$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065588553129525251/0/3132332e39382e302e302f32342d3234203d3e20323133373035.roa File: 3132332e39382e302e302f32342d3234203d3e20323133373035.roa (raw, json) Hash identifier: j4Nl2qZcmxpS+QZPyBmkfdFNLoEdM52HQnw7ZjZ66ec= Subject key identifier: E1:3C:47:94:0C:38:4E:16:A3:0B:C9:BE:42:C4:1B:AD:C1:91:BD:B3 Certificate issuer: /CN=E893434A32058DAFE9758FDA7B36659444C9EF8E Certificate serial: 1ED804875D8F19A18020CA763E6E65233BD6B77A Authority key identifier: E8:93:43:4A:32:05:8D:AF:E9:75:8F:DA:7B:36:65:94:44:C9:EF:8E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/3132332e39382e302e302f32342d3234203d3e20323133373035.roa Signing time: Wed 22 Apr 2026 07:49:43 +0000 ROA not before: Wed 22 Apr 2026 07:44:43 +0000 ROA not after: Wed 21 Apr 2027 07:49:43 +0000 asID: 213705 IP address blocks: 123.98.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.crl rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 12:29:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:d8:04:87:5d:8f:19:a1:80:20:ca:76:3e:6e:65:23:3b:d6:b7:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E893434A32058DAFE9758FDA7B36659444C9EF8E Validity Not Before: Apr 22 07:44:43 2026 GMT Not After : Apr 21 07:49:43 2027 GMT Subject: CN=E13C47940C384E16A30BC9BE42C41BADC191BDB3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:06:75:2e:a8:50:df:f4:e1:32:4f:18:64:64: 7c:56:d2:80:e2:09:98:78:3d:c5:f3:ed:fa:b8:91: 10:f7:26:fe:63:77:95:ac:7a:50:ca:c5:1f:20:14: 50:4b:e7:5c:34:e4:22:f8:41:31:70:25:a3:ea:33: 04:76:00:30:19:8f:06:d2:c6:f5:5d:77:1c:7e:68: 3e:bb:af:61:29:84:9f:1f:0e:3a:df:de:69:a9:64: 32:e5:e7:83:e8:a0:8d:d3:59:07:62:06:29:90:0f: 16:96:b0:ed:ef:b9:f5:40:2a:3e:6d:24:d0:20:b8: a2:c4:77:16:a0:36:5a:1c:68:90:ee:ad:22:62:a1: 3c:f7:bf:53:4b:28:e2:23:dc:86:bc:43:d6:3c:96: e1:d0:0d:4d:cc:92:6c:50:5a:4f:38:24:5f:14:82: 7e:a0:4b:71:d7:7e:68:3d:e5:eb:3b:d3:9a:0e:47: 8b:69:a2:c6:26:f6:86:52:89:28:dc:6f:24:ba:48: d0:dd:2d:a5:32:94:b1:26:80:76:f2:1e:2c:e3:7f: b9:b0:42:30:e8:b9:d1:ba:56:99:51:02:3b:ce:b5: 38:89:69:89:68:b9:79:5f:71:1b:64:33:31:4d:bb: 05:9d:63:80:9e:33:07:93:1c:53:a8:b4:de:d6:f1: 5a:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:3C:47:94:0C:38:4E:16:A3:0B:C9:BE:42:C4:1B:AD:C1:91:BD:B3 X509v3 Authority Key Identifier: keyid:E8:93:43:4A:32:05:8D:AF:E9:75:8F:DA:7B:36:65:94:44:C9:EF:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/3132332e39382e302e302f32342d3234203d3e20323133373035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.98.0.0/24 Signature Algorithm: sha256WithRSAEncryption 68:a8:da:ef:a1:55:d6:c7:e3:97:f9:16:88:97:16:4c:a4:cb: cb:f3:be:aa:5b:ba:39:b6:1a:2d:45:82:ff:58:86:24:83:27: 7b:23:17:2d:4a:ab:e2:f6:8d:30:4d:fd:65:1d:0d:fd:03:33: d6:3f:b1:20:73:6c:10:80:a4:d0:b3:a6:7d:aa:ac:5d:c6:a2: 5f:3c:9d:80:04:4c:a0:45:14:a8:d9:cd:c3:11:b2:37:ed:16: bc:ba:de:02:54:54:39:bb:e2:35:e6:22:50:35:3c:23:84:78: fb:f1:8e:2d:17:23:0b:4d:75:ff:83:3c:71:f3:0a:25:63:c2: d5:a2:49:f3:0c:49:69:31:a4:d9:80:1f:70:0d:00:f2:c3:ea: ac:f6:de:3a:98:10:e1:90:a1:77:dd:cd:80:7d:ef:7e:05:12: 4f:6a:b8:30:92:da:5d:fa:d1:c4:8f:85:ac:f1:9b:78:66:13: 21:8d:cd:7b:32:e0:c0:83:bd:0b:19:a9:dd:ee:98:0e:5c:ab: 5c:62:d7:88:97:f0:eb:de:f8:d4:1a:fa:52:45:2f:a4:db:25: 9e:00:cb:61:74:09:25:d0:43:4e:5e:f0:3d:56:4c:b2:c4:d3: 55:59:72:2a:39:10:e4:66:b5:51:5d:10:2e:46:61:2b:fc:6f: 66:69:49:3a -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUHtgEh12PGaGAIMp2Pm5lIzvWt3owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTg5MzQzNEEzMjA1OERBRkU5NzU4RkRBN0IzNjY1OTQ0 NEM5RUY4RTAeFw0yNjA0MjIwNzQ0NDNaFw0yNzA0MjEwNzQ5NDNaMDMxMTAvBgNV BAMTKEUxM0M0Nzk0MEMzODRFMTZBMzBCQzlCRTQyQzQxQkFEQzE5MUJEQjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdBnUuqFDf9OEyTxhkZHxW0oDi CZh4PcXz7fq4kRD3Jv5jd5WselDKxR8gFFBL51w05CL4QTFwJaPqMwR2ADAZjwbS xvVddxx+aD67r2EphJ8fDjrf3mmpZDLl54PooI3TWQdiBimQDxaWsO3vufVAKj5t JNAguKLEdxagNlocaJDurSJioTz3v1NLKOIj3Ia8Q9Y8luHQDU3MkmxQWk84JF8U gn6gS3HXfmg95es705oOR4tposYm9oZSiSjcbyS6SNDdLaUylLEmgHbyHizjf7mw QjDoudG6VplRAjvOtTiJaYlouXlfcRtkMzFNuwWdY4CeMweTHFOotN7W8VrtAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQU4TxHlAw4ThajC8m+QsQbrcGRvbMwHwYDVR0j BBgwFoAU6JNDSjIFja/pdY/aezZllETJ744wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4ODU1MzEyOTUyNTI1MS8wL0U4OTM0MzRBMzIwNThEQUZFOTc1OEZEQTdCMzY2 NTk0NDRDOUVGOEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRTg5MzQzNEEzMjA1OERBRkU5NzU4RkRBN0IzNjY1OTQ0NEM5RUY4RS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTg4NTUzMTI5NTI1MjUxLzAvMzEzMjMzMmUzOTM4 MmUzMDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMyMzEzMzM3MzAzNS5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAHtiADANBgkqhkiG9w0BAQsFAAOCAQEAaKja76FV1sfjl/kWiJcWTKTLy/O+ qlu6ObYaLUWC/1iGJIMneyMXLUqr4vaNME39ZR0N/QMz1j+xIHNsEICk0LOmfaqs XcaiXzydgARMoEUUqNnNwxGyN+0WvLreAlRUObviNeYiUDU8I4R4+/GOLRcjC011 /4M8cfMKJWPC1aJJ8wxJaTGk2YAfcA0A8sPqrPbeOpgQ4ZChd93NgH3vfgUST2q4 MJLaXfrRxI+FrPGbeGYTIY3NezLgwIO9Cxmp3e6YDlyrXGLXiJfw69741Br6UkUv pNslngDLYXQJJdBDTl7wPVZMssTTVVlyKjkQ5Ga1UV0QLkZhK/xvZmlJOg== -----END CERTIFICATE-----Generated at Fri Apr 24 18:21:19 2026 by rpki-client