$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3234342e302f32342d3234203d3e203633363431.roa File: 3132332e34392e3234342e302f32342d3234203d3e203633363431.roa (raw, json) Hash identifier: DnTPKQ1RLOrFlChJhToGULgstF0gn9/DicsnO+v+t3g= Subject key identifier: 55:84:40:EB:13:C3:67:32:52:3C:B3:EB:67:2C:91:FE:0C:EC:50:7F Certificate issuer: /CN=909D556251A0BE5F9234514028EBD37CE8E1280A Certificate serial: 405386481DE93B3F7F27A64F47640CFCDBC6080B Authority key identifier: 90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3234342e302f32342d3234203d3e203633363431.roa Signing time: Wed 22 Apr 2026 13:47:47 +0000 ROA not before: Wed 22 Apr 2026 13:42:47 +0000 ROA not after: Wed 21 Apr 2027 13:47:47 +0000 asID: 63641 IP address blocks: 123.49.244.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 10:43:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:53:86:48:1d:e9:3b:3f:7f:27:a6:4f:47:64:0c:fc:db:c6:08:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=909D556251A0BE5F9234514028EBD37CE8E1280A Validity Not Before: Apr 22 13:42:47 2026 GMT Not After : Apr 21 13:47:47 2027 GMT Subject: CN=558440EB13C36732523CB3EB672C91FE0CEC507F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:63:37:cd:85:c7:9b:71:fc:42:04:00:bd:0e: 9c:8d:81:a5:ff:6e:10:e8:8c:b9:b5:48:b8:b6:01: 08:b4:f2:31:a1:bd:67:db:04:c3:f4:03:f9:22:89: 22:30:6e:12:4c:4b:d6:78:1f:46:ff:ed:5a:18:56: 50:ed:48:aa:46:f6:9c:0d:a3:1d:6b:cc:27:4e:76: eb:38:fe:c5:63:6b:70:ab:56:f1:cc:e3:c6:f5:5e: 32:53:e2:76:72:51:be:ec:02:93:a1:bc:6b:34:ad: 64:1e:8a:74:bb:4a:19:45:1c:cf:e5:51:02:8b:99: 81:6d:49:9e:9b:db:68:c9:ae:0a:01:44:9f:aa:4c: fb:0c:33:a4:f0:98:2b:e1:83:5b:39:8f:35:b4:11: 9f:64:76:f6:ad:7c:fe:08:7d:b8:ad:80:59:6c:5e: 7a:bd:12:d4:42:aa:07:80:c6:1d:b5:7c:4d:3f:b1: 2f:69:a4:ef:00:0e:bc:0e:8d:64:1c:29:51:da:20: 8e:e5:2e:9b:69:ae:5e:fc:fe:e3:a5:28:5b:bb:a7: 92:cf:5b:af:8f:14:6b:a0:53:3e:ad:8c:ea:18:7d: 76:a9:0e:71:02:d8:d6:a6:d8:ee:6f:44:3f:ae:3f: 90:ff:1b:c9:96:a7:be:11:a0:a6:6c:c6:55:25:01: e7:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:84:40:EB:13:C3:67:32:52:3C:B3:EB:67:2C:91:FE:0C:EC:50:7F X509v3 Authority Key Identifier: keyid:90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3234342e302f32342d3234203d3e203633363431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.49.244.0/24 Signature Algorithm: sha256WithRSAEncryption ad:7c:fc:7d:e1:31:05:69:bb:42:e1:10:0c:41:bf:ae:59:f0: d0:7b:9c:a3:43:52:c9:6a:fb:10:fa:d1:1f:23:f9:07:48:2d: 1e:79:4a:a4:35:bc:bd:90:b2:ac:1a:80:65:bb:bb:f1:df:e0: ae:b8:99:c4:66:99:df:03:92:e8:89:ff:15:53:2a:1c:d6:86: 78:46:79:95:8a:be:70:58:a1:92:e7:76:d2:42:e6:96:a7:4a: 2f:0c:9c:78:ba:34:dc:9d:87:31:02:6b:e9:7e:09:99:c8:ad: ff:87:3b:bd:c4:20:40:7f:aa:96:d9:96:7e:0a:f1:84:8c:26: 95:79:d5:3c:a4:7c:c8:77:d6:87:ea:32:40:93:e6:e4:40:08: 72:03:70:b0:4b:f0:85:ea:43:5f:4d:f1:15:f2:d4:53:cf:aa: d4:64:76:36:f9:8b:84:b4:60:60:ff:df:b6:3f:c6:82:c1:58: 52:da:91:bd:3d:36:4a:ed:c9:85:58:c4:2e:43:bf:aa:10:45: 9c:b0:65:b0:37:68:a9:88:c5:79:41:0c:41:31:4d:f3:79:34: d0:c2:61:b0:79:ff:ae:54:8a:1f:51:bd:03:a1:1c:00:4b:36: e4:b0:38:d7:39:3a:b0:93:90:09:33:12:a0:95:c8:d1:19:b8: 01:4c:0d:d5 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUQFOGSB3pOz9/J6ZPR2QM/NvGCAswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NF OEUxMjgwQTAeFw0yNjA0MjIxMzQyNDdaFw0yNzA0MjExMzQ3NDdaMDMxMTAvBgNV BAMTKDU1ODQ0MEVCMTNDMzY3MzI1MjNDQjNFQjY3MkM5MUZFMENFQzUwN0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+YzfNhcebcfxCBAC9DpyNgaX/ bhDojLm1SLi2AQi08jGhvWfbBMP0A/kiiSIwbhJMS9Z4H0b/7VoYVlDtSKpG9pwN ox1rzCdOdus4/sVja3CrVvHM48b1XjJT4nZyUb7sApOhvGs0rWQeinS7ShlFHM/l UQKLmYFtSZ6b22jJrgoBRJ+qTPsMM6TwmCvhg1s5jzW0EZ9kdvatfP4IfbitgFls Xnq9EtRCqgeAxh21fE0/sS9ppO8ADrwOjWQcKVHaII7lLptprl78/uOlKFu7p5LP W6+PFGugUz6tjOoYfXapDnEC2Nam2O5vRD+uP5D/G8mWp74RoKZsxlUlAeevAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUVYRA6xPDZzJSPLPrZyyR/gzsUH8wHwYDVR0j BBgwFoAUkJ1VYlGgvl+SNFFAKOvTfOjhKAowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4MjMzMDM0Njc5OTEwNS8wLzkwOUQ1NTYyNTFBMEJFNUY5MjM0NTE0MDI4RUJE MzdDRThFMTI4MEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NFOEUxMjgwQS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU4MjMzMDM0Njc5OTEwNS8wLzMxMzIzMzJlMzQz OTJlMzIzNDM0MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzYzMzM2MzQzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAHsx9DANBgkqhkiG9w0BAQsFAAOCAQEArXz8feExBWm7QuEQDEG/rlnw 0Huco0NSyWr7EPrRHyP5B0gtHnlKpDW8vZCyrBqAZbu78d/grriZxGaZ3wOS6In/ FVMqHNaGeEZ5lYq+cFihkud20kLmlqdKLwyceLo03J2HMQJr6X4Jmcit/4c7vcQg QH+qltmWfgrxhIwmlXnVPKR8yHfWh+oyQJPm5EAIcgNwsEvwhepDX03xFfLUU8+q 1GR2NvmLhLRgYP/ftj/GgsFYUtqRvT02Su3JhVjELkO/qhBFnLBlsDdoqYjFeUEM QTFN83k00MJhsHn/rlSKH1G9A6EcAEs25LA41zk6sJOQCTMSoJXI0Rm4AUwN1Q== -----END CERTIFICATE-----Generated at Mon Apr 27 11:06:44 2026 by rpki-client