$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1101324342530146307/0/3132312e34362e3139322e302f32322d3232203d3e203536303436.roa File: 3132312e34362e3139322e302f32322d3232203d3e203536303436.roa (raw, json) Hash identifier: eS3fIU3qyAFP/R9AYBNjmWcu/ek4BsGa+9vz4CrGdkE= Subject key identifier: 21:DD:F5:69:EB:4B:88:C3:C7:11:4C:54:FB:EB:4E:73:93:5C:16:3F Certificate issuer: /CN=A5F579FD3B40DBBDE40DF62D7AEC715C0E93373F Certificate serial: 5B655658FCA1957D4A774E8C1EBBD5C5C849593E Authority key identifier: A5:F5:79:FD:3B:40:DB:BD:E4:0D:F6:2D:7A:EC:71:5C:0E:93:37:3F Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A5F579FD3B40DBBDE40DF62D7AEC715C0E93373F.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1101324342530146307/0/3132312e34362e3139322e302f32322d3232203d3e203536303436.roa Signing time: Tue 28 Apr 2026 02:30:30 +0000 ROA not before: Tue 28 Apr 2026 02:25:30 +0000 ROA not after: Tue 27 Apr 2027 02:30:30 +0000 asID: 56046 IP address blocks: 121.46.192.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1101324342530146307/0/A5F579FD3B40DBBDE40DF62D7AEC715C0E93373F.crl rsync://rpki-rps.cnnic.cn/repo/A1101324342530146307/0/A5F579FD3B40DBBDE40DF62D7AEC715C0E93373F.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A5F579FD3B40DBBDE40DF62D7AEC715C0E93373F.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:32:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:65:56:58:fc:a1:95:7d:4a:77:4e:8c:1e:bb:d5:c5:c8:49:59:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A5F579FD3B40DBBDE40DF62D7AEC715C0E93373F Validity Not Before: Apr 28 02:25:30 2026 GMT Not After : Apr 27 02:30:30 2027 GMT Subject: CN=21DDF569EB4B88C3C7114C54FBEB4E73935C163F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:c9:29:de:8e:c5:e7:e8:62:85:f6:05:e2:72: 08:81:e9:07:99:28:f0:54:ba:39:8b:21:7f:29:17: 9d:2d:e1:af:4e:10:e2:8f:83:61:c7:bb:bc:f0:3d: 71:75:9c:ed:a0:94:37:33:f2:e0:3b:da:06:5e:74: 5f:8f:03:eb:68:d5:1d:c0:f3:59:4f:a1:53:97:e5: bc:5f:12:2f:e8:5a:9a:22:ce:93:a7:b8:24:13:4d: bf:7c:3a:17:99:51:f4:ea:5f:2a:1c:93:80:fa:5f: 16:19:50:6c:28:bb:4e:18:e6:48:33:06:c9:79:b3: 3d:72:bf:64:2e:20:f0:98:84:3d:42:da:24:81:71: c7:76:b8:45:61:78:87:f1:57:48:b6:73:6a:85:86: 48:ac:2d:8f:a9:8d:2e:a7:4d:9b:7f:5a:79:b2:48: 22:c8:54:d2:bf:35:11:fa:92:ad:25:86:66:56:5e: 9c:b7:19:15:88:9d:26:7f:49:f3:ae:41:a0:13:17: dd:c6:14:57:39:de:9e:92:69:c1:ae:de:e8:c2:6c: fb:0c:38:35:0d:7b:c9:07:97:ac:04:80:85:b8:cc: 03:c6:8b:37:10:95:cc:a6:7c:77:32:b6:a9:35:5d: 92:86:8d:24:5c:6d:90:34:48:4f:c7:1b:8a:ee:1b: 6a:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:DD:F5:69:EB:4B:88:C3:C7:11:4C:54:FB:EB:4E:73:93:5C:16:3F X509v3 Authority Key Identifier: keyid:A5:F5:79:FD:3B:40:DB:BD:E4:0D:F6:2D:7A:EC:71:5C:0E:93:37:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1101324342530146307/0/A5F579FD3B40DBBDE40DF62D7AEC715C0E93373F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A5F579FD3B40DBBDE40DF62D7AEC715C0E93373F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1101324342530146307/0/3132312e34362e3139322e302f32322d3232203d3e203536303436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 121.46.192.0/22 Signature Algorithm: sha256WithRSAEncryption b2:de:22:ba:05:1d:b7:2f:96:4a:87:80:b5:75:7d:88:43:57: 40:bd:98:ef:76:80:ca:be:af:39:52:95:92:07:1c:d8:8e:9c: 61:09:b8:46:41:e9:61:c1:a6:e3:01:cc:f8:bb:eb:69:f2:28: bf:f1:7b:39:90:5e:bc:30:1d:ff:7d:0b:06:ab:ba:ad:85:ef: 4f:4c:4b:e6:c6:f7:54:49:bd:b6:c5:15:ac:13:68:f9:e7:fb: a2:2e:cb:1a:35:4a:02:99:d5:b6:c5:d7:ee:32:52:df:f3:17: a6:2d:f1:de:62:db:cb:d6:62:e8:30:ae:76:08:46:f5:d5:c3: bf:6c:76:41:e5:ed:9e:96:46:a2:06:cb:a6:1d:70:1d:bb:8f: d7:16:d9:88:c4:08:16:ed:9f:85:10:f6:65:d1:76:bc:1e:c7: fa:0e:fa:73:5e:34:8d:31:3a:6b:32:a3:63:ee:a3:a8:bd:51: 11:bc:6a:cc:65:8c:e2:da:1f:c5:bf:24:03:9a:39:67:c8:d2: c4:8f:5d:93:06:e6:42:79:be:eb:79:c5:aa:4d:c9:09:dd:92: e7:6f:e8:af:f8:15:85:35:5e:41:5f:66:46:c3:0f:dd:ac:5f: 49:54:a7:17:55:31:55:9b:fb:1b:9b:fd:eb:3d:41:c5:5c:ba: 32:1f:85:33 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUW2VWWPyhlX1Kd06MHrvVxchJWT4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTVGNTc5RkQzQjQwREJCREU0MERGNjJEN0FFQzcxNUMw RTkzMzczRjAeFw0yNjA0MjgwMjI1MzBaFw0yNzA0MjcwMjMwMzBaMDMxMTAvBgNV BAMTKDIxRERGNTY5RUI0Qjg4QzNDNzExNEM1NEZCRUI0RTczOTM1QzE2M0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaySnejsXn6GKF9gXicgiB6QeZ KPBUujmLIX8pF50t4a9OEOKPg2HHu7zwPXF1nO2glDcz8uA72gZedF+PA+to1R3A 81lPoVOX5bxfEi/oWpoizpOnuCQTTb98OheZUfTqXyock4D6XxYZUGwou04Y5kgz Bsl5sz1yv2QuIPCYhD1C2iSBccd2uEVheIfxV0i2c2qFhkisLY+pjS6nTZt/Wnmy SCLIVNK/NRH6kq0lhmZWXpy3GRWInSZ/SfOuQaATF93GFFc53p6SacGu3ujCbPsM ODUNe8kHl6wEgIW4zAPGizcQlcymfHcytqk1XZKGjSRcbZA0SE/HG4ruG2qHAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUId31aetLiMPHEUxU++tOc5NcFj8wHwYDVR0j BBgwFoAUpfV5/TtA273kDfYteuxxXA6TNz8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw MTMyNDM0MjUzMDE0NjMwNy8wL0E1RjU3OUZEM0I0MERCQkRFNDBERjYyRDdBRUM3 MTVDMEU5MzM3M0YuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQTVGNTc5RkQzQjQwREJCREU0MERGNjJEN0FFQzcxNUMwRTkzMzczRi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTEwMTMyNDM0MjUzMDE0NjMwNy8wLzMxMzIzMTJlMzQz NjJlMzEzOTMyMmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzUzNjMwMzQzNi5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAnkuwDANBgkqhkiG9w0BAQsFAAOCAQEAst4iugUdty+WSoeAtXV9iENX QL2Y73aAyr6vOVKVkgcc2I6cYQm4RkHpYcGm4wHM+LvrafIov/F7OZBevDAd/30L Bqu6rYXvT0xL5sb3VEm9tsUVrBNo+ef7oi7LGjVKApnVtsXX7jJS3/MXpi3x3mLb y9Zi6DCudghG9dXDv2x2QeXtnpZGogbLph1wHbuP1xbZiMQIFu2fhRD2ZdF2vB7H +g76c140jTE6azKjY+6jqL1REbxqzGWM4tofxb8kA5o5Z8jSxI9dkwbmQnm+63nF qk3JCd2S52/or/gVhTVeQV9mRsMP3axfSVSnF1UxVZv7G5v96z1BxVy6Mh+FMw== -----END CERTIFICATE-----Generated at Wed May 13 13:34:29 2026 by rpki-client