$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065577241947602945/0/3132332e3130382e38392e302f32342d3234203d3e203538353432.roa File: 3132332e3130382e38392e302f32342d3234203d3e203538353432.roa (raw, json) Hash identifier: oqskcXYlfQe+0a5sIAI0GXt6k9UwB2HXU7e8hhGsOZ0= Subject key identifier: 5D:3F:B8:85:46:C1:90:02:97:AA:64:C2:C1:DD:84:38:40:63:3C:9F Certificate issuer: /CN=5DF8086D3EFA176487A1C376B7BCCF3E83AB2339 Certificate serial: 4096EBE467FD58C5D9104D15C9768D7A22D3EA98 Authority key identifier: 5D:F8:08:6D:3E:FA:17:64:87:A1:C3:76:B7:BC:CF:3E:83:AB:23:39 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/3132332e3130382e38392e302f32342d3234203d3e203538353432.roa Signing time: Fri 17 Apr 2026 01:59:39 +0000 ROA not before: Fri 17 Apr 2026 01:54:39 +0000 ROA not after: Fri 16 Apr 2027 01:59:39 +0000 asID: 58542 IP address blocks: 123.108.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.crl rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 04:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:96:eb:e4:67:fd:58:c5:d9:10:4d:15:c9:76:8d:7a:22:d3:ea:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5DF8086D3EFA176487A1C376B7BCCF3E83AB2339 Validity Not Before: Apr 17 01:54:39 2026 GMT Not After : Apr 16 01:59:39 2027 GMT Subject: CN=5D3FB88546C1900297AA64C2C1DD843840633C9F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:6c:e0:4e:e9:3d:6d:fa:ce:ec:9a:23:28:b6: d6:5d:d4:94:25:fa:e0:14:e3:9c:8d:3c:12:f7:e8: 7b:4e:ea:a0:57:70:af:b8:d8:d6:8f:a2:ab:1c:d1: ef:ad:49:f4:54:59:61:ed:17:2c:7a:f6:36:69:4a: 78:8a:ab:a1:2e:7f:5b:e2:19:0f:c9:7f:35:ae:b4: f3:7f:37:92:bb:dd:cf:1a:3f:bc:3b:72:21:a1:89: a3:29:3f:a5:fc:53:2d:9b:ca:f5:94:49:4f:19:ba: 1c:fc:0d:4c:79:57:e6:89:ac:d9:e1:d6:31:87:3f: 44:a1:aa:51:83:70:b6:2a:fb:38:9b:fb:dc:1f:52: fd:97:9b:f7:13:7d:67:0a:b8:90:70:d1:04:72:4b: 43:0f:1c:db:af:d8:50:4d:18:93:85:77:e5:42:ce: 8d:72:35:16:ed:fb:b2:0f:63:31:76:27:1d:36:7f: 11:2d:c1:82:50:6f:28:9c:5f:d4:f6:41:8f:e7:4f: 74:47:9f:38:6a:d6:9e:f2:44:6f:08:60:ac:ee:f1: b7:65:cf:57:0a:f2:3e:79:7f:bf:52:af:6a:8f:e7: 38:84:35:4c:14:90:0b:e7:53:41:f1:fb:35:c3:c9: 5c:c6:3c:10:1b:62:8b:77:f7:f1:32:99:0d:b8:11: 18:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:3F:B8:85:46:C1:90:02:97:AA:64:C2:C1:DD:84:38:40:63:3C:9F X509v3 Authority Key Identifier: keyid:5D:F8:08:6D:3E:FA:17:64:87:A1:C3:76:B7:BC:CF:3E:83:AB:23:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/3132332e3130382e38392e302f32342d3234203d3e203538353432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.108.89.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:cb:d6:b7:4b:d2:7e:f2:56:46:5c:f5:f9:f3:18:3b:b0:c1: 97:0f:f2:0b:c7:0b:c0:2f:10:a5:9f:c9:bb:c7:f4:a2:2e:40: 39:12:02:a1:cf:2d:5e:df:86:8b:2a:4b:46:f7:29:89:97:85: f5:6f:e7:d9:52:3b:81:1b:c5:35:6f:74:cf:58:37:dc:7d:39: be:3f:5e:ec:cb:7e:b8:80:24:4c:3b:9f:3c:21:f7:6e:31:1a: 32:02:82:3f:e4:60:cb:15:e8:29:2c:ab:25:6e:41:37:6f:c5: 6c:27:ce:9a:ba:29:e3:f4:b3:53:28:f3:31:3f:bf:12:18:61: 2f:70:ae:9a:18:0a:d9:3d:d0:9a:84:17:1c:98:0a:17:16:e1: 62:30:40:9a:8c:ee:73:e0:b3:2b:e6:25:fc:e5:3b:4b:45:8d: bd:38:f9:b6:63:76:2b:22:82:3f:dc:c8:32:30:48:80:e8:5a: 8c:9b:dd:93:a9:4d:27:e9:4b:e9:8b:5a:3c:a6:1c:03:76:3d: af:11:f1:b4:bd:a0:9f:c7:4e:d8:80:f9:7c:5b:08:02:69:50: 5a:7f:23:c8:81:20:0b:c7:20:57:24:87:db:13:ad:51:0b:cf: 5d:5d:44:5f:d2:94:29:d6:de:ad:40:13:55:fc:71:2e:5b:51: 21:b3:4e:ea -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUQJbr5Gf9WMXZEE0VyXaNeiLT6pgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNURGODA4NkQzRUZBMTc2NDg3QTFDMzc2QjdCQ0NGM0U4 M0FCMjMzOTAeFw0yNjA0MTcwMTU0MzlaFw0yNzA0MTYwMTU5MzlaMDMxMTAvBgNV BAMTKDVEM0ZCODg1NDZDMTkwMDI5N0FBNjRDMkMxREQ4NDM4NDA2MzNDOUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+bOBO6T1t+s7smiMottZd1JQl +uAU45yNPBL36HtO6qBXcK+42NaPoqsc0e+tSfRUWWHtFyx69jZpSniKq6Euf1vi GQ/JfzWutPN/N5K73c8aP7w7ciGhiaMpP6X8Uy2byvWUSU8Zuhz8DUx5V+aJrNnh 1jGHP0ShqlGDcLYq+zib+9wfUv2Xm/cTfWcKuJBw0QRyS0MPHNuv2FBNGJOFd+VC zo1yNRbt+7IPYzF2Jx02fxEtwYJQbyicX9T2QY/nT3RHnzhq1p7yRG8IYKzu8bdl z1cK8j55f79Sr2qP5ziENUwUkAvnU0Hx+zXDyVzGPBAbYot39/EymQ24ERjxAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUXT+4hUbBkAKXqmTCwd2EOEBjPJ8wHwYDVR0j BBgwFoAUXfgIbT76F2SHocN2t7zPPoOrIzkwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NzI0MTk0NzYwMjk0NS8wLzVERjgwODZEM0VGQTE3NjQ4N0ExQzM3NkI3QkND RjNFODNBQjIzMzkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNURGODA4NkQzRUZBMTc2NDg3QTFDMzc2QjdCQ0NGM0U4M0FCMjMzOS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3NzI0MTk0NzYwMjk0NS8wLzMxMzIzMzJlMzEz MDM4MmUzODM5MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzUzODM1MzQzMi5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAHtsWTANBgkqhkiG9w0BAQsFAAOCAQEAL8vWt0vSfvJWRlz1+fMYO7DB lw/yC8cLwC8QpZ/Ju8f0oi5AORICoc8tXt+GiypLRvcpiZeF9W/n2VI7gRvFNW90 z1g33H05vj9e7Mt+uIAkTDufPCH3bjEaMgKCP+RgyxXoKSyrJW5BN2/FbCfOmrop 4/SzUyjzMT+/EhhhL3CumhgK2T3QmoQXHJgKFxbhYjBAmozuc+CzK+Yl/OU7S0WN vTj5tmN2KyKCP9zIMjBIgOhajJvdk6lNJ+lL6YtaPKYcA3Y9rxHxtL2gn8dO2ID5 fFsIAmlQWn8jyIEgC8cgVySH2xOtUQvPXV1EX9KUKdberUATVfxxLltRIbNO6g== -----END CERTIFICATE-----Generated at Fri Apr 17 18:50:42 2026 by rpki-client