid:90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3234302e302f32342d3234203d3e203633363431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.49.240.0/24 Signature Algorithm: sha256WithRSAEncryption aa:2b:4c:f0:26:40:2b:db:db:07:99:21:eb:30:9a:80:76:f6: 23:a3:fe:d2:88:05:7f:99:ae:e5:68:ec:6c:27:55:ba:60:20: 68:cb:b0:8a:44:4e:40:b4:aa:8f:a1:8c:d6:85:7a:b1:e6:3b: 00:dc:7e:52:3f:3f:1f:80:be:a7:40:80:33:2d:ab:05:ef:77: 81:4b:4c:a8:c3:0f:98:ed:dd:13:27:a3:b4:b2:ae:9e:a4:cd: 7a:b0:7d:93:c4:33:ec:f5:35:d6:f5:9f:2a:f0:5b:46:d5:c8: c6:fe:ae:c2:d1:7a:15:95:33:c3:9d:9b:05:de:e3:1f:b1:b2: fe:56:86:7f:f7:f9:c7:96:6d:ab:44:94:4c:77:0b:9b:67:c2: 33:7e:62:74:56:6a:c1:fd:22:c9:03:80:eb:2b:b4:21:fe:bb: 70:e7:2e:24:28:bc:06:a1:0f:d5:33:29:6e:d8:af:b5:78:bd: 35:f5:63:1b:01:7d:c0:0b:8e:01:f4:9a:bb:19:20:93:e9:16: c8:75:75:4f:f8:f7:da:97:82:ce:07:55:e1:2e:e8:96:2f:98: fb:59:48:e6:42:d9:04:ff:34:0f:d5:a5:e6:7a:d5:a5:d3:97: 08:0c:02:30:54:05:cb:4c:48:4a:ec:b9:2e:bd:da:6f:19:09: 73:e2:62:08 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUcZkcruhSEFxhwYvO7o8CkXXOTpswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NF OEUxMjgwQTAeFw0yNjA0MjIxMzQxMjNaFw0yNzA0MjExMzQ2MjNaMDMxMTAvBgNV BAMTKDhCRDQ5MERFRkU1NzgyQTg5OTQwMjQ0NTE1MDU3QjkwRjk2NTREMzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCW70h4AiHfpweNeuu6rOgwzmdI Ug4RJcSbZKPG1tO5fCMNcn4BqnMfckDS/H9/vwr/SDzF6TsZViaNG0BDOOghq4wB qBvL6cOIMQscDR8+rDQ9KwCTPRbSBUlb/uzTNVf45FF/ERhk01fg70PU6fD3aIFv hEtQFVInSv4/4Mc+cF0vXdKMrEVFRuQf+AeD4mhsbG8yJ0C0ngWfy7M95IQOkiqq 78rnAYgHSQAnBkWs1V3oGO3HvBo92wEliG9Dhgwz5HzHSILNUksk/YzIJMTN3obE NOAChi2U+YMy5y2xg42viwOMPJiTNChmi67/WV4lY6QjrcZgK/tPni4HGHkDAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUi9SQ3v5XgqiZQCRFFQV7kPllTTcwHwYDVR0j BBgwFoAUkJ1VYlGgvl+SNFFAKOvTfOjhKAowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4MjMzMDM0Njc5OTEwNS8wLzkwOUQ1NTYyNTFBMEJFNUY5MjM0NTE0MDI4RUJE MzdDRThFMTI4MEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NFOEUxMjgwQS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU4MjMzMDM0Njc5OTEwNS8wLzMxMzIzMzJlMzQz OTJlMzIzNDMwMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzYzMzM2MzQzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAHsx8DANBgkqhkiG9w0BAQsFAAOCAQEAqitM8CZAK9vbB5kh6zCagHb2 I6P+0ogFf5mu5WjsbCdVumAgaMuwikROQLSqj6GM1oV6seY7ANx+Uj8/H4C+p0CA My2rBe93gUtMqMMPmO3dEyejtLKunqTNerB9k8Qz7PU11vWfKvBbRtXIxv6uwtF6 FZUzw52bBd7jH7Gy/laGf/f5x5Ztq0SUTHcLm2fCM35idFZqwf0iyQOA6yu0If67 cOcuJCi8BqEP1TMpbtivtXi9NfVjGwF9wAuOAfSauxkgk+kWyHV1T/j32peCzgdV 4S7oli+Y+1lI5kLZBP80D9Wl5nrVpdOXCAwCMFQFy0xISuy5Lr3abxkJc+JiCA== -----END CERTIFICATE-----Generated at Mon Apr 27 11:06:44 2026 by rpki-client