$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065577241947602945/0/3130332e3139372e322e302f32342d3234203d3e203535393936.roa File: 3130332e3139372e322e302f32342d3234203d3e203535393936.roa (raw, json) Hash identifier: 2Fm5Q0ZbmbiAMs3tgVqIwHDi/HLW7Xw1FCeHaAx/8dk= Subject key identifier: F2:8F:52:CF:54:A8:A9:81:EA:2E:28:8B:CD:C6:53:80:4A:EA:48:50 Certificate issuer: /CN=5DF8086D3EFA176487A1C376B7BCCF3E83AB2339 Certificate serial: 14B3E5B08566D2823AA295A7CE0B5EF0973C9C76 Authority key identifier: 5D:F8:08:6D:3E:FA:17:64:87:A1:C3:76:B7:BC:CF:3E:83:AB:23:39 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/3130332e3139372e322e302f32342d3234203d3e203535393936.roa Signing time: Thu 07 May 2026 16:03:42 +0000 ROA not before: Thu 07 May 2026 15:58:42 +0000 ROA not after: Thu 06 May 2027 16:03:42 +0000 asID: 55996 IP address blocks: 103.197.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.crl rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 09:37:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:b3:e5:b0:85:66:d2:82:3a:a2:95:a7:ce:0b:5e:f0:97:3c:9c:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5DF8086D3EFA176487A1C376B7BCCF3E83AB2339 Validity Not Before: May 7 15:58:42 2026 GMT Not After : May 6 16:03:42 2027 GMT Subject: CN=F28F52CF54A8A981EA2E288BCDC653804AEA4850 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:8e:38:84:ed:99:35:4f:da:41:c2:69:6d:93: 9e:2e:cd:53:3d:45:01:f3:37:5e:a1:19:fe:ec:2f: 23:24:cc:da:26:06:64:f4:08:66:2a:27:84:4b:5e: 32:15:d9:99:f0:ca:b1:15:f8:f3:a0:67:29:1a:c7: a7:31:43:4e:6c:89:02:85:62:49:73:93:9e:b9:95: 8d:6f:03:a9:b7:9d:cc:e8:fa:8e:45:6b:59:0b:82: 5a:55:83:31:ff:fa:d0:73:78:69:1e:ae:c6:03:f3: 4e:26:e8:5c:5a:59:08:ef:e0:c3:32:bf:2f:4d:9c: 07:e8:2e:a1:4d:8a:dd:cf:da:e8:d4:7f:b3:54:16: 13:6d:89:41:30:04:77:ae:49:90:80:5d:e6:2f:bb: ee:ea:23:fa:d8:cc:5c:21:e4:3a:28:28:c5:a9:b3: a4:6b:6a:c0:4c:9d:6f:5a:3e:50:47:b8:14:19:e7: ea:71:e8:24:0e:87:e1:35:33:c7:d4:17:41:73:0e: d5:17:52:49:de:36:66:c1:02:07:d1:c8:e3:85:9e: 3c:1b:40:46:6f:c4:1a:d7:5b:2e:dc:71:c0:a3:3d: ab:cf:8f:3b:e8:11:66:0c:2b:19:80:b6:44:f7:7b: dd:af:b0:3c:1a:aa:d2:95:8b:72:4e:48:96:9f:0f: a1:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:8F:52:CF:54:A8:A9:81:EA:2E:28:8B:CD:C6:53:80:4A:EA:48:50 X509v3 Authority Key Identifier: keyid:5D:F8:08:6D:3E:FA:17:64:87:A1:C3:76:B7:BC:CF:3E:83:AB:23:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/3130332e3139372e322e302f32342d3234203d3e203535393936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.197.2.0/24 Signature Algorithm: sha256WithRSAEncryption bf:e9:df:1d:bd:30:bd:95:ff:37:95:32:9b:79:3e:84:da:ed: 66:91:f4:e9:e1:4a:ae:fd:a8:cf:f6:a8:5a:52:ba:62:00:64: 62:20:d9:c2:5f:d2:00:28:01:5c:2b:3e:8a:02:b6:29:47:06: 7b:64:da:ed:78:e9:e6:2b:30:8d:c6:b3:32:01:dc:70:ae:aa: 14:31:22:74:cd:cd:d8:62:53:e7:5d:20:9e:a4:c3:ad:d0:52: 33:47:be:f0:cf:37:fa:43:6c:be:56:2f:d5:54:02:07:9d:63: 83:cf:6a:d3:c8:17:b0:87:c1:0c:07:c1:8d:16:b7:da:b5:56: a7:dd:d2:7b:bb:25:52:83:32:d2:4d:bc:6a:43:34:4a:77:b9: 1c:9b:e2:ed:f3:13:61:23:99:5a:95:1c:bd:72:6f:dd:44:9c: 97:16:1a:b4:60:ae:4f:ff:e8:8a:11:4e:f7:ee:3b:84:7f:d8: 2a:79:13:4d:40:0b:b2:fb:d3:89:06:43:2d:f8:10:35:87:8d: 4e:33:9f:75:c0:ba:6f:c9:fa:64:1a:fd:75:a7:16:ca:98:f9: 06:ab:6d:d2:c5:13:55:81:6e:db:b4:44:69:90:81:e1:d7:b6: ae:7c:49:c6:89:4c:a6:4f:47:66:82:20:12:7a:f7:a3:25:b1: 37:e6:b1:18 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUFLPlsIVm0oI6opWnzgte8Jc8nHYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNURGODA4NkQzRUZBMTc2NDg3QTFDMzc2QjdCQ0NGM0U4 M0FCMjMzOTAeFw0yNjA1MDcxNTU4NDJaFw0yNzA1MDYxNjAzNDJaMDMxMTAvBgNV BAMTKEYyOEY1MkNGNTRBOEE5ODFFQTJFMjg4QkNEQzY1MzgwNEFFQTQ4NTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDijjiE7Zk1T9pBwmltk54uzVM9 RQHzN16hGf7sLyMkzNomBmT0CGYqJ4RLXjIV2ZnwyrEV+POgZykax6cxQ05siQKF Yklzk565lY1vA6m3nczo+o5Fa1kLglpVgzH/+tBzeGkersYD804m6FxaWQjv4MMy vy9NnAfoLqFNit3P2ujUf7NUFhNtiUEwBHeuSZCAXeYvu+7qI/rYzFwh5DooKMWp s6RrasBMnW9aPlBHuBQZ5+px6CQOh+E1M8fUF0FzDtUXUkneNmbBAgfRyOOFnjwb QEZvxBrXWy7cccCjPavPjzvoEWYMKxmAtkT3e92vsDwaqtKVi3JOSJafD6HVAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQU8o9Sz1SoqYHqLiiLzcZTgErqSFAwHwYDVR0j BBgwFoAUXfgIbT76F2SHocN2t7zPPoOrIzkwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NzI0MTk0NzYwMjk0NS8wLzVERjgwODZEM0VGQTE3NjQ4N0ExQzM3NkI3QkND RjNFODNBQjIzMzkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNURGODA4NkQzRUZBMTc2NDg3QTFDMzc2QjdCQ0NGM0U4M0FCMjMzOS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc3MjQxOTQ3NjAyOTQ1LzAvMzEzMDMzMmUzMTM5 MzcyZTMyMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzUzNTM5MzkzNi5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAGfFAjANBgkqhkiG9w0BAQsFAAOCAQEAv+nfHb0wvZX/N5Uym3k+hNrtZpH0 6eFKrv2oz/aoWlK6YgBkYiDZwl/SACgBXCs+igK2KUcGe2Ta7Xjp5iswjcazMgHc cK6qFDEidM3N2GJT510gnqTDrdBSM0e+8M83+kNsvlYv1VQCB51jg89q08gXsIfB DAfBjRa32rVWp93Se7slUoMy0k28akM0Sne5HJvi7fMTYSOZWpUcvXJv3USclxYa tGCuT//oihFO9+47hH/YKnkTTUALsvvTiQZDLfgQNYeNTjOfdcC6b8n6ZBr9dacW ypj5Bqtt0sUTVYFu27REaZCB4de2rnxJxolMpk9HZoIgEnr3oyWxN+axGA== -----END CERTIFICATE-----Generated at Wed May 13 10:36:22 2026 by rpki-client