$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576723372179458/0/AS134773.roa File: AS134773.roa (raw, json) Hash identifier: LS1op7nr0t6UFxbuUu+QGxely+gvDlAgRyd3k4OpMS8= Subject key identifier: 9E:8C:12:3E:40:21:DA:F9:FF:53:D4:CB:10:5B:FD:53:9F:12:C7:86 Certificate issuer: /CN=8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE Certificate serial: 1F4BC180152D820EC4AE7B2F08F05DBA04A95B8A Authority key identifier: 8D:47:3B:7B:41:E3:D6:22:DF:B3:B6:0D:5E:B9:46:99:8F:BE:7E:AE Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/AS134773.roa Signing time: Wed 13 May 2026 09:27:08 +0000 ROA not before: Wed 13 May 2026 09:22:08 +0000 ROA not after: Wed 12 May 2027 09:27:08 +0000 asID: 134773 IP address blocks: 103.201.192.0/24 maxlen: 24 103.201.193.0/24 maxlen: 24 103.201.196.0/24 maxlen: 24 103.201.200.0/24 maxlen: 24 113.21.232.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.crl rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:4b:c1:80:15:2d:82:0e:c4:ae:7b:2f:08:f0:5d:ba:04:a9:5b:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE Validity Not Before: May 13 09:22:08 2026 GMT Not After : May 12 09:27:08 2027 GMT Subject: CN=9E8C123E4021DAF9FF53D4CB105BFD539F12C786 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:00:ef:a3:f6:58:bc:cf:2f:6f:f2:f9:91:86: 78:a4:71:1d:58:be:82:fd:66:e6:2c:7f:ce:74:a6: 6f:1d:81:11:90:12:a9:cd:34:5a:e9:a7:03:a6:22: 88:91:37:4d:84:eb:41:37:2f:1c:91:2d:77:35:ad: f2:88:7a:3e:d0:0d:b4:a1:b9:37:43:19:23:d1:dc: 6b:49:59:97:1a:a6:eb:57:51:73:36:9b:5f:7c:8d: cb:ec:cf:b6:f5:37:3f:dc:22:53:ba:d6:7b:a6:ad: 05:18:09:73:5b:52:f9:e1:69:c8:d4:5c:5f:7c:1a: dc:aa:fa:da:25:47:96:13:e2:ac:f4:ea:7c:9c:5e: 59:21:23:00:52:63:c1:f4:ef:2f:c4:b7:70:9d:f6: 36:1b:bc:c7:46:c5:ba:93:e2:39:70:aa:57:6f:16: e9:80:c1:87:79:bd:0e:96:0c:a4:72:1c:f7:6e:fa: 37:6f:59:4a:3d:bb:cc:23:02:be:fd:56:dc:1a:46: ad:95:a3:a2:00:4e:0f:42:78:c5:94:3e:71:66:b3: 6f:46:ce:2a:3e:81:4e:1c:d8:42:fe:79:2d:d3:e4: d1:8f:7f:35:ad:63:76:ba:a6:03:9c:22:0d:25:33: 7c:4f:08:f6:50:b5:a2:f5:57:15:01:b6:be:05:8e: bf:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:8C:12:3E:40:21:DA:F9:FF:53:D4:CB:10:5B:FD:53:9F:12:C7:86 X509v3 Authority Key Identifier: keyid:8D:47:3B:7B:41:E3:D6:22:DF:B3:B6:0D:5E:B9:46:99:8F:BE:7E:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/AS134773.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.201.192.0/23 103.201.196.0/24 103.201.200.0/24 113.21.232.0/22 Signature Algorithm: sha256WithRSAEncryption 53:93:3e:64:2f:d6:5e:72:5e:e7:d1:ec:8d:bc:f4:c7:7c:a2: 28:b4:cf:fd:48:a7:d5:1b:c4:c1:79:eb:6c:05:0b:38:b5:2b: e6:82:2b:89:1b:41:32:68:36:3b:3d:f0:c8:ff:9c:c2:2a:67: f0:73:26:01:f6:31:44:8a:48:ff:77:8a:1f:5c:5c:df:4f:aa: df:47:fa:aa:f2:0b:1a:44:b9:8e:1f:5a:a3:32:6b:91:21:25: 9e:32:2e:74:50:bc:9d:e1:fd:88:86:98:8e:91:84:3b:ec:0b: c7:95:8c:9f:1f:d2:b2:8c:0e:0a:66:29:56:62:23:ef:9e:bb: 4e:b5:57:b4:ce:f8:47:b7:27:4c:e0:b7:5d:1a:da:8f:7f:d8: 85:3f:33:d5:3e:04:8c:44:f5:06:9b:3a:b7:1d:6d:06:31:af: 1e:9e:77:51:c7:44:b6:39:53:fb:fc:a8:43:dd:74:62:84:6e: ac:28:49:b1:a6:e6:70:dc:c6:fc:2c:8b:ab:a3:8c:f5:d5:a2: 28:61:28:a3:29:c0:a3:b7:b5:5b:d8:e9:c5:f5:75:d8:fd:29: 28:c4:e5:d9:48:49:6c:4a:f5:64:aa:ca:e6:55:73:12:78:c3: 61:00:e9:32:20:b6:97:9c:68:37:1f:2d:08:f1:66:b8:34:f1: aa:b8:9b:79 -----BEGIN CERTIFICATE----- MIIE7DCCA9SgAwIBAgIUH0vBgBUtgg7ErnsvCPBdugSpW4owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEQ0NzNCN0I0MUUzRDYyMkRGQjNCNjBENUVCOTQ2OTk4 RkJFN0VBRTAeFw0yNjA1MTMwOTIyMDhaFw0yNzA1MTIwOTI3MDhaMDMxMTAvBgNV BAMTKDlFOEMxMjNFNDAyMURBRjlGRjUzRDRDQjEwNUJGRDUzOUYxMkM3ODYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPAO+j9li8zy9v8vmRhnikcR1Y voL9ZuYsf850pm8dgRGQEqnNNFrppwOmIoiRN02E60E3LxyRLXc1rfKIej7QDbSh uTdDGSPR3GtJWZcaputXUXM2m198jcvsz7b1Nz/cIlO61numrQUYCXNbUvnhacjU XF98Gtyq+tolR5YT4qz06nycXlkhIwBSY8H07y/Et3Cd9jYbvMdGxbqT4jlwqldv FumAwYd5vQ6WDKRyHPdu+jdvWUo9u8wjAr79VtwaRq2Vo6IATg9CeMWUPnFms29G zio+gU4c2EL+eS3T5NGPfzWtY3a6pgOcIg0lM3xPCPZQtaL1VxUBtr4Fjr8xAgMB AAGjggH2MIIB8jAdBgNVHQ4EFgQUnowSPkAh2vn/U9TLEFv9U58Sx4YwHwYDVR0j BBgwFoAUjUc7e0Hj1iLfs7YNXrlGmY++fq4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjcyMzM3MjE3OTQ1OC8wLzhENDczQjdCNDFFM0Q2MjJERkIzQjYwRDVFQjk0 Njk5OEZCRTdFQUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOEQ0NzNCN0I0MUUzRDYyMkRGQjNCNjBENUVCOTQ2OTk4RkJFN0VBRS5jZXIw XgYIKwYBBQUHAQsEUjBQME4GCCsGAQUFBzALhkJyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU1NzY3MjMzNzIxNzk0NTgvMC9BUzEzNDc3My5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAxBggrBgEFBQcBBwEB/wQiMCAwHgQC AAEwGAMEAWfJwAMEAGfJxAMEAGfJyAMEAnEV6DANBgkqhkiG9w0BAQsFAAOCAQEA U5M+ZC/WXnJe59Hsjbz0x3yiKLTP/Uin1RvEwXnrbAULOLUr5oIriRtBMmg2Oz3w yP+cwipn8HMmAfYxRIpI/3eKH1xc30+q30f6qvILGkS5jh9aozJrkSElnjIudFC8 neH9iIaYjpGEO+wLx5WMnx/SsowOCmYpVmIj7567TrVXtM74R7cnTOC3XRraj3/Y hT8z1T4EjET1Bps6tx1tBjGvHp53UcdEtjlT+/yoQ910YoRurChJsabmcNzG/CyL q6OM9dWiKGEooynAo7e1W9jpxfV12P0pKMTl2UhJbEr1ZKrK5lVzEnjDYQDpMiC2 l5xoNx8tCPFmuDTxqribeQ== -----END CERTIFICATE-----Generated at Wed May 13 12:40:39 2026 by rpki-client