$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394785795/0/3130332e3233392e3234342e302f32332d3233203d3e203133333738.roa File: 3130332e3233392e3234342e302f32332d3233203d3e203133333738.roa (raw, json) Hash identifier: k8LzqOyALfx1HCkRmw5RtOd1G4z7mSS9RUJX+Mq+E1M= Subject key identifier: 19:E0:D1:22:33:11:1E:DE:73:80:A5:83:EF:C8:E6:93:20:66:AE:62 Certificate issuer: /CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Certificate serial: 0C838B2C02151ABB2A81393D0F82B6C6A1262B33 Authority key identifier: 71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/3130332e3233392e3234342e302f32332d3233203d3e203133333738.roa Signing time: Thu 26 Mar 2026 07:44:15 +0000 ROA not before: Thu 26 Mar 2026 07:39:15 +0000 ROA not after: Thu 25 Mar 2027 07:44:15 +0000 asID: 13378 IP address blocks: 103.239.244.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 05:24:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:83:8b:2c:02:15:1a:bb:2a:81:39:3d:0f:82:b6:c6:a1:26:2b:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Validity Not Before: Mar 26 07:39:15 2026 GMT Not After : Mar 25 07:44:15 2027 GMT Subject: CN=19E0D12233111EDE7380A583EFC8E6932066AE62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:f9:68:2b:f5:29:d5:ec:97:80:69:68:dc:9d: d4:e1:6d:07:38:c7:26:d7:17:48:af:33:44:3a:57: 43:68:f2:2f:ca:40:d6:d3:7b:f6:20:a2:86:f1:63: 80:dc:fc:83:a2:65:2b:1c:15:31:10:f9:72:14:ff: 9c:66:7c:cc:79:7c:61:18:79:9c:42:c6:35:58:13: c1:66:d9:54:b8:0e:ab:43:ab:2c:b0:8d:32:8d:ac: 4a:63:f5:5f:a1:57:7b:e7:b1:e6:46:3b:61:71:dc: ee:a7:78:ef:72:38:27:ac:e6:e5:44:0e:d8:34:72: 86:77:fd:8c:1e:39:07:71:a9:2a:20:6e:de:fb:5f: 91:6d:d3:ed:89:e8:fa:38:46:32:db:d4:90:9a:b9: 6f:42:2a:33:e8:28:5e:e6:c2:ab:c0:63:69:01:4f: b5:7b:6b:23:69:ea:7b:02:66:7c:2d:b4:bd:cd:29: f8:9b:25:ed:2d:55:bb:56:50:39:43:6e:82:73:67: 80:47:65:67:e7:2f:64:6a:32:c8:a0:43:51:09:48: e4:29:d7:61:26:23:dd:7d:e3:d6:84:a6:70:22:c7: be:30:37:89:bc:c3:33:2c:72:f6:1e:68:c0:90:c7: 64:43:e9:ce:03:f2:62:e4:a7:a0:ff:5c:49:62:c6: 26:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:E0:D1:22:33:11:1E:DE:73:80:A5:83:EF:C8:E6:93:20:66:AE:62 X509v3 Authority Key Identifier: keyid:71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/3130332e3233392e3234342e302f32332d3233203d3e203133333738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.239.244.0/23 Signature Algorithm: sha256WithRSAEncryption 16:0e:58:d5:36:63:8b:d6:d0:7b:85:2d:d6:69:ed:f1:1e:e3: a9:33:32:14:1c:be:15:18:57:c9:7a:14:55:dc:a3:40:e3:02: 3a:e1:70:96:6d:1a:38:3b:2c:43:db:6d:3d:76:03:54:8e:c6: c2:26:67:87:5a:b4:ba:95:72:de:49:89:9f:b2:59:75:b0:34: a1:e4:56:ed:22:21:d9:62:3d:b7:eb:66:9a:c8:57:37:98:a5: b8:b6:a8:b0:c5:6a:78:8f:10:55:2b:50:4d:5c:8e:5f:b0:a7: 4b:d5:ab:ab:3b:b6:28:73:81:89:3d:67:b0:63:e5:63:d2:7c: d8:38:ad:d9:17:08:fe:5a:21:df:68:1e:ad:9d:7c:03:9e:6f: 28:4c:ef:6d:eb:c3:53:69:2b:5e:da:8c:cf:67:e2:1d:79:05: 2d:bb:14:4d:95:2f:a4:07:11:bd:9f:11:8e:cb:60:5e:fb:8c: 35:26:d9:0f:a8:7e:3d:a8:eb:a7:e9:e2:f7:02:18:67:d6:ab: 10:51:a7:f9:da:9c:0a:91:04:c8:9f:0d:e0:ba:70:8f:8f:a7: 39:7d:f9:41:b6:60:72:44:3f:51:d3:dc:af:92:74:e5:ef:95: b6:45:37:09:70:30:74:57:55:79:de:83:05:72:37:39:91:02: 7f:4e:5f:ca -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUDIOLLAIVGrsqgTk9D4K2xqEmKzMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FD MjlBMjU0RTAeFw0yNjAzMjYwNzM5MTVaFw0yNzAzMjUwNzQ0MTVaMDMxMTAvBgNV BAMTKDE5RTBEMTIyMzMxMTFFREU3MzgwQTU4M0VGQzhFNjkzMjA2NkFFNjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCR+Wgr9SnV7JeAaWjcndThbQc4 xybXF0ivM0Q6V0No8i/KQNbTe/YgoobxY4Dc/IOiZSscFTEQ+XIU/5xmfMx5fGEY eZxCxjVYE8Fm2VS4DqtDqyywjTKNrEpj9V+hV3vnseZGO2Fx3O6neO9yOCes5uVE Dtg0coZ3/YweOQdxqSogbt77X5Ft0+2J6Po4RjLb1JCauW9CKjPoKF7mwqvAY2kB T7V7ayNp6nsCZnwttL3NKfibJe0tVbtWUDlDboJzZ4BHZWfnL2RqMsigQ1EJSOQp 12EmI91949aEpnAix74wN4m8wzMscvYeaMCQx2RD6c4D8mLkp6D/XElixibxAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUGeDRIjMRHt5zgKWD78jmkyBmrmIwHwYDVR0j BBgwFoAUccm/5Mj9fnd6HJ5V36YKOsKaJU4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDc4NTc5NS8wLzcxQzlCRkU0QzhGRDdFNzc3QTFDOUU1NURGQTYw QTNBQzI5QTI1NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FDMjlBMjU0RS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1Nzk1MzQzOTQ3ODU3OTUvMC8zMTMwMzMyZTMy MzMzOTJlMzIzNDM0MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzEzMzMzMzczOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWfv9DANBgkqhkiG9w0BAQsFAAOCAQEAFg5Y1TZji9bQe4Ut1mnt 8R7jqTMyFBy+FRhXyXoUVdyjQOMCOuFwlm0aODssQ9ttPXYDVI7GwiZnh1q0upVy 3kmJn7JZdbA0oeRW7SIh2WI9t+tmmshXN5iluLaosMVqeI8QVStQTVyOX7CnS9Wr qzu2KHOBiT1nsGPlY9J82Dit2RcI/loh32gerZ18A55vKEzvbevDU2krXtqMz2fi HXkFLbsUTZUvpAcRvZ8RjstgXvuMNSbZD6h+Pajrp+ni9wIYZ9arEFGn+dqcCpEE yJ8N4Lpwj4+nOX35QbZgckQ/UdPcr5J05e+VtkU3CXAwdFdVed6DBXI3OZECf05f yg== -----END CERTIFICATE-----Generated at Thu Mar 26 18:05:14 2026 by rpki-client