$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065588553129525251/0/3132332e39382e352e302f32342d3234203d3e20323133373035.roa File: 3132332e39382e352e302f32342d3234203d3e20323133373035.roa (raw, json) Hash identifier: j2HoCWPCAChe1hsAjx4WMzRY0dIDD6M27em3smh/CYc= Subject key identifier: 88:23:0B:C2:3E:78:02:67:C5:26:11:20:AE:FF:94:99:C8:CA:14:FB Certificate issuer: /CN=E893434A32058DAFE9758FDA7B36659444C9EF8E Certificate serial: 7C6B407C7C860C7B327B141870430AB81078FA9E Authority key identifier: E8:93:43:4A:32:05:8D:AF:E9:75:8F:DA:7B:36:65:94:44:C9:EF:8E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/3132332e39382e352e302f32342d3234203d3e20323133373035.roa Signing time: Wed 22 Apr 2026 07:50:25 +0000 ROA not before: Wed 22 Apr 2026 07:45:25 +0000 ROA not after: Wed 21 Apr 2027 07:50:25 +0000 asID: 213705 IP address blocks: 123.98.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.crl rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 12:29:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:6b:40:7c:7c:86:0c:7b:32:7b:14:18:70:43:0a:b8:10:78:fa:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E893434A32058DAFE9758FDA7B36659444C9EF8E Validity Not Before: Apr 22 07:45:25 2026 GMT Not After : Apr 21 07:50:25 2027 GMT Subject: CN=88230BC23E780267C5261120AEFF9499C8CA14FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:9b:0a:b6:b3:96:e8:45:4a:60:34:6f:0b:c7: ef:34:55:ab:16:ef:29:15:59:3d:3b:93:c6:d1:56: d1:90:f2:05:d3:c7:e7:6f:56:0e:d7:3c:31:3e:50: 97:12:76:df:1b:58:be:06:9b:5c:f8:38:d0:dd:e2: a0:b6:99:22:a7:33:64:5b:5b:a6:22:c2:26:fc:21: 5e:3b:11:83:e6:ea:0b:c7:15:a9:67:05:6b:a9:b2: aa:05:2e:56:71:55:48:a5:4f:e6:ad:d6:cd:97:47: 40:aa:ad:d2:4f:ed:a1:69:f0:c8:a0:26:a7:a5:48: f9:0a:cc:66:90:45:eb:21:6c:2d:3e:af:76:d0:a7: a5:f7:a7:fa:18:be:81:e8:6b:1e:f3:7b:3f:b2:c7: ce:8c:52:b1:8c:b1:0e:6e:c0:6c:2b:b1:c5:58:7a: e9:49:66:10:46:c2:cf:5c:ed:51:0d:2a:b6:fd:41: b0:a8:6c:bc:14:4b:c3:f3:97:fc:6a:b6:39:c4:4d: a3:40:12:bd:eb:dd:a3:dc:e4:0e:9f:4e:70:9b:ec: c9:bb:90:e0:00:c4:e8:5a:6f:ba:e2:c9:9e:14:8f: d5:56:6d:0d:6e:ad:1b:b3:ac:90:ba:9b:a4:b2:4d: 86:fc:b1:16:b7:f7:1f:77:85:34:46:e0:31:db:d0: a3:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:23:0B:C2:3E:78:02:67:C5:26:11:20:AE:FF:94:99:C8:CA:14:FB X509v3 Authority Key Identifier: keyid:E8:93:43:4A:32:05:8D:AF:E9:75:8F:DA:7B:36:65:94:44:C9:EF:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/E893434A32058DAFE9758FDA7B36659444C9EF8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E893434A32058DAFE9758FDA7B36659444C9EF8E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129525251/0/3132332e39382e352e302f32342d3234203d3e20323133373035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.98.5.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:19:b9:a4:4b:31:d0:51:44:2f:44:f5:9c:94:38:16:d0:ac: eb:fc:b6:56:99:39:cd:fc:02:31:68:20:ee:ec:9b:7d:9f:83: 05:67:2e:d9:eb:35:ae:b8:cf:0e:e7:4a:ed:c7:d9:d8:60:a3: 1a:80:7a:0e:02:40:ba:dc:5b:9d:c6:f9:26:89:ce:35:0f:02: d2:bb:37:d0:c9:0c:b9:12:9a:f9:98:f5:10:ec:de:2f:84:47: e9:7e:ca:91:a2:e7:75:5b:56:5f:5f:e6:e9:f9:5c:81:d0:a8: f4:45:bf:80:3c:c0:43:af:d0:10:42:e3:bf:74:46:ad:0f:98: 74:f3:dc:6a:77:57:19:7b:13:36:52:25:59:89:66:0f:26:d1: f0:ea:3b:22:6c:2d:c8:75:e7:4e:90:27:3c:4a:0c:4e:0c:a9: 19:bb:d1:7c:02:5c:f5:b0:a9:47:1c:44:71:94:21:fe:c1:d6: 74:88:6c:07:5a:7a:80:5c:91:a6:0e:5a:9e:ec:54:60:c4:d6: 06:fb:03:92:75:50:f9:ec:39:cb:31:5e:42:90:e0:c4:f4:27: 69:79:b2:6b:a1:0b:d2:ac:2b:8e:83:ba:60:a2:3d:f9:ee:85: d9:63:c2:32:60:93:db:b3:f6:c0:ae:1b:28:d2:e4:96:99:f5: db:a4:ba:e7 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUfGtAfHyGDHsyexQYcEMKuBB4+p4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTg5MzQzNEEzMjA1OERBRkU5NzU4RkRBN0IzNjY1OTQ0 NEM5RUY4RTAeFw0yNjA0MjIwNzQ1MjVaFw0yNzA0MjEwNzUwMjVaMDMxMTAvBgNV BAMTKDg4MjMwQkMyM0U3ODAyNjdDNTI2MTEyMEFFRkY5NDk5QzhDQTE0RkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8mwq2s5boRUpgNG8Lx+80VasW 7ykVWT07k8bRVtGQ8gXTx+dvVg7XPDE+UJcSdt8bWL4Gm1z4ONDd4qC2mSKnM2Rb W6Yiwib8IV47EYPm6gvHFalnBWupsqoFLlZxVUilT+at1s2XR0CqrdJP7aFp8Mig JqelSPkKzGaQReshbC0+r3bQp6X3p/oYvoHoax7zez+yx86MUrGMsQ5uwGwrscVY eulJZhBGws9c7VENKrb9QbCobLwUS8Pzl/xqtjnETaNAEr3r3aPc5A6fTnCb7Mm7 kOAAxOhab7riyZ4Uj9VWbQ1urRuzrJC6m6SyTYb8sRa39x93hTRG4DHb0KPXAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUiCMLwj54AmfFJhEgrv+UmcjKFPswHwYDVR0j BBgwFoAU6JNDSjIFja/pdY/aezZllETJ744wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4ODU1MzEyOTUyNTI1MS8wL0U4OTM0MzRBMzIwNThEQUZFOTc1OEZEQTdCMzY2 NTk0NDRDOUVGOEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRTg5MzQzNEEzMjA1OERBRkU5NzU4RkRBN0IzNjY1OTQ0NEM5RUY4RS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTg4NTUzMTI5NTI1MjUxLzAvMzEzMjMzMmUzOTM4 MmUzNTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMyMzEzMzM3MzAzNS5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAHtiBTANBgkqhkiG9w0BAQsFAAOCAQEATxm5pEsx0FFEL0T1nJQ4FtCs6/y2 Vpk5zfwCMWgg7uybfZ+DBWcu2es1rrjPDudK7cfZ2GCjGoB6DgJAutxbncb5JonO NQ8C0rs30MkMuRKa+Zj1EOzeL4RH6X7KkaLndVtWX1/m6flcgdCo9EW/gDzAQ6/Q EELjv3RGrQ+YdPPcandXGXsTNlIlWYlmDybR8Oo7ImwtyHXnTpAnPEoMTgypGbvR fAJc9bCpRxxEcZQh/sHWdIhsB1p6gFyRpg5anuxUYMTWBvsDknVQ+ew5yzFeQpDg xPQnaXmya6EL0qwrjoO6YKI9+e6F2WPCMmCT27P2wK4bKNLklpn126S65w== -----END CERTIFICATE-----Generated at Fri Apr 24 18:21:20 2026 by rpki-client