$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097087053666975747/0/32372e35302e3133322e302f32342d3234203d3e2034383337.roa File: 32372e35302e3133322e302f32342d3234203d3e2034383337.roa (raw, json) Hash identifier: lpdXlsHf2B/uACTtIHS07JASWjS1/rFnxuCFfq2OVw0= Subject key identifier: D6:78:BD:56:3F:57:77:8C:D2:B4:57:1D:A8:4A:10:22:49:0F:9C:20 Certificate issuer: /CN=9006F3ED77C8551A72B9D224109F782F6A4251D9 Certificate serial: 09E6F546811D54972DDE66B5CAD15D81F67EEBCC Authority key identifier: 90:06:F3:ED:77:C8:55:1A:72:B9:D2:24:10:9F:78:2F:6A:42:51:D9 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9006F3ED77C8551A72B9D224109F782F6A4251D9.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097087053666975747/0/32372e35302e3133322e302f32342d3234203d3e2034383337.roa Signing time: Fri 17 Apr 2026 09:03:56 +0000 ROA not before: Fri 17 Apr 2026 08:58:56 +0000 ROA not after: Fri 16 Apr 2027 09:03:56 +0000 asID: 4837 IP address blocks: 27.50.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097087053666975747/0/9006F3ED77C8551A72B9D224109F782F6A4251D9.crl rsync://rpki-rps.cnnic.cn/repo/A1097087053666975747/0/9006F3ED77C8551A72B9D224109F782F6A4251D9.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9006F3ED77C8551A72B9D224109F782F6A4251D9.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 00:28:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:e6:f5:46:81:1d:54:97:2d:de:66:b5:ca:d1:5d:81:f6:7e:eb:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9006F3ED77C8551A72B9D224109F782F6A4251D9 Validity Not Before: Apr 17 08:58:56 2026 GMT Not After : Apr 16 09:03:56 2027 GMT Subject: CN=D678BD563F57778CD2B4571DA84A1022490F9C20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:28:31:93:a2:94:3d:b7:39:d4:c1:78:81:61: 21:39:ea:9c:c7:61:a0:ae:f2:3a:60:3a:e3:9e:65: 87:f0:e5:d2:25:51:43:4e:31:f3:86:e7:c3:40:c5: 4d:45:61:f6:3c:40:e4:8d:24:e1:94:7a:82:5c:38: 39:54:d3:e1:5a:af:58:fb:ad:12:a8:c2:59:2e:57: 06:0b:f0:34:16:25:8a:8f:c0:23:9c:21:41:1a:6e: a2:80:59:0d:77:52:94:29:2e:f1:9d:14:5e:a2:2c: 54:6c:f5:8f:7c:40:a5:c4:26:85:3a:d0:29:14:2d: 90:ea:6a:99:e8:7e:8f:f6:ec:1c:39:ab:61:51:fe: ca:c7:fd:89:ad:7a:7f:82:a1:47:a8:31:19:e5:f5: c3:40:35:90:32:38:aa:44:4c:b2:9e:1c:f5:e0:6e: 85:c6:fb:26:87:39:29:59:6f:b1:bc:b7:30:90:e1: c1:26:fc:58:ba:e0:45:63:e1:16:01:86:aa:5e:9f: 60:58:30:9c:a2:02:b2:a6:8e:70:35:78:df:56:1c: ae:eb:92:ef:e0:17:da:65:aa:0c:69:60:b8:75:a5: e3:47:24:19:b8:80:74:57:79:75:c7:55:69:1f:c5: e5:5e:4f:ae:0b:73:5a:51:44:2b:1b:ef:96:fc:89: 45:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:78:BD:56:3F:57:77:8C:D2:B4:57:1D:A8:4A:10:22:49:0F:9C:20 X509v3 Authority Key Identifier: keyid:90:06:F3:ED:77:C8:55:1A:72:B9:D2:24:10:9F:78:2F:6A:42:51:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097087053666975747/0/9006F3ED77C8551A72B9D224109F782F6A4251D9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9006F3ED77C8551A72B9D224109F782F6A4251D9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097087053666975747/0/32372e35302e3133322e302f32342d3234203d3e2034383337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.50.132.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:94:2e:c6:64:bf:a1:4e:6c:3c:3f:3c:84:ff:36:0e:8d:29: 01:5f:57:a8:05:7d:67:da:40:d6:ef:e3:7e:f6:7e:c9:64:fd: 76:71:dc:1e:a0:10:fd:bf:a2:ae:dc:54:98:0c:fa:07:67:0d: fb:b8:df:9d:52:65:90:6b:09:07:38:ca:4f:9e:29:e4:55:c7: a3:30:cf:c8:b6:40:40:c3:60:32:30:74:df:e5:c0:43:d3:a1: 90:8b:d3:3a:69:80:d4:21:36:8e:ed:aa:d2:64:dd:00:a2:1a: 18:c7:b8:6d:16:76:d0:04:41:0a:df:eb:55:6b:d5:1b:4f:69: dd:43:bf:de:7d:ae:5d:72:18:6a:39:28:ff:10:c0:45:fd:98: ce:eb:28:fe:a4:61:cc:bc:b9:09:ac:af:10:4e:79:8a:23:72: 8a:81:a3:e3:9b:28:2a:28:d4:f5:64:61:f8:3a:9e:7a:ab:6e: be:83:ae:79:4e:88:29:8c:72:56:cd:ea:fb:aa:07:52:db:57: 19:82:7d:53:34:b5:10:e9:80:25:e4:55:1b:ab:ed:41:dc:30: 78:e6:40:84:75:b6:b0:ed:13:80:e5:6b:74:7d:14:a7:d8:77: ae:95:fc:e7:ae:af:bd:89:75:17:7a:84:a7:5b:97:d0:58:7b: c7:35:d6:8d -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUCeb1RoEdVJct3ma1ytFdgfZ+68wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTAwNkYzRUQ3N0M4NTUxQTcyQjlEMjI0MTA5Rjc4MkY2 QTQyNTFEOTAeFw0yNjA0MTcwODU4NTZaFw0yNzA0MTYwOTAzNTZaMDMxMTAvBgNV BAMTKEQ2NzhCRDU2M0Y1Nzc3OENEMkI0NTcxREE4NEExMDIyNDkwRjlDMjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7KDGTopQ9tznUwXiBYSE56pzH YaCu8jpgOuOeZYfw5dIlUUNOMfOG58NAxU1FYfY8QOSNJOGUeoJcODlU0+Far1j7 rRKowlkuVwYL8DQWJYqPwCOcIUEabqKAWQ13UpQpLvGdFF6iLFRs9Y98QKXEJoU6 0CkULZDqapnofo/27Bw5q2FR/srH/Ymten+CoUeoMRnl9cNANZAyOKpETLKeHPXg boXG+yaHOSlZb7G8tzCQ4cEm/Fi64EVj4RYBhqpen2BYMJyiArKmjnA1eN9WHK7r ku/gF9plqgxpYLh1peNHJBm4gHRXeXXHVWkfxeVeT64Lc1pRRCsb75b8iUX/AgMB AAGjggIPMIICCzAdBgNVHQ4EFgQU1ni9Vj9Xd4zStFcdqEoQIkkPnCAwHwYDVR0j BBgwFoAUkAbz7XfIVRpyudIkEJ94L2pCUdkwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzA4NzA1MzY2Njk3NTc0Ny8wLzkwMDZGM0VENzdDODU1MUE3MkI5RDIyNDEwOUY3 ODJGNkE0MjUxRDkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTAwNkYzRUQ3N0M4NTUxQTcyQjlEMjI0MTA5Rjc4MkY2QTQyNTFEOS5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk3MDg3MDUzNjY2OTc1NzQ3LzAvMzIzNzJlMzUzMDJl MzEzMzMyMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzQzODMzMzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAAbMoQwDQYJKoZIhvcNAQELBQADggEBAA6ULsZkv6FObDw/PIT/Ng6NKQFfV6gF fWfaQNbv4372fslk/XZx3B6gEP2/oq7cVJgM+gdnDfu4351SZZBrCQc4yk+eKeRV x6Mwz8i2QEDDYDIwdN/lwEPToZCL0zppgNQhNo7tqtJk3QCiGhjHuG0WdtAEQQrf 61Vr1RtPad1Dv959rl1yGGo5KP8QwEX9mM7rKP6kYcy8uQmsrxBOeYojcoqBo+Ob KCoo1PVkYfg6nnqrbr6DrnlOiCmMclbN6vuqB1LbVxmCfVM0tRDpgCXkVRur7UHc MHjmQIR1trDtE4Dla3R9FKfYd66V/Oeur72JdRd6hKdbl9BYe8c11o0= -----END CERTIFICATE-----Generated at Sun Apr 19 11:13:10 2026 by rpki-client