$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096275330777350146/0/3132312e34362e3135322e302f32322d3232203d3e20313335333931.roa File: 3132312e34362e3135322e302f32322d3232203d3e20313335333931.roa (raw, json) Hash identifier: +KTuQf3jQOPzyK/jry9HjlorLmvW5TeWiZOn0R4Kz0E= Subject key identifier: EA:11:A5:03:53:F5:90:D2:A7:43:E3:39:94:1C:27:44:A8:C1:04:17 Certificate issuer: /CN=E3E0C774E3B2BC58790E7499837A4155C1A869E6 Certificate serial: 7DCFD604CF74C7761BAACAF2469E4052BC931634 Authority key identifier: E3:E0:C7:74:E3:B2:BC:58:79:0E:74:99:83:7A:41:55:C1:A8:69:E6 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E3E0C774E3B2BC58790E7499837A4155C1A869E6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096275330777350146/0/3132312e34362e3135322e302f32322d3232203d3e20313335333931.roa Signing time: Thu 23 Apr 2026 08:16:43 +0000 ROA not before: Thu 23 Apr 2026 08:11:43 +0000 ROA not after: Thu 22 Apr 2027 08:16:43 +0000 asID: 135391 IP address blocks: 121.46.152.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096275330777350146/0/E3E0C774E3B2BC58790E7499837A4155C1A869E6.crl rsync://rpki-rps.cnnic.cn/repo/A1096275330777350146/0/E3E0C774E3B2BC58790E7499837A4155C1A869E6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E3E0C774E3B2BC58790E7499837A4155C1A869E6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 06:27:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:cf:d6:04:cf:74:c7:76:1b:aa:ca:f2:46:9e:40:52:bc:93:16:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E3E0C774E3B2BC58790E7499837A4155C1A869E6 Validity Not Before: Apr 23 08:11:43 2026 GMT Not After : Apr 22 08:16:43 2027 GMT Subject: CN=EA11A50353F590D2A743E339941C2744A8C10417 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:49:78:08:b9:bc:81:b5:ce:4f:3a:01:42:a7: fd:b3:9c:aa:6f:b1:bf:75:2a:a5:96:36:63:4a:1d: 75:db:7d:13:b7:5a:70:58:85:76:7e:d4:a5:51:29: 69:a2:c5:49:5c:3c:bc:05:df:65:6d:b3:61:f3:29: cf:6d:9a:86:bb:0b:fc:03:0a:f8:08:48:e9:d8:cd: 61:9e:9a:f4:ac:e1:4a:04:bc:cd:7a:9a:89:dd:84: 72:75:d9:30:99:d3:4c:0a:2d:bb:47:8c:88:8a:c3: 50:43:3b:45:f0:2b:bb:e6:6b:97:a0:9a:ab:d9:b9: de:2b:c4:6e:36:93:8b:62:88:90:42:4e:c5:ef:fb: 2d:95:b6:bc:95:9e:55:a9:28:00:05:65:47:a1:47: fd:52:32:9f:ca:32:86:0e:03:74:34:2e:21:66:07: c6:ac:8d:32:ef:35:ba:87:7c:e3:4b:d9:4f:4e:9f: 0e:de:9c:81:ce:38:ac:9a:a1:81:5f:77:e1:b6:2a: b3:49:46:97:7e:b6:e6:f5:dc:ad:1f:e1:0c:9c:29: 90:ca:52:ad:d1:d7:68:80:71:e2:14:7a:c5:bf:f9: c0:2f:63:b8:dd:a9:29:20:64:2a:86:c9:68:f9:c7: 16:6e:62:9d:e5:a8:a5:a6:e8:64:fd:b5:5b:8c:66: 20:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:11:A5:03:53:F5:90:D2:A7:43:E3:39:94:1C:27:44:A8:C1:04:17 X509v3 Authority Key Identifier: keyid:E3:E0:C7:74:E3:B2:BC:58:79:0E:74:99:83:7A:41:55:C1:A8:69:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096275330777350146/0/E3E0C774E3B2BC58790E7499837A4155C1A869E6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E3E0C774E3B2BC58790E7499837A4155C1A869E6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096275330777350146/0/3132312e34362e3135322e302f32322d3232203d3e20313335333931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 121.46.152.0/22 Signature Algorithm: sha256WithRSAEncryption 33:2a:43:4e:e4:32:51:8a:85:7f:de:0e:fc:f8:83:cd:f0:a9: 43:02:0b:3e:17:dc:08:6e:41:cd:30:a6:88:29:91:c5:f6:15: a4:7a:a3:61:76:31:d4:c8:c5:9e:94:dc:a6:f3:14:c8:d4:ba: 1c:e0:16:01:d9:e9:1e:81:09:3c:c9:cb:31:b2:f0:e8:cf:f0: e9:58:db:82:be:4f:51:1b:e4:fa:c0:98:f5:79:e3:7f:32:fb: 90:f9:84:b8:8e:b7:37:fe:cc:43:11:f3:fc:ce:d9:b2:16:68: d7:3b:e4:0a:46:78:e9:b2:1c:6d:2c:44:ac:d2:fd:32:a1:90: 39:83:ea:99:e7:99:2d:f6:b0:cc:93:2c:31:47:71:8d:ff:43: 20:d8:76:69:3d:f8:5d:75:4a:72:a2:81:0d:92:d5:94:b9:da: a2:a1:ff:db:a8:a3:16:2d:e3:85:e6:a4:fb:ab:8e:21:e9:c3: b8:cb:92:b4:0e:45:96:99:67:95:4b:4f:e2:6d:f9:6d:d2:bf: 78:55:a9:49:e9:0a:f8:95:40:6c:88:4a:02:ee:9c:51:5c:9b: bc:4a:8b:cb:37:90:25:fd:4f:38:42:41:29:7e:f9:98:ce:ad: 25:cc:6b:19:d7:c1:b1:42:bf:f3:f6:d5:05:c5:70:5b:af:a5: 68:39:4b:6f -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUfc/WBM90x3YbqsryRp5AUryTFjQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTNFMEM3NzRFM0IyQkM1ODc5MEU3NDk5ODM3QTQxNTVD MUE4NjlFNjAeFw0yNjA0MjMwODExNDNaFw0yNzA0MjIwODE2NDNaMDMxMTAvBgNV BAMTKEVBMTFBNTAzNTNGNTkwRDJBNzQzRTMzOTk0MUMyNzQ0QThDMTA0MTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChSXgIubyBtc5POgFCp/2znKpv sb91KqWWNmNKHXXbfRO3WnBYhXZ+1KVRKWmixUlcPLwF32Vts2HzKc9tmoa7C/wD CvgISOnYzWGemvSs4UoEvM16mondhHJ12TCZ00wKLbtHjIiKw1BDO0XwK7vma5eg mqvZud4rxG42k4tiiJBCTsXv+y2VtryVnlWpKAAFZUehR/1SMp/KMoYOA3Q0LiFm B8asjTLvNbqHfONL2U9Onw7enIHOOKyaoYFfd+G2KrNJRpd+tub13K0f4QycKZDK Uq3R12iAceIUesW/+cAvY7jdqSkgZCqGyWj5xxZuYp3lqKWm6GT9tVuMZiBjAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQU6hGlA1P1kNKnQ+M5lBwnRKjBBBcwHwYDVR0j BBgwFoAU4+DHdOOyvFh5DnSZg3pBVcGoaeYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjI3NTMzMDc3NzM1MDE0Ni8wL0UzRTBDNzc0RTNCMkJDNTg3OTBFNzQ5OTgzN0E0 MTU1QzFBODY5RTYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRTNFMEM3NzRFM0IyQkM1ODc5MEU3NDk5ODM3QTQxNTVDMUE4NjlFNi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTYyNzUzMzA3NzczNTAxNDYvMC8zMTMyMzEyZTM0 MzYyZTMxMzUzMjJlMzAyZjMyMzIyZDMyMzIyMDNkM2UyMDMxMzMzNTMzMzkzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAnkumDANBgkqhkiG9w0BAQsFAAOCAQEAMypDTuQyUYqFf94O/PiD zfCpQwILPhfcCG5BzTCmiCmRxfYVpHqjYXYx1MjFnpTcpvMUyNS6HOAWAdnpHoEJ PMnLMbLw6M/w6Vjbgr5PURvk+sCY9XnjfzL7kPmEuI63N/7MQxHz/M7ZshZo1zvk CkZ46bIcbSxErNL9MqGQOYPqmeeZLfawzJMsMUdxjf9DINh2aT34XXVKcqKBDZLV lLnaoqH/26ijFi3jheak+6uOIenDuMuStA5FlplnlUtP4m35bdK/eFWpSekK+JVA bIhKAu6cUVybvEqLyzeQJf1POEJBKX75mM6tJcxrGdfBsUK/8/bVBcVwW6+laDlL bw== -----END CERTIFICATE-----Generated at Mon Apr 27 16:00:17 2026 by rpki-client