$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576723372048386/0/3132342e34372e36302e302f32332d3233203d3e203233373731.roa File: 3132342e34372e36302e302f32332d3233203d3e203233373731.roa (raw, json) Hash identifier: G9l4NwqDBjtx8mFDIX9sC3AUL3UlrDcnBTqgVYX0je4= Subject key identifier: A8:AA:B2:A7:37:A2:C3:2C:86:4B:3E:E1:59:27:74:00:D5:41:7E:CF Certificate issuer: /CN=FB7B794F123725FE800A647F3F7E8BE99B1F5B2C Certificate serial: 4934F67793BC4D77794C4E0282DAF41EB9E1DBD8 Authority key identifier: FB:7B:79:4F:12:37:25:FE:80:0A:64:7F:3F:7E:8B:E9:9B:1F:5B:2C Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/FB7B794F123725FE800A647F3F7E8BE99B1F5B2C.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576723372048386/0/3132342e34372e36302e302f32332d3233203d3e203233373731.roa Signing time: Mon 20 Apr 2026 02:21:15 +0000 ROA not before: Mon 20 Apr 2026 02:16:15 +0000 ROA not after: Mon 19 Apr 2027 02:21:15 +0000 asID: 23771 IP address blocks: 124.47.60.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576723372048386/0/FB7B794F123725FE800A647F3F7E8BE99B1F5B2C.crl rsync://rpki-rps.cnnic.cn/repo/A1065576723372048386/0/FB7B794F123725FE800A647F3F7E8BE99B1F5B2C.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/FB7B794F123725FE800A647F3F7E8BE99B1F5B2C.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 09:06:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:34:f6:77:93:bc:4d:77:79:4c:4e:02:82:da:f4:1e:b9:e1:db:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB7B794F123725FE800A647F3F7E8BE99B1F5B2C Validity Not Before: Apr 20 02:16:15 2026 GMT Not After : Apr 19 02:21:15 2027 GMT Subject: CN=A8AAB2A737A2C32C864B3EE159277400D5417ECF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:22:a2:bf:13:1e:53:56:12:3a:30:b6:20:8d: 87:03:4b:e6:20:ed:9c:4f:b0:ae:85:46:a4:cf:43: 62:49:3e:66:88:da:ca:e8:bc:95:9e:c6:90:9d:3f: 3f:6f:5f:ba:c8:0f:67:63:76:67:58:09:b0:6f:4a: 18:70:da:ff:73:c9:4c:de:ee:00:1e:0d:5c:aa:8e: d4:8c:9d:61:10:b0:32:52:68:0a:98:c2:be:a2:ad: 32:4a:eb:c8:66:db:44:8f:c3:76:c3:31:7c:fe:fa: 76:64:2c:67:f5:a8:a9:1b:12:93:b2:bb:e8:f8:fc: 10:1a:65:59:97:e3:9d:87:4e:07:fc:a5:cc:2f:e3: fe:e0:7d:5b:3c:aa:77:e8:41:24:86:6a:d5:8b:5f: 81:73:5b:7a:d4:31:1a:94:ec:28:5a:40:02:47:2d: 48:ee:69:57:24:3e:4c:b6:33:c6:7c:61:4d:f5:a3: 12:f5:4c:8d:d3:a7:56:88:82:2d:26:15:0d:28:b2: f2:72:2b:91:98:ba:6a:1b:d7:90:01:f0:fe:d8:88: d3:d7:dc:05:d7:08:04:34:5e:b8:f7:83:65:97:99: 85:1b:75:fc:64:f9:d4:1d:3e:f4:39:73:a7:52:21: 5b:6f:0c:a4:4d:98:8a:de:56:e1:18:52:b9:d3:8e: ae:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:AA:B2:A7:37:A2:C3:2C:86:4B:3E:E1:59:27:74:00:D5:41:7E:CF X509v3 Authority Key Identifier: keyid:FB:7B:79:4F:12:37:25:FE:80:0A:64:7F:3F:7E:8B:E9:9B:1F:5B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576723372048386/0/FB7B794F123725FE800A647F3F7E8BE99B1F5B2C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/FB7B794F123725FE800A647F3F7E8BE99B1F5B2C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576723372048386/0/3132342e34372e36302e302f32332d3233203d3e203233373731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 124.47.60.0/23 Signature Algorithm: sha256WithRSAEncryption 11:df:b8:cf:20:75:12:50:74:31:60:c1:ab:33:0f:13:23:3a: 50:d2:33:1f:84:0e:2a:55:69:b7:f7:3b:f9:57:d5:bc:b1:8a: ab:7f:6a:26:ef:fc:94:72:c0:f4:f7:d1:48:1a:1f:01:48:89: 27:64:27:e1:a0:03:16:52:58:0e:ed:25:0e:c2:12:65:b4:ea: df:79:b6:a3:31:16:ed:d9:2e:9f:5f:8d:94:59:4f:f3:7a:4b: eb:2d:66:82:65:6c:2e:f7:d2:85:18:31:96:4f:49:c6:1c:fe: f7:1d:f3:1d:98:25:75:c4:f7:da:40:2a:b4:40:da:70:05:b8: 35:c3:85:07:0d:52:8e:b8:d4:7d:a0:1a:29:12:fa:0f:c7:b2: b5:ee:54:2c:84:ab:9b:e4:9f:1d:5c:2b:80:02:e5:65:d0:58: 3a:c7:9a:61:a8:66:d8:7f:f2:c6:fa:51:04:e1:55:75:77:66: 3a:21:cf:2d:68:a2:77:2d:4f:c6:7c:4b:06:cb:36:3a:eb:a8: 05:f0:fd:27:03:1d:8f:08:f4:d1:2c:a5:4e:15:88:32:e6:cc: 9a:4a:56:c7:59:fe:f0:6a:93:59:a2:1d:34:e3:d1:a3:b9:18: f4:b6:de:c3:13:4e:f0:8b:2c:ec:a6:5c:36:23:a5:3a:01:5e: a1:65:67:39 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUSTT2d5O8TXd5TE4Cgtr0Hrnh29gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkI3Qjc5NEYxMjM3MjVGRTgwMEE2NDdGM0Y3RThCRTk5 QjFGNUIyQzAeFw0yNjA0MjAwMjE2MTVaFw0yNzA0MTkwMjIxMTVaMDMxMTAvBgNV BAMTKEE4QUFCMkE3MzdBMkMzMkM4NjRCM0VFMTU5Mjc3NDAwRDU0MTdFQ0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpIqK/Ex5TVhI6MLYgjYcDS+Yg 7ZxPsK6FRqTPQ2JJPmaI2srovJWexpCdPz9vX7rID2djdmdYCbBvShhw2v9zyUze 7gAeDVyqjtSMnWEQsDJSaAqYwr6irTJK68hm20SPw3bDMXz++nZkLGf1qKkbEpOy u+j4/BAaZVmX452HTgf8pcwv4/7gfVs8qnfoQSSGatWLX4FzW3rUMRqU7ChaQAJH LUjuaVckPky2M8Z8YU31oxL1TI3Tp1aIgi0mFQ0osvJyK5GYumob15AB8P7YiNPX 3AXXCAQ0Xrj3g2WXmYUbdfxk+dQdPvQ5c6dSIVtvDKRNmIreVuEYUrnTjq53AgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUqKqypzeiwyyGSz7hWSd0ANVBfs8wHwYDVR0j BBgwFoAU+3t5TxI3Jf6ACmR/P36L6ZsfWywwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjcyMzM3MjA0ODM4Ni8wL0ZCN0I3OTRGMTIzNzI1RkU4MDBBNjQ3RjNGN0U4 QkU5OUIxRjVCMkMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRkI3Qjc5NEYxMjM3MjVGRTgwMEE2NDdGM0Y3RThCRTk5QjFGNUIyQy5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc2NzIzMzcyMDQ4Mzg2LzAvMzEzMjM0MmUzNDM3 MmUzNjMwMmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzIzMzM3MzczMS5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAXwvPDANBgkqhkiG9w0BAQsFAAOCAQEAEd+4zyB1ElB0MWDBqzMPEyM6UNIz H4QOKlVpt/c7+VfVvLGKq39qJu/8lHLA9PfRSBofAUiJJ2Qn4aADFlJYDu0lDsIS ZbTq33m2ozEW7dkun1+NlFlP83pL6y1mgmVsLvfShRgxlk9Jxhz+9x3zHZgldcT3 2kAqtEDacAW4NcOFBw1SjrjUfaAaKRL6D8eyte5ULISrm+SfHVwrgALlZdBYOsea Yahm2H/yxvpRBOFVdXdmOiHPLWiidy1PxnxLBss2OuuoBfD9JwMdjwj00SylThWI MubMmkpWx1n+8GqTWaIdNOPRo7kY9LbewxNO8Iss7KZcNiOlOgFeoWVnOQ== -----END CERTIFICATE-----Generated at Wed May 13 19:53:46 2026 by rpki-client