$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1101324342530146307/0/3132312e34362e3139362e302f32322d3232203d3e20313430373137.roa File: 3132312e34362e3139362e302f32322d3232203d3e20313430373137.roa (raw, json) Hash identifier: r1OrvrQbOG3CWpMBVfsfGJEW6xW4KGBKQR94p3XbtMs= Subject key identifier: B6:B7:DF:C6:22:E7:D2:9F:DD:43:5E:1F:F6:22:9B:0E:35:E8:DD:16 Certificate issuer: /CN=A5F579FD3B40DBBDE40DF62D7AEC715C0E93373F Certificate serial: 6C327AD00E35C3C139E8AE995472D17B1444EB0E Authority key identifier: A5:F5:79:FD:3B:40:DB:BD:E4:0D:F6:2D:7A:EC:71:5C:0E:93:37:3F Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A5F579FD3B40DBBDE40DF62D7AEC715C0E93373F.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1101324342530146307/0/3132312e34362e3139362e302f32322d3232203d3e20313430373137.roa Signing time: Tue 28 Apr 2026 02:30:29 +0000 ROA not before: Tue 28 Apr 2026 02:25:29 +0000 ROA not after: Tue 27 Apr 2027 02:30:29 +0000 asID: 140717 IP address blocks: 121.46.196.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1101324342530146307/0/A5F579FD3B40DBBDE40DF62D7AEC715C0E93373F.crl rsync://rpki-rps.cnnic.cn/repo/A1101324342530146307/0/A5F579FD3B40DBBDE40DF62D7AEC715C0E93373F.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A5F579FD3B40DBBDE40DF62D7AEC715C0E93373F.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:32:7a:d0:0e:35:c3:c1:39:e8:ae:99:54:72:d1:7b:14:44:eb:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A5F579FD3B40DBBDE40DF62D7AEC715C0E93373F Validity Not Before: Apr 28 02:25:29 2026 GMT Not After : Apr 27 02:30:29 2027 GMT Subject: CN=B6B7DFC622E7D29FDD435E1FF6229B0E35E8DD16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:1c:d7:51:e9:71:17:fd:c2:44:a8:4b:ab:4e: da:7c:3e:0d:ea:68:1c:ac:07:a4:25:d3:10:24:f0: 00:c2:27:bc:11:9d:2a:ff:26:70:15:1e:70:77:47: 99:d9:00:1c:65:73:0b:f2:88:32:1e:0e:3a:01:68: 78:ba:f8:21:22:88:56:ce:7a:2f:fa:fa:c7:b8:66: 46:71:35:2f:b7:57:25:62:ac:da:f8:0e:9f:62:b5: f0:66:b5:2a:2d:a5:18:bb:88:01:09:25:9a:12:cd: 43:8c:79:8e:60:61:f1:bb:71:85:d1:45:fe:ee:2a: 07:a0:5e:a3:39:d5:99:e1:2d:7b:aa:9b:19:96:47: 31:bd:8c:34:cf:37:c7:e5:61:fa:3d:33:d1:d8:66: ba:de:c6:0b:f8:2c:be:7b:ee:ec:f3:06:e1:ac:ae: 47:87:67:3e:b4:67:51:d8:5e:8a:3e:2f:40:15:f1: 52:ce:7f:c4:9e:0d:1f:38:95:aa:12:85:e6:46:7e: ca:4c:3d:e6:c5:f9:12:8f:73:d4:1c:c0:1b:06:c4: c9:b7:cc:98:76:c7:f7:af:1a:9e:e7:5a:7a:30:44: 2a:4b:a1:11:24:3f:62:28:36:ad:8f:cd:4e:45:a4: 1f:53:37:0e:16:35:9d:f2:49:94:48:68:6b:c3:b3: 30:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:B7:DF:C6:22:E7:D2:9F:DD:43:5E:1F:F6:22:9B:0E:35:E8:DD:16 X509v3 Authority Key Identifier: keyid:A5:F5:79:FD:3B:40:DB:BD:E4:0D:F6:2D:7A:EC:71:5C:0E:93:37:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1101324342530146307/0/A5F579FD3B40DBBDE40DF62D7AEC715C0E93373F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A5F579FD3B40DBBDE40DF62D7AEC715C0E93373F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1101324342530146307/0/3132312e34362e3139362e302f32322d3232203d3e20313430373137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 121.46.196.0/22 Signature Algorithm: sha256WithRSAEncryption 9f:14:cf:68:d3:b4:6e:4c:f5:c3:14:21:99:36:e4:c7:1c:00: 63:22:e9:df:5e:f0:5b:d1:d4:97:75:4b:85:a3:27:28:4c:6c: 99:be:2a:d8:52:f6:a2:38:4c:3f:cd:34:ac:f3:84:9c:f9:ef: 08:3b:33:36:cb:91:f1:f8:a9:52:1d:eb:d5:4a:e2:05:f0:f7: 66:0c:8a:51:df:08:18:2b:8c:d3:26:76:96:07:55:31:0c:d5: d0:33:3c:3a:d1:03:c9:aa:9a:be:52:22:b4:96:cd:58:a5:3e: 52:0a:47:c7:41:b0:5e:fb:e6:90:72:cb:1b:5f:ff:90:56:51: c7:cf:a7:c0:e2:c0:90:41:f3:d5:29:34:93:fe:a6:05:e3:42: 99:ab:28:52:16:73:03:21:e0:65:ce:80:99:e4:76:c9:ac:8f: ce:44:d0:e8:ad:84:00:69:a6:d9:56:52:1f:71:55:83:b9:14: 5e:c8:59:c4:1b:5b:0b:a3:6a:9a:85:93:9e:a7:99:f3:c8:4e: f5:69:c0:7e:9a:21:a8:fb:8c:0a:af:dd:19:ac:fc:7b:f4:ff: 48:ee:9c:4d:56:55:9b:b5:b9:9c:6f:15:34:6a:6a:4e:09:43: 11:4d:51:9e:d7:b2:fb:42:d5:b1:e9:22:07:97:eb:47:0d:c5: 1a:3e:d2:29 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUbDJ60A41w8E56K6ZVHLRexRE6w4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTVGNTc5RkQzQjQwREJCREU0MERGNjJEN0FFQzcxNUMw RTkzMzczRjAeFw0yNjA0MjgwMjI1MjlaFw0yNzA0MjcwMjMwMjlaMDMxMTAvBgNV BAMTKEI2QjdERkM2MjJFN0QyOUZERDQzNUUxRkY2MjI5QjBFMzVFOEREMTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcHNdR6XEX/cJEqEurTtp8Pg3q aBysB6Ql0xAk8ADCJ7wRnSr/JnAVHnB3R5nZABxlcwvyiDIeDjoBaHi6+CEiiFbO ei/6+se4ZkZxNS+3VyVirNr4Dp9itfBmtSotpRi7iAEJJZoSzUOMeY5gYfG7cYXR Rf7uKgegXqM51ZnhLXuqmxmWRzG9jDTPN8flYfo9M9HYZrrexgv4LL577uzzBuGs rkeHZz60Z1HYXoo+L0AV8VLOf8SeDR84laoSheZGfspMPebF+RKPc9QcwBsGxMm3 zJh2x/evGp7nWnowRCpLoREkP2IoNq2PzU5FpB9TNw4WNZ3ySZRIaGvDszB1AgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUtrffxiLn0p/dQ14f9iKbDjXo3RYwHwYDVR0j BBgwFoAUpfV5/TtA273kDfYteuxxXA6TNz8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw MTMyNDM0MjUzMDE0NjMwNy8wL0E1RjU3OUZEM0I0MERCQkRFNDBERjYyRDdBRUM3 MTVDMEU5MzM3M0YuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQTVGNTc5RkQzQjQwREJCREU0MERGNjJEN0FFQzcxNUMwRTkzMzczRi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTExMDEzMjQzNDI1MzAxNDYzMDcvMC8zMTMyMzEyZTM0 MzYyZTMxMzkzNjJlMzAyZjMyMzIyZDMyMzIyMDNkM2UyMDMxMzQzMDM3MzEzNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAnkuxDANBgkqhkiG9w0BAQsFAAOCAQEAnxTPaNO0bkz1wxQhmTbk xxwAYyLp317wW9HUl3VLhaMnKExsmb4q2FL2ojhMP800rPOEnPnvCDszNsuR8fip Uh3r1UriBfD3ZgyKUd8IGCuM0yZ2lgdVMQzV0DM8OtEDyaqavlIitJbNWKU+UgpH x0GwXvvmkHLLG1//kFZRx8+nwOLAkEHz1Sk0k/6mBeNCmasoUhZzAyHgZc6AmeR2 yayPzkTQ6K2EAGmm2VZSH3FVg7kUXshZxBtbC6NqmoWTnqeZ88hO9WnAfpohqPuM Cq/dGaz8e/T/SO6cTVZVm7W5nG8VNGpqTglDEU1Rntey+0LVsekiB5frRw3FGj7S KQ== -----END CERTIFICATE-----Generated at Wed May 13 17:44:48 2026 by rpki-client