$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1099364928323584001/0/3132302e3133322e38382e302f32322d3232203d3e2034383038.roa File: 3132302e3133322e38382e302f32322d3232203d3e2034383038.roa (raw, json) Hash identifier: 8MaiuuBuVrJs+znc9BJtvUpyHg3LI4T48lZuF5Asiq8= Subject key identifier: 0B:D8:37:7D:F3:34:BA:C7:56:8F:04:4B:71:BE:2C:0A:C9:FB:56:B6 Certificate issuer: /CN=14F2AE289734C6F9223A15F482EED7503BB5C42B Certificate serial: 407CEE0E98957AEFE26A27E6A24EEB3FF6837485 Authority key identifier: 14:F2:AE:28:97:34:C6:F9:22:3A:15:F4:82:EE:D7:50:3B:B5:C4:2B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/14F2AE289734C6F9223A15F482EED7503BB5C42B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1099364928323584001/0/3132302e3133322e38382e302f32322d3232203d3e2034383038.roa Signing time: Wed 22 Apr 2026 17:08:42 +0000 ROA not before: Wed 22 Apr 2026 17:03:42 +0000 ROA not after: Wed 21 Apr 2027 17:08:42 +0000 asID: 4808 IP address blocks: 120.132.88.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1099364928323584001/0/14F2AE289734C6F9223A15F482EED7503BB5C42B.crl rsync://rpki-rps.cnnic.cn/repo/A1099364928323584001/0/14F2AE289734C6F9223A15F482EED7503BB5C42B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/14F2AE289734C6F9223A15F482EED7503BB5C42B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 06:08:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:7c:ee:0e:98:95:7a:ef:e2:6a:27:e6:a2:4e:eb:3f:f6:83:74:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=14F2AE289734C6F9223A15F482EED7503BB5C42B Validity Not Before: Apr 22 17:03:42 2026 GMT Not After : Apr 21 17:08:42 2027 GMT Subject: CN=0BD8377DF334BAC7568F044B71BE2C0AC9FB56B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:d0:35:10:71:0b:72:e2:5f:64:3d:a4:8e:d9: 21:7c:5d:57:a5:a5:ce:84:d1:ef:99:b2:10:d8:9d: 79:6e:36:0d:e5:53:29:1c:e6:39:c1:41:ee:f3:28: 47:3e:0d:fd:4f:ee:37:c7:a4:52:3a:d4:bf:af:25: 9a:6b:65:7f:e4:07:c9:1e:9d:2e:b1:24:78:c0:42: 15:d0:45:17:9c:d6:6e:bc:e8:f6:e0:c9:c6:f0:5b: 5b:c0:49:32:ad:2c:22:99:54:e4:5b:bd:6e:43:95: 89:e4:e7:12:33:07:c2:52:f2:84:1e:c3:db:da:6a: 71:7b:1b:4f:5b:94:85:1d:aa:53:61:c9:0c:86:c8: 23:7b:0b:7b:94:95:46:00:13:b3:bd:a1:85:c6:90: d7:a6:92:c1:02:47:ad:db:c5:ac:69:5b:79:d2:1f: 59:8d:2c:45:5b:9f:21:9f:86:09:21:93:f0:1d:16: 21:bc:20:98:fa:a8:3c:48:98:bb:d6:03:35:0f:1a: 5e:44:f8:0c:16:b8:7b:bf:b7:0f:59:d0:80:0c:b5: 04:4c:e2:1b:d3:15:85:d8:9a:bf:18:c3:1d:55:1e: 7d:5f:81:26:a4:8a:ee:73:0e:04:ee:cb:43:00:61: 88:5b:57:c8:54:e1:e0:58:50:43:9d:ec:7c:52:73: 6f:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:D8:37:7D:F3:34:BA:C7:56:8F:04:4B:71:BE:2C:0A:C9:FB:56:B6 X509v3 Authority Key Identifier: keyid:14:F2:AE:28:97:34:C6:F9:22:3A:15:F4:82:EE:D7:50:3B:B5:C4:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1099364928323584001/0/14F2AE289734C6F9223A15F482EED7503BB5C42B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/14F2AE289734C6F9223A15F482EED7503BB5C42B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1099364928323584001/0/3132302e3133322e38382e302f32322d3232203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 120.132.88.0/22 Signature Algorithm: sha256WithRSAEncryption 6a:2c:48:f6:c0:c4:f0:45:f6:1c:54:82:23:71:88:76:87:fe: 5e:ac:a7:85:5d:4b:87:11:c4:c9:29:dd:11:43:08:01:de:31: a3:b3:be:c3:53:bf:70:ef:a2:35:5e:9a:bf:e4:c9:eb:94:0f: 01:19:04:85:8e:d6:cd:74:b8:91:4a:24:93:e8:d6:d5:b5:3e: 77:d7:e4:ba:ee:db:95:9e:e4:9e:e5:b7:ee:ec:59:15:06:0d: dc:e1:59:80:16:fb:64:23:56:88:06:40:41:e3:bb:48:74:99: a6:38:50:24:42:53:81:0f:fa:8c:8d:c7:35:43:e3:b6:2f:4b: 2c:58:08:b5:f5:a2:e8:14:51:19:34:97:b7:1e:b4:88:b3:cd: ed:86:2f:de:6c:30:05:a1:36:7e:79:94:c5:a7:56:2d:80:e6: 6f:86:c1:15:84:dc:1a:73:7d:76:99:1b:78:1e:69:f0:73:ba: 0b:91:d0:a3:80:24:1f:d6:9d:25:f9:27:b8:a8:95:36:16:54: c7:06:fb:0b:84:66:ce:5b:63:4f:22:b9:f4:27:35:95:3d:41: ad:8a:21:b5:8c:c1:be:06:0a:65:b1:2e:c9:8a:fd:b3:f7:91: 21:61:4a:b6:76:67:68:3e:5b:71:02:a5:d5:61:4f:3f:f9:b3: 06:32:1b:f6 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUQHzuDpiVeu/iaifmok7rP/aDdIUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTRGMkFFMjg5NzM0QzZGOTIyM0ExNUY0ODJFRUQ3NTAz QkI1QzQyQjAeFw0yNjA0MjIxNzAzNDJaFw0yNzA0MjExNzA4NDJaMDMxMTAvBgNV BAMTKDBCRDgzNzdERjMzNEJBQzc1NjhGMDQ0QjcxQkUyQzBBQzlGQjU2QjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCs0DUQcQty4l9kPaSO2SF8XVel pc6E0e+ZshDYnXluNg3lUykc5jnBQe7zKEc+Df1P7jfHpFI61L+vJZprZX/kB8ke nS6xJHjAQhXQRRec1m686PbgycbwW1vASTKtLCKZVORbvW5DlYnk5xIzB8JS8oQe w9vaanF7G09blIUdqlNhyQyGyCN7C3uUlUYAE7O9oYXGkNemksECR63bxaxpW3nS H1mNLEVbnyGfhgkhk/AdFiG8IJj6qDxImLvWAzUPGl5E+AwWuHu/tw9Z0IAMtQRM 4hvTFYXYmr8Ywx1VHn1fgSakiu5zDgTuy0MAYYhbV8hU4eBYUEOd7HxSc29zAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUC9g3ffM0usdWjwRLcb4sCsn7VrYwHwYDVR0j BBgwFoAUFPKuKJc0xvkiOhX0gu7XUDu1xCswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 OTM2NDkyODMyMzU4NDAwMS8wLzE0RjJBRTI4OTczNEM2RjkyMjNBMTVGNDgyRUVE NzUwM0JCNUM0MkIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMTRGMkFFMjg5NzM0QzZGOTIyM0ExNUY0ODJFRUQ3NTAzQkI1QzQyQi5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk5MzY0OTI4MzIzNTg0MDAxLzAvMzEzMjMwMmUzMTMz MzIyZTM4MzgyZTMwMmYzMjMyMmQzMjMyMjAzZDNlMjAzNDM4MzAzOC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAniEWDANBgkqhkiG9w0BAQsFAAOCAQEAaixI9sDE8EX2HFSCI3GIdof+Xqyn hV1LhxHEySndEUMIAd4xo7O+w1O/cO+iNV6av+TJ65QPARkEhY7WzXS4kUokk+jW 1bU+d9fkuu7blZ7knuW37uxZFQYN3OFZgBb7ZCNWiAZAQeO7SHSZpjhQJEJTgQ/6 jI3HNUPjti9LLFgItfWi6BRRGTSXtx60iLPN7YYv3mwwBaE2fnmUxadWLYDmb4bB FYTcGnN9dpkbeB5p8HO6C5HQo4AkH9adJfknuKiVNhZUxwb7C4RmzltjTyK59Cc1 lT1BrYohtYzBvgYKZbEuyYr9s/eRIWFKtnZnaD5bcQKl1WFPP/mzBjIb9g== -----END CERTIFICATE-----Generated at Mon Apr 27 14:20:28 2026 by rpki-client