$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096275330777350146/0/3132312e34362e3133362e302f32332d3233203d3e20313335333931.roa File: 3132312e34362e3133362e302f32332d3233203d3e20313335333931.roa (raw, json) Hash identifier: 0KMWEZ7VaK+BVNPFNCFfdVGB7s0vziGPXu1t1d8XiQY= Subject key identifier: 85:9D:55:AD:75:FA:2A:A8:50:3A:A8:DA:1B:B7:9E:5A:47:A8:4F:0F Certificate issuer: /CN=E3E0C774E3B2BC58790E7499837A4155C1A869E6 Certificate serial: 364FADDEC18A9A1F1442EE120C2377D623453BB9 Authority key identifier: E3:E0:C7:74:E3:B2:BC:58:79:0E:74:99:83:7A:41:55:C1:A8:69:E6 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E3E0C774E3B2BC58790E7499837A4155C1A869E6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096275330777350146/0/3132312e34362e3133362e302f32332d3233203d3e20313335333931.roa Signing time: Thu 23 Apr 2026 08:01:32 +0000 ROA not before: Thu 23 Apr 2026 07:56:32 +0000 ROA not after: Thu 22 Apr 2027 08:01:32 +0000 asID: 135391 IP address blocks: 121.46.136.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096275330777350146/0/E3E0C774E3B2BC58790E7499837A4155C1A869E6.crl rsync://rpki-rps.cnnic.cn/repo/A1096275330777350146/0/E3E0C774E3B2BC58790E7499837A4155C1A869E6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E3E0C774E3B2BC58790E7499837A4155C1A869E6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 06:27:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:4f:ad:de:c1:8a:9a:1f:14:42:ee:12:0c:23:77:d6:23:45:3b:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E3E0C774E3B2BC58790E7499837A4155C1A869E6 Validity Not Before: Apr 23 07:56:32 2026 GMT Not After : Apr 22 08:01:32 2027 GMT Subject: CN=859D55AD75FA2AA8503AA8DA1BB79E5A47A84F0F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:0b:6f:75:d1:4a:0d:88:81:aa:03:27:c6:8e: 75:b1:01:e8:e2:d7:ad:05:0f:30:76:08:71:fe:f5: 96:01:26:fb:f4:12:5f:57:29:18:85:a2:4a:b4:cf: e5:2f:d3:b4:cc:d5:14:b9:6f:bd:25:27:c6:21:f0: 98:bb:5a:f7:c6:5c:90:ac:94:a5:bf:d3:67:69:2e: 5e:54:b0:56:24:a2:f2:9b:ae:1b:dd:11:b6:33:20: bc:69:b1:8b:66:f5:38:ba:d8:ed:47:01:4a:0c:42: 8b:3f:22:18:50:2c:07:1f:35:4f:9e:01:3a:a2:80: 3f:f5:1a:b6:6d:02:1e:61:06:98:e7:83:23:16:69: d1:5a:36:00:21:78:2f:59:75:f9:57:01:46:cb:1d: e5:5f:ce:60:7e:37:f1:03:c7:c8:49:0a:66:19:13: ab:59:8d:51:fc:4f:b5:3d:71:c4:70:86:c6:82:85: b8:14:be:9b:2a:ca:b1:21:e4:56:6a:37:e4:04:73: aa:63:75:01:c5:89:09:d9:04:44:b4:8f:2e:98:81: 26:2c:fb:7a:8d:8f:62:53:71:3f:72:cb:fd:ef:4e: 17:1f:c1:44:ee:3d:4a:de:fb:ac:79:35:73:0b:ff: d7:c7:44:ac:7c:65:dd:c5:55:56:5c:87:95:9e:32: 0d:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:9D:55:AD:75:FA:2A:A8:50:3A:A8:DA:1B:B7:9E:5A:47:A8:4F:0F X509v3 Authority Key Identifier: keyid:E3:E0:C7:74:E3:B2:BC:58:79:0E:74:99:83:7A:41:55:C1:A8:69:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096275330777350146/0/E3E0C774E3B2BC58790E7499837A4155C1A869E6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E3E0C774E3B2BC58790E7499837A4155C1A869E6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096275330777350146/0/3132312e34362e3133362e302f32332d3233203d3e20313335333931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 121.46.136.0/23 Signature Algorithm: sha256WithRSAEncryption 07:45:d9:c4:0e:df:f0:dc:e6:5c:8d:7a:bb:e0:c5:c1:20:1c: db:14:44:9c:29:d9:a7:9b:16:1d:43:40:2f:3c:6c:1c:c4:33: 9a:84:37:9b:1e:43:fe:0a:b8:d5:0b:8d:5d:8f:41:75:57:1b: 31:aa:ca:c7:33:cd:65:2e:67:b7:41:78:3d:63:5d:25:ac:cd: 68:b5:e9:aa:d3:55:64:5c:88:d4:c8:87:bf:65:fd:92:6a:a6: 6d:60:79:b3:79:b3:a9:13:15:c7:e2:27:30:d6:7c:ef:c9:fd: 55:7e:3c:b0:f5:dc:b0:a7:ba:16:5b:28:36:bf:f2:1d:d4:a0: 6e:ec:29:49:a6:21:6e:21:68:ff:36:cd:25:81:ff:f4:1e:c6: b4:76:bb:20:2c:0b:11:7d:03:4a:23:32:8c:4a:b1:b0:07:b1: f3:85:cb:55:bf:99:f5:e7:5b:15:60:51:58:52:da:7b:ff:aa: 7d:31:5c:41:6b:3d:38:dd:1a:0a:b4:62:f7:e8:4b:0a:51:e4: 2b:f4:40:b3:ba:57:1f:09:14:e8:95:06:b7:bb:00:9c:05:49: 1e:9e:50:c5:56:44:02:4b:23:5c:57:02:d8:f3:40:d0:59:96: ff:6e:ee:5d:8c:4a:0d:19:62:28:d8:67:0a:10:88:a8:e9:e5: 82:f8:59:78 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUNk+t3sGKmh8UQu4SDCN31iNFO7kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTNFMEM3NzRFM0IyQkM1ODc5MEU3NDk5ODM3QTQxNTVD MUE4NjlFNjAeFw0yNjA0MjMwNzU2MzJaFw0yNzA0MjIwODAxMzJaMDMxMTAvBgNV BAMTKDg1OUQ1NUFENzVGQTJBQTg1MDNBQThEQTFCQjc5RTVBNDdBODRGMEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrC2910UoNiIGqAyfGjnWxAeji 160FDzB2CHH+9ZYBJvv0El9XKRiFokq0z+Uv07TM1RS5b70lJ8Yh8Ji7WvfGXJCs lKW/02dpLl5UsFYkovKbrhvdEbYzILxpsYtm9Ti62O1HAUoMQos/IhhQLAcfNU+e ATqigD/1GrZtAh5hBpjngyMWadFaNgAheC9ZdflXAUbLHeVfzmB+N/EDx8hJCmYZ E6tZjVH8T7U9ccRwhsaChbgUvpsqyrEh5FZqN+QEc6pjdQHFiQnZBES0jy6YgSYs +3qNj2JTcT9yy/3vThcfwUTuPUre+6x5NXML/9fHRKx8Zd3FVVZch5WeMg1XAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUhZ1VrXX6KqhQOqjaG7eeWkeoTw8wHwYDVR0j BBgwFoAU4+DHdOOyvFh5DnSZg3pBVcGoaeYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjI3NTMzMDc3NzM1MDE0Ni8wL0UzRTBDNzc0RTNCMkJDNTg3OTBFNzQ5OTgzN0E0 MTU1QzFBODY5RTYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRTNFMEM3NzRFM0IyQkM1ODc5MEU3NDk5ODM3QTQxNTVDMUE4NjlFNi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTYyNzUzMzA3NzczNTAxNDYvMC8zMTMyMzEyZTM0 MzYyZTMxMzMzNjJlMzAyZjMyMzMyZDMyMzMyMDNkM2UyMDMxMzMzNTMzMzkzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAXkuiDANBgkqhkiG9w0BAQsFAAOCAQEAB0XZxA7f8NzmXI16u+DF wSAc2xREnCnZp5sWHUNALzxsHMQzmoQ3mx5D/gq41QuNXY9BdVcbMarKxzPNZS5n t0F4PWNdJazNaLXpqtNVZFyI1MiHv2X9kmqmbWB5s3mzqRMVx+InMNZ878n9VX48 sPXcsKe6FlsoNr/yHdSgbuwpSaYhbiFo/zbNJYH/9B7GtHa7ICwLEX0DSiMyjEqx sAex84XLVb+Z9edbFWBRWFLae/+qfTFcQWs9ON0aCrRi9+hLClHkK/RAs7pXHwkU 6JUGt7sAnAVJHp5QxVZEAksjXFcC2PNA0FmW/27uXYxKDRliKNhnChCIqOnlgvhZ eA== -----END CERTIFICATE-----Generated at Mon Apr 27 16:00:22 2026 by rpki-client