$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098494210874540035/0/3132352e3235342e3137362e302f32312d3231203d3e203233373234.roa File: 3132352e3235342e3137362e302f32312d3231203d3e203233373234.roa (raw, json) Hash identifier: ZSgRpA/5spQ7+nn24xwWT1dkpORgmEl9Tobd39U1oL4= Subject key identifier: 84:D9:44:A1:C9:4C:04:51:A3:A9:1B:F1:2A:BC:E5:A4:52:2B:7C:16 Certificate issuer: /CN=6D1AB58561FCA85349B344B3CCABAF9318D49FAF Certificate serial: 248C3C479FFB022AAF8B4FA794363E6A096B8178 Authority key identifier: 6D:1A:B5:85:61:FC:A8:53:49:B3:44:B3:CC:AB:AF:93:18:D4:9F:AF Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6D1AB58561FCA85349B344B3CCABAF9318D49FAF.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098494210874540035/0/3132352e3235342e3137362e302f32312d3231203d3e203233373234.roa Signing time: Mon 20 Apr 2026 06:27:48 +0000 ROA not before: Mon 20 Apr 2026 06:22:48 +0000 ROA not after: Mon 19 Apr 2027 06:27:48 +0000 asID: 23724 IP address blocks: 125.254.176.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098494210874540035/0/6D1AB58561FCA85349B344B3CCABAF9318D49FAF.crl rsync://rpki-rps.cnnic.cn/repo/A1098494210874540035/0/6D1AB58561FCA85349B344B3CCABAF9318D49FAF.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6D1AB58561FCA85349B344B3CCABAF9318D49FAF.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:01:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:8c:3c:47:9f:fb:02:2a:af:8b:4f:a7:94:36:3e:6a:09:6b:81:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6D1AB58561FCA85349B344B3CCABAF9318D49FAF Validity Not Before: Apr 20 06:22:48 2026 GMT Not After : Apr 19 06:27:48 2027 GMT Subject: CN=84D944A1C94C0451A3A91BF12ABCE5A4522B7C16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:ce:94:2d:bf:fa:9d:07:12:f3:a8:0c:2c:aa: 47:95:16:fe:0d:4c:46:9e:b9:a9:b7:74:bd:c4:10: 28:28:6e:7a:a5:60:43:5f:85:16:9f:d2:e1:0f:0a: cc:53:8a:91:19:bc:2d:4a:6d:69:0a:bb:d5:e4:af: eb:bb:1e:f9:a7:47:1e:9a:9e:97:a0:a8:bd:a8:c7: 37:7b:5d:86:8b:cd:e2:b2:d2:84:8a:f3:83:3f:15: 6c:5d:e0:1f:df:91:3f:85:ab:45:79:7f:b3:80:a5: 39:34:35:d1:c0:4b:74:57:ae:78:70:36:37:70:27: 88:78:0f:40:bf:ab:43:0e:bf:84:ea:1c:1c:8a:c5: 2d:e0:88:37:87:f3:95:c6:fb:56:f1:a5:94:31:e9: d3:cb:1e:39:7b:d8:1d:8a:df:0e:1d:23:58:8a:bd: 23:fa:c4:c9:de:00:9b:22:a9:cc:34:98:2c:46:74: 99:9b:d2:9f:45:df:8e:aa:1d:cd:b5:81:83:00:00: 77:84:26:f5:f2:5f:48:48:a7:9c:9a:4c:64:9f:65: ad:d5:be:06:e5:3b:d4:3e:d2:db:75:e6:94:97:0b: dd:79:5f:9f:d2:ff:82:ae:8f:f2:d1:32:f9:03:9f: 8f:70:ad:9a:1c:ed:b9:bb:49:2e:3e:e3:3d:54:0a: b6:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:D9:44:A1:C9:4C:04:51:A3:A9:1B:F1:2A:BC:E5:A4:52:2B:7C:16 X509v3 Authority Key Identifier: keyid:6D:1A:B5:85:61:FC:A8:53:49:B3:44:B3:CC:AB:AF:93:18:D4:9F:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098494210874540035/0/6D1AB58561FCA85349B344B3CCABAF9318D49FAF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6D1AB58561FCA85349B344B3CCABAF9318D49FAF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098494210874540035/0/3132352e3235342e3137362e302f32312d3231203d3e203233373234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 125.254.176.0/21 Signature Algorithm: sha256WithRSAEncryption bb:2b:04:eb:32:d2:ef:6b:9c:b4:a7:28:24:90:f4:0a:f0:73: 94:ba:0a:d7:08:9c:cd:88:8e:5f:5b:5a:9e:a4:ff:e6:0a:80: 68:a4:4b:01:cc:5a:1f:b9:45:6e:e8:34:cf:c4:03:1a:5d:f3: d2:0b:d3:a3:fa:7b:11:07:41:59:f6:b5:33:55:c3:b5:a1:92: 53:35:5e:f0:e8:85:e6:f5:07:c3:70:c0:74:be:3c:72:10:22: 62:5f:48:3f:bb:99:69:2b:9c:1b:da:7b:cc:94:f1:f5:42:bf: 9d:46:2a:5c:79:86:99:fa:0b:f9:4b:c4:63:15:0f:cc:66:10: a7:19:cc:ae:d5:be:9d:f1:d1:ba:38:e3:62:08:10:73:10:f4: b5:c3:fd:d3:48:fc:4a:e7:08:7b:3f:55:e9:f7:13:28:5c:d6: 25:d0:c7:03:bd:78:b0:2c:fe:5b:c4:ab:22:34:79:41:a4:33: 6c:d0:53:8c:82:af:f6:72:04:4c:60:f5:03:91:1e:92:4d:14: af:9e:3b:1c:81:fe:86:b8:67:38:02:1e:40:10:bf:c8:e6:9f: 2a:aa:e4:ba:79:92:46:77:93:20:9d:78:24:0c:76:68:0c:e0: 4e:ed:22:ed:6c:85:eb:0b:fa:8e:39:f2:1f:f2:9d:ad:b6:85: da:6b:2f:43 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUJIw8R5/7Aiqvi0+nlDY+aglrgXgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkQxQUI1ODU2MUZDQTg1MzQ5QjM0NEIzQ0NBQkFGOTMx OEQ0OUZBRjAeFw0yNjA0MjAwNjIyNDhaFw0yNzA0MTkwNjI3NDhaMDMxMTAvBgNV BAMTKDg0RDk0NEExQzk0QzA0NTFBM0E5MUJGMTJBQkNFNUE0NTIyQjdDMTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDszpQtv/qdBxLzqAwsqkeVFv4N TEaeuam3dL3EECgobnqlYENfhRaf0uEPCsxTipEZvC1KbWkKu9Xkr+u7HvmnRx6a npegqL2oxzd7XYaLzeKy0oSK84M/FWxd4B/fkT+Fq0V5f7OApTk0NdHAS3RXrnhw NjdwJ4h4D0C/q0MOv4TqHByKxS3giDeH85XG+1bxpZQx6dPLHjl72B2K3w4dI1iK vSP6xMneAJsiqcw0mCxGdJmb0p9F346qHc21gYMAAHeEJvXyX0hIp5yaTGSfZa3V vgblO9Q+0tt15pSXC915X5/S/4Kuj/LRMvkDn49wrZoc7bm7SS4+4z1UCralAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUhNlEoclMBFGjqRvxKrzlpFIrfBYwHwYDVR0j BBgwFoAUbRq1hWH8qFNJs0SzzKuvkxjUn68wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODQ5NDIxMDg3NDU0MDAzNS8wLzZEMUFCNTg1NjFGQ0E4NTM0OUIzNDRCM0NDQUJB RjkzMThENDlGQUYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNkQxQUI1ODU2MUZDQTg1MzQ5QjM0NEIzQ0NBQkFGOTMxOEQ0OUZBRi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTg0OTQyMTA4NzQ1NDAwMzUvMC8zMTMyMzUyZTMy MzUzNDJlMzEzNzM2MmUzMDJmMzIzMTJkMzIzMTIwM2QzZTIwMzIzMzM3MzIzNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEA33+sDANBgkqhkiG9w0BAQsFAAOCAQEAuysE6zLS72uctKcoJJD0 CvBzlLoK1wiczYiOX1tanqT/5gqAaKRLAcxaH7lFbug0z8QDGl3z0gvTo/p7EQdB Wfa1M1XDtaGSUzVe8OiF5vUHw3DAdL48chAiYl9IP7uZaSucG9p7zJTx9UK/nUYq XHmGmfoL+UvEYxUPzGYQpxnMrtW+nfHRujjjYggQcxD0tcP900j8SucIez9V6fcT KFzWJdDHA714sCz+W8SrIjR5QaQzbNBTjIKv9nIETGD1A5Eekk0Ur547HIH+hrhn OAIeQBC/yOafKqrkunmSRneTIJ14JAx2aAzgTu0i7WyF6wv6jjnyH/KdrbaF2msv Qw== -----END CERTIFICATE-----Generated at Wed May 13 17:44:52 2026 by rpki-client