$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3130332e3231362e3235322e302f32332d3233203d3e20313436373732.roa File: 3130332e3231362e3235322e302f32332d3233203d3e20313436373732.roa (raw, json) Hash identifier: 85cogqW3cgBvb1qEBXnDojaIEGBNKaYMbROIlE3CxvI= Subject key identifier: 34:6B:5C:5A:63:F4:D3:8B:29:EA:9C:60:30:BF:7F:E4:8F:25:6B:3F Certificate issuer: /CN=3D01CD6928DDE8D26AC96265F1F904C72F1A12B8 Certificate serial: 1E6E172E0CBB1231D625452E3991E76D56E5B598 Authority key identifier: 3D:01:CD:69:28:DD:E8:D2:6A:C9:62:65:F1:F9:04:C7:2F:1A:12:B8 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3130332e3231362e3235322e302f32332d3233203d3e20313436373732.roa Signing time: Fri 24 Apr 2026 07:34:54 +0000 ROA not before: Fri 24 Apr 2026 07:29:54 +0000 ROA not after: Fri 23 Apr 2027 07:34:54 +0000 asID: 146772 IP address blocks: 103.216.252.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.crl rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:6e:17:2e:0c:bb:12:31:d6:25:45:2e:39:91:e7:6d:56:e5:b5:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D01CD6928DDE8D26AC96265F1F904C72F1A12B8 Validity Not Before: Apr 24 07:29:54 2026 GMT Not After : Apr 23 07:34:54 2027 GMT Subject: CN=346B5C5A63F4D38B29EA9C6030BF7FE48F256B3F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:30:b5:49:fd:1a:17:20:b7:e2:70:7f:67:a3: 7d:a2:23:c6:cc:c9:15:23:af:a0:96:aa:08:68:a5: e5:b4:45:0e:2c:06:c8:93:fe:cd:6a:5a:cf:3e:62: a3:b4:e3:b4:2d:f2:ee:c6:7b:39:2a:ee:41:c9:1d: fe:c2:e1:ae:49:97:8d:fb:39:43:f5:10:09:e1:76: c4:e0:75:a5:f6:4a:d9:67:3c:08:e6:69:4f:1d:f1: b2:8b:38:d8:67:d8:82:d0:ba:9a:5f:e6:cc:59:f5: 81:6c:c1:32:a1:48:6c:12:e5:7b:8c:2e:d3:7c:71: 9a:18:2b:54:c8:3a:8d:9e:06:f3:67:c4:4c:63:51: ba:23:f2:b5:64:d5:ca:12:60:1f:4d:05:0f:ef:28: 72:43:d0:98:e6:63:52:66:5d:5c:04:84:9b:c3:86: b6:69:31:58:5c:6b:38:0d:89:df:ca:cc:06:06:6b: 76:38:17:87:77:68:78:0a:8b:21:5d:68:e0:36:33: 23:d8:8d:81:ca:7b:2c:59:7b:f2:f0:09:17:a9:c1: 24:e5:4e:89:7c:5f:c7:13:50:d7:51:d2:82:3d:50: 1a:44:b8:48:36:8f:d0:49:b2:83:60:01:cc:8e:cd: 35:ac:0e:9b:39:b1:c2:13:f9:24:54:70:19:be:48: 09:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:6B:5C:5A:63:F4:D3:8B:29:EA:9C:60:30:BF:7F:E4:8F:25:6B:3F X509v3 Authority Key Identifier: keyid:3D:01:CD:69:28:DD:E8:D2:6A:C9:62:65:F1:F9:04:C7:2F:1A:12:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3130332e3231362e3235322e302f32332d3233203d3e20313436373732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.216.252.0/23 Signature Algorithm: sha256WithRSAEncryption 56:68:99:a0:4e:da:6f:c6:b3:3a:97:56:9c:07:55:08:3b:1a: 3e:db:7b:df:12:56:8c:da:39:a0:c0:28:de:37:6c:52:e8:ba: 9c:e6:4b:df:1d:a2:a3:ff:fc:61:5e:7b:2e:e6:f4:a7:88:d8: d1:9c:e8:a0:8a:e1:0d:b8:b9:e8:43:4f:79:99:52:f6:49:9a: ab:e5:8f:80:99:20:53:41:5a:8f:ef:49:2c:1c:10:90:d5:4c: 4a:65:05:80:5b:8e:a7:7c:d3:ef:fd:1e:10:3a:01:fb:a4:42: ac:27:6c:c8:58:29:5a:64:ca:b1:9b:a2:2b:13:2c:5e:e4:67: 2b:c1:ac:40:f3:f4:d3:f4:ad:d8:6d:d5:48:48:ff:0b:fb:a8: 82:87:7e:7d:bf:f6:d9:d4:66:e6:05:c2:9d:39:fe:00:9d:7d: 3a:b7:27:0d:c7:30:56:45:6a:c3:1d:bc:aa:a6:ac:b7:32:72: a8:38:37:20:75:f9:93:90:c4:77:d6:f0:10:ec:d0:c1:75:9d: 23:1a:60:30:62:1d:81:0b:28:97:4d:9c:36:2f:3b:79:24:39: 4d:53:c9:5a:32:1e:2a:80:06:a7:dd:b2:db:5e:82:3f:06:81: e4:9b:c1:79:ea:6a:c0:52:db:01:8c:8a:87:6d:89:9f:b6:e2: eb:f9:e4:88 -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUHm4XLgy7EjHWJUUuOZHnbVbltZgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QwMUNENjkyOERERThEMjZBQzk2MjY1RjFGOTA0Qzcy RjFBMTJCODAeFw0yNjA0MjQwNzI5NTRaFw0yNzA0MjMwNzM0NTRaMDMxMTAvBgNV BAMTKDM0NkI1QzVBNjNGNEQzOEIyOUVBOUM2MDMwQkY3RkU0OEYyNTZCM0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvMLVJ/RoXILficH9no32iI8bM yRUjr6CWqghopeW0RQ4sBsiT/s1qWs8+YqO047Qt8u7Gezkq7kHJHf7C4a5Jl437 OUP1EAnhdsTgdaX2StlnPAjmaU8d8bKLONhn2ILQuppf5sxZ9YFswTKhSGwS5XuM LtN8cZoYK1TIOo2eBvNnxExjUboj8rVk1coSYB9NBQ/vKHJD0JjmY1JmXVwEhJvD hrZpMVhcazgNid/KzAYGa3Y4F4d3aHgKiyFdaOA2MyPYjYHKeyxZe/LwCRepwSTl Tol8X8cTUNdR0oI9UBpEuEg2j9BJsoNgAcyOzTWsDps5scIT+SRUcBm+SAltAgMB AAGjggIaMIICFjAdBgNVHQ4EFgQUNGtcWmP004sp6pxgML9/5I8laz8wHwYDVR0j BBgwFoAUPQHNaSjd6NJqyWJl8fkExy8aErgwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4NTM4OTI2NTQyMDI4OS8wLzNEMDFDRDY5MjhEREU4RDI2QUM5NjI2NUYxRjkw NEM3MkYxQTEyQjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvM0QwMUNENjkyOERERThEMjZBQzk2MjY1RjFGOTA0QzcyRjFBMTJCOC5jZXIw gZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMDY1NTg1Mzg5MjY1NDIwMjg5LzAvMzEzMDMzMmUz MjMxMzYyZTMyMzUzMjJlMzAyZjMyMzMyZDMyMzMyMDNkM2UyMDMxMzQzNjM3Mzcz Mi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWfY/DANBgkqhkiG9w0BAQsFAAOCAQEAVmiZoE7ab8azOpdW nAdVCDsaPtt73xJWjNo5oMAo3jdsUui6nOZL3x2io//8YV57Lub0p4jY0ZzooIrh Dbi56ENPeZlS9kmaq+WPgJkgU0Faj+9JLBwQkNVMSmUFgFuOp3zT7/0eEDoB+6RC rCdsyFgpWmTKsZuiKxMsXuRnK8GsQPP00/St2G3VSEj/C/uogod+fb/22dRm5gXC nTn+AJ19OrcnDccwVkVqwx28qqastzJyqDg3IHX5k5DEd9bwEOzQwXWdIxpgMGId gQsol02cNi87eSQ5TVPJWjIeKoAGp92y216CPwaB5JvBeepqwFLbAYyKh22Jn7bi 6/nkiA== -----END CERTIFICATE-----Generated at Wed May 13 14:27:36 2026 by rpki-client