$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3234342e302f32342d3234203d3e2034353135.roa File: 3132332e34392e3234342e302f32342d3234203d3e2034353135.roa (raw, json) Hash identifier: 5nbRhB70HL8dMGG5D1YhnKOIbUuScmeVRp1SMJ5GT7U= Subject key identifier: 23:D3:76:1F:FC:76:44:DC:6B:10:14:C9:CF:EF:CA:E8:6D:BE:2A:2C Certificate issuer: /CN=909D556251A0BE5F9234514028EBD37CE8E1280A Certificate serial: 4C3FE1472BDD05B174E4A9FDC465DFC30F1AD31C Authority key identifier: 90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3234342e302f32342d3234203d3e2034353135.roa Signing time: Wed 22 Apr 2026 13:47:47 +0000 ROA not before: Wed 22 Apr 2026 13:42:47 +0000 ROA not after: Wed 21 Apr 2027 13:47:47 +0000 asID: 4515 IP address blocks: 123.49.244.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 10:43:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:3f:e1:47:2b:dd:05:b1:74:e4:a9:fd:c4:65:df:c3:0f:1a:d3:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=909D556251A0BE5F9234514028EBD37CE8E1280A Validity Not Before: Apr 22 13:42:47 2026 GMT Not After : Apr 21 13:47:47 2027 GMT Subject: CN=23D3761FFC7644DC6B1014C9CFEFCAE86DBE2A2C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:4d:fc:03:82:80:8c:1a:75:3f:62:9b:95:d2: 5a:72:16:24:4b:a2:14:55:d8:3d:d7:93:45:19:ef: 11:73:70:ed:e7:a8:a0:ae:fb:f2:7e:14:1c:f3:66: dc:c9:9e:16:8c:0f:fa:29:45:03:1e:f2:7d:fa:a4: 84:58:34:2a:09:9d:e2:bc:20:6c:63:4b:06:a0:3e: c3:d6:27:29:38:cb:66:df:91:e9:d9:84:a9:f6:5c: 6d:2f:55:30:6e:ed:84:d9:01:e3:46:9c:00:9d:d2: d5:5a:ea:4f:1a:19:37:65:84:6f:84:34:7c:9a:f3: b6:60:1d:b8:ef:b6:86:17:12:e6:7d:6b:84:e5:9a: e0:16:31:67:66:df:eb:4f:f6:c4:95:bf:49:3f:7e: 79:fd:2b:41:24:c7:ad:6b:4c:6a:0b:ed:7c:df:80: 07:db:84:22:69:d0:d6:64:09:41:af:5f:5b:2c:c0: c2:52:7d:3b:45:5c:41:e3:ee:f3:dc:04:21:82:00: e0:eb:18:7c:7f:f6:99:ba:a7:8f:e0:87:66:73:45: a6:22:57:df:c5:17:a1:11:16:ac:22:37:1d:b2:bb: 5e:61:01:21:2f:24:bd:48:4f:d2:08:71:66:e9:25: 71:e2:81:51:f6:bd:1e:43:91:ad:ba:1e:e4:d7:4e: 60:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:D3:76:1F:FC:76:44:DC:6B:10:14:C9:CF:EF:CA:E8:6D:BE:2A:2C X509v3 Authority Key Identifier: keyid:90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3234342e302f32342d3234203d3e2034353135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.49.244.0/24 Signature Algorithm: sha256WithRSAEncryption d7:bb:57:8b:e3:c9:40:b7:1e:a7:82:c9:e8:8e:8d:19:15:03: 8f:c1:5b:e0:03:7b:07:68:ce:b8:9b:fa:bb:f0:e4:30:3a:de: 40:b5:e9:04:0a:f0:88:7c:cc:74:98:64:b0:d5:ac:9c:f5:fd: 22:65:fb:08:0c:de:26:64:bf:b5:97:91:5b:69:27:45:b0:e9: fb:7b:6c:66:32:c3:33:e3:dd:56:42:8a:99:d8:65:57:cc:e6: 13:39:0e:36:5c:da:8c:ad:4c:4f:40:df:65:92:65:e0:1a:ec: a2:da:df:cb:58:3f:a4:7a:49:ff:03:97:38:02:ee:e3:34:e6: d3:01:f7:11:b2:02:1d:f1:5d:e2:d6:2d:83:7f:45:98:3d:79: a6:54:ff:e1:4e:c9:cc:96:bb:19:ae:04:0f:d4:b6:45:cd:73: 0c:5f:b7:b6:17:b0:a7:ff:ff:4a:47:63:d8:c4:b3:38:12:d5: af:cd:db:f5:65:f1:7a:60:76:aa:55:d7:9f:c7:26:cf:76:d0: 6e:bf:98:fc:3f:ff:54:3c:e6:1c:99:e3:17:97:9a:14:80:49: c7:62:dc:d5:2b:3a:03:72:a4:0c:e3:ba:38:1d:e9:b1:e8:96: 35:df:1e:f2:e5:b4:2e:26:1a:e7:02:34:15:4b:19:69:fb:32: 51:00:9b:27 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUTD/hRyvdBbF05Kn9xGXfww8a0xwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NF OEUxMjgwQTAeFw0yNjA0MjIxMzQyNDdaFw0yNzA0MjExMzQ3NDdaMDMxMTAvBgNV BAMTKDIzRDM3NjFGRkM3NjQ0REM2QjEwMTRDOUNGRUZDQUU4NkRCRTJBMkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPTfwDgoCMGnU/YpuV0lpyFiRL ohRV2D3Xk0UZ7xFzcO3nqKCu+/J+FBzzZtzJnhaMD/opRQMe8n36pIRYNCoJneK8 IGxjSwagPsPWJyk4y2bfkenZhKn2XG0vVTBu7YTZAeNGnACd0tVa6k8aGTdlhG+E NHya87ZgHbjvtoYXEuZ9a4TlmuAWMWdm3+tP9sSVv0k/fnn9K0Ekx61rTGoL7Xzf gAfbhCJp0NZkCUGvX1sswMJSfTtFXEHj7vPcBCGCAODrGHx/9pm6p4/gh2ZzRaYi V9/FF6ERFqwiNx2yu15hASEvJL1IT9IIcWbpJXHigVH2vR5Dka26HuTXTmC/AgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUI9N2H/x2RNxrEBTJz+/K6G2+KiwwHwYDVR0j BBgwFoAUkJ1VYlGgvl+SNFFAKOvTfOjhKAowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4MjMzMDM0Njc5OTEwNS8wLzkwOUQ1NTYyNTFBMEJFNUY5MjM0NTE0MDI4RUJE MzdDRThFMTI4MEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NFOEUxMjgwQS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTgyMzMwMzQ2Nzk5MTA1LzAvMzEzMjMzMmUzNDM5 MmUzMjM0MzQyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNDM1MzEzNS5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAHsx9DANBgkqhkiG9w0BAQsFAAOCAQEA17tXi+PJQLcep4LJ6I6NGRUDj8Fb 4AN7B2jOuJv6u/DkMDreQLXpBArwiHzMdJhksNWsnPX9ImX7CAzeJmS/tZeRW2kn RbDp+3tsZjLDM+PdVkKKmdhlV8zmEzkONlzajK1MT0DfZZJl4Brsotrfy1g/pHpJ /wOXOALu4zTm0wH3EbICHfFd4tYtg39FmD15plT/4U7JzJa7Ga4ED9S2Rc1zDF+3 thewp///Skdj2MSzOBLVr83b9WXxemB2qlXXn8cmz3bQbr+Y/D//VDzmHJnjF5ea FIBJx2Lc1Ss6A3KkDOO6OB3pseiWNd8e8uW0LiYa5wI0FUsZafsyUQCbJw== -----END CERTIFICATE-----Generated at Mon Apr 27 11:06:44 2026 by rpki-client