$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094871149650640897/0/3132322e3230302e36382e302f32332d3233203d3e2034383437.roa File: 3132322e3230302e36382e302f32332d3233203d3e2034383437.roa (raw, json) Hash identifier: DBCbk6MBsne5yFcDN/1ext+/m/nBPtwfRFNsBlsk0+A= Subject key identifier: 2D:8C:CA:EF:87:89:0C:EC:B6:83:B0:25:7D:25:26:E4:4E:D3:E0:12 Certificate issuer: /CN=29BAE90B795BA6BB50390EB31964E6F823BAB331 Certificate serial: 0727D252E44A182F410DD287435191634A67CF03 Authority key identifier: 29:BA:E9:0B:79:5B:A6:BB:50:39:0E:B3:19:64:E6:F8:23:BA:B3:31 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/29BAE90B795BA6BB50390EB31964E6F823BAB331.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094871149650640897/0/3132322e3230302e36382e302f32332d3233203d3e2034383437.roa Signing time: Wed 15 Apr 2026 02:50:21 +0000 ROA not before: Wed 15 Apr 2026 02:45:21 +0000 ROA not after: Wed 14 Apr 2027 02:50:21 +0000 asID: 4847 IP address blocks: 122.200.68.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094871149650640897/0/29BAE90B795BA6BB50390EB31964E6F823BAB331.crl rsync://rpki-rps.cnnic.cn/repo/A1094871149650640897/0/29BAE90B795BA6BB50390EB31964E6F823BAB331.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/29BAE90B795BA6BB50390EB31964E6F823BAB331.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 13:38:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:27:d2:52:e4:4a:18:2f:41:0d:d2:87:43:51:91:63:4a:67:cf:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29BAE90B795BA6BB50390EB31964E6F823BAB331 Validity Not Before: Apr 15 02:45:21 2026 GMT Not After : Apr 14 02:50:21 2027 GMT Subject: CN=2D8CCAEF87890CECB683B0257D2526E44ED3E012 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:04:ff:97:31:fd:89:f9:38:5e:d5:aa:af:bf: 10:2d:d0:c2:0c:38:27:9f:e6:bd:a5:e9:6b:f4:14: 79:c6:8e:ce:e5:a2:c7:9f:eb:28:37:c5:c2:80:ea: ef:be:ca:fb:c7:c2:3c:10:ae:98:1d:ed:e1:fd:10: 0b:08:90:9e:d8:4f:be:db:bc:0e:b7:28:4b:05:99: 1d:7e:74:86:28:1a:fa:49:84:1c:9c:3f:19:6e:1c: af:f2:94:96:8e:05:21:8b:ae:7f:75:e0:d1:6c:22: 61:5a:4b:97:e4:54:e1:24:6e:e1:f5:db:92:ee:e3: 87:33:e2:f2:aa:d0:0f:a6:19:6b:fd:00:a8:19:ec: b0:c7:9e:d9:af:cf:19:9e:5c:bc:da:27:ee:1c:94: fb:32:0f:7c:c7:29:62:2c:3a:2a:4a:27:90:ee:4f: 4b:12:34:d2:b1:fd:85:cc:3d:1f:3d:d2:64:2d:63: 37:0a:4b:f1:f8:a1:6f:a3:4b:75:a8:38:ab:d7:c8: 30:33:a1:77:a3:fb:2b:a9:e6:e0:5f:09:6d:16:e7: ac:0c:3a:73:78:d3:67:12:e3:13:8e:13:59:85:c1: e8:36:88:ba:ac:11:36:2b:f9:00:d5:ad:80:c1:ea: b6:45:34:69:46:8e:e0:f0:2b:06:16:85:5d:3d:da: 2d:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:8C:CA:EF:87:89:0C:EC:B6:83:B0:25:7D:25:26:E4:4E:D3:E0:12 X509v3 Authority Key Identifier: keyid:29:BA:E9:0B:79:5B:A6:BB:50:39:0E:B3:19:64:E6:F8:23:BA:B3:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094871149650640897/0/29BAE90B795BA6BB50390EB31964E6F823BAB331.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/29BAE90B795BA6BB50390EB31964E6F823BAB331.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094871149650640897/0/3132322e3230302e36382e302f32332d3233203d3e2034383437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.200.68.0/23 Signature Algorithm: sha256WithRSAEncryption c4:5e:f1:96:fa:81:02:d4:55:4b:76:24:2a:8c:12:0f:7e:1d: b5:5b:c3:e8:e6:fb:00:78:0c:59:3a:af:13:72:47:95:fe:58: 08:44:79:3d:63:09:73:3b:4a:d5:78:16:32:f9:57:a6:30:81: a5:3b:6d:d9:3b:c6:b2:5e:44:fd:20:11:f7:fc:b7:02:0f:a0: 28:cf:55:c1:d9:60:28:03:c6:9f:7c:6b:6f:d9:40:c9:f0:fa: 8e:2b:73:42:55:13:80:40:c3:ce:29:ad:7c:1c:d3:c9:2d:b0: 62:8c:80:45:01:84:20:22:3a:74:4b:94:32:9d:89:f0:22:b1: 8f:f2:c5:4c:8e:27:3c:2a:a1:1e:0e:f3:16:62:3f:01:d8:aa: 81:a8:68:ef:70:f7:28:6b:4b:17:11:24:13:80:bc:24:0f:12: 57:b5:ca:e5:28:d9:32:38:db:2d:5b:52:81:72:79:b7:77:6f: 96:92:cf:87:4d:b8:98:9e:58:24:3b:bc:33:f3:a0:17:76:c9: 31:f8:a5:6f:37:70:da:6d:e9:5f:f2:a9:2e:a7:27:9d:8b:71: 5a:08:e6:73:18:af:6e:f6:ef:99:1b:a2:c7:76:a0:60:55:e2: 0a:28:af:75:58:2f:5f:51:09:28:84:34:b1:ee:e9:9e:5d:cb: 66:a5:da:02 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUByfSUuRKGC9BDdKHQ1GRY0pnzwMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjlCQUU5MEI3OTVCQTZCQjUwMzkwRUIzMTk2NEU2Rjgy M0JBQjMzMTAeFw0yNjA0MTUwMjQ1MjFaFw0yNzA0MTQwMjUwMjFaMDMxMTAvBgNV BAMTKDJEOENDQUVGODc4OTBDRUNCNjgzQjAyNTdEMjUyNkU0NEVEM0UwMTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXBP+XMf2J+The1aqvvxAt0MIM OCef5r2l6Wv0FHnGjs7losef6yg3xcKA6u++yvvHwjwQrpgd7eH9EAsIkJ7YT77b vA63KEsFmR1+dIYoGvpJhBycPxluHK/ylJaOBSGLrn914NFsImFaS5fkVOEkbuH1 25Lu44cz4vKq0A+mGWv9AKgZ7LDHntmvzxmeXLzaJ+4clPsyD3zHKWIsOipKJ5Du T0sSNNKx/YXMPR890mQtYzcKS/H4oW+jS3WoOKvXyDAzoXej+yup5uBfCW0W56wM OnN402cS4xOOE1mFweg2iLqsETYr+QDVrYDB6rZFNGlGjuDwKwYWhV092i1VAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQULYzK74eJDOy2g7AlfSUm5E7T4BIwHwYDVR0j BBgwFoAUKbrpC3lbprtQOQ6zGWTm+CO6szEwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDg3MTE0OTY1MDY0MDg5Ny8wLzI5QkFFOTBCNzk1QkE2QkI1MDM5MEVCMzE5NjRF NkY4MjNCQUIzMzEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjlCQUU5MEI3OTVCQTZCQjUwMzkwRUIzMTk2NEU2RjgyM0JBQjMzMS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk0ODcxMTQ5NjUwNjQwODk3LzAvMzEzMjMyMmUzMjMw MzAyZTM2MzgyZTMwMmYzMjMzMmQzMjMzMjAzZDNlMjAzNDM4MzQzNy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAXrIRDANBgkqhkiG9w0BAQsFAAOCAQEAxF7xlvqBAtRVS3YkKowSD34dtVvD 6Ob7AHgMWTqvE3JHlf5YCER5PWMJcztK1XgWMvlXpjCBpTtt2TvGsl5E/SAR9/y3 Ag+gKM9VwdlgKAPGn3xrb9lAyfD6jitzQlUTgEDDzimtfBzTyS2wYoyARQGEICI6 dEuUMp2J8CKxj/LFTI4nPCqhHg7zFmI/Adiqgaho73D3KGtLFxEkE4C8JA8SV7XK 5SjZMjjbLVtSgXJ5t3dvlpLPh024mJ5YJDu8M/OgF3bJMfilbzdw2m3pX/KpLqcn nYtxWgjmcxivbvbvmRuix3agYFXiCiivdVgvX1EJKIQ0se7pnl3LZqXaAg== -----END CERTIFICATE-----Generated at Fri Apr 17 17:19:20 2026 by rpki-client