$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394785795/0/3130332e3230352e3235322e302f32322d3232203d3e203133333738.roa File: 3130332e3230352e3235322e302f32322d3232203d3e203133333738.roa (raw, json) Hash identifier: CzRpwDYSJWrqep20DiCoU98hE7f+YPzrmm7aoNp+YMc= Subject key identifier: B8:62:97:7C:A6:D4:02:0F:E2:2F:7E:53:23:E7:0D:79:34:56:42:0C Certificate issuer: /CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Certificate serial: 160F8E1D11DE1EACFBAC2F28B1CC9414BBFA2987 Authority key identifier: 71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/3130332e3230352e3235322e302f32322d3232203d3e203133333738.roa Signing time: Thu 26 Mar 2026 07:44:15 +0000 ROA not before: Thu 26 Mar 2026 07:39:15 +0000 ROA not after: Thu 25 Mar 2027 07:44:15 +0000 asID: 13378 IP address blocks: 103.205.252.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 05:24:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:0f:8e:1d:11:de:1e:ac:fb:ac:2f:28:b1:cc:94:14:bb:fa:29:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Validity Not Before: Mar 26 07:39:15 2026 GMT Not After : Mar 25 07:44:15 2027 GMT Subject: CN=B862977CA6D4020FE22F7E5323E70D793456420C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:68:25:3b:91:26:2c:91:a5:f1:c4:cb:ba:46: d2:a6:e9:8c:e7:8d:19:fc:d7:09:14:1e:61:ad:e4: 10:d5:11:4a:ed:a0:1c:05:75:ca:ce:78:ba:25:16: 20:83:d5:d6:b0:1d:24:15:4a:6d:92:ff:3f:67:37: 9b:6a:59:b6:a0:2b:e7:2d:74:77:2b:25:72:75:d9: 14:fc:49:0a:0f:ce:12:98:50:06:1d:8e:37:98:d4: 6a:8a:99:15:de:38:c7:65:9a:93:96:dd:74:3e:55: b5:a3:43:6e:a8:6c:87:89:4d:eb:68:fc:31:ae:83: f1:2a:85:52:33:49:cf:ec:cf:47:c4:11:5e:dd:a3: a5:6d:94:22:cd:f3:60:ef:65:80:79:ab:3e:62:ab: a9:8f:12:71:f6:ab:7c:4c:30:52:2a:1a:c1:10:fb: 54:12:6f:26:9f:56:4a:17:8c:df:76:ee:1b:99:59: 60:e3:c1:17:42:32:e0:0b:d2:10:82:74:41:da:e3: 31:b4:1e:0e:a0:f0:f7:ed:ea:e6:f4:ee:29:40:48: 49:5f:c7:52:a3:a4:af:ff:b7:d0:15:97:44:12:7d: 47:40:88:30:88:e6:b8:bf:a6:89:2d:2f:22:5c:cd: 02:fd:9f:a3:25:31:f4:89:a3:fa:6e:07:41:0c:59: 8f:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:62:97:7C:A6:D4:02:0F:E2:2F:7E:53:23:E7:0D:79:34:56:42:0C X509v3 Authority Key Identifier: keyid:71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/3130332e3230352e3235322e302f32322d3232203d3e203133333738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.205.252.0/22 Signature Algorithm: sha256WithRSAEncryption 50:fb:9e:df:ff:0a:6f:f0:62:29:12:e3:3e:08:60:9e:de:28: b3:d9:03:24:ef:44:81:5f:fb:c2:46:77:d0:22:54:40:4d:65: f7:36:9c:9a:a2:38:36:54:cb:2e:82:63:11:04:90:c9:b9:00: 26:40:ab:3f:5a:e9:d7:d7:7a:ff:73:af:2a:d4:b5:fe:30:dc: 9d:7c:59:12:37:27:ab:33:fa:36:9b:59:6e:37:1f:5a:ea:2d: a4:52:3e:86:3b:a7:49:c3:83:ca:49:ab:cd:f6:13:37:4a:dc: 24:af:be:dd:f6:61:55:27:08:7d:80:50:bf:ed:00:6f:e8:42: 5c:d3:05:64:14:67:58:26:25:0d:e9:d7:09:cf:aa:e0:1f:2a: 54:9a:cb:42:4e:12:af:18:43:ca:e9:76:8e:04:c2:80:5f:a3: 23:8a:88:41:f1:79:1a:02:4b:3e:db:d0:59:33:e4:ea:03:2a: 6a:16:0a:ff:55:8a:d4:c9:d0:16:91:68:98:79:96:2c:43:32: 55:94:23:84:91:c3:58:6a:9b:73:ed:bf:32:78:77:5e:3f:5d: 67:86:49:59:a8:cb:01:b3:d0:82:3b:c7:54:fe:ff:6b:7d:ce: 41:c2:ce:15:d7:7f:b4:a7:15:34:11:7a:98:d0:c0:e0:74:bd: a9:fb:6c:6a -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUFg+OHRHeHqz7rC8oscyUFLv6KYcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FD MjlBMjU0RTAeFw0yNjAzMjYwNzM5MTVaFw0yNzAzMjUwNzQ0MTVaMDMxMTAvBgNV BAMTKEI4NjI5NzdDQTZENDAyMEZFMjJGN0U1MzIzRTcwRDc5MzQ1NjQyMEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChaCU7kSYskaXxxMu6RtKm6Yzn jRn81wkUHmGt5BDVEUrtoBwFdcrOeLolFiCD1dawHSQVSm2S/z9nN5tqWbagK+ct dHcrJXJ12RT8SQoPzhKYUAYdjjeY1GqKmRXeOMdlmpOW3XQ+VbWjQ26obIeJTeto /DGug/EqhVIzSc/sz0fEEV7do6VtlCLN82DvZYB5qz5iq6mPEnH2q3xMMFIqGsEQ +1QSbyafVkoXjN927huZWWDjwRdCMuAL0hCCdEHa4zG0Hg6g8Pft6ub07ilASElf x1KjpK//t9AVl0QSfUdAiDCI5ri/poktLyJczQL9n6MlMfSJo/puB0EMWY9TAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUuGKXfKbUAg/iL35TI+cNeTRWQgwwHwYDVR0j BBgwFoAUccm/5Mj9fnd6HJ5V36YKOsKaJU4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDc4NTc5NS8wLzcxQzlCRkU0QzhGRDdFNzc3QTFDOUU1NURGQTYw QTNBQzI5QTI1NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FDMjlBMjU0RS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1Nzk1MzQzOTQ3ODU3OTUvMC8zMTMwMzMyZTMy MzAzNTJlMzIzNTMyMmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzEzMzMzMzczOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAmfN/DANBgkqhkiG9w0BAQsFAAOCAQEAUPue3/8Kb/BiKRLjPghg nt4os9kDJO9EgV/7wkZ30CJUQE1l9zacmqI4NlTLLoJjEQSQybkAJkCrP1rp19d6 /3OvKtS1/jDcnXxZEjcnqzP6NptZbjcfWuotpFI+hjunScODykmrzfYTN0rcJK++ 3fZhVScIfYBQv+0Ab+hCXNMFZBRnWCYlDenXCc+q4B8qVJrLQk4SrxhDyul2jgTC gF+jI4qIQfF5GgJLPtvQWTPk6gMqahYK/1WK1MnQFpFomHmWLEMyVZQjhJHDWGqb c+2/Mnh3Xj9dZ4ZJWajLAbPQgjvHVP7/a33OQcLOFdd/tKcVNBF6mNDA4HS9qfts ag== -----END CERTIFICATE-----Generated at Thu Mar 26 18:32:49 2026 by rpki-client