$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1099364928323584001/0/3132302e3133322e33362e302f32322d3232203d3e2039383038.roa File: 3132302e3133322e33362e302f32322d3232203d3e2039383038.roa (raw, json) Hash identifier: 1/WYgSW+leef+B8tBKQpDlnFlQ1g3KmII2/ngHoH7Lo= Subject key identifier: D6:F2:25:7E:05:8C:8C:9F:89:A6:73:CD:5E:2D:91:C9:B2:B7:71:7B Certificate issuer: /CN=14F2AE289734C6F9223A15F482EED7503BB5C42B Certificate serial: 59F7F1A3BE2C08C5AF982BC806A36688A3621417 Authority key identifier: 14:F2:AE:28:97:34:C6:F9:22:3A:15:F4:82:EE:D7:50:3B:B5:C4:2B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/14F2AE289734C6F9223A15F482EED7503BB5C42B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1099364928323584001/0/3132302e3133322e33362e302f32322d3232203d3e2039383038.roa Signing time: Tue 28 Apr 2026 01:53:18 +0000 ROA not before: Tue 28 Apr 2026 01:48:18 +0000 ROA not after: Tue 27 Apr 2027 01:53:18 +0000 asID: 9808 IP address blocks: 120.132.36.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1099364928323584001/0/14F2AE289734C6F9223A15F482EED7503BB5C42B.crl rsync://rpki-rps.cnnic.cn/repo/A1099364928323584001/0/14F2AE289734C6F9223A15F482EED7503BB5C42B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/14F2AE289734C6F9223A15F482EED7503BB5C42B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:44:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:f7:f1:a3:be:2c:08:c5:af:98:2b:c8:06:a3:66:88:a3:62:14:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=14F2AE289734C6F9223A15F482EED7503BB5C42B Validity Not Before: Apr 28 01:48:18 2026 GMT Not After : Apr 27 01:53:18 2027 GMT Subject: CN=D6F2257E058C8C9F89A673CD5E2D91C9B2B7717B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:a8:70:2e:87:52:4c:07:7f:ca:8a:6b:eb:3d: 35:c4:cc:fa:29:69:e2:14:cc:ea:da:b1:1d:5c:f2: 5a:1e:d4:d6:3e:87:03:4d:c7:82:17:20:bd:0f:a5: 6c:cc:9a:a9:d4:8c:f8:16:55:3a:31:c8:b3:4c:69: f2:9b:ea:a3:77:66:fd:c4:0a:bb:36:9a:83:f1:9e: 2a:52:4e:66:bd:99:a1:7b:c6:0d:54:ce:76:d8:4e: 7f:62:70:99:8a:fe:b9:dc:58:bd:b4:13:1a:c9:50: b7:64:0b:64:06:24:d2:13:4e:61:c5:8b:93:39:3a: 51:0a:a3:60:0d:0d:e9:df:13:6e:55:a9:75:25:c6: 8e:33:d9:0f:be:50:86:84:bb:05:ec:a8:54:fd:22: 20:66:b4:ea:08:4f:72:09:a6:62:f2:ac:09:b4:75: 73:eb:f3:fd:ee:e4:59:65:45:30:be:50:93:f2:d4: de:78:5b:b6:c6:ad:67:b4:dc:8d:25:5e:ff:81:df: f2:ff:63:73:ea:86:1f:c7:7b:3f:6f:ea:dd:7f:e6: d1:4d:36:31:db:3e:38:be:d0:8d:9e:08:54:d9:c3: 74:92:d1:f5:4d:b0:db:30:ec:51:1f:33:c8:bf:67: 0c:b2:d6:c9:87:2e:69:26:86:18:56:a8:ed:60:db: 22:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:F2:25:7E:05:8C:8C:9F:89:A6:73:CD:5E:2D:91:C9:B2:B7:71:7B X509v3 Authority Key Identifier: keyid:14:F2:AE:28:97:34:C6:F9:22:3A:15:F4:82:EE:D7:50:3B:B5:C4:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1099364928323584001/0/14F2AE289734C6F9223A15F482EED7503BB5C42B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/14F2AE289734C6F9223A15F482EED7503BB5C42B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1099364928323584001/0/3132302e3133322e33362e302f32322d3232203d3e2039383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 120.132.36.0/22 Signature Algorithm: sha256WithRSAEncryption 80:e7:48:2d:a7:87:73:a7:d6:f7:df:49:00:03:cc:c2:55:35: d7:7a:92:fe:88:64:db:64:1b:a4:41:db:27:4e:e1:3a:b8:9f: 46:69:02:aa:12:12:94:de:f8:24:28:3e:24:a3:3b:39:1f:0c: bc:3a:37:53:de:c7:3f:fc:0d:18:f9:c7:dd:c3:4f:79:bd:bd: c8:a3:99:3e:14:0f:e2:1b:15:b3:6c:df:ef:1b:02:aa:df:50: 9b:97:36:47:b4:18:5e:ea:72:e6:da:fb:70:48:30:79:75:ba: 4f:0b:c7:09:98:6e:23:de:71:f0:ed:2a:49:0d:30:2d:7c:b0: 2a:b6:47:51:dc:52:12:43:bd:1f:ca:0d:29:26:35:15:96:93: 67:5f:ac:06:14:95:19:b3:8c:90:e4:1b:31:fa:c4:d2:60:f9: 5f:bc:1f:b8:32:fc:c1:5c:a3:9f:46:9c:de:d1:d6:c4:0b:e3: 55:08:c4:c7:74:ea:45:72:61:1c:f1:c6:f0:b4:1f:b8:c0:88: a8:0d:b8:74:a4:ee:de:49:68:93:e7:12:17:e1:3f:e3:a2:a5: 55:8c:ec:3a:4e:ae:77:00:b2:40:7f:bf:99:d5:d2:16:58:fc: aa:4d:ae:89:0f:f1:d8:e9:3f:e3:07:a3:3c:07:c9:b2:1b:f6: 7c:4d:be:b5 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUWffxo74sCMWvmCvIBqNmiKNiFBcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTRGMkFFMjg5NzM0QzZGOTIyM0ExNUY0ODJFRUQ3NTAz QkI1QzQyQjAeFw0yNjA0MjgwMTQ4MThaFw0yNzA0MjcwMTUzMThaMDMxMTAvBgNV BAMTKEQ2RjIyNTdFMDU4QzhDOUY4OUE2NzNDRDVFMkQ5MUM5QjJCNzcxN0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXqHAuh1JMB3/KimvrPTXEzPop aeIUzOrasR1c8loe1NY+hwNNx4IXIL0PpWzMmqnUjPgWVToxyLNMafKb6qN3Zv3E Crs2moPxnipSTma9maF7xg1UznbYTn9icJmK/rncWL20ExrJULdkC2QGJNITTmHF i5M5OlEKo2ANDenfE25VqXUlxo4z2Q++UIaEuwXsqFT9IiBmtOoIT3IJpmLyrAm0 dXPr8/3u5FllRTC+UJPy1N54W7bGrWe03I0lXv+B3/L/Y3Pqhh/Hez9v6t1/5tFN NjHbPji+0I2eCFTZw3SS0fVNsNsw7FEfM8i/Zwyy1smHLmkmhhhWqO1g2yIhAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQU1vIlfgWMjJ+JpnPNXi2RybK3cXswHwYDVR0j BBgwFoAUFPKuKJc0xvkiOhX0gu7XUDu1xCswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 OTM2NDkyODMyMzU4NDAwMS8wLzE0RjJBRTI4OTczNEM2RjkyMjNBMTVGNDgyRUVE NzUwM0JCNUM0MkIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMTRGMkFFMjg5NzM0QzZGOTIyM0ExNUY0ODJFRUQ3NTAzQkI1QzQyQi5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk5MzY0OTI4MzIzNTg0MDAxLzAvMzEzMjMwMmUzMTMz MzIyZTMzMzYyZTMwMmYzMjMyMmQzMjMyMjAzZDNlMjAzOTM4MzAzOC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAniEJDANBgkqhkiG9w0BAQsFAAOCAQEAgOdILaeHc6fW999JAAPMwlU113qS /ohk22QbpEHbJ07hOrifRmkCqhISlN74JCg+JKM7OR8MvDo3U97HP/wNGPnH3cNP eb29yKOZPhQP4hsVs2zf7xsCqt9Qm5c2R7QYXupy5tr7cEgweXW6TwvHCZhuI95x 8O0qSQ0wLXywKrZHUdxSEkO9H8oNKSY1FZaTZ1+sBhSVGbOMkOQbMfrE0mD5X7wf uDL8wVyjn0ac3tHWxAvjVQjEx3TqRXJhHPHG8LQfuMCIqA24dKTu3klok+cSF+E/ 46KlVYzsOk6udwCyQH+/mdXSFlj8qk2uiQ/x2Ok/4wejPAfJshv2fE2+tQ== -----END CERTIFICATE-----Generated at Wed May 13 13:00:36 2026 by rpki-client