$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576723372113922/0/3132302e34392e302e302f31382d3234203d3e203338333635.roa File: 3132302e34392e302e302f31382d3234203d3e203338333635.roa (raw, json) Hash identifier: QBYM3HVbRduqbXHzBHboFJPwVMpp1mVI1XhMzB9nl0Q= Subject key identifier: 1A:AE:30:B8:30:44:73:A2:72:31:D5:44:1F:84:D2:39:52:61:2E:28 Certificate issuer: /CN=A19672206A9DA7DF429536C9BFFADA94A8EBA70E Certificate serial: 42041BDB5920B1A326E6D10E906A21F5BA404F72 Authority key identifier: A1:96:72:20:6A:9D:A7:DF:42:95:36:C9:BF:FA:DA:94:A8:EB:A7:0E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A19672206A9DA7DF429536C9BFFADA94A8EBA70E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576723372113922/0/3132302e34392e302e302f31382d3234203d3e203338333635.roa Signing time: Sun 19 Apr 2026 08:17:20 +0000 ROA not before: Sun 19 Apr 2026 08:12:20 +0000 ROA not after: Sun 18 Apr 2027 08:17:20 +0000 asID: 38365 IP address blocks: 120.49.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576723372113922/0/A19672206A9DA7DF429536C9BFFADA94A8EBA70E.crl rsync://rpki-rps.cnnic.cn/repo/A1065576723372113922/0/A19672206A9DA7DF429536C9BFFADA94A8EBA70E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A19672206A9DA7DF429536C9BFFADA94A8EBA70E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 09:09:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:04:1b:db:59:20:b1:a3:26:e6:d1:0e:90:6a:21:f5:ba:40:4f:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A19672206A9DA7DF429536C9BFFADA94A8EBA70E Validity Not Before: Apr 19 08:12:20 2026 GMT Not After : Apr 18 08:17:20 2027 GMT Subject: CN=1AAE30B8304473A27231D5441F84D23952612E28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:21:54:82:25:72:62:53:52:19:cf:ea:e6:55: 22:c1:e2:85:c9:5c:3c:44:9b:b5:17:cc:60:7d:c9: dd:5d:f2:63:e6:43:04:99:69:1f:c0:90:f1:a6:8c: f0:b5:91:b2:2d:cc:1c:f1:62:45:64:71:5e:36:15: 93:43:6a:22:81:21:1a:56:ca:8e:3d:76:14:85:da: ba:a7:df:1d:2b:24:77:fd:63:25:7d:c6:f5:61:23: 1d:9c:25:cf:68:77:04:7e:c0:10:84:dc:33:3b:55: a4:56:cf:19:db:c4:33:4d:c4:af:99:2e:78:6c:d4: 9b:17:f9:44:40:e1:60:aa:e6:7e:e8:9d:4e:d4:26: 54:4a:63:53:df:11:5d:32:d7:34:8c:3a:9e:c6:f8: 9b:ba:7d:f3:c1:f6:3d:5e:71:9e:0a:4b:3e:3a:51: c9:2c:43:18:47:11:2e:8b:72:8e:49:4b:3e:53:4a: 3a:4f:37:a0:01:fd:6e:54:eb:d3:92:f8:76:a7:02: cf:c3:35:d7:42:7c:32:fc:72:b1:c2:f8:ed:40:16: 0a:c3:30:87:82:10:9e:71:0e:57:57:6f:93:ee:26: 2d:f8:0d:91:fe:6c:ca:d1:47:1b:67:13:ec:ec:4f: 7b:fa:4b:08:c4:a9:b9:52:7a:f8:38:cc:5e:53:32: 95:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:AE:30:B8:30:44:73:A2:72:31:D5:44:1F:84:D2:39:52:61:2E:28 X509v3 Authority Key Identifier: keyid:A1:96:72:20:6A:9D:A7:DF:42:95:36:C9:BF:FA:DA:94:A8:EB:A7:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576723372113922/0/A19672206A9DA7DF429536C9BFFADA94A8EBA70E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A19672206A9DA7DF429536C9BFFADA94A8EBA70E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576723372113922/0/3132302e34392e302e302f31382d3234203d3e203338333635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 120.49.0.0/18 Signature Algorithm: sha256WithRSAEncryption 9d:98:91:2f:bb:8f:9c:51:bf:c8:fe:b7:49:da:13:c0:1a:39: 1c:4b:fa:bd:0c:1f:08:25:0f:8f:a3:75:ca:e6:55:5d:b1:02: d8:71:0b:f5:b1:e2:d4:71:f4:07:df:7b:7b:dc:73:d0:59:21: fd:cd:37:47:ac:43:c6:0f:dc:5d:51:cb:d2:fe:c3:70:36:88: e6:6e:c1:21:31:a7:3c:8b:ac:c9:52:cc:b2:ed:f4:45:00:19: ab:73:93:1a:59:8f:f7:cd:cb:1e:a4:3a:79:4c:b3:7c:2f:92: 40:d5:f7:e9:83:a8:ba:d8:ef:b2:30:65:65:38:cd:94:c0:8d: 52:70:ff:9f:c8:9c:bf:ff:59:d7:e9:b6:8a:97:bf:a9:db:41: 9b:77:e7:45:20:0f:ee:b2:66:a7:c5:ab:6e:1c:59:12:bf:bd: 6a:d0:e7:3d:7c:07:72:1e:fb:7d:95:a6:c1:6d:9f:c0:46:77: 35:f6:8d:bf:fe:3e:8a:0e:1d:1b:cd:1d:fb:40:05:e0:03:00: 42:ec:28:23:46:6b:77:39:9a:57:71:bc:e8:1c:24:da:d7:60: a1:97:f0:36:ee:b2:66:3a:7c:fd:b6:7e:86:43:87:9c:d3:d8: 1c:07:b7:6e:d7:29:f4:15:46:28:6c:5d:47:6c:b4:8e:12:5f: fa:12:1c:05 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUQgQb21kgsaMm5tEOkGoh9bpAT3IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTE5NjcyMjA2QTlEQTdERjQyOTUzNkM5QkZGQURBOTRB OEVCQTcwRTAeFw0yNjA0MTkwODEyMjBaFw0yNzA0MTgwODE3MjBaMDMxMTAvBgNV BAMTKDFBQUUzMEI4MzA0NDczQTI3MjMxRDU0NDFGODREMjM5NTI2MTJFMjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5IVSCJXJiU1IZz+rmVSLB4oXJ XDxEm7UXzGB9yd1d8mPmQwSZaR/AkPGmjPC1kbItzBzxYkVkcV42FZNDaiKBIRpW yo49dhSF2rqn3x0rJHf9YyV9xvVhIx2cJc9odwR+wBCE3DM7VaRWzxnbxDNNxK+Z Lnhs1JsX+URA4WCq5n7onU7UJlRKY1PfEV0y1zSMOp7G+Ju6ffPB9j1ecZ4KSz46 UcksQxhHES6Lco5JSz5TSjpPN6AB/W5U69OS+HanAs/DNddCfDL8crHC+O1AFgrD MIeCEJ5xDldXb5PuJi34DZH+bMrRRxtnE+zsT3v6SwjEqblSevg4zF5TMpV1AgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUGq4wuDBEc6JyMdVEH4TSOVJhLigwHwYDVR0j BBgwFoAUoZZyIGqdp99ClTbJv/ralKjrpw4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjcyMzM3MjExMzkyMi8wL0ExOTY3MjIwNkE5REE3REY0Mjk1MzZDOUJGRkFE QTk0QThFQkE3MEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQTE5NjcyMjA2QTlEQTdERjQyOTUzNkM5QkZGQURBOTRBOEVCQTcwRS5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc2NzIzMzcyMTEzOTIyLzAvMzEzMjMwMmUzNDM5 MmUzMDJlMzAyZjMxMzgyZDMyMzQyMDNkM2UyMDMzMzgzMzM2MzUucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAZ4MQAwDQYJKoZIhvcNAQELBQADggEBAJ2YkS+7j5xRv8j+t0naE8AaORxL+r0M HwglD4+jdcrmVV2xAthxC/Wx4tRx9Affe3vcc9BZIf3NN0esQ8YP3F1Ry9L+w3A2 iOZuwSExpzyLrMlSzLLt9EUAGatzkxpZj/fNyx6kOnlMs3wvkkDV9+mDqLrY77Iw ZWU4zZTAjVJw/5/InL//WdfptoqXv6nbQZt350UgD+6yZqfFq24cWRK/vWrQ5z18 B3Ie+32VpsFtn8BGdzX2jb/+PooOHRvNHftABeADAELsKCNGa3c5mldxvOgcJNrX YKGX8DbusmY6fP22foZDh5zT2BwHt27XKfQVRihsXUdstI4SX/oSHAU= -----END CERTIFICATE-----Generated at Wed May 13 16:15:20 2026 by rpki-client