$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065887644090630145/0/3132332e35362e302e302f31352d3234203d3e203337393633.roa File: 3132332e35362e302e302f31352d3234203d3e203337393633.roa (raw, json) Hash identifier: G4wfVtoubfJaFDIDeGXFZRkYA5B45naBkWWgLxWDVac= Subject key identifier: D9:25:66:4F:AB:47:F2:EF:0D:C8:DB:B4:1F:66:4D:1C:77:22:35:56 Certificate issuer: /CN=B3CAFB59F10B03AD2106E8215DBB903F157D0C8E Certificate serial: 37E05615E95727C901CD7CECBEAC26C6E76BD270 Authority key identifier: B3:CA:FB:59:F1:0B:03:AD:21:06:E8:21:5D:BB:90:3F:15:7D:0C:8E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/3132332e35362e302e302f31352d3234203d3e203337393633.roa Signing time: Fri 17 Apr 2026 02:02:10 +0000 ROA not before: Fri 17 Apr 2026 01:57:10 +0000 ROA not after: Fri 16 Apr 2027 02:02:10 +0000 asID: 37963 IP address blocks: 123.56.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.crl rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 11:27:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:e0:56:15:e9:57:27:c9:01:cd:7c:ec:be:ac:26:c6:e7:6b:d2:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B3CAFB59F10B03AD2106E8215DBB903F157D0C8E Validity Not Before: Apr 17 01:57:10 2026 GMT Not After : Apr 16 02:02:10 2027 GMT Subject: CN=D925664FAB47F2EF0DC8DBB41F664D1C77223556 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:da:a3:75:fe:ec:a7:3a:68:4b:3c:27:74:ae: f2:2a:b7:a7:93:eb:ee:3d:0e:60:e7:33:cb:6b:4a: 35:ba:38:08:ec:dc:17:0f:a3:ae:a7:6d:f5:1d:14: 19:41:89:f7:49:a3:f1:c7:f8:0a:fe:0c:51:48:65: 16:f9:15:1c:36:5e:5e:2b:79:f5:c3:91:ae:64:39: 78:9b:6a:58:a8:ca:b2:c1:06:b7:5b:68:5d:c5:70: 6b:2e:8a:93:31:be:c6:63:a9:e4:5b:51:54:34:ef: 17:f2:63:55:1c:be:dd:dd:bf:93:40:b6:a4:35:c9: 77:04:54:21:8b:f7:fb:40:1b:41:92:ea:27:68:27: 74:a0:46:1a:6d:4e:f6:96:97:04:73:de:07:27:27: bc:a5:6e:55:08:f9:6b:24:19:5a:8f:06:18:ff:87: bd:8a:e0:86:9e:c2:79:1b:8f:68:ee:0a:f0:f8:20: 5d:39:f2:9e:1a:97:c9:29:20:41:bb:a3:75:04:44: 18:7a:8c:41:93:c4:7b:1f:48:65:13:b3:91:a2:66: e0:c3:38:99:fe:55:c3:77:26:35:2c:24:e5:d0:a9: 0b:65:1a:63:e7:e2:4e:30:da:f9:55:1e:57:c4:58: 45:97:eb:d8:2a:8e:14:59:dc:58:50:79:85:30:22: 8f:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:25:66:4F:AB:47:F2:EF:0D:C8:DB:B4:1F:66:4D:1C:77:22:35:56 X509v3 Authority Key Identifier: keyid:B3:CA:FB:59:F1:0B:03:AD:21:06:E8:21:5D:BB:90:3F:15:7D:0C:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/3132332e35362e302e302f31352d3234203d3e203337393633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.56.0.0/15 Signature Algorithm: sha256WithRSAEncryption 24:3d:68:86:a5:0b:36:44:7d:fe:cb:f6:e5:a0:54:26:a8:1c: c2:5c:2f:57:4e:02:16:bc:d4:5c:a7:9b:d7:23:f9:47:63:45: 4a:e8:de:a3:23:83:ac:5c:40:ba:24:15:83:30:21:bc:73:56: e7:14:f5:1c:b2:d6:7b:d3:8c:81:97:75:d3:26:49:ad:9d:e3: ad:71:8b:0c:16:12:72:ab:99:c2:8b:4a:57:b2:2c:ad:f7:48: 99:7d:66:bf:73:b0:57:72:af:40:d3:8e:c2:c8:a7:b5:d5:75: 50:3e:fa:6a:a2:9a:82:35:52:68:48:d6:69:ea:2b:b7:3d:05: 40:66:98:05:ab:90:f6:5f:44:1c:1a:33:09:a8:10:7a:1e:88: c9:0c:4d:f0:c2:fc:40:75:86:eb:bf:da:f8:96:9b:96:24:cf: 16:3a:55:03:f1:30:4f:4b:12:0f:0f:29:32:df:d3:1f:40:f6: 37:c1:b3:df:68:d7:3e:05:a2:b7:64:11:b7:64:68:66:8e:a7: 1c:ac:73:3e:b2:3d:2f:66:70:47:4a:ad:38:00:e0:27:7e:1a: 01:2f:13:c2:3b:bd:87:dd:7c:85:93:af:1d:87:24:97:89:5c: 93:01:e6:6b:07:69:62:29:9a:d3:eb:c5:f5:ec:f0:d5:d6:3f: a2:e8:aa:b8 -----BEGIN CERTIFICATE----- MIIFBDCCA+ygAwIBAgIUN+BWFelXJ8kBzXzsvqwmxudr0nAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjNDQUZCNTlGMTBCMDNBRDIxMDZFODIxNURCQjkwM0Yx NTdEMEM4RTAeFw0yNjA0MTcwMTU3MTBaFw0yNzA0MTYwMjAyMTBaMDMxMTAvBgNV BAMTKEQ5MjU2NjRGQUI0N0YyRUYwREM4REJCNDFGNjY0RDFDNzcyMjM1NTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDR2qN1/uynOmhLPCd0rvIqt6eT 6+49DmDnM8trSjW6OAjs3BcPo66nbfUdFBlBifdJo/HH+Ar+DFFIZRb5FRw2Xl4r efXDka5kOXibalioyrLBBrdbaF3FcGsuipMxvsZjqeRbUVQ07xfyY1Ucvt3dv5NA tqQ1yXcEVCGL9/tAG0GS6idoJ3SgRhptTvaWlwRz3gcnJ7ylblUI+WskGVqPBhj/ h72K4Iaewnkbj2juCvD4IF058p4al8kpIEG7o3UERBh6jEGTxHsfSGUTs5GiZuDD OJn+VcN3JjUsJOXQqQtlGmPn4k4w2vlVHlfEWEWX69gqjhRZ3FhQeYUwIo8tAgMB AAGjggIOMIICCjAdBgNVHQ4EFgQU2SVmT6tH8u8NyNu0H2ZNHHciNVYwHwYDVR0j BBgwFoAUs8r7WfELA60hBughXbuQPxV9DI4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTg4NzY0NDA5MDYzMDE0NS8wL0IzQ0FGQjU5RjEwQjAzQUQyMTA2RTgyMTVEQkI5 MDNGMTU3RDBDOEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQjNDQUZCNTlGMTBCMDNBRDIxMDZFODIxNURCQjkwM0YxNTdEMEM4RS5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1ODg3NjQ0MDkwNjMwMTQ1LzAvMzEzMjMzMmUzNTM2 MmUzMDJlMzAyZjMxMzUyZDMyMzQyMDNkM2UyMDMzMzczOTM2MzMucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD AwF7ODANBgkqhkiG9w0BAQsFAAOCAQEAJD1ohqULNkR9/sv25aBUJqgcwlwvV04C FrzUXKeb1yP5R2NFSujeoyODrFxAuiQVgzAhvHNW5xT1HLLWe9OMgZd10yZJrZ3j rXGLDBYScquZwotKV7IsrfdImX1mv3OwV3KvQNOOwsintdV1UD76aqKagjVSaEjW aeortz0FQGaYBauQ9l9EHBozCagQeh6IyQxN8ML8QHWG67/a+JabliTPFjpVA/Ew T0sSDw8pMt/TH0D2N8Gz32jXPgWit2QRt2RoZo6nHKxzPrI9L2ZwR0qtOADgJ34a AS8Twju9h918hZOvHYckl4lckwHmawdpYima0+vF9ezw1dY/ouiquA== -----END CERTIFICATE-----Generated at Fri Apr 17 23:54:59 2026 by rpki-client