$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096275330777350146/0/3132312e34362e3133362e302f32322d3232203d3e20313335333931.roa File: 3132312e34362e3133362e302f32322d3232203d3e20313335333931.roa (raw, json) Hash identifier: ufpNX0pVvh4ypNIQLTtjtHnM760e0V9291X6T0X3CPU= Subject key identifier: FC:64:80:C4:13:A4:0B:07:C6:34:1D:99:23:D5:17:A9:DB:E1:C7:89 Certificate issuer: /CN=E3E0C774E3B2BC58790E7499837A4155C1A869E6 Certificate serial: 0848A92956DBC77D7EDE8DBFF8C2D3E835E9948F Authority key identifier: E3:E0:C7:74:E3:B2:BC:58:79:0E:74:99:83:7A:41:55:C1:A8:69:E6 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E3E0C774E3B2BC58790E7499837A4155C1A869E6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096275330777350146/0/3132312e34362e3133362e302f32322d3232203d3e20313335333931.roa Signing time: Thu 23 Apr 2026 08:01:32 +0000 ROA not before: Thu 23 Apr 2026 07:56:32 +0000 ROA not after: Thu 22 Apr 2027 08:01:32 +0000 asID: 135391 IP address blocks: 121.46.136.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096275330777350146/0/E3E0C774E3B2BC58790E7499837A4155C1A869E6.crl rsync://rpki-rps.cnnic.cn/repo/A1096275330777350146/0/E3E0C774E3B2BC58790E7499837A4155C1A869E6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E3E0C774E3B2BC58790E7499837A4155C1A869E6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 06:27:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:48:a9:29:56:db:c7:7d:7e:de:8d:bf:f8:c2:d3:e8:35:e9:94:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E3E0C774E3B2BC58790E7499837A4155C1A869E6 Validity Not Before: Apr 23 07:56:32 2026 GMT Not After : Apr 22 08:01:32 2027 GMT Subject: CN=FC6480C413A40B07C6341D9923D517A9DBE1C789 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:fc:f0:33:89:fa:31:a7:cf:30:42:d2:57:17: 1f:90:41:9f:f1:9b:18:07:c5:8b:4f:c0:36:74:ff: e0:33:98:b8:a8:cb:1b:38:ba:ba:ef:cf:e0:c7:c2: 07:43:cf:48:51:df:33:e5:5f:40:4d:eb:80:41:ed: b2:8f:18:44:b1:6e:ce:43:20:48:0e:d2:1e:4b:ad: 62:21:18:73:2a:58:6e:85:b3:08:8d:8d:b8:2a:cb: 86:03:d9:fd:60:29:ad:69:45:9d:e1:56:f5:8b:74: 43:2d:76:2d:7b:30:a4:53:d9:82:71:4e:b1:53:6a: f4:bc:1b:20:95:df:78:67:97:3d:12:51:8e:9d:5f: f5:cc:2f:29:48:a6:08:d2:c2:de:c7:21:c4:08:f8: d3:c6:88:d8:bd:49:11:e0:f2:5a:18:16:fa:c9:dc: 73:45:73:1b:3a:44:95:82:f5:04:68:33:2b:66:ff: 72:28:a3:af:67:aa:aa:a5:88:f5:af:45:db:e3:3e: 4d:8c:9e:c1:f5:c7:2e:00:6b:f5:22:54:aa:cd:5a: cb:2d:4b:6a:0a:88:5c:48:c8:3b:87:a1:9d:94:d8: 6d:4e:f1:89:8b:8d:45:5c:d9:55:b9:b4:48:ad:61: 1e:6f:e4:7c:91:eb:f3:94:4f:65:e7:f0:99:c1:70: 5a:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:64:80:C4:13:A4:0B:07:C6:34:1D:99:23:D5:17:A9:DB:E1:C7:89 X509v3 Authority Key Identifier: keyid:E3:E0:C7:74:E3:B2:BC:58:79:0E:74:99:83:7A:41:55:C1:A8:69:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096275330777350146/0/E3E0C774E3B2BC58790E7499837A4155C1A869E6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E3E0C774E3B2BC58790E7499837A4155C1A869E6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096275330777350146/0/3132312e34362e3133362e302f32322d3232203d3e20313335333931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 121.46.136.0/22 Signature Algorithm: sha256WithRSAEncryption d8:fb:20:63:df:8d:9a:e4:55:d7:cd:45:ea:5c:b3:14:58:ca: a1:18:48:ab:b4:41:33:99:f1:29:23:a2:de:43:d8:b5:d8:52: 12:cb:1a:50:75:90:b8:6e:da:e9:ed:8d:c1:f2:31:a3:45:5f: 90:c9:31:1c:2f:56:45:e1:a4:bf:65:28:83:75:51:31:de:71: 59:47:fc:71:c6:44:9b:08:63:62:26:4a:d4:91:48:fe:82:30: d4:df:df:34:9a:86:9a:eb:a8:15:8e:c1:2f:b7:e5:cf:2e:61: a1:29:f9:90:88:64:67:42:ce:57:20:53:f8:fe:5c:47:a2:fd: d7:c5:53:79:40:06:c8:f3:98:c5:b4:b9:fb:e4:e7:ae:e4:52: 4a:68:96:51:fb:34:a3:5f:3a:53:bb:ca:7b:35:df:51:f1:1b: f5:2c:ec:e3:d5:d2:0e:8a:51:0e:7c:52:93:b1:3f:3f:2e:8c: 79:f4:0e:d7:4f:97:9f:c4:3e:c5:4e:89:6e:cb:05:6a:e2:ad: 95:75:1d:57:95:37:ad:7d:18:cb:ac:72:c6:5d:cf:98:e5:c7: 77:20:f0:a8:01:e2:98:b6:24:37:1e:41:f4:79:c9:41:7b:2e: 78:e5:7c:12:89:69:cd:9b:43:dc:a7:62:7e:45:71:18:cb:d7: a4:11:0e:54 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUCEipKVbbx31+3o2/+MLT6DXplI8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTNFMEM3NzRFM0IyQkM1ODc5MEU3NDk5ODM3QTQxNTVD MUE4NjlFNjAeFw0yNjA0MjMwNzU2MzJaFw0yNzA0MjIwODAxMzJaMDMxMTAvBgNV BAMTKEZDNjQ4MEM0MTNBNDBCMDdDNjM0MUQ5OTIzRDUxN0E5REJFMUM3ODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCq/PAzifoxp88wQtJXFx+QQZ/x mxgHxYtPwDZ0/+AzmLioyxs4urrvz+DHwgdDz0hR3zPlX0BN64BB7bKPGESxbs5D IEgO0h5LrWIhGHMqWG6FswiNjbgqy4YD2f1gKa1pRZ3hVvWLdEMtdi17MKRT2YJx TrFTavS8GyCV33hnlz0SUY6dX/XMLylIpgjSwt7HIcQI+NPGiNi9SRHg8loYFvrJ 3HNFcxs6RJWC9QRoMytm/3Ioo69nqqqliPWvRdvjPk2MnsH1xy4Aa/UiVKrNWsst S2oKiFxIyDuHoZ2U2G1O8YmLjUVc2VW5tEitYR5v5HyR6/OUT2Xn8JnBcFq1AgMB AAGjggIXMIICEzAdBgNVHQ4EFgQU/GSAxBOkCwfGNB2ZI9UXqdvhx4kwHwYDVR0j BBgwFoAU4+DHdOOyvFh5DnSZg3pBVcGoaeYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjI3NTMzMDc3NzM1MDE0Ni8wL0UzRTBDNzc0RTNCMkJDNTg3OTBFNzQ5OTgzN0E0 MTU1QzFBODY5RTYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRTNFMEM3NzRFM0IyQkM1ODc5MEU3NDk5ODM3QTQxNTVDMUE4NjlFNi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTYyNzUzMzA3NzczNTAxNDYvMC8zMTMyMzEyZTM0 MzYyZTMxMzMzNjJlMzAyZjMyMzIyZDMyMzIyMDNkM2UyMDMxMzMzNTMzMzkzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAnkuiDANBgkqhkiG9w0BAQsFAAOCAQEA2PsgY9+NmuRV181F6lyz FFjKoRhIq7RBM5nxKSOi3kPYtdhSEssaUHWQuG7a6e2NwfIxo0VfkMkxHC9WReGk v2Uog3VRMd5xWUf8ccZEmwhjYiZK1JFI/oIw1N/fNJqGmuuoFY7BL7flzy5hoSn5 kIhkZ0LOVyBT+P5cR6L918VTeUAGyPOYxbS5++TnruRSSmiWUfs0o186U7vKezXf UfEb9Szs49XSDopRDnxSk7E/Py6MefQO10+Xn8Q+xU6JbssFauKtlXUdV5U3rX0Y y6xyxl3PmOXHdyDwqAHimLYkNx5B9HnJQXsueOV8EolpzZtD3KdifkVxGMvXpBEO VA== -----END CERTIFICATE-----Generated at Mon Apr 27 16:00:18 2026 by rpki-client