$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394589187/0/AS4811.roa File: AS4811.roa (raw, json) Hash identifier: MQynOb4F+1b9ZkBoDwWt/L1FsSiE93o3VTtuHi8Pf84= Subject key identifier: 2A:B7:81:63:12:B8:30:B1:6A:4E:2F:59:A6:2B:75:E0:7A:0D:5D:5D Certificate issuer: /CN=9BF34B3817748D3E69CC3880F13A8383A9AA3C2C Certificate serial: 0757823A6DF2FB688EB8A5321F5E9E56D9836579 Authority key identifier: 9B:F3:4B:38:17:74:8D:3E:69:CC:38:80:F1:3A:83:83:A9:AA:3C:2C Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9BF34B3817748D3E69CC3880F13A8383A9AA3C2C.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394589187/0/AS4811.roa Signing time: Tue 12 May 2026 09:40:16 +0000 ROA not before: Tue 12 May 2026 09:35:16 +0000 ROA not after: Tue 11 May 2027 09:40:16 +0000 asID: 4811 IP address blocks: 103.237.28.0/23 maxlen: 23 106.75.208.0/20 maxlen: 20 113.31.96.0/20 maxlen: 20 113.31.112.0/20 maxlen: 20 113.31.144.0/20 maxlen: 20 113.31.160.0/20 maxlen: 20 113.31.176.0/20 maxlen: 20 2401:3480:2000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394589187/0/9BF34B3817748D3E69CC3880F13A8383A9AA3C2C.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394589187/0/9BF34B3817748D3E69CC3880F13A8383A9AA3C2C.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9BF34B3817748D3E69CC3880F13A8383A9AA3C2C.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 11:48:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:57:82:3a:6d:f2:fb:68:8e:b8:a5:32:1f:5e:9e:56:d9:83:65:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9BF34B3817748D3E69CC3880F13A8383A9AA3C2C Validity Not Before: May 12 09:35:16 2026 GMT Not After : May 11 09:40:16 2027 GMT Subject: CN=2AB7816312B830B16A4E2F59A62B75E07A0D5D5D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:dd:07:37:b7:4f:64:6f:bc:0b:b1:65:f3:a6: 1c:6c:81:e2:83:7b:50:f0:c8:53:19:f7:e0:a6:1c: 50:67:76:32:d7:59:a5:0c:0b:09:fe:fe:78:cf:5e: 42:fb:3e:28:40:3f:01:a5:18:6a:b8:0a:3d:09:68: 02:46:a5:46:88:8d:7b:14:e3:06:ee:ee:8e:0e:f6: b3:e6:df:aa:b7:b5:76:a7:b4:33:b6:4f:0e:b5:17: 34:3b:df:1f:af:dc:a7:96:09:06:98:68:34:fd:04: 5a:2f:70:d0:01:de:97:2a:ec:0d:66:26:54:ca:36: 38:41:15:2c:a3:7d:c4:19:d7:ff:b7:1a:14:e7:28: 29:e1:fb:53:8f:fa:6c:18:cc:e5:93:db:fc:45:90: ec:f4:56:ef:82:61:f7:e2:79:35:48:10:a1:ec:e9: f4:db:1f:3d:4f:9c:a0:4a:8b:67:91:52:c2:a3:74: 83:b1:4a:e9:d6:1c:f4:7e:ea:ff:21:5c:e9:a7:0c: 31:8d:04:21:2d:01:a1:89:28:6b:11:ca:31:71:53: 7b:3d:46:bc:97:8b:67:c3:6d:c8:d1:68:d3:d3:e0: 76:fd:21:fc:76:4d:55:c4:51:1c:85:dc:5e:e0:2e: 6f:77:e7:01:77:0d:76:ab:45:f0:ab:aa:a1:39:85: 2a:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:B7:81:63:12:B8:30:B1:6A:4E:2F:59:A6:2B:75:E0:7A:0D:5D:5D X509v3 Authority Key Identifier: keyid:9B:F3:4B:38:17:74:8D:3E:69:CC:38:80:F1:3A:83:83:A9:AA:3C:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394589187/0/9BF34B3817748D3E69CC3880F13A8383A9AA3C2C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9BF34B3817748D3E69CC3880F13A8383A9AA3C2C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394589187/0/AS4811.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.237.28.0/23 106.75.208.0/20 113.31.96.0/19 113.31.144.0-113.31.191.255 IPv6: 2401:3480:2000::/48 Signature Algorithm: sha256WithRSAEncryption e3:8d:f1:31:e0:06:e7:73:71:64:59:f8:7e:c1:5f:3b:b3:7c: 6e:f2:a5:2f:83:10:a7:dc:c5:f7:2b:f7:5e:a8:4a:90:5b:ce: 9a:e0:e9:66:fe:3f:b1:21:96:52:35:b9:5e:5d:2b:24:22:f3: 1f:f8:4c:c8:e8:43:b0:b6:84:43:2b:fa:ce:2d:52:98:77:76: 9a:d0:ec:41:34:2c:e7:66:07:aa:72:81:04:ca:51:d9:75:8d: 25:20:8e:00:5d:ce:a0:1f:c8:c8:c4:20:81:e1:e9:97:4c:88: c1:3d:ae:7e:7c:9d:d7:f2:d9:bb:f0:9f:98:90:7c:b9:d2:1b: 1b:32:2c:f4:21:99:ad:00:bb:89:59:bb:3f:e2:9b:ec:09:98: 26:df:a0:3e:4b:9e:ec:4d:7a:3e:cd:4d:15:0a:e8:33:8f:3d: 06:5f:0e:ef:f5:cb:19:ce:31:51:12:9f:f7:23:70:03:d1:52: db:fc:af:85:77:48:66:5f:83:44:63:22:45:13:1c:2f:87:65: dc:02:69:76:72:3a:c6:e6:c6:10:02:73:b1:04:f4:65:14:6f: 42:d4:db:47:8a:35:37:c3:a2:3a:e8:f2:5c:c8:73:60:af:e1: 69:1b:56:5f:f2:3c:eb:f2:d6:eb:c7:ee:a6:c0:8b:e9:ff:c8: 66:35:3b:a4 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgIUB1eCOm3y+2iOuKUyH16eVtmDZXkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUJGMzRCMzgxNzc0OEQzRTY5Q0MzODgwRjEzQTgzODNB OUFBM0MyQzAeFw0yNjA1MTIwOTM1MTZaFw0yNzA1MTEwOTQwMTZaMDMxMTAvBgNV BAMTKDJBQjc4MTYzMTJCODMwQjE2QTRFMkY1OUE2MkI3NUUwN0EwRDVENUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDb3Qc3t09kb7wLsWXzphxsgeKD e1DwyFMZ9+CmHFBndjLXWaUMCwn+/njPXkL7PihAPwGlGGq4Cj0JaAJGpUaIjXsU 4wbu7o4O9rPm36q3tXantDO2Tw61FzQ73x+v3KeWCQaYaDT9BFovcNAB3pcq7A1m JlTKNjhBFSyjfcQZ1/+3GhTnKCnh+1OP+mwYzOWT2/xFkOz0Vu+CYffieTVIEKHs 6fTbHz1PnKBKi2eRUsKjdIOxSunWHPR+6v8hXOmnDDGNBCEtAaGJKGsRyjFxU3s9 RryXi2fDbcjRaNPT4Hb9Ifx2TVXEURyF3F7gLm935wF3DXarRfCrqqE5hSpjAgMB AAGjggINMIICCTAdBgNVHQ4EFgQUKreBYxK4MLFqTi9Zpit14HoNXV0wHwYDVR0j BBgwFoAUm/NLOBd0jT5pzDiA8TqDg6mqPCwwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDU4OTE4Ny8wLzlCRjM0QjM4MTc3NDhEM0U2OUNDMzg4MEYxM0E4 MzgzQTlBQTNDMkMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOUJGMzRCMzgxNzc0OEQzRTY5Q0MzODgwRjEzQTgzODNBOUFBM0MyQy5jZXIw XAYIKwYBBQUHAQsEUDBOMEwGCCsGAQUFBzALhkByc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU1Nzk1MzQzOTQ1ODkxODcvMC9BUzQ4MTEucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwSgYIKwYBBQUHAQcBAf8EOzA5MCYEAgAB MCADBAFn7RwDBARqS9ADBAVxH2AwDAMEBHEfkAMEBnEfgDAPBAIAAjAJAwcAJAE0 gCAAMA0GCSqGSIb3DQEBCwUAA4IBAQDjjfEx4Abnc3FkWfh+wV87s3xu8qUvgxCn 3MX3K/deqEqQW86a4Olm/j+xIZZSNbleXSskIvMf+EzI6EOwtoRDK/rOLVKYd3aa 0OxBNCznZgeqcoEEylHZdY0lII4AXc6gH8jIxCCB4emXTIjBPa5+fJ3X8tm78J+Y kHy50hsbMiz0IZmtALuJWbs/4pvsCZgm36A+S57sTXo+zU0VCugzjz0GXw7v9csZ zjFREp/3I3AD0VLb/K+Fd0hmX4NEYyJFExwvh2XcAml2cjrG5sYQAnOxBPRlFG9C 1NtHijU3w6I66PJcyHNgr+FpG1Zf8jzr8tbrx+6mwIvp/8hmNTuk -----END CERTIFICATE-----Generated at Wed May 13 04:20:41 2026 by rpki-client