$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097405115268071427/0/3132312e34362e3233372e302f32342d3234203d3e2034383131.roa File: 3132312e34362e3233372e302f32342d3234203d3e2034383131.roa (raw, json) Hash identifier: 5Ea7CEt1wZxAZnI6KN8ov4WmZLGvDEjxqq46jr+KFXY= Subject key identifier: 06:C9:43:BC:17:D4:51:43:5B:62:18:75:9D:54:22:88:5A:CC:79:D2 Certificate issuer: /CN=6A898B3E4EBB4C577F76BBD7F0D751F8505ADD94 Certificate serial: 5E6288F6856AA4F25847F103CC8C187D6D8C2C65 Authority key identifier: 6A:89:8B:3E:4E:BB:4C:57:7F:76:BB:D7:F0:D7:51:F8:50:5A:DD:94 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6A898B3E4EBB4C577F76BBD7F0D751F8505ADD94.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097405115268071427/0/3132312e34362e3233372e302f32342d3234203d3e2034383131.roa Signing time: Mon 27 Apr 2026 07:58:43 +0000 ROA not before: Mon 27 Apr 2026 07:53:43 +0000 ROA not after: Mon 26 Apr 2027 07:58:43 +0000 asID: 4811 IP address blocks: 121.46.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097405115268071427/0/6A898B3E4EBB4C577F76BBD7F0D751F8505ADD94.crl rsync://rpki-rps.cnnic.cn/repo/A1097405115268071427/0/6A898B3E4EBB4C577F76BBD7F0D751F8505ADD94.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6A898B3E4EBB4C577F76BBD7F0D751F8505ADD94.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 08:02:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:62:88:f6:85:6a:a4:f2:58:47:f1:03:cc:8c:18:7d:6d:8c:2c:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6A898B3E4EBB4C577F76BBD7F0D751F8505ADD94 Validity Not Before: Apr 27 07:53:43 2026 GMT Not After : Apr 26 07:58:43 2027 GMT Subject: CN=06C943BC17D451435B6218759D5422885ACC79D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:c9:32:37:b5:ee:52:96:9d:0b:d9:ee:96:f5: 18:03:cc:9d:99:19:4c:5b:5e:89:d4:ca:7c:6f:74: f8:6a:aa:af:54:51:26:de:e4:b3:c4:0c:5c:78:c4: dd:12:c5:7e:76:f5:ae:1e:0e:bb:74:4a:5b:0c:52: 44:ec:55:3b:7b:9b:cc:c6:a7:f5:cf:1c:07:15:1a: 60:cf:b3:a0:55:38:6a:70:23:5d:a5:74:c0:62:0d: 0c:55:7b:8e:14:3e:63:04:c7:90:dd:8c:12:82:77: 46:f1:77:91:d8:3d:6b:19:b0:45:0c:0b:08:9f:e2: c7:5e:2e:0a:7f:a5:bc:a5:29:91:07:b5:0f:20:24: 85:0a:51:d6:79:7d:99:81:7b:b8:70:fe:80:d3:6b: bb:f1:3b:65:2c:d6:a9:7e:51:ec:33:9e:5e:f5:8a: 91:d7:24:93:ec:6e:ae:02:36:51:85:36:28:36:28: d0:5c:73:57:4c:a3:4b:5b:f1:de:d2:14:bf:bc:65: bb:67:c0:db:30:b1:3a:81:e8:e9:df:1d:19:53:62: 3b:f3:14:e5:34:50:a5:a8:bf:e7:08:e7:fb:46:50: be:3f:f6:54:eb:a2:f0:a2:29:25:44:e0:2e:a8:1a: 11:3c:44:77:d1:98:99:ef:99:93:a0:66:d3:23:c9: d1:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:C9:43:BC:17:D4:51:43:5B:62:18:75:9D:54:22:88:5A:CC:79:D2 X509v3 Authority Key Identifier: keyid:6A:89:8B:3E:4E:BB:4C:57:7F:76:BB:D7:F0:D7:51:F8:50:5A:DD:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097405115268071427/0/6A898B3E4EBB4C577F76BBD7F0D751F8505ADD94.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6A898B3E4EBB4C577F76BBD7F0D751F8505ADD94.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097405115268071427/0/3132312e34362e3233372e302f32342d3234203d3e2034383131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 121.46.237.0/24 Signature Algorithm: sha256WithRSAEncryption cd:37:7d:7c:b8:03:07:18:22:99:86:11:81:11:42:a6:b2:ad: 90:68:a6:59:48:a7:a3:41:e8:75:76:e3:c0:5d:63:27:6c:e1: f1:f6:3d:68:ba:6e:61:9e:1c:79:f4:2b:3c:cc:6a:5d:ad:0a: d7:eb:39:6c:1c:d6:8d:c0:9d:01:56:16:63:1f:73:dd:e8:09: 64:04:3f:5a:c9:3c:ba:f5:9e:c1:2c:f1:65:2c:a6:55:6a:0f: a0:e3:84:22:f8:6d:9a:ba:4c:9b:14:bd:73:22:1c:07:fc:e2: 13:91:6b:f2:90:7b:73:4a:30:73:ff:a9:24:7d:9c:96:86:01: 57:26:b2:c3:38:db:84:f7:45:4c:f8:31:71:a2:9a:97:0b:b8: 2c:ea:d1:7d:e5:32:14:47:48:09:e2:ed:53:1f:f7:ef:bc:ba: 0d:ed:4c:69:ef:4a:97:26:4c:91:c2:2a:1c:79:04:a6:d4:77: eb:68:db:e5:2f:8b:d5:29:f6:a9:05:fd:e9:5e:4c:87:51:4d: 40:a9:23:1b:52:59:2b:99:a0:23:b1:09:c4:9a:e1:2d:c9:b4: 08:f0:de:e9:85:82:55:4a:e4:19:0b:af:c4:71:9f:c5:7e:89: f0:f9:1d:40:24:0c:ca:ea:4f:d1:e3:3f:96:70:e3:e6:e9:d6: fc:3f:2a:83 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUXmKI9oVqpPJYR/EDzIwYfW2MLGUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkE4OThCM0U0RUJCNEM1NzdGNzZCQkQ3RjBENzUxRjg1 MDVBREQ5NDAeFw0yNjA0MjcwNzUzNDNaFw0yNzA0MjYwNzU4NDNaMDMxMTAvBgNV BAMTKDA2Qzk0M0JDMTdENDUxNDM1QjYyMTg3NTlENTQyMjg4NUFDQzc5RDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDByTI3te5Slp0L2e6W9RgDzJ2Z GUxbXonUynxvdPhqqq9UUSbe5LPEDFx4xN0SxX529a4eDrt0SlsMUkTsVTt7m8zG p/XPHAcVGmDPs6BVOGpwI12ldMBiDQxVe44UPmMEx5DdjBKCd0bxd5HYPWsZsEUM Cwif4sdeLgp/pbylKZEHtQ8gJIUKUdZ5fZmBe7hw/oDTa7vxO2Us1ql+Uewznl71 ipHXJJPsbq4CNlGFNig2KNBcc1dMo0tb8d7SFL+8ZbtnwNswsTqB6OnfHRlTYjvz FOU0UKWov+cI5/tGUL4/9lTrovCiKSVE4C6oGhE8RHfRmJnvmZOgZtMjydH3AgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUBslDvBfUUUNbYhh1nVQiiFrMedIwHwYDVR0j BBgwFoAUaomLPk67TFd/drvX8NdR+FBa3ZQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzQwNTExNTI2ODA3MTQyNy8wLzZBODk4QjNFNEVCQjRDNTc3Rjc2QkJEN0YwRDc1 MUY4NTA1QUREOTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNkE4OThCM0U0RUJCNEM1NzdGNzZCQkQ3RjBENzUxRjg1MDVBREQ5NC5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk3NDA1MTE1MjY4MDcxNDI3LzAvMzEzMjMxMmUzNDM2 MmUzMjMzMzcyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNDM4MzEzMS5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAHku7TANBgkqhkiG9w0BAQsFAAOCAQEAzTd9fLgDBxgimYYRgRFCprKtkGim WUino0HodXbjwF1jJ2zh8fY9aLpuYZ4cefQrPMxqXa0K1+s5bBzWjcCdAVYWYx9z 3egJZAQ/Wsk8uvWewSzxZSymVWoPoOOEIvhtmrpMmxS9cyIcB/ziE5Fr8pB7c0ow c/+pJH2cloYBVyaywzjbhPdFTPgxcaKalwu4LOrRfeUyFEdICeLtUx/377y6De1M ae9KlyZMkcIqHHkEptR362jb5S+L1Sn2qQX96V5Mh1FNQKkjG1JZK5mgI7EJxJrh Lcm0CPDe6YWCVUrkGQuvxHGfxX6J8PkdQCQMyupP0eM/lnDj5unW/D8qgw== -----END CERTIFICATE-----Generated at Wed May 13 12:36:02 2026 by rpki-client