$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065577241947602945/0/3130332e32302e33322e302f32332d3234203d3e203535393936.roa File: 3130332e32302e33322e302f32332d3234203d3e203535393936.roa (raw, json) Hash identifier: Pa0OymWG1mBaJte11obCv+8DGPkYUj8G3eNcfyu2L0k= Subject key identifier: 5F:5C:5F:9E:5F:E3:CC:A2:9D:AE:D4:55:E0:90:16:A8:13:EB:B6:53 Certificate issuer: /CN=5DF8086D3EFA176487A1C376B7BCCF3E83AB2339 Certificate serial: 69D096C8C2F0F4F02552B74B8740A927BC3E611D Authority key identifier: 5D:F8:08:6D:3E:FA:17:64:87:A1:C3:76:B7:BC:CF:3E:83:AB:23:39 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/3130332e32302e33322e302f32332d3234203d3e203535393936.roa Signing time: Thu 07 May 2026 15:50:29 +0000 ROA not before: Thu 07 May 2026 15:45:29 +0000 ROA not after: Thu 06 May 2027 15:50:29 +0000 asID: 55996 IP address blocks: 103.20.32.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.crl rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 15:10:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:d0:96:c8:c2:f0:f4:f0:25:52:b7:4b:87:40:a9:27:bc:3e:61:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5DF8086D3EFA176487A1C376B7BCCF3E83AB2339 Validity Not Before: May 7 15:45:29 2026 GMT Not After : May 6 15:50:29 2027 GMT Subject: CN=5F5C5F9E5FE3CCA29DAED455E09016A813EBB653 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:78:be:fb:44:ee:74:8a:d2:c9:96:d9:6f:93: 3c:56:2d:5b:75:08:3f:cd:5b:79:70:8b:12:bf:17: e8:dd:61:2d:2d:82:7e:34:07:cf:23:1a:f3:e6:d8: eb:45:32:ba:50:a5:f6:fb:55:05:df:8d:de:80:83: a5:fd:19:fe:a6:98:5a:5c:73:7b:e2:5a:70:40:81: 9c:16:a3:a2:50:d5:28:5a:31:5b:04:32:51:d9:f3: 98:42:1f:ed:e0:31:36:a9:7e:52:b7:43:a7:f9:4b: af:7c:95:8a:c4:9e:2a:fb:6e:33:f7:17:d0:bd:1b: ab:da:e8:5d:1e:54:41:c1:dd:eb:1b:a1:6a:73:07: 1b:92:21:25:13:c5:30:29:a4:9c:da:a6:1c:a8:07: 58:3d:65:13:44:10:81:40:da:2f:08:d7:46:f4:ab: 19:cc:5a:44:36:8d:2c:4d:a3:e9:7c:24:87:69:aa: 72:42:13:2e:1e:72:e3:ed:9e:79:0e:04:33:ba:0f: 4d:5c:85:67:c4:ad:fc:04:ec:db:2d:eb:6b:aa:6d: 16:ee:7f:d9:b4:22:df:51:69:23:c4:ac:f5:95:e1: 6f:80:ab:7c:c8:3e:80:90:81:24:5e:63:28:75:9d: 0e:8f:69:7b:c5:d3:f5:82:29:42:cc:18:2a:a0:94: 15:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:5C:5F:9E:5F:E3:CC:A2:9D:AE:D4:55:E0:90:16:A8:13:EB:B6:53 X509v3 Authority Key Identifier: keyid:5D:F8:08:6D:3E:FA:17:64:87:A1:C3:76:B7:BC:CF:3E:83:AB:23:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/3130332e32302e33322e302f32332d3234203d3e203535393936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.20.32.0/23 Signature Algorithm: sha256WithRSAEncryption 6c:e0:63:56:15:f6:fb:21:ed:81:d0:04:85:4b:f4:30:0b:60: d1:07:b5:d1:ac:7b:3c:9c:7e:31:5a:80:3d:6d:e4:23:e2:c0: a7:5a:56:1f:7a:f3:a5:65:2b:53:31:cc:df:e7:99:dc:9c:b7: e1:34:37:8d:74:dd:48:0f:2d:f2:e7:44:25:10:f2:81:c6:f5: 2a:91:a8:71:96:71:aa:99:39:1c:44:3b:3e:f9:5e:77:17:b3: 83:16:5a:70:89:af:e2:46:5e:6e:6c:39:a6:bc:35:87:cc:f7: eb:df:aa:8a:8a:74:84:7e:08:2d:0b:75:f1:c0:52:a4:6c:49: db:22:f9:aa:59:37:4b:35:38:7e:f3:ab:2e:2d:41:ac:bc:70: b6:2d:12:f0:bd:7b:83:11:be:11:c2:bb:f8:96:61:be:00:20: 32:9c:e0:93:db:75:37:60:f1:71:e5:34:2d:aa:8f:79:41:8e: c6:14:63:87:77:bd:7a:00:0a:94:68:b0:8c:fa:d4:64:a9:21: b0:15:f1:8e:29:fb:45:b2:fd:26:09:07:2f:e8:ba:9e:45:46: c8:5b:a3:22:63:8f:16:68:68:8a:5d:7c:eb:ae:22:a7:18:3b: 9b:3c:56:8a:67:60:61:2d:03:a2:6a:bf:b1:85:89:d1:67:14: 9e:87:0e:cc -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUadCWyMLw9PAlUrdLh0CpJ7w+YR0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNURGODA4NkQzRUZBMTc2NDg3QTFDMzc2QjdCQ0NGM0U4 M0FCMjMzOTAeFw0yNjA1MDcxNTQ1MjlaFw0yNzA1MDYxNTUwMjlaMDMxMTAvBgNV BAMTKDVGNUM1RjlFNUZFM0NDQTI5REFFRDQ1NUUwOTAxNkE4MTNFQkI2NTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxeL77RO50itLJltlvkzxWLVt1 CD/NW3lwixK/F+jdYS0tgn40B88jGvPm2OtFMrpQpfb7VQXfjd6Ag6X9Gf6mmFpc c3viWnBAgZwWo6JQ1ShaMVsEMlHZ85hCH+3gMTapflK3Q6f5S698lYrEnir7bjP3 F9C9G6va6F0eVEHB3esboWpzBxuSISUTxTAppJzaphyoB1g9ZRNEEIFA2i8I10b0 qxnMWkQ2jSxNo+l8JIdpqnJCEy4ecuPtnnkOBDO6D01chWfErfwE7Nst62uqbRbu f9m0It9RaSPErPWV4W+Aq3zIPoCQgSReYyh1nQ6PaXvF0/WCKULMGCqglBXJAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUX1xfnl/jzKKdrtRV4JAWqBPrtlMwHwYDVR0j BBgwFoAUXfgIbT76F2SHocN2t7zPPoOrIzkwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NzI0MTk0NzYwMjk0NS8wLzVERjgwODZEM0VGQTE3NjQ4N0ExQzM3NkI3QkND RjNFODNBQjIzMzkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNURGODA4NkQzRUZBMTc2NDg3QTFDMzc2QjdCQ0NGM0U4M0FCMjMzOS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc3MjQxOTQ3NjAyOTQ1LzAvMzEzMDMzMmUzMjMw MmUzMzMyMmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzUzNTM5MzkzNi5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAWcUIDANBgkqhkiG9w0BAQsFAAOCAQEAbOBjVhX2+yHtgdAEhUv0MAtg0Qe1 0ax7PJx+MVqAPW3kI+LAp1pWH3rzpWUrUzHM3+eZ3Jy34TQ3jXTdSA8t8udEJRDy gcb1KpGocZZxqpk5HEQ7PvledxezgxZacImv4kZebmw5prw1h8z369+qiop0hH4I LQt18cBSpGxJ2yL5qlk3SzU4fvOrLi1BrLxwti0S8L17gxG+EcK7+JZhvgAgMpzg k9t1N2DxceU0LaqPeUGOxhRjh3e9egAKlGiwjPrUZKkhsBXxjin7RbL9JgkHL+i6 nkVGyFujImOPFmhoil18664ipxg7mzxWimdgYS0Domq/sYWJ0WcUnocOzA== -----END CERTIFICATE-----Generated at Wed May 13 07:45:01 2026 by rpki-client