$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065577241947602945/0/3130332e32302e33342e302f32332d3234203d3e203535393936.roa File: 3130332e32302e33342e302f32332d3234203d3e203535393936.roa (raw, json) Hash identifier: U/xa3DTjR74F+MKKJ0Hpe6ivA4uFgo0sLkEPGO/ax6Q= Subject key identifier: 9C:5C:B2:97:FA:AE:9E:5F:BA:8A:AF:5E:97:8E:B4:27:85:2E:3F:7C Certificate issuer: /CN=5DF8086D3EFA176487A1C376B7BCCF3E83AB2339 Certificate serial: 74286D19E77D94DD10A4659688822B72AE31397E Authority key identifier: 5D:F8:08:6D:3E:FA:17:64:87:A1:C3:76:B7:BC:CF:3E:83:AB:23:39 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/3130332e32302e33342e302f32332d3234203d3e203535393936.roa Signing time: Thu 07 May 2026 15:50:29 +0000 ROA not before: Thu 07 May 2026 15:45:29 +0000 ROA not after: Thu 06 May 2027 15:50:29 +0000 asID: 55996 IP address blocks: 103.20.34.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.crl rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 15:10:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:28:6d:19:e7:7d:94:dd:10:a4:65:96:88:82:2b:72:ae:31:39:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5DF8086D3EFA176487A1C376B7BCCF3E83AB2339 Validity Not Before: May 7 15:45:29 2026 GMT Not After : May 6 15:50:29 2027 GMT Subject: CN=9C5CB297FAAE9E5FBA8AAF5E978EB427852E3F7C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:3f:35:75:e3:4b:24:c6:aa:f1:73:db:54:42: ac:9c:c4:6b:03:2d:e5:61:a3:51:5a:20:6b:32:5a: 21:9e:08:87:5e:f8:06:c1:57:bb:af:32:c9:d5:5d: ee:36:f9:a9:6c:72:d2:e9:90:4b:b2:50:a6:46:b4: f2:55:0b:6d:cf:42:92:41:cd:96:19:47:78:d3:ae: 23:00:cd:6a:60:e0:27:d3:30:4b:aa:5b:1b:49:9d: 30:ea:c4:c9:81:0a:c1:1d:f6:33:90:3a:49:05:ff: b3:2f:2c:9c:e2:e0:be:4d:4c:e7:c2:ea:24:b3:3f: 7f:9c:7c:0f:30:3d:7a:0a:6b:0e:5c:81:5a:13:7d: bf:d9:05:c8:83:74:f7:a6:ea:6b:86:1c:c5:7c:73: 8a:95:4f:05:46:4a:c1:e6:4c:cf:80:7f:36:a5:82: 49:d3:24:8c:7d:7f:09:97:26:56:88:ac:0e:e2:ff: 61:d3:7d:60:ab:d6:6f:4b:21:f7:d7:e7:24:29:b1: ba:16:e3:b9:9c:be:66:6b:fc:d7:5b:05:f3:88:ac: 86:38:66:91:8c:0e:d1:6e:79:b9:d9:ea:65:77:30: c8:5a:af:79:87:0f:71:83:a1:9b:b2:73:6a:29:35: 61:cc:d9:66:ed:6d:29:cf:55:52:1a:e0:8c:ec:8c: f5:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:5C:B2:97:FA:AE:9E:5F:BA:8A:AF:5E:97:8E:B4:27:85:2E:3F:7C X509v3 Authority Key Identifier: keyid:5D:F8:08:6D:3E:FA:17:64:87:A1:C3:76:B7:BC:CF:3E:83:AB:23:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/3130332e32302e33342e302f32332d3234203d3e203535393936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.20.34.0/23 Signature Algorithm: sha256WithRSAEncryption 4e:21:69:08:e5:11:8e:10:de:63:80:be:e9:41:27:2a:52:96: b8:4f:90:e9:b8:48:bc:a3:db:ef:a3:9f:d7:6e:39:af:85:f9: 9e:28:b2:e4:70:ea:0e:ef:7b:df:9c:42:8e:e2:f1:87:45:22: 3d:8c:dd:0c:be:09:f4:05:be:f1:33:b5:cb:bc:ce:c9:2a:f2: 6b:6f:2a:69:79:3b:20:78:52:c5:21:d2:1f:b5:f7:ae:5b:1e: ac:08:b0:f5:9b:32:7b:10:8b:68:ae:52:3c:80:93:64:6e:e2: a6:e6:dd:44:b5:2d:65:99:ab:0a:75:53:0d:b5:e6:8b:79:f9: 86:90:ce:c7:47:93:66:86:7a:64:a3:d0:57:cd:51:83:04:53: c1:69:a2:66:8d:67:11:9e:ef:b1:85:dd:85:c9:3d:b6:2b:a4: af:d1:b2:fe:2f:c1:5a:0c:90:ea:e6:04:02:d5:99:37:ce:48: 50:6e:03:2e:e3:8a:a5:04:3f:86:64:00:e2:3e:18:73:d4:8a: 21:54:a6:ac:1e:95:a9:11:85:7f:26:a1:63:bb:e8:db:3c:fe: 50:92:d6:63:21:ad:30:d0:23:34:88:a7:7d:b1:ad:28:f6:cb: 6e:ca:74:51:75:25:2d:56:02:cb:48:87:10:8a:ba:c7:fa:8f: ce:5c:99:a5 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUdChtGed9lN0QpGWWiIIrcq4xOX4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNURGODA4NkQzRUZBMTc2NDg3QTFDMzc2QjdCQ0NGM0U4 M0FCMjMzOTAeFw0yNjA1MDcxNTQ1MjlaFw0yNzA1MDYxNTUwMjlaMDMxMTAvBgNV BAMTKDlDNUNCMjk3RkFBRTlFNUZCQThBQUY1RTk3OEVCNDI3ODUyRTNGN0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqPzV140skxqrxc9tUQqycxGsD LeVho1FaIGsyWiGeCIde+AbBV7uvMsnVXe42+alsctLpkEuyUKZGtPJVC23PQpJB zZYZR3jTriMAzWpg4CfTMEuqWxtJnTDqxMmBCsEd9jOQOkkF/7MvLJzi4L5NTOfC 6iSzP3+cfA8wPXoKaw5cgVoTfb/ZBciDdPem6muGHMV8c4qVTwVGSsHmTM+Afzal gknTJIx9fwmXJlaIrA7i/2HTfWCr1m9LIffX5yQpsboW47mcvmZr/NdbBfOIrIY4 ZpGMDtFuebnZ6mV3MMhar3mHD3GDoZuyc2opNWHM2WbtbSnPVVIa4IzsjPX7AgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUnFyyl/qunl+6iq9el460J4UuP3wwHwYDVR0j BBgwFoAUXfgIbT76F2SHocN2t7zPPoOrIzkwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NzI0MTk0NzYwMjk0NS8wLzVERjgwODZEM0VGQTE3NjQ4N0ExQzM3NkI3QkND RjNFODNBQjIzMzkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNURGODA4NkQzRUZBMTc2NDg3QTFDMzc2QjdCQ0NGM0U4M0FCMjMzOS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc3MjQxOTQ3NjAyOTQ1LzAvMzEzMDMzMmUzMjMw MmUzMzM0MmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzUzNTM5MzkzNi5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAWcUIjANBgkqhkiG9w0BAQsFAAOCAQEATiFpCOURjhDeY4C+6UEnKlKWuE+Q 6bhIvKPb76Of1245r4X5niiy5HDqDu9735xCjuLxh0UiPYzdDL4J9AW+8TO1y7zO ySrya28qaXk7IHhSxSHSH7X3rlserAiw9ZsyexCLaK5SPICTZG7ipubdRLUtZZmr CnVTDbXmi3n5hpDOx0eTZoZ6ZKPQV81RgwRTwWmiZo1nEZ7vsYXdhck9tiukr9Gy /i/BWgyQ6uYEAtWZN85IUG4DLuOKpQQ/hmQA4j4Yc9SKIVSmrB6VqRGFfyahY7vo 2zz+UJLWYyGtMNAjNIinfbGtKPbLbsp0UXUlLVYCy0iHEIq6x/qPzlyZpQ== -----END CERTIFICATE-----Generated at Wed May 13 06:38:16 2026 by rpki-client