$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3234332e302f32342d3234203d3e203633363431.roa File: 3132332e34392e3234332e302f32342d3234203d3e203633363431.roa (raw, json) Hash identifier: j7B5mrbgfvpwS0aXCuXqAatTYd/6S+6ENbS7zth4u38= Subject key identifier: AE:A5:8B:4B:1F:A7:90:98:6D:CD:2A:88:E4:D8:3B:5A:97:5E:C2:AE Certificate issuer: /CN=909D556251A0BE5F9234514028EBD37CE8E1280A Certificate serial: 4E62DB77A94D5542BDC4D6A0F27FDB1D74DCA00C Authority key identifier: 90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3234332e302f32342d3234203d3e203633363431.roa Signing time: Wed 22 Apr 2026 13:46:51 +0000 ROA not before: Wed 22 Apr 2026 13:41:51 +0000 ROA not after: Wed 21 Apr 2027 13:46:51 +0000 asID: 63641 IP address blocks: 123.49.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 10:43:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:62:db:77:a9:4d:55:42:bd:c4:d6:a0:f2:7f:db:1d:74:dc:a0:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=909D556251A0BE5F9234514028EBD37CE8E1280A Validity Not Before: Apr 22 13:41:51 2026 GMT Not After : Apr 21 13:46:51 2027 GMT Subject: CN=AEA58B4B1FA790986DCD2A88E4D83B5A975EC2AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:72:0e:08:8e:8a:bb:80:0e:d1:53:0b:8d:7b: 7d:53:5b:1f:57:d6:fe:e0:d5:1a:e4:e1:4a:21:94: d4:dc:b4:b5:af:9d:09:48:81:69:1f:59:bb:49:3b: 5e:c4:b5:1d:0e:9a:99:55:b4:0d:da:16:c4:a4:43: 07:b9:16:aa:bc:87:c6:83:22:66:a5:e3:ee:1e:31: e9:ae:f6:b1:5b:2d:21:15:53:c5:b8:8e:76:48:9f: ce:58:5f:0e:90:c6:88:81:5c:e9:90:f5:e4:6b:5b: 6c:f7:bf:25:0c:ba:c1:8a:4f:ea:1c:cb:91:39:7b: d8:fd:65:87:cc:99:99:b8:fc:66:90:4c:24:af:fb: 32:59:d1:6b:bb:4d:58:52:0c:26:11:e7:57:24:ae: f9:e6:d2:70:dc:0d:55:9d:cd:81:4c:0c:6f:a4:2e: 26:a6:24:2d:3e:c0:54:ce:34:00:8f:ec:f8:84:f0: e6:3e:57:83:31:1c:f7:3e:de:41:af:12:05:6a:1e: 34:ce:c4:4c:cb:c2:b3:e6:db:b3:3e:e1:82:1a:c8: aa:f4:c5:4c:e6:f6:23:46:70:3f:95:20:2d:52:b5: 6f:59:64:97:5c:e7:59:d5:b2:24:15:f7:b1:bf:92: a5:9a:d3:ac:f1:98:7f:1f:60:7b:da:f7:b8:ea:e1: e2:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:A5:8B:4B:1F:A7:90:98:6D:CD:2A:88:E4:D8:3B:5A:97:5E:C2:AE X509v3 Authority Key Identifier: keyid:90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3234332e302f32342d3234203d3e203633363431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.49.243.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:a1:53:75:ce:16:7f:df:1b:18:5c:90:4b:70:02:52:cf:d2: 0e:2d:d4:e8:9c:46:b8:4f:e2:60:6c:ee:ec:40:aa:a8:1f:7e: 68:f5:e0:18:71:33:9b:fd:a9:aa:6c:05:02:f9:47:9f:ae:0d: 15:8c:b7:3d:f3:2b:c0:4d:06:72:84:41:b3:79:37:29:e5:84: 85:cc:4f:7a:92:63:f4:d2:5a:88:b3:5b:ac:dd:6b:80:8d:b6: ec:b5:7e:af:1c:78:72:27:d3:03:7c:3e:5c:f6:be:b5:48:30: c4:0c:d1:4b:b6:6e:05:6c:c6:fe:36:cf:b1:18:f4:93:da:05: 03:fb:50:2f:e5:9c:eb:07:ac:b8:b6:98:a5:31:f7:85:2e:30: c0:b1:fe:a4:40:92:12:d7:73:65:d5:bc:c6:47:83:ce:fa:0a: 3a:35:a8:ac:ca:a5:7b:42:3a:dd:3b:00:e3:1e:55:78:06:2e: 67:97:29:9c:37:a4:3a:86:e0:79:ca:35:b5:a1:fe:9a:a0:5d: 51:49:cb:33:a3:dc:1e:03:cd:d0:5a:5a:13:fd:7f:10:b6:0f: 1c:42:42:3f:23:3b:41:79:2c:12:89:72:26:64:5c:89:2d:98: d4:5e:dc:8f:71:9c:00:ca:c8:bc:7a:e4:4b:39:61:13:11:3f: 73:b9:8d:c7 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUTmLbd6lNVUK9xNag8n/bHXTcoAwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NF OEUxMjgwQTAeFw0yNjA0MjIxMzQxNTFaFw0yNzA0MjExMzQ2NTFaMDMxMTAvBgNV BAMTKEFFQTU4QjRCMUZBNzkwOTg2RENEMkE4OEU0RDgzQjVBOTc1RUMyQUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDycg4Ijoq7gA7RUwuNe31TWx9X 1v7g1Rrk4UohlNTctLWvnQlIgWkfWbtJO17EtR0OmplVtA3aFsSkQwe5Fqq8h8aD Imal4+4eMemu9rFbLSEVU8W4jnZIn85YXw6QxoiBXOmQ9eRrW2z3vyUMusGKT+oc y5E5e9j9ZYfMmZm4/GaQTCSv+zJZ0Wu7TVhSDCYR51ckrvnm0nDcDVWdzYFMDG+k LiamJC0+wFTONACP7PiE8OY+V4MxHPc+3kGvEgVqHjTOxEzLwrPm27M+4YIayKr0 xUzm9iNGcD+VIC1StW9ZZJdc51nVsiQV97G/kqWa06zxmH8fYHva97jq4eKVAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUrqWLSx+nkJhtzSqI5Ng7Wpdewq4wHwYDVR0j BBgwFoAUkJ1VYlGgvl+SNFFAKOvTfOjhKAowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4MjMzMDM0Njc5OTEwNS8wLzkwOUQ1NTYyNTFBMEJFNUY5MjM0NTE0MDI4RUJE MzdDRThFMTI4MEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NFOEUxMjgwQS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU4MjMzMDM0Njc5OTEwNS8wLzMxMzIzMzJlMzQz OTJlMzIzNDMzMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzYzMzM2MzQzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAHsx8zANBgkqhkiG9w0BAQsFAAOCAQEAm6FTdc4Wf98bGFyQS3ACUs/S Di3U6JxGuE/iYGzu7ECqqB9+aPXgGHEzm/2pqmwFAvlHn64NFYy3PfMrwE0GcoRB s3k3KeWEhcxPepJj9NJaiLNbrN1rgI227LV+rxx4cifTA3w+XPa+tUgwxAzRS7Zu BWzG/jbPsRj0k9oFA/tQL+Wc6wesuLaYpTH3hS4wwLH+pECSEtdzZdW8xkeDzvoK OjWorMqle0I63TsA4x5VeAYuZ5cpnDekOobgeco1taH+mqBdUUnLM6PcHgPN0Fpa E/1/ELYPHEJCPyM7QXksEolyJmRciS2Y1F7cj3GcAMrIvHrkSzlhExE/c7mNxw== -----END CERTIFICATE-----Generated at Mon Apr 27 11:06:38 2026 by rpki-client