Route Origin Authorization
$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094872834095775747/0/AS132510.roa
File: AS132510.roa (raw, json)
Hash identifier: nW/Xu5rFcjc6MZ1OWK+RDXCb9OeXARjibpfGArwLV0Q=
Subject key identifier: 34:21:25:D6:15:19:3E:B9:AF:78:5A:9D:3F:B3:02:13:49:18:54:3F
Certificate issuer: /CN=A91D5F3D0000/serialNumber=DBB23C7EE492212EA858B78E1C66BF2298E5ACD4
Certificate serial: 133F2FDADD9FC729A2B07F69C12AB92C28CD7CAC
Authority key identifier: DB:B2:3C:7E:E4:92:21:2E:A8:58:B7:8E:1C:66:BF:22:98:E5:AC:D4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/27I8fuSSIS6oWLeOHGa_IpjlrNQ.cer
Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094872834095775747/0/AS132510.roa
Signing time: Mon 25 May 2026 06:45:53 +0000
ROA not before: Mon 25 May 2026 06:40:53 +0000
ROA not after: Mon 24 May 2027 06:45:53 +0000
asID: 132510
IP address blocks: 183.201.46.0/23 maxlen: 23
183.201.64.0/18 maxlen: 18
183.201.64.0/24 maxlen: 24
183.201.192.0/18 maxlen: 18
183.201.195.0/24 maxlen: 24
183.201.228.0/23 maxlen: 23
183.201.252.0/23 maxlen: 23
183.201.254.0/24 maxlen: 24
183.203.0.0/19 maxlen: 19
183.203.18.0/24 maxlen: 24
183.203.20.0/24 maxlen: 24
183.203.64.0/19 maxlen: 19
183.203.82.0/24 maxlen: 24
183.203.84.0/22 maxlen: 22
183.203.88.0/22 maxlen: 22
183.203.92.0/23 maxlen: 23
183.203.94.0/23 maxlen: 23
183.203.96.0/19 maxlen: 19
183.203.96.0/21 maxlen: 21
183.203.104.0/23 maxlen: 23
183.203.112.0/24 maxlen: 24
211.142.22.0/24 maxlen: 24
211.142.30.0/24 maxlen: 24
221.180.20.0/23 maxlen: 23
221.180.22.0/24 maxlen: 24
2409:800c:3001::/48 maxlen: 48
2409:800c:3002::/48 maxlen: 48
2409:8c0c:200::/40 maxlen: 40
2409:8c0c:300::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094872834095775747/0/DBB23C7EE492212EA858B78E1C66BF2298E5ACD4.crl
rsync://rpki-rps.cnnic.cn/repo/A1094872834095775747/0/DBB23C7EE492212EA858B78E1C66BF2298E5ACD4.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/27I8fuSSIS6oWLeOHGa_IpjlrNQ.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 15 Jun 2026 01:31:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:3f:2f:da:dd:9f:c7:29:a2:b0:7f:69:c1:2a:b9:2c:28:cd:7c:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D5F3D0000, serialNumber=DBB23C7EE492212EA858B78E1C66BF2298E5ACD4
Validity
Not Before: May 25 06:40:53 2026 GMT
Not After : May 24 06:45:53 2027 GMT
Subject: CN=342125D615193EB9AF785A9D3FB302134918543F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:2e:c1:64:7d:0a:e4:d4:f8:98:92:24:54:bb:
10:5a:b2:95:bf:fc:f0:7c:8f:55:74:06:09:24:f0:
6d:1b:5e:2e:d7:82:09:d9:7f:ba:a7:e0:88:db:c7:
29:14:42:82:23:76:52:47:1a:5e:c0:b2:36:79:3c:
4f:cc:21:71:03:b3:23:70:f5:e7:a2:62:b0:6b:19:
3a:db:59:de:5e:31:26:30:3e:02:22:8f:e3:41:46:
e6:6b:20:5c:83:eb:f6:1b:4a:d4:b3:fb:de:74:f7:
f0:33:5b:1e:62:45:7b:05:db:51:1a:e9:05:ee:d6:
c7:e3:ad:4d:bb:e9:cc:5e:2a:4f:7b:7f:4e:73:da:
43:99:5c:3d:a6:a0:62:54:80:b4:62:9c:8a:ce:d6:
e0:92:c8:0b:a1:56:9c:d6:a0:38:48:1a:70:8e:ff:
ba:35:33:7a:3c:4c:81:7b:65:af:8a:76:c3:b9:e8:
f0:60:6c:71:10:b8:3c:67:b1:7e:b6:f8:a0:a0:d5:
99:c4:9e:a4:a1:d0:21:4b:16:2d:d9:e1:03:6e:a9:
8c:b8:96:5b:81:8c:28:1e:9c:9b:d0:10:e0:8a:f9:
c7:c6:51:48:4e:06:d2:23:c2:dc:a0:f2:63:3c:9f:
80:ee:77:a3:f0:d5:6f:3b:cd:8f:55:f3:f2:d4:93:
84:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:21:25:D6:15:19:3E:B9:AF:78:5A:9D:3F:B3:02:13:49:18:54:3F
X509v3 Authority Key Identifier:
keyid:DB:B2:3C:7E:E4:92:21:2E:A8:58:B7:8E:1C:66:BF:22:98:E5:AC:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.cnnic.cn/repo/A1094872834095775747/0/DBB23C7EE492212EA858B78E1C66BF2298E5ACD4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/27I8fuSSIS6oWLeOHGa_IpjlrNQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094872834095775747/0/AS132510.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
183.201.46.0/23
183.201.64.0/18
183.201.192.0/18
183.203.0.0/19
183.203.64.0/18
211.142.22.0/24
211.142.30.0/24
221.180.20.0-221.180.22.255
IPv6:
2409:800c:3001::-2409:800c:3002:ffff:ffff:ffff:ffff:ffff
2409:8c0c:200::/39
Signature Algorithm: sha256WithRSAEncryption
ae:8b:bd:ed:f8:19:5d:87:1f:7c:26:fd:fb:2e:23:91:a1:3f:
3d:fa:60:da:af:93:ab:d7:7c:4c:98:af:09:6b:bc:b0:3c:61:
4c:dd:e7:82:b9:9a:0a:67:41:d6:13:40:1d:d9:d8:47:4a:29:
f5:7e:f9:3a:b4:62:a3:f2:74:14:49:47:a3:40:51:d7:c4:d8:
a2:a6:3e:6e:8b:c2:2b:71:e7:f3:63:4d:9d:76:77:6f:38:01:
94:0d:f8:ff:cc:05:4c:d3:01:c3:1b:c1:6e:5a:46:8d:9a:b7:
1e:61:25:44:ca:88:fb:d3:54:4d:dc:1e:28:94:f2:64:c3:ca:
a4:e1:cc:03:5f:e4:8b:35:0d:98:4e:83:f2:d0:04:89:40:8b:
c8:88:64:15:27:4c:d1:c8:e7:9a:64:34:40:a5:ef:57:d5:0e:
0d:79:06:1b:ac:b6:e0:13:bb:89:47:af:26:24:3d:5c:e6:fa:
84:ab:8e:ad:63:27:1d:4c:e8:ac:ca:e7:f9:8a:9c:b2:75:bc:
ef:5c:d2:6b:3a:e4:92:b1:d1:bd:09:35:03:39:99:0b:36:f0:
43:35:68:3b:b4:cf:fa:6b:ee:cd:76:d5:dd:7c:8b:e9:24:ad:
a9:4c:4b:de:d2:14:dd:be:3f:12:bf:03:2a:6c:ec:01:b4:58:
2f:4a:82:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 01:22:32 2026 by rpki-client