$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394720259/0/3130332e3233392e3230342e302f32322d3232203d3e203539303433.roa File: 3130332e3233392e3230342e302f32322d3232203d3e203539303433.roa (raw, json) Hash identifier: CnJ51iaKSmLX4YUNstsoA0gBimSBtrCcBaFLxxGyG2A= Subject key identifier: 3C:64:1C:4B:4D:1F:CC:81:31:DE:7B:F1:3C:19:9B:2A:02:FF:97:62 Certificate issuer: /CN=2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A Certificate serial: 79112778D1A3BB128B92417033A09C020508A0B2 Authority key identifier: 2D:0B:C1:65:5D:17:A3:AB:09:C9:1E:43:A3:2D:E8:D8:AB:21:35:1A Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/3130332e3233392e3230342e302f32322d3232203d3e203539303433.roa Signing time: Sat 09 May 2026 01:42:55 +0000 ROA not before: Sat 09 May 2026 01:37:55 +0000 ROA not after: Sat 08 May 2027 01:42:55 +0000 asID: 59043 IP address blocks: 103.239.204.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:07:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:11:27:78:d1:a3:bb:12:8b:92:41:70:33:a0:9c:02:05:08:a0:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A Validity Not Before: May 9 01:37:55 2026 GMT Not After : May 8 01:42:55 2027 GMT Subject: CN=3C641C4B4D1FCC8131DE7BF13C199B2A02FF9762 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:48:c7:2c:b4:ed:9c:d4:c0:54:9d:47:70:c7: 78:39:61:45:dc:9d:b0:51:1a:0a:af:fe:69:1d:d3: b7:68:30:4f:38:1e:83:77:0b:eb:05:d6:fb:a3:8b: 88:40:d3:de:c3:f2:e6:03:5e:96:ac:ff:a0:42:ef: ec:12:de:4b:24:d3:d8:7f:fd:3f:8a:32:ca:36:91: f4:aa:77:c5:59:74:54:28:67:ba:93:65:8f:a6:95: 25:2b:9e:72:1d:83:1c:db:f1:1b:e8:92:e0:88:a8: 9e:7f:4b:39:04:7e:cf:2c:c5:a6:f7:3e:10:71:e6: b8:be:eb:01:f5:e0:e1:be:46:40:f8:27:d8:91:cd: 32:7e:03:4f:23:66:7e:1a:97:e7:30:23:a9:87:b3: d8:44:3d:dc:3c:4d:33:70:58:b8:06:39:1b:fb:28: 37:cb:db:2f:51:dd:22:ff:6e:9d:24:e0:dd:f8:3a: e5:50:08:5e:ad:05:20:43:49:86:d0:4f:27:44:4f: 49:5c:ca:93:1a:8b:c0:17:1c:ee:2c:c0:df:f4:22: 9b:a1:17:2a:c7:9b:55:59:45:a2:b5:ac:a2:ed:c5: ed:87:ef:35:5b:52:5f:da:0d:e9:fc:7e:af:4e:27: 58:e9:d9:38:ce:2c:f5:f7:40:58:13:1b:c9:f9:4c: 38:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:64:1C:4B:4D:1F:CC:81:31:DE:7B:F1:3C:19:9B:2A:02:FF:97:62 X509v3 Authority Key Identifier: keyid:2D:0B:C1:65:5D:17:A3:AB:09:C9:1E:43:A3:2D:E8:D8:AB:21:35:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/3130332e3233392e3230342e302f32322d3232203d3e203539303433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.239.204.0/22 Signature Algorithm: sha256WithRSAEncryption 47:bf:c8:a3:ff:f4:88:c7:d8:df:e7:17:6a:a4:29:09:db:f1: 5a:6c:ad:4e:c9:a0:0f:7b:f8:d2:bd:0c:58:83:37:8f:7c:42: 06:10:c2:fb:55:c7:b4:b4:50:33:a2:8b:65:a0:4b:7d:77:fd: 73:7c:f3:3a:22:e6:be:ac:24:68:92:c6:2a:c9:92:d7:50:ba: e7:1f:7f:60:10:56:e9:64:42:df:f4:46:33:61:b8:42:22:d6: 56:af:56:85:b3:24:b6:a7:33:27:5d:23:bb:4d:71:c0:59:d7: bc:e9:b6:c3:e0:29:6f:c8:cb:a3:e9:5f:f2:cf:99:23:cc:61: f5:22:bb:f5:cd:de:7c:34:e9:9e:56:53:69:7c:11:14:27:c5: 77:dd:fc:c0:77:98:18:6e:64:9e:93:ad:cf:ea:f3:0c:fa:78: a2:55:9d:b4:11:ff:42:f0:bc:e0:40:f0:48:dd:e1:d5:1f:e5: 18:38:99:71:e3:a0:21:bd:4a:8f:35:58:f8:10:b4:70:13:ff: ad:1f:2d:bb:ce:a5:7f:8c:be:51:e0:89:8d:c0:cf:86:e7:3a: 0a:c3:1e:09:7d:e0:01:f4:17:93:7d:ca:2e:9a:04:35:f0:33: c3:5e:60:53:c1:54:71:8f:77:d3:0a:61:13:82:a7:b3:45:01: d5:17:94:54 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUeREneNGjuxKLkkFwM6CcAgUIoLIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQwQkMxNjU1RDE3QTNBQjA5QzkxRTQzQTMyREU4RDhB QjIxMzUxQTAeFw0yNjA1MDkwMTM3NTVaFw0yNzA1MDgwMTQyNTVaMDMxMTAvBgNV BAMTKDNDNjQxQzRCNEQxRkNDODEzMURFN0JGMTNDMTk5QjJBMDJGRjk3NjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoSMcstO2c1MBUnUdwx3g5YUXc nbBRGgqv/mkd07doME84HoN3C+sF1vuji4hA097D8uYDXpas/6BC7+wS3ksk09h/ /T+KMso2kfSqd8VZdFQoZ7qTZY+mlSUrnnIdgxzb8RvokuCIqJ5/SzkEfs8sxab3 PhBx5ri+6wH14OG+RkD4J9iRzTJ+A08jZn4al+cwI6mHs9hEPdw8TTNwWLgGORv7 KDfL2y9R3SL/bp0k4N34OuVQCF6tBSBDSYbQTydET0lcypMai8AXHO4swN/0Ipuh FyrHm1VZRaK1rKLtxe2H7zVbUl/aDen8fq9OJ1jp2TjOLPX3QFgTG8n5TDhVAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUPGQcS00fzIEx3nvxPBmbKgL/l2IwHwYDVR0j BBgwFoAULQvBZV0Xo6sJyR5Doy3o2KshNRowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDcyMDI1OS8wLzJEMEJDMTY1NUQxN0EzQUIwOUM5MUU0M0EzMkRF OEQ4QUIyMTM1MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMkQwQkMxNjU1RDE3QTNBQjA5QzkxRTQzQTMyREU4RDhBQjIxMzUxQS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1Nzk1MzQzOTQ3MjAyNTkvMC8zMTMwMzMyZTMy MzMzOTJlMzIzMDM0MmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzUzOTMwMzQzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAmfvzDANBgkqhkiG9w0BAQsFAAOCAQEAR7/Io//0iMfY3+cXaqQp CdvxWmytTsmgD3v40r0MWIM3j3xCBhDC+1XHtLRQM6KLZaBLfXf9c3zzOiLmvqwk aJLGKsmS11C65x9/YBBW6WRC3/RGM2G4QiLWVq9WhbMktqczJ10ju01xwFnXvOm2 w+Apb8jLo+lf8s+ZI8xh9SK79c3efDTpnlZTaXwRFCfFd938wHeYGG5knpOtz+rz DPp4olWdtBH/QvC84EDwSN3h1R/lGDiZceOgIb1KjzVY+BC0cBP/rR8tu86lf4y+ UeCJjcDPhuc6CsMeCX3gAfQXk33KLpoENfAzw15gU8FUcY930wphE4Kns0UB1ReU VA== -----END CERTIFICATE-----Generated at Wed May 13 16:48:13 2026 by rpki-client