$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065588553129525251/0/3132332e39382e312e302f32342d3234203d3e20323133373035.roa File: 3132332e39382e312e302f32342d3234203d3e20323133373035.roa (raw, json) Hash identifier: ufTYmKUzHMiPdkI4HPYbdvpxwEcw/U43h4fBkeH4aUo= Subject key identifier: 82:2C:49:70:18:F0:B6:AF:BD:CA:18:CC:6E:E6:FC:02:F3:9B:5F:66 Certificate issuer: /CN=E893434A32058DAFE9758FDA7B36659444C9EF8E Certificate serial: 21BBF68BEF92BAA92319F9E9343D4E678640F0EF Authority key identifier: E8:93:43:4A:32:05:8D:AF:E9:75:8F:DA:7B:36:65:94:44:C9:EF:8E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/3132332e39382e312e302f32342d3234203d3e20323133373035.roa Signing time: Wed 22 Apr 2026 07:49:50 +0000 ROA not before: Wed 22 Apr 2026 07:44:50 +0000 ROA not after: Wed 21 Apr 2027 07:49:50 +0000 asID: 213705 IP address blocks: 123.98.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.crl rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 12:29:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:bb:f6:8b:ef:92:ba:a9:23:19:f9:e9:34:3d:4e:67:86:40:f0:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E893434A32058DAFE9758FDA7B36659444C9EF8E Validity Not Before: Apr 22 07:44:50 2026 GMT Not After : Apr 21 07:49:50 2027 GMT Subject: CN=822C497018F0B6AFBDCA18CC6EE6FC02F39B5F66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:69:b2:ef:16:62:dc:95:9d:90:0b:c8:4c:fc: 44:b5:5f:4a:56:57:7c:52:04:27:9f:86:c4:65:e8: 42:f9:52:81:b1:84:b2:5b:7a:53:94:79:26:e0:cd: 81:8b:23:9b:d0:08:8f:8b:f3:6c:e9:5a:56:d8:51: 9e:df:98:23:b0:7c:e6:44:9c:cc:a5:59:fc:41:83: aa:cb:a7:07:6f:f0:b2:64:a7:91:05:d4:e5:f6:27: 8f:4e:9c:93:12:c7:85:45:48:e4:53:82:26:af:39: b7:be:ad:99:c3:ba:e0:dc:de:62:08:2f:7d:d3:53: 19:df:fc:46:58:ba:0b:65:c6:48:35:0f:49:74:2d: cc:a2:33:7c:57:10:27:49:56:df:e6:ce:05:21:4b: 76:a3:3f:9d:81:8f:61:59:4a:99:be:27:f5:7b:fb: 88:41:e1:7b:f4:3b:56:5f:b7:55:bf:c8:6f:18:ec: 2c:61:05:f5:68:3f:0f:00:11:4a:a0:c6:49:47:be: ce:bd:8a:c7:05:3a:00:eb:66:3a:6b:a2:64:ae:5b: 08:e9:08:bc:75:e2:16:1e:78:b3:29:c0:62:e8:07: b1:9d:37:18:25:74:ac:48:d2:c5:3f:c8:8a:ca:1b: d7:1e:8b:28:12:f7:09:37:cd:da:bb:c6:9d:68:ef: 53:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:2C:49:70:18:F0:B6:AF:BD:CA:18:CC:6E:E6:FC:02:F3:9B:5F:66 X509v3 Authority Key Identifier: keyid:E8:93:43:4A:32:05:8D:AF:E9:75:8F:DA:7B:36:65:94:44:C9:EF:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/3132332e39382e312e302f32342d3234203d3e20323133373035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.98.1.0/24 Signature Algorithm: sha256WithRSAEncryption 81:78:f0:ca:4e:1f:43:50:91:b8:94:9e:90:30:b8:78:11:cb: d8:59:80:b9:c0:35:dd:51:09:73:00:5e:0e:3c:a1:23:a3:ca: 30:cb:02:22:e0:af:0d:32:9f:11:a1:7b:60:94:b5:49:3b:fa: 66:09:c8:c4:42:5d:3d:46:5c:68:5c:dc:02:ba:2d:05:80:dc: 62:ef:81:17:c8:c7:cb:2d:cf:a8:dd:74:14:f8:06:1c:9d:c7: 35:5e:fa:97:68:e6:f3:d6:3b:69:72:2f:96:ae:1a:a2:ff:21: cd:00:0b:7e:b1:15:a0:02:c7:11:e5:2c:ab:a8:37:22:4d:47: e4:8a:44:5b:b5:b2:fd:69:19:be:c3:9c:d8:31:fb:13:0d:4f: 8a:ac:22:57:4f:2d:e8:4f:1b:be:fc:6d:d9:91:72:a1:37:1f: 5b:af:ba:66:95:03:06:8d:60:7d:95:06:e8:b6:3d:54:5f:f5: 83:b0:34:c5:07:87:22:0c:ad:01:6f:4c:e1:4d:68:5f:7b:d0: 13:26:a7:fa:fa:1d:53:e1:77:39:e3:08:4c:9f:6f:1d:36:b5: 57:f6:46:11:c8:f3:a6:39:f3:eb:69:42:2b:f6:e5:23:1c:6c: d8:64:92:ef:a1:9c:39:6c:31:5b:55:6f:7f:47:6d:69:ec:c5: 72:28:10:4c -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUIbv2i++SuqkjGfnpND1OZ4ZA8O8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTg5MzQzNEEzMjA1OERBRkU5NzU4RkRBN0IzNjY1OTQ0 NEM5RUY4RTAeFw0yNjA0MjIwNzQ0NTBaFw0yNzA0MjEwNzQ5NTBaMDMxMTAvBgNV BAMTKDgyMkM0OTcwMThGMEI2QUZCRENBMThDQzZFRTZGQzAyRjM5QjVGNjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwabLvFmLclZ2QC8hM/ES1X0pW V3xSBCefhsRl6EL5UoGxhLJbelOUeSbgzYGLI5vQCI+L82zpWlbYUZ7fmCOwfOZE nMylWfxBg6rLpwdv8LJkp5EF1OX2J49OnJMSx4VFSORTgiavObe+rZnDuuDc3mII L33TUxnf/EZYugtlxkg1D0l0LcyiM3xXECdJVt/mzgUhS3ajP52Bj2FZSpm+J/V7 +4hB4Xv0O1Zft1W/yG8Y7CxhBfVoPw8AEUqgxklHvs69iscFOgDrZjpromSuWwjp CLx14hYeeLMpwGLoB7GdNxgldKxI0sU/yIrKG9ceiygS9wk3zdq7xp1o71P9AgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUgixJcBjwtq+9yhjMbub8AvObX2YwHwYDVR0j BBgwFoAU6JNDSjIFja/pdY/aezZllETJ744wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4ODU1MzEyOTUyNTI1MS8wL0U4OTM0MzRBMzIwNThEQUZFOTc1OEZEQTdCMzY2 NTk0NDRDOUVGOEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRTg5MzQzNEEzMjA1OERBRkU5NzU4RkRBN0IzNjY1OTQ0NEM5RUY4RS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTg4NTUzMTI5NTI1MjUxLzAvMzEzMjMzMmUzOTM4 MmUzMTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMyMzEzMzM3MzAzNS5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAHtiATANBgkqhkiG9w0BAQsFAAOCAQEAgXjwyk4fQ1CRuJSekDC4eBHL2FmA ucA13VEJcwBeDjyhI6PKMMsCIuCvDTKfEaF7YJS1STv6ZgnIxEJdPUZcaFzcArot BYDcYu+BF8jHyy3PqN10FPgGHJ3HNV76l2jm89Y7aXIvlq4aov8hzQALfrEVoALH EeUsq6g3Ik1H5IpEW7Wy/WkZvsOc2DH7Ew1PiqwiV08t6E8bvvxt2ZFyoTcfW6+6 ZpUDBo1gfZUG6LY9VF/1g7A0xQeHIgytAW9M4U1oX3vQEyan+vodU+F3OeMITJ9v HTa1V/ZGEcjzpjnz62lCK/blIxxs2GSS76GcOWwxW1Vvf0dtaezFcigQTA== -----END CERTIFICATE-----Generated at Fri Apr 24 18:26:15 2026 by rpki-client