$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065577241947602945/0/3130332e32302e33332e302f32342d3234203d3e20313331323734.roa File: 3130332e32302e33332e302f32342d3234203d3e20313331323734.roa (raw, json) Hash identifier: iARwCVNkXORTpKo4WtGKb5mPu1a7pE/IbhCdR2N+PjQ= Subject key identifier: E4:25:B3:7C:D4:B1:FF:4F:E2:AE:37:2F:A5:4B:CB:D7:1F:DD:EA:2E Certificate issuer: /CN=5DF8086D3EFA176487A1C376B7BCCF3E83AB2339 Certificate serial: 60F194FAD3ED8DD59E5F419D1B302F63CEF380E0 Authority key identifier: 5D:F8:08:6D:3E:FA:17:64:87:A1:C3:76:B7:BC:CF:3E:83:AB:23:39 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/3130332e32302e33332e302f32342d3234203d3e20313331323734.roa Signing time: Thu 07 May 2026 15:50:30 +0000 ROA not before: Thu 07 May 2026 15:45:30 +0000 ROA not after: Thu 06 May 2027 15:50:30 +0000 asID: 131274 IP address blocks: 103.20.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.crl rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 15:10:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:f1:94:fa:d3:ed:8d:d5:9e:5f:41:9d:1b:30:2f:63:ce:f3:80:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5DF8086D3EFA176487A1C376B7BCCF3E83AB2339 Validity Not Before: May 7 15:45:30 2026 GMT Not After : May 6 15:50:30 2027 GMT Subject: CN=E425B37CD4B1FF4FE2AE372FA54BCBD71FDDEA2E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:12:3c:6a:4a:14:93:46:64:aa:b5:89:aa:39: f9:02:e2:45:f0:d8:1a:d2:1f:ad:44:77:db:5a:69: 52:a3:58:ac:19:51:89:db:39:72:aa:cf:b1:bf:48: 01:9e:13:ca:13:b3:d6:54:34:e1:8d:43:70:ee:2e: c2:81:24:56:2b:18:08:ae:65:76:37:f6:78:4a:ee: 34:ef:d2:79:67:e3:14:95:16:5a:5e:4c:e2:26:26: 51:06:73:8e:dd:5d:7d:34:42:9b:97:aa:f5:7d:25: 28:c8:27:44:92:d0:ee:7a:5c:b3:90:d5:da:0f:bc: 09:96:05:3d:ec:eb:64:c7:e7:49:55:07:e5:a2:6c: b3:b5:c0:c2:f0:f7:94:55:f9:bb:85:5c:79:4f:22: 31:a2:a5:e1:b5:ac:7b:b3:fe:f9:4e:59:46:dd:bc: a7:c2:90:1a:2a:c4:8d:cb:1c:21:f7:aa:a0:97:de: 51:0d:84:e2:29:09:ef:33:c7:7d:4c:34:c8:40:16: a1:27:44:35:0d:df:cd:98:07:be:c7:d5:dd:b9:55: 37:75:24:a3:8a:d9:77:dc:35:72:eb:f8:68:ba:2a: fa:ea:2f:2a:ed:99:66:57:6a:9e:c6:27:4c:e6:95: eb:64:c1:ea:f4:e8:98:77:6c:43:8a:38:aa:23:b0: c5:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:25:B3:7C:D4:B1:FF:4F:E2:AE:37:2F:A5:4B:CB:D7:1F:DD:EA:2E X509v3 Authority Key Identifier: keyid:5D:F8:08:6D:3E:FA:17:64:87:A1:C3:76:B7:BC:CF:3E:83:AB:23:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/3130332e32302e33332e302f32342d3234203d3e20313331323734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.20.33.0/24 Signature Algorithm: sha256WithRSAEncryption 35:4f:d9:81:12:c3:13:5e:2a:d2:9d:da:a6:3a:f7:9a:94:f7: a0:61:e2:0f:bf:93:c9:33:df:5e:fe:ed:6a:f8:c6:c1:e3:3f: f5:85:3e:c6:7b:2f:ba:8f:2c:c2:5c:5f:f9:35:76:14:07:8f: dc:a9:0c:0a:ab:20:dc:20:cc:dd:a7:28:fd:db:17:01:35:46: 55:02:b1:1e:5e:ea:9d:97:3b:63:eb:72:00:af:fc:e2:e0:04: 18:1c:1c:c4:bf:7a:fd:50:e2:91:4a:34:b0:68:9c:bb:b6:06: c3:85:a8:95:63:32:ed:28:8a:5d:f7:34:ef:6c:f0:f2:28:e4: 16:db:dd:0c:41:38:84:ff:64:4b:56:0b:bc:d4:59:9d:49:29: cd:53:81:bc:84:a8:9c:59:0c:ec:83:25:bb:57:c1:ae:0a:ea: 63:d4:b0:9d:2f:fb:9f:c6:29:5b:cc:6c:34:5b:56:76:cd:67: 13:00:37:76:d3:cc:86:29:0b:d0:ba:1d:fe:19:9a:69:67:8a: 14:b1:5a:67:4a:e1:30:83:bb:a8:b0:e9:ba:13:4a:b4:66:fa: d4:bf:88:ea:58:b0:b0:fa:87:4d:be:7b:02:fb:fb:46:58:4a: 26:e3:c8:9b:32:b9:6e:d7:50:55:40:66:87:75:03:c7:cb:b7: a1:94:f1:89 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUYPGU+tPtjdWeX0GdGzAvY87zgOAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNURGODA4NkQzRUZBMTc2NDg3QTFDMzc2QjdCQ0NGM0U4 M0FCMjMzOTAeFw0yNjA1MDcxNTQ1MzBaFw0yNzA1MDYxNTUwMzBaMDMxMTAvBgNV BAMTKEU0MjVCMzdDRDRCMUZGNEZFMkFFMzcyRkE1NEJDQkQ3MUZEREVBMkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkEjxqShSTRmSqtYmqOfkC4kXw 2BrSH61Ed9taaVKjWKwZUYnbOXKqz7G/SAGeE8oTs9ZUNOGNQ3DuLsKBJFYrGAiu ZXY39nhK7jTv0nln4xSVFlpeTOImJlEGc47dXX00QpuXqvV9JSjIJ0SS0O56XLOQ 1doPvAmWBT3s62TH50lVB+WibLO1wMLw95RV+buFXHlPIjGipeG1rHuz/vlOWUbd vKfCkBoqxI3LHCH3qqCX3lENhOIpCe8zx31MNMhAFqEnRDUN382YB77H1d25VTd1 JKOK2XfcNXLr+Gi6KvrqLyrtmWZXap7GJ0zmletkwer06Jh3bEOKOKojsMXVAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQU5CWzfNSx/0/irjcvpUvL1x/d6i4wHwYDVR0j BBgwFoAUXfgIbT76F2SHocN2t7zPPoOrIzkwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NzI0MTk0NzYwMjk0NS8wLzVERjgwODZEM0VGQTE3NjQ4N0ExQzM3NkI3QkND RjNFODNBQjIzMzkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNURGODA4NkQzRUZBMTc2NDg3QTFDMzc2QjdCQ0NGM0U4M0FCMjMzOS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3NzI0MTk0NzYwMjk0NS8wLzMxMzAzMzJlMzIz MDJlMzMzMzJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzMTMyMzczNC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAGcUITANBgkqhkiG9w0BAQsFAAOCAQEANU/ZgRLDE14q0p3apjr3mpT3 oGHiD7+TyTPfXv7tavjGweM/9YU+xnsvuo8swlxf+TV2FAeP3KkMCqsg3CDM3aco /dsXATVGVQKxHl7qnZc7Y+tyAK/84uAEGBwcxL96/VDikUo0sGicu7YGw4WolWMy 7SiKXfc072zw8ijkFtvdDEE4hP9kS1YLvNRZnUkpzVOBvISonFkM7IMlu1fBrgrq Y9SwnS/7n8YpW8xsNFtWds1nEwA3dtPMhikL0Lod/hmaaWeKFLFaZ0rhMIO7qLDp uhNKtGb61L+I6liwsPqHTb57Avv7RlhKJuPImzK5btdQVUBmh3UDx8u3oZTxiQ== -----END CERTIFICATE-----Generated at Wed May 13 08:28:01 2026 by rpki-client