$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096275330777350146/0/3132312e34362e3135362e302f32322d3232203d3e20313335333931.roa File: 3132312e34362e3135362e302f32322d3232203d3e20313335333931.roa (raw, json) Hash identifier: 3Y3V1ZnO5q+pzCZK08OjK1FZM9UvHnEFwNLA4EiYpOE= Subject key identifier: FE:59:B8:8C:AF:31:1B:CC:29:1C:14:F3:4F:D6:BC:44:2C:97:A7:48 Certificate issuer: /CN=E3E0C774E3B2BC58790E7499837A4155C1A869E6 Certificate serial: 7E32B691FD184E6F88727887DFDB993F21924BAE Authority key identifier: E3:E0:C7:74:E3:B2:BC:58:79:0E:74:99:83:7A:41:55:C1:A8:69:E6 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E3E0C774E3B2BC58790E7499837A4155C1A869E6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096275330777350146/0/3132312e34362e3135362e302f32322d3232203d3e20313335333931.roa Signing time: Thu 23 Apr 2026 08:17:53 +0000 ROA not before: Thu 23 Apr 2026 08:12:53 +0000 ROA not after: Thu 22 Apr 2027 08:17:53 +0000 asID: 135391 IP address blocks: 121.46.156.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096275330777350146/0/E3E0C774E3B2BC58790E7499837A4155C1A869E6.crl rsync://rpki-rps.cnnic.cn/repo/A1096275330777350146/0/E3E0C774E3B2BC58790E7499837A4155C1A869E6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E3E0C774E3B2BC58790E7499837A4155C1A869E6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 06:27:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:32:b6:91:fd:18:4e:6f:88:72:78:87:df:db:99:3f:21:92:4b:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E3E0C774E3B2BC58790E7499837A4155C1A869E6 Validity Not Before: Apr 23 08:12:53 2026 GMT Not After : Apr 22 08:17:53 2027 GMT Subject: CN=FE59B88CAF311BCC291C14F34FD6BC442C97A748 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:f5:46:77:61:d8:01:87:e3:88:39:5c:8b:48: a3:f2:69:d3:3c:32:e2:6a:da:b5:b7:a9:5f:05:21: dd:ed:57:55:26:c9:ea:4d:71:0b:47:a9:43:6f:91: 50:05:3b:8b:37:8d:f1:8a:08:ee:41:d7:21:1d:54: 5a:f3:d3:21:3e:8c:65:3d:76:86:39:be:18:41:22: 92:97:d5:72:aa:e9:b7:5d:ea:40:81:d5:c0:6f:65: 7b:cb:24:b0:ca:75:85:3d:f0:dc:92:37:c9:40:dc: 7a:79:9e:dc:f9:cb:e1:a2:02:56:aa:1d:98:af:0c: 34:d8:e2:90:1b:5c:c4:4f:df:99:01:a2:50:cf:05: 95:d3:0e:73:be:75:fb:15:7d:35:e2:d9:43:7c:df: 4a:1d:54:50:79:a8:e4:bb:cb:32:14:4c:a3:81:1e: 6a:e9:ca:70:2f:ee:bd:c4:04:4c:41:32:17:ce:d1: 26:05:96:ea:bc:8b:c6:7e:fb:88:f7:0e:7d:07:e2: 95:57:08:cc:49:6e:f6:1d:1f:67:a2:88:30:e7:8e: 4e:6f:6c:30:c5:a0:c8:f0:28:a1:06:04:ab:50:87: c6:e7:e0:d1:e5:c7:cb:a8:bf:b6:95:f3:16:bd:03: 78:af:74:10:49:86:d2:01:8d:bd:0a:3e:4f:f0:fa: 26:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:59:B8:8C:AF:31:1B:CC:29:1C:14:F3:4F:D6:BC:44:2C:97:A7:48 X509v3 Authority Key Identifier: keyid:E3:E0:C7:74:E3:B2:BC:58:79:0E:74:99:83:7A:41:55:C1:A8:69:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096275330777350146/0/E3E0C774E3B2BC58790E7499837A4155C1A869E6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E3E0C774E3B2BC58790E7499837A4155C1A869E6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096275330777350146/0/3132312e34362e3135362e302f32322d3232203d3e20313335333931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 121.46.156.0/22 Signature Algorithm: sha256WithRSAEncryption 7f:89:99:44:82:43:af:f1:ea:b8:45:05:76:a5:55:96:70:18: 96:5e:e3:e6:a7:e1:12:57:26:0b:39:53:75:36:ef:82:86:37: 5a:00:eb:76:3c:7e:80:57:46:18:e4:a3:22:bc:b7:40:c8:2e: 08:89:53:fd:6e:1b:60:72:01:71:00:17:c4:0b:41:bb:b6:fb: b4:fe:a3:06:ba:9e:70:a5:51:12:3c:d1:94:67:db:f4:ab:0d: 3d:58:32:00:8b:d4:0d:dd:8b:e5:da:59:7b:11:cd:76:c8:a4: dc:1d:32:b6:0e:e9:bd:17:14:1f:9c:73:77:18:fb:fe:39:ab: d4:a2:b5:4f:59:6f:e8:c0:95:24:43:b8:8a:3d:af:21:4c:75: 00:13:39:86:c1:75:ea:13:3f:dd:0f:a4:03:9f:c6:68:27:89: 9e:99:7c:d2:b9:eb:5d:91:83:f7:0d:04:05:57:29:f8:c7:2a: 03:7a:f0:fc:77:f8:21:e3:7d:92:8c:8d:c0:9a:15:87:90:8b: ce:7b:82:ab:be:70:4b:26:4b:3d:8b:f8:0b:0c:cd:94:a1:aa: 10:af:d4:24:18:6d:c6:5d:8f:e9:fe:0b:ac:82:6f:f1:fa:3c: a9:ec:5a:c7:d1:30:49:aa:d8:2f:8d:86:57:be:26:b6:a4:cf: 37:8f:fd:0c -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUfjK2kf0YTm+IcniH39uZPyGSS64wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTNFMEM3NzRFM0IyQkM1ODc5MEU3NDk5ODM3QTQxNTVD MUE4NjlFNjAeFw0yNjA0MjMwODEyNTNaFw0yNzA0MjIwODE3NTNaMDMxMTAvBgNV BAMTKEZFNTlCODhDQUYzMTFCQ0MyOTFDMTRGMzRGRDZCQzQ0MkM5N0E3NDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC69UZ3YdgBh+OIOVyLSKPyadM8 MuJq2rW3qV8FId3tV1UmyepNcQtHqUNvkVAFO4s3jfGKCO5B1yEdVFrz0yE+jGU9 doY5vhhBIpKX1XKq6bdd6kCB1cBvZXvLJLDKdYU98NySN8lA3Hp5ntz5y+GiAlaq HZivDDTY4pAbXMRP35kBolDPBZXTDnO+dfsVfTXi2UN830odVFB5qOS7yzIUTKOB HmrpynAv7r3EBExBMhfO0SYFluq8i8Z++4j3Dn0H4pVXCMxJbvYdH2eiiDDnjk5v bDDFoMjwKKEGBKtQh8bn4NHlx8uov7aV8xa9A3ivdBBJhtIBjb0KPk/w+iYHAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQU/lm4jK8xG8wpHBTzT9a8RCyXp0gwHwYDVR0j BBgwFoAU4+DHdOOyvFh5DnSZg3pBVcGoaeYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjI3NTMzMDc3NzM1MDE0Ni8wL0UzRTBDNzc0RTNCMkJDNTg3OTBFNzQ5OTgzN0E0 MTU1QzFBODY5RTYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRTNFMEM3NzRFM0IyQkM1ODc5MEU3NDk5ODM3QTQxNTVDMUE4NjlFNi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTYyNzUzMzA3NzczNTAxNDYvMC8zMTMyMzEyZTM0 MzYyZTMxMzUzNjJlMzAyZjMyMzIyZDMyMzIyMDNkM2UyMDMxMzMzNTMzMzkzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAnkunDANBgkqhkiG9w0BAQsFAAOCAQEAf4mZRIJDr/HquEUFdqVV lnAYll7j5qfhElcmCzlTdTbvgoY3WgDrdjx+gFdGGOSjIry3QMguCIlT/W4bYHIB cQAXxAtBu7b7tP6jBrqecKVREjzRlGfb9KsNPVgyAIvUDd2L5dpZexHNdsik3B0y tg7pvRcUH5xzdxj7/jmr1KK1T1lv6MCVJEO4ij2vIUx1ABM5hsF16hM/3Q+kA5/G aCeJnpl80rnrXZGD9w0EBVcp+McqA3rw/Hf4IeN9koyNwJoVh5CLznuCq75wSyZL PYv4CwzNlKGqEK/UJBhtxl2P6f4LrIJv8fo8qexax9EwSarYL42GV74mtqTPN4/9 DA== -----END CERTIFICATE-----Generated at Mon Apr 27 16:00:15 2026 by rpki-client