$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097405115268071427/0/3132312e34362e3233352e302f32342d3234203d3e2034383131.roa File: 3132312e34362e3233352e302f32342d3234203d3e2034383131.roa (raw, json) Hash identifier: mJAl+LwwvXOwdBQoGHrfrqfj6m3rDD+aqn7fMRg2QmI= Subject key identifier: 15:37:91:22:5C:62:40:74:9C:7E:28:0F:F6:17:7C:FF:A1:44:88:CB Certificate issuer: /CN=6A898B3E4EBB4C577F76BBD7F0D751F8505ADD94 Certificate serial: 47F86D3B95F7362F972A075AD83EB3874AB9A435 Authority key identifier: 6A:89:8B:3E:4E:BB:4C:57:7F:76:BB:D7:F0:D7:51:F8:50:5A:DD:94 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6A898B3E4EBB4C577F76BBD7F0D751F8505ADD94.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097405115268071427/0/3132312e34362e3233352e302f32342d3234203d3e2034383131.roa Signing time: Mon 27 Apr 2026 07:58:43 +0000 ROA not before: Mon 27 Apr 2026 07:53:43 +0000 ROA not after: Mon 26 Apr 2027 07:58:43 +0000 asID: 4811 IP address blocks: 121.46.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097405115268071427/0/6A898B3E4EBB4C577F76BBD7F0D751F8505ADD94.crl rsync://rpki-rps.cnnic.cn/repo/A1097405115268071427/0/6A898B3E4EBB4C577F76BBD7F0D751F8505ADD94.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6A898B3E4EBB4C577F76BBD7F0D751F8505ADD94.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 08:02:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:f8:6d:3b:95:f7:36:2f:97:2a:07:5a:d8:3e:b3:87:4a:b9:a4:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6A898B3E4EBB4C577F76BBD7F0D751F8505ADD94 Validity Not Before: Apr 27 07:53:43 2026 GMT Not After : Apr 26 07:58:43 2027 GMT Subject: CN=153791225C6240749C7E280FF6177CFFA14488CB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:e6:da:1c:47:46:ce:3b:2a:23:80:a9:34:0a: dd:4d:d7:6d:50:75:0d:8a:59:78:bb:da:b6:67:10: 3a:79:d1:d7:fb:46:b5:cf:51:79:d3:42:17:22:50: 85:66:ba:10:73:11:df:d3:47:e3:f8:7e:f3:b9:8c: a4:a3:16:13:e4:3f:7e:80:01:fa:f9:d0:60:4b:c4: 8e:f2:a9:61:2e:09:bf:f6:fa:ce:06:ca:34:c4:d1: 47:1a:4a:29:c1:2d:4a:3b:69:3a:0f:f3:75:b5:06: 61:2a:82:6d:ca:58:bc:79:74:29:db:32:1d:f1:9d: df:9d:64:ee:4b:c9:7b:45:fa:02:24:e4:0a:fb:57: a0:d6:20:1d:81:90:c7:a1:a7:35:1d:29:9f:35:b9: c7:25:38:9f:2e:51:7d:d4:89:8b:b8:fa:55:3a:bb: c3:81:f7:40:1e:08:f7:e9:a1:af:ad:8b:d2:c9:62: 0f:2c:cd:5b:9f:a4:97:d2:11:0e:0a:63:c5:51:f2: 81:21:ae:b0:40:59:3b:23:80:2f:14:a9:d4:ec:79: 28:1a:e1:2e:6b:2b:be:85:a0:48:4d:6e:cb:85:32: 14:bb:4c:98:07:30:7b:cd:fa:7f:eb:58:4e:db:ed: 00:03:67:91:48:d4:fd:61:f6:fd:bc:11:9f:7c:0d: 86:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:37:91:22:5C:62:40:74:9C:7E:28:0F:F6:17:7C:FF:A1:44:88:CB X509v3 Authority Key Identifier: keyid:6A:89:8B:3E:4E:BB:4C:57:7F:76:BB:D7:F0:D7:51:F8:50:5A:DD:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097405115268071427/0/6A898B3E4EBB4C577F76BBD7F0D751F8505ADD94.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6A898B3E4EBB4C577F76BBD7F0D751F8505ADD94.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097405115268071427/0/3132312e34362e3233352e302f32342d3234203d3e2034383131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 121.46.235.0/24 Signature Algorithm: sha256WithRSAEncryption c8:b7:c9:b8:ae:66:b5:20:55:ae:ad:e9:7c:ff:ab:c0:53:1c: bc:df:88:3e:7a:dc:68:f9:04:9d:ed:4e:7c:b2:51:3b:57:c1: fc:8d:2c:89:3f:22:85:d3:c8:ad:75:fd:99:26:df:90:eb:71: f2:1b:c3:16:3f:61:60:dd:e4:60:2e:ec:1b:91:0d:10:33:05: 6b:8c:ac:96:07:43:4b:b1:32:c5:1f:01:66:d6:c4:d6:d0:a5: 39:e9:b6:22:b2:07:fa:f3:92:b4:b9:c0:06:e2:62:fe:d2:87: 71:63:7e:31:f8:90:25:1b:57:df:c9:25:b2:52:d2:83:3a:e8: ff:49:e6:72:28:ee:45:78:2a:8e:f1:91:99:4d:7f:94:af:2c: 86:fc:87:63:90:87:98:6b:6b:49:e8:27:a3:2e:ca:d7:88:db: de:91:19:7f:2c:60:45:73:eb:7e:48:1a:14:43:af:18:ec:14: e2:87:54:cc:12:0d:ff:26:af:84:ce:fe:42:15:dc:d7:72:d2: 3a:e9:4e:ee:46:95:53:07:e5:4e:f2:97:0c:9d:b0:fc:ee:19: 3b:20:0b:82:3b:78:76:38:71:32:8c:d8:cb:6f:03:02:1b:4c: fa:33:2d:e7:13:ab:b8:67:aa:97:d6:81:6d:5c:3b:64:1b:91: d0:48:8f:72 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUR/htO5X3Ni+XKgda2D6zh0q5pDUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkE4OThCM0U0RUJCNEM1NzdGNzZCQkQ3RjBENzUxRjg1 MDVBREQ5NDAeFw0yNjA0MjcwNzUzNDNaFw0yNzA0MjYwNzU4NDNaMDMxMTAvBgNV BAMTKDE1Mzc5MTIyNUM2MjQwNzQ5QzdFMjgwRkY2MTc3Q0ZGQTE0NDg4Q0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCb5tocR0bOOyojgKk0Ct1N121Q dQ2KWXi72rZnEDp50df7RrXPUXnTQhciUIVmuhBzEd/TR+P4fvO5jKSjFhPkP36A Afr50GBLxI7yqWEuCb/2+s4GyjTE0UcaSinBLUo7aToP83W1BmEqgm3KWLx5dCnb Mh3xnd+dZO5LyXtF+gIk5Ar7V6DWIB2BkMehpzUdKZ81ucclOJ8uUX3UiYu4+lU6 u8OB90AeCPfpoa+ti9LJYg8szVufpJfSEQ4KY8VR8oEhrrBAWTsjgC8UqdTseSga 4S5rK76FoEhNbsuFMhS7TJgHMHvN+n/rWE7b7QADZ5FI1P1h9v28EZ98DYapAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUFTeRIlxiQHScfigP9hd8/6FEiMswHwYDVR0j BBgwFoAUaomLPk67TFd/drvX8NdR+FBa3ZQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzQwNTExNTI2ODA3MTQyNy8wLzZBODk4QjNFNEVCQjRDNTc3Rjc2QkJEN0YwRDc1 MUY4NTA1QUREOTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNkE4OThCM0U0RUJCNEM1NzdGNzZCQkQ3RjBENzUxRjg1MDVBREQ5NC5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk3NDA1MTE1MjY4MDcxNDI3LzAvMzEzMjMxMmUzNDM2 MmUzMjMzMzUyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNDM4MzEzMS5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAHku6zANBgkqhkiG9w0BAQsFAAOCAQEAyLfJuK5mtSBVrq3pfP+rwFMcvN+I PnrcaPkEne1OfLJRO1fB/I0siT8ihdPIrXX9mSbfkOtx8hvDFj9hYN3kYC7sG5EN EDMFa4yslgdDS7EyxR8BZtbE1tClOem2IrIH+vOStLnABuJi/tKHcWN+MfiQJRtX 38klslLSgzro/0nmcijuRXgqjvGRmU1/lK8shvyHY5CHmGtrSegnoy7K14jb3pEZ fyxgRXPrfkgaFEOvGOwU4odUzBIN/yavhM7+QhXc13LSOulO7kaVUwflTvKXDJ2w /O4ZOyALgjt4djhxMozYy28DAhtM+jMt5xOruGeql9aBbVw7ZBuR0EiPcg== -----END CERTIFICATE-----Generated at Wed May 13 13:05:34 2026 by rpki-client