$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3234332e302f32342d3234203d3e2034353135.roa File: 3132332e34392e3234332e302f32342d3234203d3e2034353135.roa (raw, json) Hash identifier: XojtGS7FMb6RzQbGx0oMe+G6mZETUYDK8k+l+dTAwXw= Subject key identifier: 93:18:95:E8:25:97:9B:E6:9A:6C:F7:D1:19:B9:06:C7:BC:AB:EC:78 Certificate issuer: /CN=909D556251A0BE5F9234514028EBD37CE8E1280A Certificate serial: 5D8DA54B558B53DF6CEEF57864C9AF42643400EA Authority key identifier: 90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3234332e302f32342d3234203d3e2034353135.roa Signing time: Wed 22 Apr 2026 13:46:51 +0000 ROA not before: Wed 22 Apr 2026 13:41:51 +0000 ROA not after: Wed 21 Apr 2027 13:46:51 +0000 asID: 4515 IP address blocks: 123.49.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 10:43:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:8d:a5:4b:55:8b:53:df:6c:ee:f5:78:64:c9:af:42:64:34:00:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=909D556251A0BE5F9234514028EBD37CE8E1280A Validity Not Before: Apr 22 13:41:51 2026 GMT Not After : Apr 21 13:46:51 2027 GMT Subject: CN=931895E825979BE69A6CF7D119B906C7BCABEC78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:77:d5:95:0c:a9:47:34:98:19:a0:b0:07:5a: e8:1e:55:75:59:03:0c:f2:ea:2b:b3:ae:c0:2d:75: f8:8d:44:21:df:cc:dc:72:7e:49:1d:63:bb:3d:4e: c9:13:b8:07:5d:34:9a:ce:24:ae:e9:f8:48:de:44: 46:16:62:f1:05:b6:55:19:d4:0d:c1:7f:fc:d7:ce: e9:18:a0:3d:00:17:cc:b3:d4:8f:36:07:97:5e:f6: a4:74:ed:ee:09:7f:a2:09:1f:19:c4:4d:dc:fe:29: ec:e1:57:be:6a:56:53:63:b1:df:1b:8c:c6:0b:11: 1d:c0:89:42:0b:20:1d:80:c1:8c:af:73:b3:06:9c: 1f:ef:b5:45:c1:08:f1:e9:c8:4d:5c:c9:2d:a2:92: 95:ce:6e:41:60:0f:79:05:94:83:d5:56:41:ff:9f: 65:59:bb:48:6e:17:1c:61:3e:46:f6:0c:48:e2:1b: 37:eb:12:fb:c5:79:c1:fe:1d:e7:1c:34:28:8b:89: fe:4f:c6:cf:ae:29:26:de:f8:df:c4:0d:65:e4:3a: ff:84:d9:4d:4b:c1:28:e9:d1:94:c2:87:d1:bb:79: b0:ea:9a:d6:52:e7:88:7a:29:2f:f6:df:54:ca:27: 1a:00:ea:29:93:75:9b:e7:3f:ed:23:e6:1d:dd:2c: 24:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:18:95:E8:25:97:9B:E6:9A:6C:F7:D1:19:B9:06:C7:BC:AB:EC:78 X509v3 Authority Key Identifier: keyid:90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3234332e302f32342d3234203d3e2034353135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.49.243.0/24 Signature Algorithm: sha256WithRSAEncryption 71:1c:df:15:03:1a:1d:ca:7f:44:cc:bd:24:e0:b8:2e:8c:1d: d4:87:5b:46:30:13:f1:d1:fa:cd:64:c7:0a:ae:5e:bb:e3:84: a8:04:24:7b:bb:49:f9:b0:34:26:cf:fc:de:63:b5:ad:15:da: 0d:bf:07:92:f2:02:78:08:69:58:fd:31:45:16:32:55:fc:83: 99:18:de:54:b3:e9:d1:cb:cf:b4:b8:0c:e9:0c:b5:5c:a2:fc: d1:21:4d:6a:08:b5:b0:33:de:d9:20:34:ea:b2:e2:8d:06:ce: 10:16:da:8c:46:3c:ae:5f:60:7c:cb:2a:f0:88:3d:e3:5a:1a: 0c:2c:13:97:4a:9e:ee:39:2f:91:f2:7e:32:ce:0d:51:9d:08: 63:9a:a9:11:e0:84:e5:95:00:0e:ac:e2:37:7d:a5:5f:89:aa: 0f:62:e4:c2:a1:68:9d:01:2e:59:0f:19:57:15:4d:67:01:ec: 10:fe:fd:c4:55:9d:56:40:99:63:b7:57:0d:d0:2d:92:76:af: 2e:70:41:1d:6b:7c:4a:7a:7d:5c:62:a3:07:a0:23:1a:d1:28: 84:45:e4:25:a4:56:ff:90:2c:3c:de:2b:99:e0:4b:78:3f:d4: 52:33:53:35:c0:5c:cb:6e:74:9f:7f:01:83:4b:ca:1b:82:ec: 9b:c3:26:06 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUXY2lS1WLU99s7vV4ZMmvQmQ0AOowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NF OEUxMjgwQTAeFw0yNjA0MjIxMzQxNTFaFw0yNzA0MjExMzQ2NTFaMDMxMTAvBgNV BAMTKDkzMTg5NUU4MjU5NzlCRTY5QTZDRjdEMTE5QjkwNkM3QkNBQkVDNzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7d9WVDKlHNJgZoLAHWugeVXVZ Awzy6iuzrsAtdfiNRCHfzNxyfkkdY7s9TskTuAddNJrOJK7p+EjeREYWYvEFtlUZ 1A3Bf/zXzukYoD0AF8yz1I82B5de9qR07e4Jf6IJHxnETdz+KezhV75qVlNjsd8b jMYLER3AiUILIB2AwYyvc7MGnB/vtUXBCPHpyE1cyS2ikpXObkFgD3kFlIPVVkH/ n2VZu0huFxxhPkb2DEjiGzfrEvvFecH+HeccNCiLif5Pxs+uKSbe+N/EDWXkOv+E 2U1LwSjp0ZTCh9G7ebDqmtZS54h6KS/231TKJxoA6imTdZvnP+0j5h3dLCTrAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUkxiV6CWXm+aabPfRGbkGx7yr7HgwHwYDVR0j BBgwFoAUkJ1VYlGgvl+SNFFAKOvTfOjhKAowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4MjMzMDM0Njc5OTEwNS8wLzkwOUQ1NTYyNTFBMEJFNUY5MjM0NTE0MDI4RUJE MzdDRThFMTI4MEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NFOEUxMjgwQS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTgyMzMwMzQ2Nzk5MTA1LzAvMzEzMjMzMmUzNDM5 MmUzMjM0MzMyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNDM1MzEzNS5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAHsx8zANBgkqhkiG9w0BAQsFAAOCAQEAcRzfFQMaHcp/RMy9JOC4Lowd1Idb RjAT8dH6zWTHCq5eu+OEqAQke7tJ+bA0Js/83mO1rRXaDb8HkvICeAhpWP0xRRYy VfyDmRjeVLPp0cvPtLgM6Qy1XKL80SFNagi1sDPe2SA06rLijQbOEBbajEY8rl9g fMsq8Ig941oaDCwTl0qe7jkvkfJ+Ms4NUZ0IY5qpEeCE5ZUADqziN32lX4mqD2Lk wqFonQEuWQ8ZVxVNZwHsEP79xFWdVkCZY7dXDdAtknavLnBBHWt8Snp9XGKjB6Aj GtEohEXkJaRW/5AsPN4rmeBLeD/UUjNTNcBcy250n38Bg0vKG4Lsm8MmBg== -----END CERTIFICATE-----Generated at Mon Apr 27 11:06:38 2026 by rpki-client