$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1099364928323584001/0/3132302e3133322e33362e302f32322d3232203d3e2034383038.roa File: 3132302e3133322e33362e302f32322d3232203d3e2034383038.roa (raw, json) Hash identifier: EeArdCpRM86jcPIOp52OsMzRNb6BcSzXh7zE9govyhE= Subject key identifier: CB:6D:FF:DE:5F:F2:0A:CE:59:6B:FB:9C:D3:DC:97:1B:EB:6F:37:4B Certificate issuer: /CN=14F2AE289734C6F9223A15F482EED7503BB5C42B Certificate serial: 397E4B58E8021DA53A34B5845E038E7CE29D83DC Authority key identifier: 14:F2:AE:28:97:34:C6:F9:22:3A:15:F4:82:EE:D7:50:3B:B5:C4:2B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/14F2AE289734C6F9223A15F482EED7503BB5C42B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1099364928323584001/0/3132302e3133322e33362e302f32322d3232203d3e2034383038.roa Signing time: Tue 28 Apr 2026 01:53:18 +0000 ROA not before: Tue 28 Apr 2026 01:48:18 +0000 ROA not after: Tue 27 Apr 2027 01:53:18 +0000 asID: 4808 IP address blocks: 120.132.36.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1099364928323584001/0/14F2AE289734C6F9223A15F482EED7503BB5C42B.crl rsync://rpki-rps.cnnic.cn/repo/A1099364928323584001/0/14F2AE289734C6F9223A15F482EED7503BB5C42B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/14F2AE289734C6F9223A15F482EED7503BB5C42B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:44:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:7e:4b:58:e8:02:1d:a5:3a:34:b5:84:5e:03:8e:7c:e2:9d:83:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=14F2AE289734C6F9223A15F482EED7503BB5C42B Validity Not Before: Apr 28 01:48:18 2026 GMT Not After : Apr 27 01:53:18 2027 GMT Subject: CN=CB6DFFDE5FF20ACE596BFB9CD3DC971BEB6F374B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:5b:73:63:a9:7a:71:38:cf:aa:9b:0f:88:a8: 62:75:67:54:c0:8e:f7:a3:68:3a:c5:b0:58:53:4b: d2:58:e9:8f:b0:30:14:9c:5b:f0:86:e7:09:2b:b9: 65:d7:63:51:b9:64:6b:0d:a1:69:51:2a:18:2a:1e: 4d:c7:72:ce:5b:6e:8b:db:7f:91:54:31:e1:26:78: 92:86:a1:92:d7:44:ec:8a:cc:1d:04:87:d6:bd:94: 9d:f9:72:c6:a6:22:b7:09:4f:5e:40:cf:79:fe:87: 58:01:94:cb:9e:08:99:05:13:53:1e:a6:ca:d8:38: 53:f8:ce:4b:a3:a4:a9:39:a0:16:26:4b:1b:50:3a: 63:ce:87:be:48:0a:de:4d:35:28:20:5f:a4:ab:a9: 88:6a:f6:c9:20:d0:30:28:28:57:4a:e5:90:e6:28: 27:98:c8:65:cd:ba:8e:0e:f0:5a:f4:49:08:88:81: be:28:eb:d5:0d:44:af:46:61:b4:d8:db:7f:ad:f8: e8:77:5d:4e:c8:32:30:f6:96:72:64:15:6e:f8:20: 39:4b:99:8b:33:ce:ae:b1:0c:cf:0a:4a:c9:97:02: df:4e:5f:8b:bf:54:ac:d6:06:40:d9:eb:14:35:c5: ee:db:4a:95:5e:88:ef:f4:96:ed:8d:54:49:43:56: 1d:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:6D:FF:DE:5F:F2:0A:CE:59:6B:FB:9C:D3:DC:97:1B:EB:6F:37:4B X509v3 Authority Key Identifier: keyid:14:F2:AE:28:97:34:C6:F9:22:3A:15:F4:82:EE:D7:50:3B:B5:C4:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1099364928323584001/0/14F2AE289734C6F9223A15F482EED7503BB5C42B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/14F2AE289734C6F9223A15F482EED7503BB5C42B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1099364928323584001/0/3132302e3133322e33362e302f32322d3232203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 120.132.36.0/22 Signature Algorithm: sha256WithRSAEncryption 98:21:5e:fe:af:15:ce:53:c9:c3:ff:68:cb:9a:e7:ee:a7:63: 28:2d:1b:c6:0a:04:36:4c:46:99:d3:b2:a1:04:29:cf:bf:23: 69:1a:05:75:c5:31:02:49:42:25:05:9d:8b:59:57:a4:a2:7b: 98:67:6a:36:91:e9:98:95:92:e2:f6:b9:0c:c7:ec:9f:ef:06: b1:1e:e1:54:ef:d4:c1:87:e8:15:1b:bd:c0:3d:b7:2b:9c:a8: 73:3b:5c:94:95:75:5b:07:f0:b9:8f:09:c5:d2:04:a3:b8:de: 04:1a:bc:88:d7:6a:7e:c0:24:a4:9f:c5:22:01:d0:91:f9:05: 37:2b:7e:a2:29:02:39:2c:5f:b3:e6:41:05:98:a6:99:e2:d6: 6c:60:34:61:b2:32:4a:57:c6:51:e9:fd:87:83:52:0a:a9:f9: 93:a0:d3:8a:d9:21:a1:7b:f8:8a:23:4e:56:dc:ae:5f:fa:14: 45:39:06:7b:24:71:6a:c4:00:68:ea:04:9f:24:4b:80:e4:1e: ce:ec:49:c5:89:6a:c6:d5:e8:ce:eb:6b:0b:cb:2f:43:d3:aa: d5:3c:8b:36:76:c3:0f:b6:b1:bb:eb:ef:be:08:9d:a4:73:9e: dc:e1:41:09:65:64:3a:f6:29:60:53:bc:1e:b5:67:77:7a:f9: 00:f2:c5:2f -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUOX5LWOgCHaU6NLWEXgOOfOKdg9wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTRGMkFFMjg5NzM0QzZGOTIyM0ExNUY0ODJFRUQ3NTAz QkI1QzQyQjAeFw0yNjA0MjgwMTQ4MThaFw0yNzA0MjcwMTUzMThaMDMxMTAvBgNV BAMTKENCNkRGRkRFNUZGMjBBQ0U1OTZCRkI5Q0QzREM5NzFCRUI2RjM3NEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDuW3NjqXpxOM+qmw+IqGJ1Z1TA jvejaDrFsFhTS9JY6Y+wMBScW/CG5wkruWXXY1G5ZGsNoWlRKhgqHk3Hcs5bbovb f5FUMeEmeJKGoZLXROyKzB0Eh9a9lJ35csamIrcJT15Az3n+h1gBlMueCJkFE1Me psrYOFP4zkujpKk5oBYmSxtQOmPOh75ICt5NNSggX6SrqYhq9skg0DAoKFdK5ZDm KCeYyGXNuo4O8Fr0SQiIgb4o69UNRK9GYbTY23+t+Oh3XU7IMjD2lnJkFW74IDlL mYszzq6xDM8KSsmXAt9OX4u/VKzWBkDZ6xQ1xe7bSpVeiO/0lu2NVElDVh3BAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUy23/3l/yCs5Za/uc09yXG+tvN0swHwYDVR0j BBgwFoAUFPKuKJc0xvkiOhX0gu7XUDu1xCswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 OTM2NDkyODMyMzU4NDAwMS8wLzE0RjJBRTI4OTczNEM2RjkyMjNBMTVGNDgyRUVE NzUwM0JCNUM0MkIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMTRGMkFFMjg5NzM0QzZGOTIyM0ExNUY0ODJFRUQ3NTAzQkI1QzQyQi5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk5MzY0OTI4MzIzNTg0MDAxLzAvMzEzMjMwMmUzMTMz MzIyZTMzMzYyZTMwMmYzMjMyMmQzMjMyMjAzZDNlMjAzNDM4MzAzOC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAniEJDANBgkqhkiG9w0BAQsFAAOCAQEAmCFe/q8VzlPJw/9oy5rn7qdjKC0b xgoENkxGmdOyoQQpz78jaRoFdcUxAklCJQWdi1lXpKJ7mGdqNpHpmJWS4va5DMfs n+8GsR7hVO/UwYfoFRu9wD23K5yocztclJV1WwfwuY8JxdIEo7jeBBq8iNdqfsAk pJ/FIgHQkfkFNyt+oikCOSxfs+ZBBZimmeLWbGA0YbIySlfGUen9h4NSCqn5k6DT itkhoXv4iiNOVtyuX/oURTkGeyRxasQAaOoEnyRLgOQezuxJxYlqxtXozutrC8sv Q9Oq1TyLNnbDD7axu+vvvgidpHOe3OFBCWVkOvYpYFO8HrVnd3r5APLFLw== -----END CERTIFICATE-----Generated at Wed May 13 12:05:21 2026 by rpki-client