$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3130332e3136312e3235342e302f32332d3233203d3e20313436373732.roa File: 3130332e3136312e3235342e302f32332d3233203d3e20313436373732.roa (raw, json) Hash identifier: ey8SNdqgz102zC4nsGIO+c2poo9UqPVjBV8E8DOwA8c= Subject key identifier: 7E:05:B3:0F:4C:B1:1A:1F:AC:02:2F:AB:DE:A5:E4:57:A0:65:86:CE Certificate issuer: /CN=3D01CD6928DDE8D26AC96265F1F904C72F1A12B8 Certificate serial: 50849F00115C238E7BB79DD4295B942A55D1DED1 Authority key identifier: 3D:01:CD:69:28:DD:E8:D2:6A:C9:62:65:F1:F9:04:C7:2F:1A:12:B8 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3130332e3136312e3235342e302f32332d3233203d3e20313436373732.roa Signing time: Fri 24 Apr 2026 07:34:54 +0000 ROA not before: Fri 24 Apr 2026 07:29:54 +0000 ROA not after: Fri 23 Apr 2027 07:34:54 +0000 asID: 146772 IP address blocks: 103.161.254.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.crl rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:84:9f:00:11:5c:23:8e:7b:b7:9d:d4:29:5b:94:2a:55:d1:de:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D01CD6928DDE8D26AC96265F1F904C72F1A12B8 Validity Not Before: Apr 24 07:29:54 2026 GMT Not After : Apr 23 07:34:54 2027 GMT Subject: CN=7E05B30F4CB11A1FAC022FABDEA5E457A06586CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:dd:92:78:cb:1c:f3:49:20:6d:12:de:31:4f: 5e:c5:b0:f7:96:88:b1:9d:18:55:c9:fa:b6:b2:8b: 51:2b:0a:34:9c:d0:57:71:81:b5:62:10:73:d4:75: 6f:55:b4:49:44:2f:58:37:42:9d:15:f3:ed:a8:5c: 22:be:51:e9:cf:87:4c:6d:20:db:a0:6c:e7:78:a4: ac:8a:f8:9b:94:79:40:47:27:57:61:4a:a2:67:5a: 5a:bc:72:7c:d3:2f:5e:e5:da:01:bc:74:a8:6f:45: 5b:5b:cd:05:66:c3:05:01:b8:f7:ab:5b:0a:40:93: 2d:2f:81:1a:26:e1:57:7e:72:47:95:f0:1d:aa:7c: 85:6f:6f:9f:6c:16:2f:9d:d1:12:f8:b9:34:0c:04: 6a:cd:21:c3:cf:4f:e4:fb:e2:62:97:44:c5:a5:c1: 62:95:e5:52:df:46:ee:4b:5e:42:58:a5:68:9a:30: ed:90:30:3b:5e:02:47:a1:72:f4:68:fe:3b:3c:5f: b4:52:57:6e:e5:0d:1d:59:88:30:2c:19:5e:31:6b: a6:92:39:5e:2d:d1:ee:09:b1:7d:19:0c:8c:5a:c7: 34:33:4a:5a:08:6f:81:02:8e:e9:ef:f3:b0:66:91: 0d:da:b2:e8:2b:6c:a4:6f:fc:72:b8:1b:9a:ff:e6: fa:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:05:B3:0F:4C:B1:1A:1F:AC:02:2F:AB:DE:A5:E4:57:A0:65:86:CE X509v3 Authority Key Identifier: keyid:3D:01:CD:69:28:DD:E8:D2:6A:C9:62:65:F1:F9:04:C7:2F:1A:12:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3130332e3136312e3235342e302f32332d3233203d3e20313436373732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.254.0/23 Signature Algorithm: sha256WithRSAEncryption 68:0d:b1:af:33:38:53:c5:09:a6:40:3c:de:f8:a0:95:27:c4: c7:4e:47:58:ae:5d:04:77:97:63:47:4b:76:82:e8:b2:d8:90: 0d:50:15:6f:a9:ca:41:ec:bf:a8:77:7f:26:bb:d4:21:10:03: 84:42:f7:70:54:3f:e1:bd:c1:11:72:81:8b:a6:53:7b:72:2e: 54:e1:f9:cc:8f:23:2b:87:03:b3:98:61:65:53:af:e0:17:51: 21:3f:11:3d:1e:42:70:38:4c:4a:2c:92:c8:08:6e:ab:1d:2d: ee:8f:e4:2c:21:27:a3:80:4d:75:a3:f1:f2:2c:e5:69:2c:41: ec:cd:c9:ee:27:a8:de:9c:9e:77:d6:bb:ad:55:0a:5a:37:eb: 28:09:5a:46:a6:7d:48:ce:fa:d0:ea:66:82:c8:a4:6b:c4:db: 10:c0:44:5c:f9:ab:9a:37:a0:11:bd:15:10:d3:17:1d:a0:c7: e0:50:db:95:53:26:d5:bd:3d:3c:44:13:55:1d:e4:af:d1:aa: 6c:e4:7b:11:a4:06:99:af:fb:77:b6:5d:d8:2f:e8:6d:43:11: 52:09:79:d0:76:78:4a:8a:0f:40:50:17:51:52:3c:14:9c:79: 25:e6:23:ad:da:a0:f0:bb:f5:ab:1a:29:d9:c7:c8:94:e4:c6: 69:77:b1:32 -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUUISfABFcI457t53UKVuUKlXR3tEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QwMUNENjkyOERERThEMjZBQzk2MjY1RjFGOTA0Qzcy RjFBMTJCODAeFw0yNjA0MjQwNzI5NTRaFw0yNzA0MjMwNzM0NTRaMDMxMTAvBgNV BAMTKDdFMDVCMzBGNENCMTFBMUZBQzAyMkZBQkRFQTVFNDU3QTA2NTg2Q0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCx3ZJ4yxzzSSBtEt4xT17FsPeW iLGdGFXJ+rayi1ErCjSc0FdxgbViEHPUdW9VtElEL1g3Qp0V8+2oXCK+UenPh0xt INugbOd4pKyK+JuUeUBHJ1dhSqJnWlq8cnzTL17l2gG8dKhvRVtbzQVmwwUBuPer WwpAky0vgRom4Vd+ckeV8B2qfIVvb59sFi+d0RL4uTQMBGrNIcPPT+T74mKXRMWl wWKV5VLfRu5LXkJYpWiaMO2QMDteAkehcvRo/js8X7RSV27lDR1ZiDAsGV4xa6aS OV4t0e4JsX0ZDIxaxzQzSloIb4ECjunv87BmkQ3asugrbKRv/HK4G5r/5vq5AgMB AAGjggIaMIICFjAdBgNVHQ4EFgQUfgWzD0yxGh+sAi+r3qXkV6Blhs4wHwYDVR0j BBgwFoAUPQHNaSjd6NJqyWJl8fkExy8aErgwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4NTM4OTI2NTQyMDI4OS8wLzNEMDFDRDY5MjhEREU4RDI2QUM5NjI2NUYxRjkw NEM3MkYxQTEyQjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvM0QwMUNENjkyOERERThEMjZBQzk2MjY1RjFGOTA0QzcyRjFBMTJCOC5jZXIw gZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMDY1NTg1Mzg5MjY1NDIwMjg5LzAvMzEzMDMzMmUz MTM2MzEyZTMyMzUzNDJlMzAyZjMyMzMyZDMyMzMyMDNkM2UyMDMxMzQzNjM3Mzcz Mi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWeh/jANBgkqhkiG9w0BAQsFAAOCAQEAaA2xrzM4U8UJpkA8 3viglSfEx05HWK5dBHeXY0dLdoLostiQDVAVb6nKQey/qHd/JrvUIRADhEL3cFQ/ 4b3BEXKBi6ZTe3IuVOH5zI8jK4cDs5hhZVOv4BdRIT8RPR5CcDhMSiySyAhuqx0t 7o/kLCEno4BNdaPx8izlaSxB7M3J7ieo3pyed9a7rVUKWjfrKAlaRqZ9SM760Opm gsika8TbEMBEXPmrmjegEb0VENMXHaDH4FDblVMm1b09PEQTVR3kr9GqbOR7EaQG ma/7d7Zd2C/obUMRUgl50HZ4SooPQFAXUVI8FJx5JeYjrdqg8Lv1qxop2cfIlOTG aXexMg== -----END CERTIFICATE-----Generated at Wed May 13 14:34:17 2026 by rpki-client