$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394785795/0/3130332e34302e31322e302f32322d3232203d3e203133333738.roa File: 3130332e34302e31322e302f32322d3232203d3e203133333738.roa (raw, json) Hash identifier: 9FLxutCXxEsSiiNQr7P0RYkYnWyJDMTTWLed+QmMwK4= Subject key identifier: CA:8F:A8:4F:42:34:B8:CF:A7:30:E3:76:BF:7D:D5:8A:F1:DD:EE:BD Certificate issuer: /CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Certificate serial: 5C22845D1610A0C3B5AAB0D956A0F503E3847979 Authority key identifier: 71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/3130332e34302e31322e302f32322d3232203d3e203133333738.roa Signing time: Thu 26 Mar 2026 07:44:15 +0000 ROA not before: Thu 26 Mar 2026 07:39:15 +0000 ROA not after: Thu 25 Mar 2027 07:44:15 +0000 asID: 13378 IP address blocks: 103.40.12.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 05:24:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:22:84:5d:16:10:a0:c3:b5:aa:b0:d9:56:a0:f5:03:e3:84:79:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Validity Not Before: Mar 26 07:39:15 2026 GMT Not After : Mar 25 07:44:15 2027 GMT Subject: CN=CA8FA84F4234B8CFA730E376BF7DD58AF1DDEEBD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:8c:0d:d1:ea:b2:82:82:d7:c5:e9:46:36:3d: 85:4e:18:f9:bd:48:f2:96:ca:bd:73:22:f5:94:8b: 90:ce:24:e0:52:b6:cc:65:8d:f3:e1:04:5c:5d:3a: 0a:7a:ee:71:07:1d:d6:68:37:b6:05:25:45:ee:d7: 78:2a:bc:af:7a:70:13:fa:bb:2f:83:fa:fa:1f:1e: 82:1c:35:6c:3a:1a:c4:9f:40:4d:ff:c5:84:ae:5d: 04:3e:04:5c:52:0f:1c:cd:5b:44:c3:c9:7d:e6:36: 82:b8:06:c6:e7:99:a0:4a:31:39:ad:1a:bd:cd:7b: 3c:24:1a:22:f1:78:63:86:15:94:8c:5c:66:7f:d5: 88:d6:ae:0c:3f:22:e1:68:40:6b:43:c3:f2:4b:2c: 7f:df:66:af:f1:c7:98:42:7f:e2:5f:1d:b5:db:3d: b0:2e:af:c8:ef:4d:15:7b:64:40:29:e6:31:66:78: f6:04:1d:20:f4:d3:27:ab:a5:e1:a7:71:e6:4a:14: 7d:5e:87:61:35:a3:18:a3:d5:f7:ad:8d:8d:5a:97: dc:a7:1c:8d:a8:62:eb:5c:08:25:47:e2:24:0d:1e: dc:7d:cb:76:ab:27:ba:71:6a:93:5e:41:c2:5f:c6: a7:09:cd:a5:8e:28:b0:04:b7:d8:ce:6b:71:46:e2: e1:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:8F:A8:4F:42:34:B8:CF:A7:30:E3:76:BF:7D:D5:8A:F1:DD:EE:BD X509v3 Authority Key Identifier: keyid:71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/3130332e34302e31322e302f32322d3232203d3e203133333738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.40.12.0/22 Signature Algorithm: sha256WithRSAEncryption b5:34:20:21:c5:6a:f5:1a:44:df:20:14:4f:41:7e:8d:91:15: e4:55:ea:9c:9f:21:7c:40:38:45:80:bf:f8:44:77:4d:47:7c: f1:f6:d3:fe:8c:0b:b9:a5:c3:99:60:f2:dc:b3:02:45:05:16: 58:a0:42:23:1c:05:ec:a1:24:a5:2e:d2:e7:08:3c:0b:5b:cd: 96:dd:7f:31:5c:fa:95:32:88:48:4b:6b:f4:6d:18:00:9c:56: bc:ab:54:7b:5f:f9:8e:45:e8:cc:35:a7:65:e9:ea:98:e3:c4: 47:87:25:09:a0:27:de:9f:29:6b:54:04:d9:11:e3:c7:5e:6d: 61:c8:87:ee:f0:23:0f:44:20:17:68:1a:ec:c4:87:6c:ba:9f: 96:87:32:6e:32:19:f4:2e:aa:15:3d:44:e4:7e:f3:22:58:8d: f8:b4:ee:10:86:ba:e8:31:25:88:f0:6f:2f:9f:48:fb:17:28: 5e:38:a1:ab:53:25:b5:08:d9:44:34:b0:3f:a0:b5:69:f0:d9: be:54:04:52:11:57:7f:41:1b:b7:c7:ff:18:92:31:0c:e3:49: b3:c2:74:27:89:05:a1:af:6e:40:3e:ba:db:c1:4e:53:78:0a: ef:ce:9c:8a:4a:b3:fb:5a:fe:bb:4d:7e:42:32:12:f6:36:ba: fb:0e:dc:af -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUXCKEXRYQoMO1qrDZVqD1A+OEeXkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FD MjlBMjU0RTAeFw0yNjAzMjYwNzM5MTVaFw0yNzAzMjUwNzQ0MTVaMDMxMTAvBgNV BAMTKENBOEZBODRGNDIzNEI4Q0ZBNzMwRTM3NkJGN0RENThBRjFEREVFQkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYjA3R6rKCgtfF6UY2PYVOGPm9 SPKWyr1zIvWUi5DOJOBStsxljfPhBFxdOgp67nEHHdZoN7YFJUXu13gqvK96cBP6 uy+D+vofHoIcNWw6GsSfQE3/xYSuXQQ+BFxSDxzNW0TDyX3mNoK4BsbnmaBKMTmt Gr3NezwkGiLxeGOGFZSMXGZ/1YjWrgw/IuFoQGtDw/JLLH/fZq/xx5hCf+JfHbXb PbAur8jvTRV7ZEAp5jFmePYEHSD00yerpeGnceZKFH1eh2E1oxij1fetjY1al9yn HI2oYutcCCVH4iQNHtx9y3arJ7pxapNeQcJfxqcJzaWOKLAEt9jOa3FG4uGvAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUyo+oT0I0uM+nMON2v33VivHd7r0wHwYDVR0j BBgwFoAUccm/5Mj9fnd6HJ5V36YKOsKaJU4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDc4NTc5NS8wLzcxQzlCRkU0QzhGRDdFNzc3QTFDOUU1NURGQTYw QTNBQzI5QTI1NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FDMjlBMjU0RS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc5NTM0Mzk0Nzg1Nzk1LzAvMzEzMDMzMmUzNDMw MmUzMTMyMmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzEzMzMzMzczOC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAmcoDDANBgkqhkiG9w0BAQsFAAOCAQEAtTQgIcVq9RpE3yAUT0F+jZEV5FXq nJ8hfEA4RYC/+ER3TUd88fbT/owLuaXDmWDy3LMCRQUWWKBCIxwF7KEkpS7S5wg8 C1vNlt1/MVz6lTKISEtr9G0YAJxWvKtUe1/5jkXozDWnZenqmOPER4clCaAn3p8p a1QE2RHjx15tYciH7vAjD0QgF2ga7MSHbLqflocybjIZ9C6qFT1E5H7zIliN+LTu EIa66DEliPBvL59I+xcoXjihq1MltQjZRDSwP6C1afDZvlQEUhFXf0Ebt8f/GJIx DONJs8J0J4kFoa9uQD6628FOU3gK786cikqz+1r+u01+QjIS9ja6+w7crw== -----END CERTIFICATE-----Generated at Thu Mar 26 17:40:46 2026 by rpki-client